Authentication

The API employs two primary authentication mechanisms:

  1. Admin Authentication: Uses HTTP Basic Authentication. Admins use their username and password to perform privileged operations such as creating or removing users and assigning API keys.

  2. User Authentication: Uses HTTP Bearer Tokens. Users authenticate by providing their API key in the Authorization header as a Bearer token to access protected endpoints.

Additionally, there is an Admin API Key that can be used to perform administrative actions programmatically.

Rate Limiting:

To ensure fair usage and prevent abuse, the API enforces rate limiting:

  • Global Limit: 100 requests per minute per IP address.

If the rate limit is exceeded, the API responds with a 429 Too Many Requests status code.

PreviousQuickstartNextEndpoints

Last updated