OAuth in Yandex

The OAuth 2.0 protocol allows applications to access Yandex services on behalf of a user. Access is explicitly restricted for each application to the rights assigned during application registration. For information about basic OAuth principles and how the protocol is used in Yandex, see the section Yandex OAuth implementation.

OAuth authorization is supported by Yandex.Disk, Yandex.Webmaster, Yandex.Metrica, and other services.

How to use OAuth

To start using the protocol, you need to:

  1. Register your application on Yandex.OAuth.

  2. Implement getting a token in one of two ways:

    • POST request for a token in exchange for the code returned by Yandex.OAuth.

    • Extracting the token from the URL hash (the part of the address after the # symbol).

      This method is described in the instructions for mobile, desktop, and web applications.

You can test OAuth applications using debugging tokens.