Authorization

This API uses the OAuth 2.0 protocol to authorize calls. OAuth is an open standard that many companies use to provide secure access to protected resources.

When you created an application in our management systems you would have been provided with an OAuth client ID and secret key. By using these credentials and other parameters in a get token call you will receive back an access token.

This access token must then be sent in the Authorization header for each subsequent API call. Access tokens have a finite life and will expire. When the token expires you will need to create a new token to make more API calls. Creation of tokens is rate-limited, so you should use the existing token as long as possible.