Configuring Zoom

Please note: The Admin for your Zoom account will need to complete the following steps. Other permission levels will not have access to the same options or functions.

Zoom Integration Keys

To configure your app's integration with Zoom, you will need to submit the following to our team:

S2S AccountID
S2S ClientID
S2S ClientSecret
OAuth ClientID
OAuth ClientSecret

To obtain these, your Zoom administrator will need to create two different apps under https://marketplace.zoom.us/develop/create.

Step 1: Build general app

Log onto the Zoom App Marketplace.
Click Develop > Build App.
Select General app and click Create.

Step 2: Maintain basic information

On the Basic Info page, add or update information about the app such as the app's name, how the app is managed, app credentials, and OAuth information.

Update your app's name. By default, the build flow generates a generic name for your app. To change your app's name, select the edit icon (pencil) and update the name. To save your changes, click anywhere outside of the app name field.
In the Select how the app is managed section, confirm how you want your app to be managed.

The app management type affects the features and scopes available to your app. If you change the app management type later on, make sure you reconfirm the selected features and scopes for your app.

Admin-managed: Account admins add and manage the app. Depending on the scope, the app can access and manage the user data of users on their account.
User-managed: Individual users add and manage the app. The app has access to only the user's authorized data.

App Credentials - The build flow automatically generates app credentials (client ID & client secret) for your app. App credentials for development differ from app credentials for production.
- Use development credentials while you are building and testing your app.
- Use production credentials once you are ready to publish your app on the Marketplace.

Use either set of credentials to generate the Meeting SDK JWT.

In the OAuth Information section, set up OAuth for your app.

OAuth redirect URL (required): Enter your development redirect URL or endpoint to set up OAuth between your app and Zoom.
Note: The build flow supports custom URL schemes only for Zoom Meeting SDK apps. To enable your app for Meeting SDK, go to Features > Embed.
Use Strict Mode URL (optional): Allow only the redirects that exactly match the valid OAuth redirect URLs.
Subdomain check (optional): Only allow the redirects that exactly match the subdomain of the valid OAuth redirect URLs.
OAuth allow lists (required): Add any unique URLs that Zoom should allow as valid redirects for your OAuth flows. This additional security measure ensures that users are only redirected to the pre-approved endpoints you provided. Include either the complete URL (https://subdomain.domain.tld/path/to/oauth/callback) or the base URL without the path and/or query parameters (https://subdomain.domain.tld).

Step 3: Select Zoom products and features

On the Features page, go to the Embed tab, and toggle Meeting SDK on to enable it.

Step 4: Download the SDK

To download the SDKs for the operating system for your app, select Download or go to Zoom Meeting SDK.

Step 5: Select Scopes (API methods)

On the Scopes page, select the Zoom API methods your app is allowed to call. This defines which information and capabilities are available to your user.

Select Add Scopes.
Select the Zoom product and check the desired scopes, then select Done.
In the Scope Description field, explain how the requested scope is necessary for your app.

When you add a scope, you are actually submitting a request to the Zoom Security Review team to allow your app to access specific Zoom API endpoints. A key principle in Zoom security practice is minimal access. If the Zoom Security Review team determines the requested scope is not necessary for your app, they may reject the scope request.
Use ZAK token to implement OAuth.
- For user-managed Meeting SDK apps, add the scope: User > View a user's zak token.
- For admin-managed apps, add the scope: User > View all user information.

Step 6: Test and preview your app

On the Local Test page, add and preview your app and share it with internal users.

To add the app for your own account, select Add App Now and then Allow.

To see a summary of your app's details and a preview of your app's listing page on the Zoom App Marketplace, select Preview Your App Listing Page.

For security reasons, we limit the sharing of beta apps. We don't allow beta apps to be published to the Zoom Marketplace, and we allow beta app access only to members of the developer’s Zoom account.

To share your app with other users on your account, go to the Authorization URL section, and select Generate and then Copy.

Provider Zoom Account IDs

Providers using the Zoom Integration need to have a profile on the app and be an admin of the team they will be facilitating sessions/events for inside the app.

Once they have a profile, the Super Admin in the app needs to add the Zoom Account ID to each provider profile.

To do this, the Super Admin will navigate in the app to the menu > dashboard > member > search for the member > click on the provider’s profile > click Accounts & Permissions > paste in their corresponding Zoom Account ID and Save.

To find the Zoom Account ID:

Login to an administrator Zoom account on zoom.us.
Navigate to the “User Management” section (left side menu)
Click Users
Locate the email address for the provider you are configuring
Copy the email address
Go to the provider's profile in the app
Click their Account and Permissions tab
Paste this into the provider's profile under "Zoom Account ID" and Save at the top of the page
Repeat these steps for each provider

Have a question? Reach out to our team at pesupport@continuumcloud.com.