ORCID API ProxyΒΆ

An API proxy is an interface that provides controlled access to other system backend services. Rather than having them being consumed directly, those services can be accessed indirectly via the Edge API proxy. ORCID API Proxy provides value-added features such as:

  • Security
  • Rate limiting
  • Transformations
  • Fault handling

ORCID Hub provides direct access to the user access tokens. And using the access tokens, you can directly access ORCID API. For that first you would need to retrieve a client credential access token and with it retrieve from ORCID Hub, so called, the 3-legged authentication access token, which are stored at ORCID Hub database:

_images/orcid_api_directly.png

However, the preferred way is using the ORCID API Proxy. To access the ORCID API Proxy, you need to use API access tokens. Not like with the previous method, you would need to acquire only a client credential token, which you could use to access all user profiles, who are affiliated with your organisation.

_images/orcid_api_proxy.png

For testing purpose you can use `cURL<https://en.wikipedia.org/wiki/CURL>`_, for example,

curl -X POST -d "client_id=CLIENT_ID&client_secret=CLIENT_SECRET&grant_type=client_credentials" https://test.orcidhub.org.nz/oauth/token

You will get a JSON document with an access token, which you can use to make calls to ORCID Hub API including ORCID API Proxy:

{
    "access_token": "Qy4OCN3Ab6674JjzbFVR473j3oKVgn",
    "expires_in": 86400,
    "token_type": "Bearer",
    "scope": ""
}

For example, to retrieve a user profile:

curl -X GET "https://test.orcidhub.org.nz/orcid/api/v2.1/0000-0001-8228-7153" -H "accept: application/vnd.orcid+xml; qs=5" -H "authorization: Bearer jxDJWSna7wG73FoMSjOMRlq5pF1TZ4"

You can explore ORCID Hub API at https://test.orcidhub.org.nz/api-docs or https://orcidhub.org.nz/api-docs, and ORCID API at https://api.orcid.org/v2.1/#/Member_API_v2.1.