Quick start
Prerequisites
There are some prerequisites needed before you can start using our APIs.
You will need:
a subscription key
setup OAuth to sent a bearer token with the request
send the identification of your tenant and organization with the request
Subscription key
Go to "Products"
Login with your Azure AD B2C account
Choose your preferred product
Enter a name for your subscription and choose "Subscribe"
A request for a subscription requires an approval. You will receive an e-mail once your request has been approved.
Once you received the e-mail that your request has been approved, go to "Your profile"
Here you will see your primary and secondary subscription keys.
You should use the primary key by default and switch to the secondary subscription key once you want to start rotating your keys.You will need to pass this subscription key as a HTTP header with the name
apim-sub.
OAuth setup
We're currently supporting the "Client Credentials" flow to access our APIs.
Create a new app registration on your organization overview page.
Client Credentials
Access token URL: https://login.microsoftonline.com/0frictionprod.onmicrosoft.com/oauth2/v2.0/token
Client ID: Client ID of your app registration
Client Secret: Client secret of your app registration
Scopes: https://0frictionprod.onmicrosoft.com/zf-apigw/.default
Identification of your tenant and organization
Along with the previous two requirements, you will also need to sent the following HTTP headers:
zf-tuuid: the ID of your tenant
zf-ouuid: the ID of your organization
Example
Once you have all required data, we can try the following request to fetch the organization details.
Go to the Configuration API and fetch your organization details with the "Try it" button or use the curl command below:
curl --location 'https://api.zerofriction.co/api/cfg/Organizations/{organizationuuid}?api-version=1.0' \--header 'zf-tuuid: <uuid>'
\--header 'zf-ouuid: <uuid>' \--header 'Authorization: Bearer <bearer token>' \--header 'apim-sub: <subscription key>'