# Single sign-on with Zaikio
Your app cannot access data through our REST API of a Zaikio organization or person without the organization's admin or person having granted access. Here we show you how the installation and authorization process works in Zaikio. For in-depth details please refer to the OAuth 2.0 specification (opens new window).
We recommend that you use a OAuth Client Library. Checkout OAuth's list of available clients (opens new window).
Currently the following OAuth flows are supported:
- The Redirect Flow - Default for most Apps
- The Device Flow - For IoT or Mobile Devices
- Client Credentials Flow - Machine to Machine communication
- Access Token Refresh
- Delegating Access to Subsystems