Not logged in - Login / Register

Authenticating a request to the API

After authentication with the webservice via POST /auth/signin you'll have to show the API that you've been authenticated successfully and are allowed to issue requests. You can do this by providing the JSON Web Token (JWT) in the X-Auth-Token header.

For example, this request would be valid and return a response if the token would not be expired:

Accept:application/json
Accept-Encoding:gzip, deflate, sdch
Accept-Language:en-US,en;q=0.8
Cache-Control:no-cache
Connection:keep-alive
X-Auth-Token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.E8jYL1zAOpgC7UTI6eTeWBCyTxrp15PDbeHLpjh-9io
Host:dashboard.qwiksen.se

You are responsible for checking the validity of the token, and should request a new token when the current one expires.

See jwt.io for more information on JSON Web Tokens.