Authentication

TIDAL uses OAuth2 for authorization. After authorization (Email or 3rd-Party) the response code is then exchanged with the accessToken (authorization: Bearier xxx in Header). The accessToken is only valid for one day (sometimes 7 Days) and has to be updated.

TIDAL has also implemented a DeviceFlow for devices with limited input (like TVs or NetworkStreamer) and applications that are not web-based (reCaptcha v3 in the webflow). Here the device requests a 4 digit Authcode and a DeviceCode. The user then links the AuthCode to his account and the DeviceCode can then be exchanged for an accessToken.

DeviceFlow

Generate a DeviceCode and UserCode
Wait for the user to authenticate via link.tidal.com
Exchange the DeviceCode with an access_token and a refresh_token

Legacy Username&Password

Login
(Optional) Get the user_auth_token and exchange it with an access_token and refresh_token

TIDALAPI REST Documentation

Artists

Albums

Playlists

Tracks

Videos

Mixes

Get Mixes Items

User

Get

Delete

Add

Pages

Search

Feed

Widevine

Authentication

Post oAuth Token
Post oAuth Device Authorization
Login Username & Password (Deprecated)
Get User Auth Token (SessionId Migration)
Log Out

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Authentication

DeviceFlow

Legacy Username&Password

TIDALAPI REST Documentation

Artists

Albums

Playlists

Tracks

Videos

Mixes

User

Get

Delete

Add

Pages

Search

Feed

Widevine

Authentication

Clone this wiki locally