FAQ

Q: How can I get client secret?

After obtaining the client ID from the API Access page in YCS, click the + Generate button.
You will receive two emails:
- One email containing the password for the Nextcloud link
- One email containing the Nextcloud link itself
Use the provided password to access the Nextcloud link. The client secret will be available there.

Q: I cannot access Nextcloud link.

The Nextcloud link is valid for 24 hours from the time it is generated. Please make sure to store the client secret in your internal password manager or secrets vault.
If you see a message that the password is incorrect or the link has expired, click the + Generate button again to obtain a new password and Nextcloud link. The previous password and link will no longer be valid.

Q: How long is the JWT Token validity period.

Each token is valid for 1 hour. We kindly recommend regenerating the token once every hour and using the same token for all API requests within that hour. This will help reduce unnecessary token traffic and ensure that your requests remain within the allowed rate limits.

Q: When the client secret will be expired?

The client secret is valid for 1 year after generated (your local time).

Q: I want to have parallel credentials.

Please be informed that our system designed only one client ID per one email.

Q: How can I get new client secret if the old one expired/lost?

You can get new client secret from the API Access page in YCS, click the + Generate button
Once you click Generate +, the new client secret will be sent via Nextcloud link and old client secret will be immediately invalid.

Q: Does Agoda support client secret auto renewal?

Unfortunately, Agoda does not support this feature. Please kindly manage internally to get the new client secret before the old one expired to avoid disruption to get token.