To use the Quizify API, all requests must be authenticated using OAuth 2.0. This helps keep your data secure and ensures that only authorized access is allowed.

We currently support the Client Credentials Grant type, which is ideal for server-to-server communication. You’ll need a Client ID and Client Secret to get started.

How to Get Your Client Credentials

If you're on the Plus (Enterprise) plan, you can request your Client ID and Client Secret by reaching out to our support team.

To request credentials:

1. Contact support through chat or email

2. Share your Quizify account email and tell us briefly what you’re building

3. Our team will review and send your credentials securely

⚠️ Important: Keep your Client ID and Secret safe and secure. Do not share them or include them in any public or browser-based code.

Requesting an Access Token

Once you have your credentials, you can request an access token by sending a POST request to our token endpoint:

nginxCopyEditPOST https://api.quizify.io/oauth/token

Headers:

pgsqlCopyEditContent-Type: application/json

Request Body:

jsonCopyEdit{
  "grant_type": "client_credentials",
  "client_id": "your-client-id",
  "client_secret": "your-client-secret",
  "scope": "*"
}

Response:

jsonCopyEdit{
  "token_type": "Bearer",
  "expires_in": 31536000,
  "access_token": "your-access-token"
}

This token is valid for 1 year unless revoked. You’ll need to include this token in the Authorization header of every API request you make.

Example Header for API Requests:

pgsqlCopyEditAuthorization: Bearer your-access-token

Security Tips

• Store your credentials and access token securely

• Never expose them in frontend code or public repositories

• If you believe your credentials have been compromised, contact support to rotate them

What’s Next

After retrieving your access token, you can start using the API endpoints. Head over to the next section to see available endpoints and how to make your first call.