Authorization

Every endpoints need to authorize with API-TOKEN at headers. API-TOKEN is unique for every client and have expired date depending on client request. You can ask administrator to generate API-TOKEN for you.

:::highlight red 📌
Treat API-TOKEN the same way you would treat your passwords or other sensitive credentials. Don't share it using an unencrypted messaging or email system to unauthorized person. You are responsible for any data changed or loss through API-TOKEN request.
:::

For example if you want to get a detail of client information, you can try
GET : /api/me

header
{
  API-TOKEN: INSERT_API_TOKEN_HERE
}