Klaviyo
Automate email and SMS marketing campaigns through Klaviyo using OAuth authentication.
Auth Model
User OAuth
Standard OAuth 2.0 authorization. A user grants consent and receives an access token. Authpipe handles refresh, rotation, and health monitoring automatically.
Connection Flow
// Get a valid credential — always fresh, zero latency const { credential } = await authpipe.getCredential({ provider: 'klaviyo', tenantId: 'org_acme', userId: 'user_123', });
// Use the credential with the provider API const response = await fetch('https://api.example.com/data', { headers: { Authorization: `Bearer ${credential}` }, });
// Drop-in React component <ConnectButton provider="klaviyo" onSuccess={(conn) => console.log('Connected!', conn)} />
Available Scopes
Permissions you can request when connecting to Klaviyo.
accounts:read Read account information
campaigns:read Read campaign data
campaigns:write Create and update campaigns
flows:read Read automation flows
flows:write Create and update automation flows
lists:read Read subscriber lists
lists:write Create and update subscriber lists
profiles:read Read customer profiles
profiles:write Create and update customer profiles
segments:read Read audience segments
metrics:read Read performance metrics
templates:read Read email templates
templates:write Create and update email templates
events:read Read tracking events
events:write Create tracking events
subscriptions:read Read subscription statuses
subscriptions:write Update subscription statuses
tags:read Read tags
tags:write Create and update tags
catalogs:read Read product catalog data
catalogs:write Create and update product catalog data
What Authpipe handles for Klaviyo
OAuth Orchestration
PKCE, state validation, callback handling, and provider-specific quirks — all automatic.
Encrypted Vault
AES-256-GCM encryption with per-tenant key isolation. OAuth tokens, API keys, and webhook secrets — never exposed to the frontend.
Silent Refresh
Proactive token refresh before expiry. SDK returns from local cache with zero latency.
Health Monitoring
Scheduled checks detect revoked tokens and expired credentials before users notice.
More Marketing providers
ActiveCampaign
Manage email campaigns, contacts, automations, and deals through ActiveCampaign's API.
Beehiiv
Manage newsletters, subscribers, and posts with the Beehiiv API.
Braze
Manage customer engagement campaigns through Braze using API key authentication.
Brevo
Send transactional and marketing emails, manage contacts, and automate campaigns through Brevo's API.
Ready to connect Klaviyo?
Get your first 100 connections free. Set up in minutes with our SDK.