Authentication & Authorization
API Key Authentication
First, reach out to the Authentication endpoint with your X-Api-Key and X-Client-Id - to receive an Access Token (JWT)
To authenticate your API requests, include the provided JWT in every request as a Bearer Token Authentication
Please Notice - The Access Token is valid for an hour
Handling Authentication Errors
401 Unauthenticated: This error occurs if:
- The API key or client ID is invalid or missing. Ensure that your API key and client ID are correctly included in the headers when reaching out to generate a JWT.
- If reached to an endpoint without a valid JWT.
403 Forbidden: This error occurs if you attempt to access resources or endpoints that you are not authorized to access.
Best Practices
Keep your API keys secure.
Rotate your API keys periodically to maintain security.
Updated 19 days ago