Welcome to the Panopto Community

Please note: All new registrants to the Panopto Community Forum must be approved by a forum moderator or admin. As such, if you navigate to a feature that is members-only, you may receive an error page if your registration has not yet been approved. We apologize for any inconvenience and are approving new members as quickly as possible.

REST API key/secret limited to specific folders/sessions/something


We're looking at a student project for Natural language search and want to include captions for sessions. As we use single sign on with Active Directory then it's quite hard to automate any automatic (web scraping) download of captions.

I requested an API key/secret to enable automatic download of captions files for our department's video. Our central IT team, understandably, were not willing to offer this as the API key/secret would provide access to all videos/sessions.

I was wondering if there is a way to restrict what the API key/secret can access? Could access be limited to videos in our department only, or only those with a specific user enabled as viewer?

Is there another way to automate the download of captions from videos/sessions recorded in our Department. Is there an alternative login method (LDAP?) or a local user option that we could create and enrol to only a specific set of videos/sessions.

We wanted to access the captions using Python/cURL and download captions for NLP work.





  • Options
    Kevin BaumKevin Baum Panopto Employee

    Hi Jason,

    OAuth2 access tokens are limited based on the user used to generate the token. The API keys and secrets do not grant access system-wide on their own. Server-side Web Application, JavaScript Web Application, and Hybrid Web Application API clients all require a specific user to log into Panopto through a web browser to get an access token to use with the APIs, and those access tokens will be limited to only videos, and folders that the user had access to. Similarly, the User-Based Server Application client types which require a username and password will issue access tokens that are limited to only videos and folders that the specified user has access to. We do not have any API client types that automatically grant system-wide access, as long as the user who logs in or whose credentials are sent is not an administrator in Panopto.

    If you were using an API client to access data logging in as your own user, you will only have access to API data for videos and folders you would have access to through the Panopto Application.

    For more information on the API client types, please view our support article https://support.panopto.com/s/article/How-to-Get-OAuth2-Access-Tokens-for-Users.

    Please let me know if you have any other questions.



Sign In or Register to comment.