Authentication process overview

Authentication is a key process to ensure security and controlled access to your company's APIs. In the context of APIs, authentication is a method by which an external client proves its identity in order to gain authorized access to resources and services made available by your company.

To authenticate to your company's APIs, you need two items: the Api-token and the Api-Secret. These values ​​are used as authentication credentials to verify the identity of the external client. Api-token is a unique identifier assigned to each customer, while Api-Secret is a secret key associated with the token.

The authentication process normally takes place when sending an HTTP request to the API. The external client needs to include authentication information in the header of the request.

The use of tokens and secrets allows for more secure authentication, as it is not necessary to transmit user passwords with each request. Also, if there is a need to revoke access from an external client, it is possible to invalidate the token associated with it without affecting other users.