Build on Klippa
Connect your app to thousands of salons. Use our OAuth 2.0 API to access bookings, availability, clients, and more.
How it works
Register your app
Submit your app details below. Our team reviews within 2 business days.
Get credentials
Once approved, you'll receive a client_id and client_secret via email.
Implement OAuth
Use the standard Authorization Code flow to connect salon accounts.
Go live
Your integration appears in the Klippa marketplace for salons to connect.
OAuth 2.0 Authorization Code Flow
Standard OAuth 2.0 — redirect salon owners to Klippa for consent, exchange the code for tokens, and make API calls on their behalf.
?client_id=your_client_id
&redirect_uri=https://yourapp.com/callback
&scope=klippa.context klippa.availability klippa.book
&response_type=code
&state=random_csrf_token
{
"grant_type": "authorization_code",
"code": "received_code",
"client_id": "your_client_id",
"client_secret": "your_secret"
}
Available Scopes
klippa.contextRead business info, services, staff, and client dataklippa.availabilityCheck real-time calendar availabilityklippa.bookCreate and manage bookingsAPI Endpoints
| GET | /api/v1/oauth/authorize | Start authorization flow |
| POST | /api/v1/oauth/authorize | User approves/denies consent |
| POST | /api/v1/oauth/token | Exchange code for tokens |
| POST | /api/v1/oauth/revoke | Revoke access token |
Token Lifecycle: Access tokens expire in 1 hour. Use refresh tokens (30-day TTL) to get new access tokens. Refresh token rotation is enforced — each refresh revokes the old pair.
Create an App
Submit your app for review. We'll get back to you within 2 business days with your credentials.
Developer FAQ
How long does app review take?
Typically within 2 business days. We'll email your credentials once approved.
Is there a rate limit?
Yes — 100 requests per minute per access token. Contact us if you need higher limits.
Can I test in a sandbox?
Include a localhost redirect URI in your app registration. Use the same OAuth flow against our production API with a test salon account.
What data can I access?
With the right scopes: business info, services, staff, availability, and bookings. Client PII is encrypted and only accessible with explicit consent.
Is there a cost for API access?
API access is free for approved apps. We may introduce tiered pricing for high-volume use in the future.