Middleware Provisioning API

LinkedIn's Provisioning APIs allow Partners to create and configure developer applications on behalf of their Customers which is an initial step in managing and enabling their integrations.

Getting Started

Requesting Access

In order to access the specialized Provisioning APIs, reach out to a LinkedIn Partner Engineering representative to have a developer application configured with the required permissions.

All API requests require authorization .

Create Application

Use the following endpoint to create a child application:

POST  https://api.linkedin.com/v2/provisionedApplications

Request Body Fields

Field Description Format Required
uniqueForeignId A unique ID that represents the child application being created, as seen from the parent/calling application. This value must be unique across all child applications that belong to the parent application. Attempting to create more than one child with the same uniqueForeignId value will result in a conflict error. Use your customer identifier for this value. String Yes
name Display name of the child application. This value will be shown to users in the OAuth 2.0 authorization dialog for 3-legged scenarios. Additionally, it will be used by LinkedIn as a reference value. Note: Usage of "LinkedIn" in name is no supported. String (max 50 chars) Format: "{ATS Name} - {Customer Name}" Yes
description A brief description of the child application. This value is only used by LinkedIn administration and is not shown to end-users of the application. String Yes
oauth2AuthorizedCallbackUrls List of fully qualified OAuth 2.0 redirect URLs to allow. String[] No
validJsSdkDomains List of fully qualified JavaScript SDK domain names. String[] (Remove trailing '/' from domains) No

sample request body

{
    "description": "My favorite customer",
    "name": "My ATS - My Customer",
    "oauth2AuthorizedCallbackUrls": [
        "https://www.foo.com/",
        "https://www.bar.com/"
    ],
    "uniqueForeignId": "07d5284a-d0a1-45a3-93c0-ac69c9c78",
    "validJsSdkDomains": [
        "https://www.foo.js",
        "https://www.bar.js"
    ]
}

Response Code

A successful request will return a 201 Created response code.

Response Body Fields

Field Description Format
key URN representing the application that was created. String
credentials.client_id Client ID value used during OAuth 2.0 token request flow. String
credentials.client_secret Client Secret value used during OAuth 2.0 token request flow. May be up to 256 characters in length and contain non-alphanumeric characters. String

sample response

{
    "credentials": {
        "client_id": "1234567890",
        "client_secret": "ABCDEFGHIJKL"
    },
    "key": "urn:li:developerApplication:234"
}

Update Application

Use the following endpoint to update a child application:

POST https://api.linkedin.com/v2/provisionedApplications/{developer application URN}

Note

This action will write over the existing list of Javascript SDK domain names with the list of domains in the request body of this POST call. As such, be sure to take note of the JS domains created with each child application.

Request Body Fields

Field Description Format Required
validJsSdkDomains List of fully qualified JavaScript SDK domain names. String[] No

sample request body

{
    "patch": {
        "$set": {
            "validJsSdkDomains": [
                "https://www.foo.js",
                "https://www.bar.js"
            ]
        }
    }
}

Response Code

A successful request will return a 204 No Content response code.

Get Application

Use the following endpoint to get attributes of a child application:

GET https://api.linkedin.com/v2/provisionedApplications?q=credentialsByUniqueForeignId&uniqueForeignId={uniqueForeignId}

Request Parameter

Field Description Format Required
uniqueForeignId Unique ID of the child application supplied during the creation of the child application. String Yes

Response Code

A successful request will return a 200 OK response code.

sample response

{
    "elements": [
        {
            "credentials": {
                "client_id": "123abc456defga"
            },
            "uniqueForeignId": "Unique Foreign ID",
            "name": "Test Application",
            "description": "This is my test application",
            "validJsSdkDomains": [
                "http://linkedin.com",
                "https://linkedin.com"
            ],
            "key": "urn:li:developerApplication:1234567",
            "oauth2AuthorizedCallbackUrls": [
                "https://www.linkedin.com.com/oauth2/callback",
                "http://www.linkedin.com/oauth2/callback"
            ]
        }
    ]

Error Codes

The following error codes can be returned:

Error Code Description
404: uniqueForeignId not found In the situation where the requested foreign ID is not found to be associated with an application managed by the parent application making the request, an HTTP 404 response is returned.
409: uniqueForeignId already exists In the case where a create call is made and a uniqueForeignID value is provided that is already associated to a child application controlled by the parent calling application, an HTTP 409 - Conflict response code is returned. A parent application will not accept the creation of multiple tenant applications that share the same uniqueForeignId value.
429: request limit exceeded If the calling application has exceeded its call throttle limits, an HTTP 429 – Too Many Requests status code is returned.