General Information

Base endpoint

• Production: https://api.authento.io/v1/

• Testing: https://demo-api.authento.io/v1/

Prerequisites

• Contact us and provide a list of IPs to be whitelisted

• Generate an API key/secret pair from the Authento Dashboard under the Settings tab

  • Production dashboard: https://dashboard.authento.io

  • Testing dashboard: https://demo-dashboard.authento.io

Authentication

Requests should be sent with the following headers:

• X-AUTHENTO-APIKEY : Your API Key

• X-AUTHENTO-TS : Number of milliseconds since Unix epoch

• X-AUTHENTO-SIGNATURE : SHA256 HMAC of of following strings concatenated

  • Current timestamp - this should be the same as the X-AUTHENTO-TS header

  • HTTP Method in uppercase (GET/POST)

  • Request path including protocol, hostname and any parameters (e.g. https://api.authento.io/v1/userinfo/basic?id=123456789)

Rate limits

Making more than 5 requests per second might result in HTTP 429 errors. Please contact us if you require higher limits.

Resources and Support Channels

• Node.js API usage example

• Python API usage example