| Notice to customers| |----- | |Starting Oct 2nd, the onboarding to the Groove Music API is disabled. As part of the partnership, the Groove Music Pass service will be discontinued on December 31, 2017.   After that date, Groove Music Pass content will not stream or play and our API features will not be accessible. Please check our FAQ on https://aka.ms/groovepartnerfaq . All features of the Music API will be supported until Dec 31st.|

Getting Started with the Groove SDK

Subscribe to the Groove API on Microsoft Developer Center

The following are the minimal steps you need to complete to start experimenting with the API (for more detailed instructions, visit Obtaining a Developer Access Token).

  1. Visit https://developer.microsoft.com/groove. Click on sign-in. Dev Center Signin
  2. Sign in with your Microsoft account or create a Microsoft account if you don't already have one.Dev Center Signin Account
  3. On https://developer.microsoft.com/groove, click the Sign up link Groove Dev Center or visit https://developer.microsoft.com/dashboard/groove.
  4. Fill in the correct details about you carefully - we'll need your valid email address to contact you. Groove signup
  5. Read the Terms Of Use and accept them. Then click on Subscribe to Groove Music API Program.

You are now a member of the Groove Music API Program! You will now need to associate Applications to your account.

Register and associate a Microsoft Account application

Create an application

To register your app to connect with Groove, you'll need a Microsoft account.

  1. Go to the Microsoft Application Registration Portal
  2. When prompted, sign in with your Microsoft account credentials.
  3. Find My applications and click Add an app.
  4. Enter your app's name and click Create application.
  5. Create a password (aka client sercret) for your aplication, it will be used to generate auth tokens.
  6. Scroll to the bottom of the page and check the Live SDK support box.

After you've completed these steps, an application ID is created for your app and displayed on your new app's properties page.

Important Treat the value of client secret the same as you would a user's password. The secret represents the key to your application and, if made available, can be used to impersonate your application.

Under the Platforms header, configure details about your app. By default a new app is created as a web app and needs one or more redirect URIs. To enable native client flows for your app as well, click the Add Platform button and choose Mobile.

Allow this application to access Groove Music API

  1. When signed-in to the developer center, on https://developer.microsoft.com/groove, click the Sign up link or visit https://developer.microsoft.com/dashboard/groove.
  2. Follow the instructions on the page. You'll need to obtain an authentication token (see below) Register your app
  3. Enter the obtained authentication token in the field (ie: EgBtAQMAAAAEgA9BCG...c1Ni05YTNwA=) and click on Register.
  4. You can register up to 16 apps. You can manage them on this page.

My applications (DevCenter)

Getting an authentication token

The request consists of a form encoded POST call to https://login.live.com/accesstoken.srf with parameters:

Parameter name Value Description
grant_type string Use "client" as value for application token authentication.
client_id string Your Application ID as displayed on your application page on the Microsoft Application Registration Portal
client_secret string Your Application Secret as displayed on your application page on the Microsoft Application Registration Portal. The value needs to be URL encoded.
scope string The scope your application requires. For application access to the Groove API the scope is "app.music.xboxlive.com"
POST https://login.live.com/accesstoken.srf HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: login.live.com
Content-Length: 123

grant_type=client_credentials&client_id={APP ID HERE...}&client_secret={CLIENT SECRET HERE...}&scope=app.music.xboxlive.com

If the application id and secret values are correct, the service will reply with a JSON object containing the token type, the access token's value and an expiry delay.

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 524


The resulting application access token can then be used in application calls using the OAuth 2.0 bearer authorization method.

Note that tokens expire. Applications should take token expiry into account and reauthenticate before access token expiry.

Important: Treat the value of access_token in this response as securely as you would a user's password.

#####Using Powershell on Windows:#####

> Invoke-WebRequest -Uri https://login.live.com/accesstoken.srf -Method Post -Body ("grant_type=client_credentials&client_id={APP ID}&client_secret="+[System.Web.HttpUtility]::UrlEncode("{CLIENT SECRET}")+"&scope=app.music.xboxlive.com")|ConvertFrom-Json|Format-List

token_type   : bearer
access_token : Eg...
expires_in   : 86400

#####Using curl:#####

% curl https://login.live.com/accesstoken.srf -d $(sed s/+/%20/g <<< "grant_type=client_credentials&client_id={APP ID}&client_secret={CLIENT SECRET}&scope=app.music.xboxlive.com")

#####Using wget:#####

% wget https://login.live.com/accesstoken.srf --post-data  $(sed s/+/%20/g <<< "grant_type=client_credentials&client_id={APP ID}&client_secret={CLIENT SECRET}&scope=app.music.xboxlive.com") -q -O -

Start using our API

You can now copy and paste your preferred sample code from below (C#, Windows Runtime or PHP) to start querying the API for Music data.

####For example:####

GET https://music.xboxlive.com/1/content/music/search?q=hello HTTP/1.1
Accept: application/json
Authorization: Bearer Eg...==
Host: music.xboxlive.com


//authentication endpoint, must be https
string service = "https://login.live.com/accesstoken.srf";

// your application ID as displayed on your application page on the Microsoft Application Registration Portal
string clientId = "myClient";

// your Application Secret as displayed on your application page on the Microsoft Application Registration Portal
string clientSecret = "REDACTED";
string clientSecretEnc = System.Uri.EscapeDataString(clientSecret);

//will be used to store the authentication token
string token = null;
HttpWebRequest request = null;
HttpWebResponse response = null;

// scope used for authentication. NOTE: http. not https here!
string scope = "app.music.xboxlive.com";
string scopeEnc = System.Uri.EscapeDataString(scope);

string grantType = "client_credentials";

//preparing the data for authentication
string postData = "client_id=" + clientId + "&client_secret=" + clientSecretEnc + "&scope=" + scopeEnc + "&grant_type=" + grantType;

//send the authentication request
string responseString = SendRequest("POST", service, postData);

//token to use to authenticate aginst the Groove API
token = ExtractTokenFromJson(responseString);

//and the request to the API (Note: the API endpoint is https)
request = (HttpWebRequest)WebRequest.Create("https://music.xboxlive.com/1/content/music/search?q=daft+punk");
request.Method = WebRequestMethods.Http.Get;
request.Accept = "application/json";
request.Headers["Authorization"] = "Bearer " + token;
using (response = (HttpWebResponse)request.GetResponse())
    using (var sr = new StreamReader(response.GetResponseStream()))
        responseString = sr.ReadToEnd();

    static string ExtractTokenFromJson(string json)
        string token = null;
        Match match = Regex.Match(json, ".*\"access_token\":\"(?<token>.*?)\".*", RegexOptions.IgnoreCase);
        if (match.Success)
            token = match.Groups["token"].Value;
        return token;
    static string SendRequest(string method, string service, string postData)

        string responseString = null;
        HttpWebRequest request = (HttpWebRequest)WebRequest.Create(service);

        UTF8Encoding encoding = new UTF8Encoding();
        byte[] data = encoding.GetBytes(postData);

        request.Method = method;
        request.ContentType = "application/x-www-form-urlencoded";
        request.ContentLength = data.Length;

        using (Stream stream = request.GetRequestStream())
            stream.Write(data, 0, data.Length);

        using (HttpWebResponse response = (HttpWebResponse)request.GetResponse())
            responseString = new StreamReader(response.GetResponseStream()).ReadToEnd();

        return responseString;

Windows Runtime

using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.IO;
using System.Net;
using System.Text.RegularExpressions;
using Windows.Web.Http;

namespace RestTest
    public class Test
        public static async void Go()
            var client = new HttpClient();

            // Define the data needed to request an authorization token.
            var service = "https://login.live.com/accesstoken.srf";
            var clientId = "myClient";
            var clientSecret = "REDACTED";
            var scope = "app.music.xboxlive.com";
            var grantType = "client_credentials";

            // Create the request data.
            var requestData = new Dictionary<string, string>();
            requestData["client_id"] = clientId;
            requestData["client_secret"] = clientSecret;
            requestData["scope"] = scope;
            requestData["grant_type"] = grantType;

            // Post the request and retrieve the response.
            var response = await client.PostAsync(new Uri(service), new HttpFormUrlEncodedContent(requestData));
            var responseString = await response.Content.ReadAsStringAsync();
            var token = Regex.Match(responseString, ".*\"access_token\":\"(.*?)\".*", RegexOptions.IgnoreCase).Groups[1].Value;

            // Use the token in a new request.
            var request = (HttpWebRequest)WebRequest.Create("https://music.xboxlive.com/1/content/music/search?q=daft+punk");
            request.Accept = "application/json";
            request.Headers["Authorization"] = "Bearer " + token;

            WebResponse contentResponse;
            using (contentResponse = await request.GetResponseAsync())
                using (var sr = new StreamReader(contentResponse.GetResponseStream()))
                    responseString = sr.ReadToEnd();


class GrooveMusic {
      var $serviceauth = "https://login.live.com/accesstoken.srf";
      var $serviceapi = "https://music.xboxlive.com/1/content";
      var $clientId = "yourclientID";
      var $clientSecret = "yourapplicationclientsecret";
      var $scope = "app.music.xboxlive.com";
      var $grantType = "client_credentials";

      public function auth() {
          $requestData = array("client_id" => $this->clientId, "client_secret" => $this->clientSecret, "scope" => $this->scope, "grant_type" => $this->grantType);
          $options = array(
              'http' => array(
                  'header'  => "Content-type: application/x-www-form-urlencoded\r\n",
                  'method'  => 'POST',
                  'content' => http_build_query($requestData),
          $context  = stream_context_create($options);
          $response = json_decode(@file_get_contents($this->serviceauth, false, $context),true);
          $token = $response['access_token'];
          return $token;

      public function search($string,$token) {
          $url = $this->serviceapi.'/music/search?q='.urlencode($string);
          $response = @file_get_contents($url, false, $this->getContextForToken($token));
          return $response;

      public function lookup($ids_array,$token, $extras = '') {
          $string = '';
          foreach($ids_array as $value) {
              $string .= $value.'+';
          $string = rtrim($string, '+');
          if(!empty($extras)) $url = $this->serviceapi.'/'.$string.'/lookup&extras='.$extras;
          else $url = $this->serviceapi.'/'.$string.'/lookup';
          $response = @file_get_contents($url,true,$this->getContextForToken($token));
          return $response;

      private function getContextForToken($token) {
           $opts = array(
                'header'=>'Authorization: Bearer '.$token.'\r\n'
          $context = stream_context_create($opts);
          return $context;

//using the class
$MusicAPI = new GrooveMusic;
$token = $MusicAPI->auth();
$json_response = $MusicAPI->search("madonna", $token);

See also