Authentication

An API key is needed to send a request to the API. This API key should be provided through an HTTP header:

x-api-key: mMi4zGFuW6AAa6fx2FoPc6pDZkTW4saF

We recommend using different API keys for each client.

You also need to provide user authentication if you wish to make mutations, such as creating, updating or deleting reactions. Reactions offers you different user authentication methods:

  • OpenID
  • OAuth
  • Guest / unauthenticated

You may also add your custom authentication method. Contact us if you plan to integrate a custom authentication method.

Authorization

You need to provide an Authorization to authenticate a user. HTTP header:

Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...

Further information

All API requests must be sent via HTTPS, otherwise they will fail. API requests without an API key authentication will also fail.