About Access for Wix Apps

Access to Wix APIs requires successful authentication and authorization. Authentication confirms the identity of the entity making the request, while authorization determines the permitted actions for that identity.

You can access Wix APIs using the REST API, JavaScript SDK, or Velo (for Wix Blocks).

Identities

Identities are essential to managing interactions within the Wix ecosystem. Recognized identities include site visitors, site members, Wix users (or admins), and Wix apps. These classifications affect both authentication and authorization processes.

For more information, see About Identities.

Authentication

To guarantee a secure connection, third-party apps integrating with Wix APIs need to authenticate following the OAuth protocol. Your app can authenticate as an app instance, on behalf of a Wix user, or on behalf of a site visitor or member.

For more information, see About Authentication.

Note: Wix offers API keys for authentication, but they aren’t available for use in third-party Wix apps.

Authorization

App permission scopes specify the allowed actions and data access limits. When you register an app in the app dashboard, you define the required permission scopes that site owners need to approve. To understand the permissions needed for your app, refer to the documentation for each API your app uses.

For more information, see About Permissions.

See also

Did this help?