Introduction

Spotify does not allow unauthorized access to the API. Thus, you need an access token to make requests. This access token can be gathered via multiple schemes, all following the OAuth2 spec. Since it's important to choose the correct scheme for your usecase, make sure you have a grasp of the following terminology/docs:

• OAuth2
• Spotify Authorization Flows

Since every auth flow also needs an application in the Spotify dashboard, make sure you have the necessary values (like Client Id and Client Secret).

Then, continue with the docs of the specific auth flows:

• Client Credentials
• Implicit Grant
• Authorization Code
• PKCE
• (Token Swap)