Prepare for your client application to work with Google Ad Manager
Stay organized with collections
Save and categorize content based on your preferences.
Collect the required information for your client applications
You should have the following information that is required for
Google Ad Manager to create a live stream session:
Field
Description
projectNumber
The Google Cloud project number
(PROJECT_NUMBER)
used to create Ad Manager-enabled sessions; alternatively,
you can use the project ID.
region
The
location
(LOCATION)
where the live configuration is registered.
liveConfigId
The
live configuration ID used to
register the livestream event with the Video Stitcher API. The following
shows the format for the full config resource name:
The config ID is the last part of the full name
(LIVE_CONFIG_ID). Keep in mind that the location of the
config must be in the same location in which you create the session.
customAssetKey
The custom asset key
(CUSTOM_ASSET_KEY)
created during the live configuration registration; the
IMA SDK needs this value to create the stream.
networkCode
The numeric identifier
(NETWORK_CODE) for
your Ad Manager network.
Retrieve the OAuth 2.0 bearer token from the service account:
gcloudauthprint-access-token
Because this is a short-lived token, you need to generate it again
periodically with the gcloud auth print-access-token command and send the new
tokens to your client applications. See the following section for more
information on building a production service to provide short-lived tokens.
Create a service to provide information to your client applications
Create a service that can provide the required information to be passed to the
client. When the application requests information from your service on how to
play a live stream, the service should return the information described in
Table 1.
In particular, the service must be able to provide OAuth tokens to
client applications in a secure manner. Configure this service using two service
accounts, one
impersonating the other.
One service account has the Service Token Creator role and creates an OAuth
token for the service account that has the Video Stitcher User role. For
example:
Service account 1: This is the caller service account. This account has the
Service Token Creator permission on service account 2 and impersonates
service account 2 to client applications.
Service account 2: This is the privilege-bearing service account that has the
Video Stitcher User role to create sessions.
For information on providing an OAuth token from your service, including client
library code samples, see
Create a short-lived access token.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[],[],null,["# Prepare for your client application to work with Google Ad Manager\n\nCollect the required information for your client applications\n-------------------------------------------------------------\n\nYou should have the following information that is required for\nGoogle Ad Manager to create a live stream session:\n\n**Table 1.** Required information for Ad Manager-enabled live stream sessions\n\nGenerate short-lived OAuth tokens for testing\n---------------------------------------------\n\nTo generate a\n[short-lived OAuth token](/iam/docs/creating-short-lived-service-account-credentials)\nassociated with the\n[service account](/video-stitcher/docs/how-to/gam/before-you-begin#create-service-account-to-create-sessions) with the **Video Stitcher User** role, follow\nthese steps:\n\n1. Replace \u003cvar translate=\"no\"\u003ePATH_TO_YOUR_SERVICE_KEY\u003c/var\u003e with the path to the JSON file you downloaded to your local machine. \n\n ```bash\n gcloud auth activate-service-account --key-file PATH_TO_YOUR_SERVICE_KEY\n ```\n2. Retrieve the OAuth 2.0 bearer token from the service account: \n\n ```bash\n gcloud auth print-access-token\n ```\n\nBecause this is a short-lived token, you need to generate it again\nperiodically with the `gcloud auth print-access-token` command and send the new\ntokens to your client applications. See the following section for more\ninformation on building a production service to provide short-lived tokens.\n| **Important:** Regenerating an OAuth token is a time-consuming operation. Try to reuse an OAuth token as much as possible when creating sessions. You can extend the lifetime of a token using the [`--lifetime` flag](/sdk/gcloud/reference/auth/application-default/print-access-token).\n\nCreate a service to provide information to your client applications\n-------------------------------------------------------------------\n\nCreate a service that can provide the required information to be passed to the\nclient. When the application requests information from your service on how to\nplay a live stream, the service should return the information described in\n[Table 1](#collect-info).\n\nIn particular, the service must be able to provide OAuth tokens to\nclient applications in a secure manner. Configure this service using two service\naccounts, one\n[impersonating the other](/docs/authentication/use-service-account-impersonation).\nOne service account has the **Service Token Creator** role and creates an OAuth\ntoken for the service account that has the **Video Stitcher User** role. For\nexample:\n\n- Service account 1: This is the caller service account. This account has the **Service Token Creator** permission on service account 2 and impersonates service account 2 to client applications.\n- Service account 2: This is the privilege-bearing service account that has the **Video Stitcher User** role to create sessions.\n\nFor information on providing an OAuth token from your service, including client\nlibrary code samples, see\n[Create a short-lived access token](/iam/docs/create-short-lived-credentials-direct#sa-credentials-oauth)."]]
