All requests to our APIs are over HTTPS. Insecure HTTP requests will be rejected.

Authentication to our APIs is via BasicAuth, using your API key as the username, and without any password.

For example, let's say your API key is YOUR_API_KEY, then, for the purposes of the BasicAuth algorithm, the username is YOUR_API_KEY, and there is no password, resulting in the input string "YOUR_API_KEY:" (note the colon!)

This input string is then Base64 encoded and included in the Authorization header.

Authorization: Basic WU9VUl9BUElfS0VZOg