Currently, Basic Authentication is the only supported authentication method. Therefore, authentication is done by providing the
Authorization-Header as specified in RFC-7617.
Make sure to provide the
Authorization-Header preemptively, without being requested to do so.
Authorization: Basic base64Encode("myuser:mypassword")
Be sure to always store your api credentials securely and verify the target URL.
You can use any user that's authorized to access the api to authenticate against the api. We strongly recommend setting up dedicated users for individual integrations accessing the rest api. This enables easier support and implementation of the principle of least privilege.