About developer organizations
What's a developer organization?
A developer organization is a container that houses REST API client application credentials.
What's an application and why do I need one?
An application houses REST API client credentials. This is where you bind your pre-existing sender ID to your application, which is required to view API metrics for the application.
What are Redirect URI, Allowed Origin Domain, Client ID, and client secret used for?
These elements are used to authenticate your application with the Sage Intacct REST API.
- Redirect URI: The URL your application sends users back to after they authenticate with Sage Intacct. It must exactly match what you registered in your application settings. It's used in OAuth 2.0 flows to securely return the authorization code or token.
- Allowed Origin Domains: The list of domains permitted to make cross-origin (CORS) requests to the API using your application’s credentials. Using CORS is a security measure to prevent unauthorized browser-based requests.
- Client ID: A unique public identifier for your application that's issued when you register it with Sage Intacct. It’s included in OAuth 2.0 requests so Sage Intacct knows which application is making the request.
- Client Secret: A private key issued alongside your Client ID. It’s used by your server to securely prove the application’s identity to Sage Intacct. It should never be exposed in client-side code or shared publicly.
How often are the metrics refreshed?
Every 24-36 hours. If you notice longer delays, please open up a support case.
How far back can we report on API metrics?
Reports can go back up to twelve months.