Authentication is conducted using HTTP Basic over HTTPS. You must provide a valid API key as the username for each request. A password is not required. API keys are available via your account page.


API keys are private and should never be published in client side code.

Example cURL request

curl -u yoursecureapikey:

Example HTTP request

GET /v1/users.json HTTP/1.1
Authorization: Basic yoursecureapikey
Accept: application/json


An API key is associated with an individual user and only provides access to resources and actions the user is permitted to perform. In most cases the API key for your integration should be associated with a user who has administrator access to your account.