search

Authentication

In order to access and interact with our API endpoints, authentication is required using the JSON Web Token (JWT ↗arrow-up-right) standard.

This page will guide you through the process of obtaining and attaching the JWT token to your requests' headers. The JWT token serves as a secure and efficient way to verify the identity of the user and authorize access to protected resources.

By following the instructions provided here, you will be able to successfully authenticate your requests and ensure the security of your interactions with our API. Let's dive in and explore the details of the authentication process.

hashtag
Create API operator

Follow the official documentation ↗arrow-up-right to create API operator, and save the generated credentials:

  • API Key ID

  • API Key secret

hashtag
Request a JWT

You can exchange API Key ID + API Key secret for a valid JWT ↗arrow-up-right on the target workspace:

bash

curl $API_BASE_URL/auth/token \
  -H "Content-Type: application/json" \
  -X POST --data '{
    "workspace": "<workspace>",
    "apiKeyId": "<api-key-id>",
    "apiKeySecret": "<api-key-secret>"
  }'

Response will look like:

json

The accessToken key contains the JWT.

hashtag
Use the JWT in headers

Attach the JWT to requests like this:

bash

hashtag
Refresh the JWT

You can obtain new JWT without exchanging API credentials again and rather just exchanging refreshToken :

bash

The response will have exactly same structure as the /auth/token response (see Request a JWTarrow-up-right).

PreviousOverviewNextBalance Reporting Bot

Last updated