Dear Users,

As mentioned in our previous post, we are deprecating existing Authtokens by 28 Feb 2021. Please migrate to OAuth tokens immediately to avoid any service disruptions.

Zoho OAuth provides better security and  more control compared to Authtokens. OAuth acts as an intermediary on behalf of the user and provides controlled access, i.e. access only to the resources authenticated by the user and blocking the rest.

Below are the benefits of Zoho OAuth:

• OAuth uses access and refresh tokens to access Zoho Projects APIs, which eliminates the need to store user credentials on client application. 
  

• Scope for access tokens can be specified. This means each access token can provide authentication only to the Zoho Project's APIs which are being specified. The access tokens can be revoked at any time, if necessary.
  

• Zoho OAuth access tokens expire after a set time. In case of a security breach, the refresh token can be used to generate new access tokens rendering the old access tokens invalid. 
  

Please refer the OAuth user guide for the steps to access Zoho Projects API using OAuth 2.0 authentication.