When making requests using Sunshine Conversations APIs, authentication is required to verify the caller's identity. You can use either Basic authentication or JSON Web Tokens (JWTs) to verify a caller's identity. Both methods require an API key. You create the API key using the Conversations dashboard.
The API key described here is different from the Integrating conversations in Admin Center API key. The conversations dashboard API key is intended for app-level authentication. The integrating conversations API key is specific to a custom integration.
This article includes these sections:
About API keys
An API key identifies and authenticates an application or user and is composed of three pieces:
- The App ID identifies your Zendesk account.
- The Key ID identifies the user of the API.
- The secret key is the authentication password.
With Basic authentication, you make requests using an API key directly. The key ID is the username and the secret is the password.
With JWTs, you sign tokens with an API key, which are then used to authenticate with the API. The key ID is included in the JWT header as the kid property, while the secret signs the JWT.
API keys are not as secure as authentication tokens. Be sure to follow good practices to securely handle credentials when using an API key in production.
For more information on Sunshine Conversations authentication, see API Authentication.
The Sunshine Conversations API key is different than messaging authentication keys. Messaging authentication keys are used to sign credentials that authenticate end users using Zendesk SDKs. The API key here is for server-to-server calls and provides access to Sunshine Conversations public APIs that support the app scope.
Creating and sharing the IDs and API key
A Zendesk administrator must create an API key and share it with the developer. You can store up to 10 keys.
To create and share an API key
- In Admin Center, click
Apps and integrations in the sidebar, then select APIs > Conversations API.
Note: Contact your local sales representative to view this window. You must have a Sunshine Conversations subscription.
- Click Create API key.
If you are creating your first key, this button appears at the bottom of the page; if you have previously created a key, it appears in the top-right corner.
- Enter an identifying name for the key in the Create new key dialog, then click Next.
- In the Copy shared secret dialog, click Copy for each ID and secret key to save it to your clipboard, then click Next.
You're returned to the API window, where the new key appears in the list.
If you generate a new key but have reached your 10-key limit, a notification appears, asking you to delete any unused keys.
To delete an unused key
- In Admin Center, click Apps and integrations in the sidebar, then select APIs > Conversations API.
- Hover your mouse pointer over the key you want to delete, then click the options menu (
) and select Delete. - Confirm the action by clicking Delete.
2 Comments
Hi Gary,
You wrote:
However, I do not see "Conversations API" under APIs (only "Zendesk API").
How can I create an API key for Conversations?
Conversations API is available if you have a Sunshine Conversations account. If you don't have a Sunshine Conversations account yet or need assistance to connect it to your Zendesk Suite account please contact your sales representative for further assistance. You can also talk to our Sales team here.
Please sign in to leave a comment.