All endpoints require authentication. We provide a simple token-based scheme which allows a single read-only token per user.
Make sure this token is included in your requests by including the
Authorization header with every request.
If you are logged in to Exist in the browser your session-based authentication will also work. This is handy for browsing the API (assuming you've set up your browser to accept JSON) but shouldn't be relied on for programmatic access.
Request a token
Exchange your user credentials for a token. This token will not change or expire by design but may be deprecated in the future.
A JSON object containing a token key.
Authorization: Token [your_token] header in all requests.