Bol.com: how do I (re)authorize ChannelEngine for the bol API?
One of the main changes between the bol.com V3 (and later versions) API and their previous API's is the method of authorization. While earlier versions worked with a public and private key system, the new V3 (and later versions) API works with OAuth access delegation. This is a type of authorization that is used by several other marketplaces (like eBay & Wish) as well.
How to authorize
To authorize ChannelEngine for the Bol API:
- On the ChannelEngine dashboard, open the channel.
- On the Setup tab, navigate to the Advanced settings section, and in the Authorize ChannelEngine field, click Authorize ChannelEngine or Reauthorize ChannelEngine.
- The dialog box that pops up should explicitly state 'Doorgaan naar ChannelEngine'.
Enter your bol.com account credentials (email/password) just like when you login into the bol.com backend. Please make sure you are connecting to the correct account if you have multiple bol.com accounts!
You should get a confirmation screen listing your account name and asking for confirmation to connect ChannelEngine with your bol.com account. Click Toestaan to proceed.
If all goes well, the popup should close and your Authorize status in ChannelEngine should change.
Should you wish to revoke the access in the future, this should become possible in the bol.com backend at Instellingen > API instellingen > Authorized parties
Once the authorization is successful, ChannelEngine will receive a specific token that allows us to get short-term OAuth tokens to perform API calls. However, this specific token has an expiration date of exactly one year. This means, that as long as you continue to use bol.com as a marketplace via ChannelEngine, you will need to reauthorize us once every year.
You will receive notifications if the expiration date is nearing (please make sure to enable these notifications). If you do not reauthorize in time, we will no longer have access/permission to perform API calls for your bol.com-account(s), and the plugin will be disabled.
The steps to perform for reauthorization are exactly the same as for the regular authorization.