Skip to main content

Canvas API Specs

Notes:

  • Base URL: https://templeu.instructure.com
  • Pagination: Requests that return multiple items will be paginated to 10 items by default. You can set a custom per-page amount with the ?per_page parameter. There is an unspecified limit to how big you can set per_page to.

How to read the next section

Action

  • request: Description
  • Parameters:
    • type parameter1 --> description of parameter
  • Example: The request Katrina tried with her own Canvas account & Postman and it worked
  • Returns:
    • the relevent fields we'll want to collect and store from this call

Endpoints for Task Generation

List your courses

  • GET /api/v1/courses: Retrieve a paginated list of courses in this account.
  • Parameters:
    • string enrollment_state --> return courses where the user has an enrollment with the given state (active)
  • Example: GET https://templeu.instructure.com/api/v1/courses/?enrollment_state=active&per_page=100

List assignments

  • GET /api/v1/courses/:course_id/assignments: Returns the paginated list of assignments for the current course or assignment group.
  • Parameters:
    • string include submission --> the user's current submission for each assignment (which holds score)
  • Example: GET https://templeu.instructure.com/api/v1/courses/124235/assignments?per_page=100&include=submission
  • Returns:
    • integer "id" --> assignment id
    • string "description" --> description of assignment
    • string "due_at" --> date/time in ISO 8601 format for due date of assignment
    • integer "points_possible"
    • string "name" --> assignment name
    • boolean "is_quiz_assignment" --> tells you whether it's an Assignment or a Quiz
    • integer "course_id" --> the associated course that this is from (which we needed to get here anyway)
    • "submission":
      • integer "score"
      • boolean "late"
      • string "workflow_state" --> such as "graded", "submitted", "unsubmitted", "published"

List the TODO items

  • GET /api/v1/users/self/todo: A paginated list of the current user's list of todo items. There is a limit to the number of items returned. Note: the reason we probably want to use the List courses endpoint then retrieve the list of assignments by each course is because we can better filter through the assignments & include undated assignments. And I am not sure how far out the TODOs go.
  • Example: GET https://templeu.instructure.com/api/v1/users/self/todo
  • Returns:
    • string "context_name" --> name of associated course
    • integer "course_id" --> course id for the TODO item
    • "assignment":
      • integer "id" --> assignment id
      • string "description" --> description of assignment
      • string "due_at" --> date/time in ISO 8601 format for due date of assignment
      • string "name" --> name of assignment
      • integer "points_possible"
    • string "workflow_state" --> such as "graded", "submitted", "unsubmitted", "published"
    • boolean "is_quiz_assignment" --> tells you whether it's an Assignment or a Quiz

OAuth2

Read this for a walkthrough, which I have summarized below.

  • Manual Token Generation: These are steps for obtaining an Access Token for testing the above Canvas endpoints as an individual user. However, "asking any other user to manually generate a token and enter it into your application is a violation of Canvas' terms of service. Applications in use by multiple users MUST use OAuth to obtain tokens".
    1. Go to your personal Canvas page
    2. Navigate to Account > Settings > Approved Integrations
    3. Click the button to generate a new access token.
  • OAuth2 Flow: Our application can rely on Canvas for a user's identity. During step 1 of the web application flow below, specify the optional scope parameter as scope=/auth/userinfo. When the user is asked to grant our application access in step 2 of the web application flow, they will also be given an option to remember their authorization. If they grant access and remember the authorization, Canvas will skip step 2 of the request flow for future requests.
    1. Step 1: Redirect users to request Canvas access
      • GET https://<canvas-install-url>/login/oauth2/auth?client_id=XXX&response_type=code&state=YYY&redirect_uri=https://example.com/oauth2response is a sample request --> see here for more details
    2. Step 2: Redirect back to the request_uri, or out-of-band redirect
      • http://www.example.com/oauth2response?code=XXX&state=YYY OAuth2 response contained in query string if the user accepts our request, when Canvas redirects back to our request_uri --> see here for error handling
      • The app can then extract the code, and use it along with the client_id and client_secret to obtain the final access_key
    3. Step 3: Exchange the code for the final access token
      • Screen Shot 2023-02-26 at 11 21 46 PM
  • Using an Access Token to authenticate requests
    • Screen Shot 2023-02-26 at 11 21 30 PM
  • Using a Refresh Token to get a new Access Token
    • Screen Shot 2023-02-26 at 11 20 30 PM
  • Logging Out
    • Send a DELETE request to login/oauth2/token
Edit this page
Revision Historynothing
AuthorRevisionDate
Last updated by Christine Cho