Authentication

Spotnana APIs use a Bearer token to authenticate incoming requests. The following authorization header must be included in all requests to access Spotnana APIs.

Copy
Copied
Authorization: "Bearer <YOUR_TOKEN_HERE>"

Generating an authentication token

Spotnana partners can generate the bearer authentication token using the /get-auth-token API by including the clientId and the clientSecret in the request body. Contact your Spotnana account representative to obtain the clientId and clientSecret credentials. The following code snippet is a sample curl request to generate a bearer token.

Copy
Copied
curl -i -X POST \
https://apis.spotnana.com/get-auth-token \
-H 'Content-Type: application/json' \
-d '{
  "clientId": "apiuser@abccorp.com",
  "clientSecret": "Welcome$$"
}'

A successful response for the above curl request will contain a temporary bearer token and its expiration time displayed in seconds.

Copy
Copied
{
    "token": "eyJraWQiOiJFRGVIWVwvRldGT...Trg",
    "expiryTimeInSeconds": 86400,
    "type": "Bearer"
}

When you're working with Spotnana APIs, this unique bearer token must be included in every request as authorization header to validate the API calls. The following code snippet is a sample curl request which shows how you can include the bearer token in a request header.

Copy
Copied
curl https://api.spotnana.com/v2/companies -H "Authorization: Bearer <YOUR_TOKEN_HERE>"

Note: When making an API call, if the bearer token has exceeded the expiration time limit, you will receive an error code of 401 with a message in the JSON response indicating Access Token Invalid. In such cases, use the /get-auth-token API again to generate another unique bearer token.

Copyright © 2020-2024 Spotnana Technology, Inc.