Classmates

Closing access to the Odnoklassniki API outside the session?

Hello!
In order to ensure the security of user data, we plan to restrict access to some of the API methods (see below for a complete list). Access to methods will be denied without specifying the user's session, but at the same time, these methods can continue to be called by passing information about the user's session. If your application already calls these methods only in the session, then no changes to the application are required.
If your application calls methods outside the session (during calls, the session_key parameter is not passed and the request is signed by the application's secret key), then such calls will need to be replaced by calls in the session - pass the session_key parameter and sign the request with the session's secret key.
You can read more about signature calculation on the page. The session_key parameter and session secret key session_secret_key are passed to Flash and HTML applications via parameters , for external OAuth applications the session_key is returned via the access_token parameter after OAuth authorization .
List of methods for which access outside the session will be closed:
mediatopic.post
stream.publish
photosV2.getUploadUrl
photosV2.commit
photos.upload
photos.createAlbum
video.getUploadUrl
video.update
Access will be closed from July 1, 2015. After access is closed, when trying to call these methods outside the session, the API will return a SESSION_REQUIRED error (code 453).