Authorisation
At Classwise, our users' and students' data security and privacy are top priorities. To protect sensitive information and ensure responsible data usage, access to our API is restricted to trusted and verified Software Partners. Only companies that have successfully completed our authorization process, designed to confirm compliance with our security and data protection standards, are granted access. This ensures that all integrations meet our requirements for safeguarding user data and maintaining the integrity of our platform.
Partner-Level authorization
Partner-level authorization is based on the validation of the domain address from which requests originate. Only requests coming from domains listed in our allowlist are accepted and processed. The allowlist includes only trusted partners' domains, ensuring secure and restricted access to the system.
How to Request Access
To begin the authorization process and gain access to the Classwise API, prospective partners must first contact our development team. Please send an inquiry to developer@classwise.com, briefly outlining your intended use case and company details. Our team will provide comprehensive guidance on the necessary steps. Only after successful verification and onboarding will your domain be added to the allowlist, enabling secure access to the API.
User Authorization in Standard Mode
Automatic Login (Account Linking)
In Standard Mode with automatic login, user authorization is achieved through account linking. This process allows users to securely connect their accounts from the partner portal with their Classwise account, enabling automatic login and seamless access to platform features.
To link accounts, the user must log in directly to Classwise and provide explicit consent to establish the connection. This ensures that users retain full control over their data and account associations.
The account linking process adheres to modern security best practices, utilizing temporary tokens that are digitally signed and verified using cryptographic keys. This guarantees secure communication and prevents unauthorized access.
Once accounts are linked, users benefit from a streamlined login experience, without the need to manually enter credentials for each session. This mode is recommended for integrations requiring personalized access and secure user identification.
Note: Other integration modes do not involve user authorization, as they are designed for scenarios where individual user accounts are not required.