Authentication
Last updated
Last updated
2023 © Caf. - All rights reserved
To access CAF resources using REST API, you will first need an API Key. This is a token that CAF provides for authorization and is used by the client when making each API call.
API keys are a secret that only the client and CAF know. Like Basic authentication, API key-based authentication is only considered secure if used together with other security mechanisms such as HTTPS/SSL.
Account users with appropriate permissions will be able to retrieve their unique key from the Trust Platform by following the below steps:
Never share your API credentials with anyone, even CAF Support
All calls to the API are authenticated and must have the API Key in the Authorization header of the request. Calls with a missing or invalid access token will return code 401 "Unauthorized".