Authentication & Authorization

API Key Authentication

First, reach out to the Authentication endpoint with your X-Api-Key and X-Client-Id - to receive an Access Token (JWT)

To authenticate your API requests, include the provided JWT in every request as a Bearer Token Authentication

Please Notice - The Access Token is valid for an hour

Handling Authentication Errors

• 401 Unauthenticated: This error occurs if:

  • 1. The API key or client ID is invalid or missing. Ensure that your API key and client ID are correctly included in the headers when reaching out to generate a JWT.
  • 2. If reached to an endpoint without a valid JWT.

• 403 Forbidden: This error occurs if you attempt to access resources or endpoints that you are not authorized to access.

Best Practices

• Keep your API keys secure.

• Rotate your API keys periodically to maintain security.