Authentication Overview
The Extend API uses Bearer token authentication for all API requests. You’ll need to include your API token in the Authorization
header of each request.
Obtaining an API Token
- Navigate to the Extend Developer Settings
- Create a new API key or copy an existing one
Important: Keep your API tokens secure and never share them publicly. Rotate them regularly and immediately if they’re ever compromised.
Example Auth Header
Error Handling
If authentication fails, you’ll receive a 401 Unauthorized
response. Common causes include:
- Missing the Authorization header
- Invalid token format
- Expired or revoked token
- Insufficient permissions for the requested resource