TikTok Content Posting API: Requirements & Setup (2026)
A 2026 guide to the TikTok Content Posting API: what it does, the client requirements, audited vs unaudited access, content review, and how to access TikTok data at scale.
What the TikTok Content Posting API Is
The TikTok Content Posting API is the official part of the TikTok for Developers platform that lets an authorized app upload and publish video and photo content to a TikTok account on behalf of a user or creator. It uses OAuth 2.0 for authorization, and it offers two distinct ways to get content onto the platform.
Direct Post
Your app sends the content along with its caption and settings, and it publishes straight to the creator's account, subject to that creator's permissions and privacy settings. This is the closest thing to a fully automated publish, and it is also the mode that carries the strictest review requirements.
Upload to inbox or drafts
Your app uploads the content to the creator's TikTok inbox or drafts. The creator then opens the TikTok app, reviews the content, finishes any edits, and posts it manually. This keeps a human in control of the final publish, which lowers the review burden and suits tools that prepare content for creators to approve.
Before publishing, well-behaved integrations query the creator's account information so they can respect the available privacy options, such as public, friends-only, or self-only, plus whether comments, duet, and stitch are allowed and the maximum permitted video duration. Posting without checking these settings leads to rejected requests and a poor creator experience.
TikTok Content Posting API Requirements in 2026
Meeting the TikTok Content Posting API requirements in 2026 is mostly about app setup, permissions, and review status. None of it is exotic, but the order matters.
- A registered developer app: Create an app on the TikTok for Developers platform and add the Content Posting API product to it.
- Scopes and permissions: Request the scopes that match the mode you use. Direct publishing and upload-to-inbox are governed by different permission scopes, and you only get what you request and the creator approves.
- OAuth authorization: Each creator authorizes your app through TikTok's login flow. Your app receives tokens it uses to act on that creator's behalf, and those tokens must be refreshed over time.
- Audited vs unaudited clients: This is the requirement that surprises most teams. Until your client passes TikTok's audit, content you publish is restricted, typically limited to private or self-only visibility. After approval, the client can publish public content. New apps begin in a sandbox-style state meant for testing.
- Content review and disclosure: Apps must give creators a way to disclose commercial or branded content, and to declare whether the content promotes the creator's own business or a third party. This disclosure toggle is a hard requirement wherever your app lets users post.
The audited vs unaudited distinction is the single most important requirement to plan around. You can build and test against private posts right away, but public posting waits for approval, so factor the audit into your timeline rather than treating it as a final formality.
Rate Limits & Common Pitfalls
Rate limits and a handful of recurring mistakes trip up most first integrations. Knowing them in advance saves a lot of debugging.
- Daily posting cap: Publishing is capped at a limited number of posts per account per day, so high-volume schedules need to spread activity across time and across accounts.
- File and format constraints: Video uploads have size and format limits. Exceeding them causes failures that are easy to misread as authentication errors.
- Skipping the creator-info check: Posting without first reading the creator's allowed privacy levels and feature settings leads to rejected requests.
- Forgetting disclosure: Omitting the commercial-content disclosure toggle violates the platform's requirements and can put your app at risk.
- Assuming public posting before audit: Teams often demo on private posts, then discover public posting needs the audit. Plan the timeline accordingly.
- Token expiry: Access tokens expire, so build refresh handling early rather than bolting it on after launch.
What You Can and Cannot Do
What you can do
- Publish videos and photo posts to accounts that authorized your app, either directly or by sending to the creator's inbox.
- Set captions and, where allowed, the privacy level and interaction settings.
- Query a creator's posting options before you publish so the request matches their account.
- After the audit, post public content within the daily cap.
What you cannot do
- Post to accounts that have not connected and authorized your app.
- Publish public content from an unaudited client.
- Bypass a creator's privacy settings or the platform's content rules.
- Use the posting API to pull broad public analytics. Posting and data access are different jobs with different tools.
Accessing TikTok Data at Scale for Analytics
Once you separate publishing from analysis, a lot of projects turn out to be about data, not posting. If your goal is to understand creators, track videos, monitor trends, or research a market, you need read access to public TikTok data, not a publishing pipeline.
This is where Netrows fits, and the boundary is worth stating plainly: Netrows is a real-time, read-only data API. It does not post, upload, or schedule content on TikTok or anywhere else. It provides structured access to public data so you can analyze it.
With Netrows you can access public TikTok data such as:
- Profile and creator information for public accounts.
- Videos, including captions, timestamps, and engagement counts.
- Trends and hashtag activity for discovery and benchmarking.
- TikTok Shop information for commerce and product research.
Netrows covers TikTok as one of 55+ sources across 280+ endpoints, alongside LinkedIn, X/Twitter, Instagram, Threads, and Crunchbase, with 99.9% uptime, sub-2-second responses, and a GDPR-aligned, credit-based model. That makes it a fit for trend research, creator and influencer analysis, competitive monitoring, and market intelligence, none of which require the Content Posting API. The rule of thumb: use TikTok's posting API when you need to publish, and use Netrows when you need to read and analyze public TikTok data at scale.
Posting vs Data: A Quick Comparison
The two paths solve different problems. This table makes the split clear.
| Capability | TikTok Content Posting API | Netrows (TikTok data) |
|---|---|---|
| Primary job | Publish or send videos and photos to a creator account | Read public profiles, videos, trends, hashtags, and TikTok Shop |
| Account connection | The creator authorizes your app | No account connection needed for public data |
| Access path | App registration plus audit for public posting | Book a demo, then get credentials |
| Typical use | Schedulers and creator publishing tools | Analytics, trend research, monitoring, market intelligence |
| Posts content? | Yes | No, data only |
Frequently Asked Questions
What is the TikTok Content Posting API in 2026?
The TikTok Content Posting API in 2026 is the official capability for authorized apps to upload and publish video and photo content to a TikTok account on behalf of a creator. It supports Direct Post, which publishes straight to the account, and an upload mode that sends content to the creator's inbox or drafts for manual posting.
What are the TikTok Content Posting API requirements in 2026?
The core TikTok Content Posting API requirements in 2026 are a registered developer app with the Content Posting API product added, the right permission scopes, OAuth authorization from each creator, a passed audit for public posting, and a commercial-content disclosure toggle. Until the audit is complete, posts are limited to private or self-only visibility.
Where is the TikTok Content Posting API documentation for 2026?
The official TikTok Content Posting API documentation for 2026 lives on the TikTok for Developers platform under the Content Posting API product. It covers the Direct Post and upload modes, the permission scopes, the creator-info query, the audit process, and the content disclosure requirements. Always treat the official platform docs as the source of truth, since limits and rules change.
Can unaudited clients post public videos?
No. Until your client passes TikTok's audit, published content is restricted, typically to private or self-only visibility. You can build and test in that state, but public posting only unlocks after the audit is approved, so plan the review into your launch timeline.
How do you access TikTok data at scale?
If you need public TikTok data such as profiles, videos, trends, hashtags, and TikTok Shop information rather than a way to post, a read-only data API is the right tool. Netrows provides structured access to that data across TikTok and 55+ other sources, without publishing anything. Book a demo to scope it to your volume.
Related guides
Access TikTok data at scale
Netrows is a real-time, read-only data API for public TikTok profiles, videos, trends, hashtags, and TikTok Shop, plus 55+ other sources, with 99.9% uptime and sub-2-second responses. Book a demo and we'll tailor a plan to your volume.