Authentication is handled with a simple API key.

You can attach your API key to a request in one of two ways:

  • Via the `Authorization` HTTP header. Append `Bearer` before your API keys, do not base 64 encode.
  • Via the apiKey query string parameter.

We strongly recommend the latter one so that your API key isn't visible to others through logs or request sniffing.

If you don't append your API key correctly, or your API key is invalid, you will receive a `401 - Unauthorized` HTTP error.