I have a very simple use case in which all I need to do is to obtain the first and last name of a researcher given their ORCID.
My system will not use ORCID for authentication / single sign-on purposes as we have our own authentication system.
I am trying to navigate the bloated, buggy, visually distracting, all over the place,
orcid.org web site where I read things
about needing to "register" my client application, needing to obtain "credentials" (Client ID and Client secret), needing
to obtain an access token through three-legged OAuth authorization, etc.
OTOH, I found (almost by accident as the web site makes it very hard to find anything purposefully) that a simple
GET to, e.g.
... fetches me all the information I need for my use case without any kind of authorization required provided the researcher
has configured their First and Last name to be publicly retrievable. I don't suppose my application will make more than
1000 calls per year on average, and maybe one call per second during peak time.
So the question is:
Do I need to concern myself with "registering" my "client application", "credentials", "access tokens", "three-legged OAuth
authorization" for such a simple use case?