Authenticate a non-logged in or API user

The code on this page works with either the default UI or the custom UI.

To host or join a scheduled meeting as a non-login user, retrieve these two values from the REST API.

• User ID - pass your email address or retrieve it from the REST API by sending a GET request to https://api.zoom.us/v2/users/{userID}
• For individual users, a Zoom Access Key (ZAK) - send a GET request to the https://api.zoom.us/v2/users/{userId}/token with type="zak" and pass it to the SDK with JoinMeetingParam4WithoutLogin's zoomAccessToken or StartMeetingParamsWithoutLogin's zoomAccessToken.
• For apps that need to join the meeting as individual users, an OnBehalf Of (OBF) token - send a GET request to https://api.zoom.us/v2/users/{userId}/token with type="onbehalf" and pass it to the SDK with JoinMeetingParam4WithoutLogin's onBehalfToken.

Beginning March 2 2026, apps joining meetings outside their account must be authorized. Authorize apps by using either ZAK or OBF tokens, or RTMS. Learn more.

See SDK Authentication for more details.

Access the Zoom API

See Using Zoom APIs to configure your setup and access the Zoom API.

Get a Zoom Access Key (ZAK) or an OnBehalf Of (OBF) token

Once you have the access to the Meeting API, send a GET request to the the https://api.zoom.us/v2/users/{userId}/token with type = "zak" to get a ZAK for individual users, or with type = "onbehalf" to get an OBF token for apps that need to join the meeting as individual users.

For more information, see Users API and SDK Authentication.

Even if the ZAK does expire, DO NOT pass or expose the ZAK token to others after retrieving it.