Skip to main content


Accor Login manages the OpenID Connect flow and token lifecycle, simplifying your integration with Accor APIs.

To retrieve authorization for already connected members, you need to make an authorization request in silence mode with the parameter prompt=none




Type Endpoint







response_type The value of this field should be code for authorization code flow or token for implicit flow Yes
client_id The appId key value generated when you register your application. Yes
redirect_uri The URL your users are sent back to after authorization. Yes
scope URL-encoded, space-delimited list of member permissions your application is requesting on behalf of the user. Yes

Only for authentication code flow
Value used to test for possible CSRF attacks

nonce Only for authentication code flow
String value used to associate a Client session with an ID Token, and to mitigate replay attacks. The value is passed through unmodified from the Authentication Request to the ID Token. If present in the ID Token, Clients MUST verify that the nonce Claim Value is equal to the value of the nonce parameter sent in the Authentication Request. If present in the Authentication Request, Authorization Servers MUST include a nonce Claim in the ID Token with the Claim Value being the nonce value sent in the Authentication Request. Authorization Servers SHOULD perform no other processing on nonce values used. The nonce value is a case sensitive string.
prompt Used to display the authentication page (empty) or not (none). Use prompt=none when the user is already authenticated on another website (e.g. all.accor) No
ui_locales Language code (2 digits) No
persistent Should be yes for activating the “remember me” checkbox No





About us

We are far more than a worldwide leader. We are 300,000 hospitality experts placing people at the heart of what we do, and nurturing real passion for service and achievement beyond limits. We take care of millions of guests in our 5,000 addresses.