Create WebView OTT
curl --request POST \
--url https://sdk-api.playcamp.io/v1/server/webview/ott \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"userId": "<string>",
"campaignId": "<string>",
"codeChallenge": "<string>",
"callbackId": "<string>",
"metadata": {}
}
'import requests
url = "https://sdk-api.playcamp.io/v1/server/webview/ott"
payload = {
"userId": "<string>",
"campaignId": "<string>",
"codeChallenge": "<string>",
"callbackId": "<string>",
"metadata": {}
}
headers = {
"Authorization": "Bearer <token>",
"Content-Type": "application/json"
}
response = requests.post(url, json=payload, headers=headers)
print(response.text)const options = {
method: 'POST',
headers: {Authorization: 'Bearer <token>', 'Content-Type': 'application/json'},
body: JSON.stringify({
userId: '<string>',
campaignId: '<string>',
codeChallenge: '<string>',
callbackId: '<string>',
metadata: {}
})
};
fetch('https://sdk-api.playcamp.io/v1/server/webview/ott', options)
.then(res => res.json())
.then(res => console.log(res))
.catch(err => console.error(err));<?php
$curl = curl_init();
curl_setopt_array($curl, [
CURLOPT_URL => "https://sdk-api.playcamp.io/v1/server/webview/ott",
CURLOPT_RETURNTRANSFER => true,
CURLOPT_ENCODING => "",
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
CURLOPT_CUSTOMREQUEST => "POST",
CURLOPT_POSTFIELDS => json_encode([
'userId' => '<string>',
'campaignId' => '<string>',
'codeChallenge' => '<string>',
'callbackId' => '<string>',
'metadata' => [
]
]),
CURLOPT_HTTPHEADER => [
"Authorization: Bearer <token>",
"Content-Type: application/json"
],
]);
$response = curl_exec($curl);
$err = curl_error($curl);
curl_close($curl);
if ($err) {
echo "cURL Error #:" . $err;
} else {
echo $response;
}package main
import (
"fmt"
"strings"
"net/http"
"io"
)
func main() {
url := "https://sdk-api.playcamp.io/v1/server/webview/ott"
payload := strings.NewReader("{\n \"userId\": \"<string>\",\n \"campaignId\": \"<string>\",\n \"codeChallenge\": \"<string>\",\n \"callbackId\": \"<string>\",\n \"metadata\": {}\n}")
req, _ := http.NewRequest("POST", url, payload)
req.Header.Add("Authorization", "Bearer <token>")
req.Header.Add("Content-Type", "application/json")
res, _ := http.DefaultClient.Do(req)
defer res.Body.Close()
body, _ := io.ReadAll(res.Body)
fmt.Println(string(body))
}HttpResponse<String> response = Unirest.post("https://sdk-api.playcamp.io/v1/server/webview/ott")
.header("Authorization", "Bearer <token>")
.header("Content-Type", "application/json")
.body("{\n \"userId\": \"<string>\",\n \"campaignId\": \"<string>\",\n \"codeChallenge\": \"<string>\",\n \"callbackId\": \"<string>\",\n \"metadata\": {}\n}")
.asString();require 'uri'
require 'net/http'
url = URI("https://sdk-api.playcamp.io/v1/server/webview/ott")
http = Net::HTTP.new(url.host, url.port)
http.use_ssl = true
request = Net::HTTP::Post.new(url)
request["Authorization"] = 'Bearer <token>'
request["Content-Type"] = 'application/json'
request.body = "{\n \"userId\": \"<string>\",\n \"campaignId\": \"<string>\",\n \"codeChallenge\": \"<string>\",\n \"callbackId\": \"<string>\",\n \"metadata\": {}\n}"
response = http.request(request)
puts response.read_body{
"data": {
"ott": "<string>",
"expiresIn": 123
}
}{
"status": 400,
"error": "Bad Request",
"message": "Validation failed",
"code": "VALIDATION_ERROR",
"details": [
{
"path": "userId",
"message": "Required"
},
{
"path": "amount",
"message": "Expected number, received string"
}
]
}{
"status": 401,
"error": "Unauthorized",
"message": "Invalid API key",
"code": "UNAUTHORIZED"
}{
"status": 404,
"error": "Not Found",
"message": "Payment not found: txn-12345",
"code": "NOT_FOUND"
}WebView
Create WebView OTT
Creates a one-time token (OTT) for WebView authentication.
- OTT is single-use and expires in 60 seconds
- Must be issued from the game server (requires Server API Key)
- Creating a new session for the same user invalidates the previous session
POST
/
v1
/
server
/
webview
/
ott
Create WebView OTT
curl --request POST \
--url https://sdk-api.playcamp.io/v1/server/webview/ott \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"userId": "<string>",
"campaignId": "<string>",
"codeChallenge": "<string>",
"callbackId": "<string>",
"metadata": {}
}
'import requests
url = "https://sdk-api.playcamp.io/v1/server/webview/ott"
payload = {
"userId": "<string>",
"campaignId": "<string>",
"codeChallenge": "<string>",
"callbackId": "<string>",
"metadata": {}
}
headers = {
"Authorization": "Bearer <token>",
"Content-Type": "application/json"
}
response = requests.post(url, json=payload, headers=headers)
print(response.text)const options = {
method: 'POST',
headers: {Authorization: 'Bearer <token>', 'Content-Type': 'application/json'},
body: JSON.stringify({
userId: '<string>',
campaignId: '<string>',
codeChallenge: '<string>',
callbackId: '<string>',
metadata: {}
})
};
fetch('https://sdk-api.playcamp.io/v1/server/webview/ott', options)
.then(res => res.json())
.then(res => console.log(res))
.catch(err => console.error(err));<?php
$curl = curl_init();
curl_setopt_array($curl, [
CURLOPT_URL => "https://sdk-api.playcamp.io/v1/server/webview/ott",
CURLOPT_RETURNTRANSFER => true,
CURLOPT_ENCODING => "",
CURLOPT_MAXREDIRS => 10,
CURLOPT_TIMEOUT => 30,
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
CURLOPT_CUSTOMREQUEST => "POST",
CURLOPT_POSTFIELDS => json_encode([
'userId' => '<string>',
'campaignId' => '<string>',
'codeChallenge' => '<string>',
'callbackId' => '<string>',
'metadata' => [
]
]),
CURLOPT_HTTPHEADER => [
"Authorization: Bearer <token>",
"Content-Type: application/json"
],
]);
$response = curl_exec($curl);
$err = curl_error($curl);
curl_close($curl);
if ($err) {
echo "cURL Error #:" . $err;
} else {
echo $response;
}package main
import (
"fmt"
"strings"
"net/http"
"io"
)
func main() {
url := "https://sdk-api.playcamp.io/v1/server/webview/ott"
payload := strings.NewReader("{\n \"userId\": \"<string>\",\n \"campaignId\": \"<string>\",\n \"codeChallenge\": \"<string>\",\n \"callbackId\": \"<string>\",\n \"metadata\": {}\n}")
req, _ := http.NewRequest("POST", url, payload)
req.Header.Add("Authorization", "Bearer <token>")
req.Header.Add("Content-Type", "application/json")
res, _ := http.DefaultClient.Do(req)
defer res.Body.Close()
body, _ := io.ReadAll(res.Body)
fmt.Println(string(body))
}HttpResponse<String> response = Unirest.post("https://sdk-api.playcamp.io/v1/server/webview/ott")
.header("Authorization", "Bearer <token>")
.header("Content-Type", "application/json")
.body("{\n \"userId\": \"<string>\",\n \"campaignId\": \"<string>\",\n \"codeChallenge\": \"<string>\",\n \"callbackId\": \"<string>\",\n \"metadata\": {}\n}")
.asString();require 'uri'
require 'net/http'
url = URI("https://sdk-api.playcamp.io/v1/server/webview/ott")
http = Net::HTTP.new(url.host, url.port)
http.use_ssl = true
request = Net::HTTP::Post.new(url)
request["Authorization"] = 'Bearer <token>'
request["Content-Type"] = 'application/json'
request.body = "{\n \"userId\": \"<string>\",\n \"campaignId\": \"<string>\",\n \"codeChallenge\": \"<string>\",\n \"callbackId\": \"<string>\",\n \"metadata\": {}\n}"
response = http.request(request)
puts response.read_body{
"data": {
"ott": "<string>",
"expiresIn": 123
}
}{
"status": 400,
"error": "Bad Request",
"message": "Validation failed",
"code": "VALIDATION_ERROR",
"details": [
{
"path": "userId",
"message": "Required"
},
{
"path": "amount",
"message": "Expected number, received string"
}
]
}{
"status": 401,
"error": "Unauthorized",
"message": "Invalid API key",
"code": "UNAUTHORIZED"
}{
"status": 404,
"error": "Not Found",
"message": "Payment not found: txn-12345",
"code": "NOT_FOUND"
}Authorizations
Server API Key (format: {keyId}:{secret})
Body
application/json
In-game user identifier
Scope WebView to a specific campaign
PKCE S256 challenge (Base64URL-encoded SHA256)
Required string length:
43 - 128Webhook tracking ID (included in webhook events from this session)
Additional metadata (stored in session)
Response
Success
Show child attributes
Show child attributes
⌘I