API Key & Authentication
Working with Factori’s APIs
API Authentication
To ensure the security and integrity of data, the Factori API requires authentication before making any API requests. The authentication process involves the following steps:
The authentication process involves the following steps:
- Request Access: Users or brands interested in accessing the Factori API need to submit a request through the "Developers" section on the Factori website. This request initiates the verification process.
- API Portal Access: Upon verification and contract establishment, the user or brand receives a temporary password, along with a link to the Factori API portal. These credentials provide access to the API and initiate the authentication process.
Factori supports HTTP Bearer authentication.
What is a Bearer Token?
A Bearer token is used for authentication and authorization in web applications and APIs to hold user credentials and indicate authorization for requests and access.
Bearer tokens are generated based on protocols and specifications such as OAuth and JWT (JSON Web Token). The authenticated user obtains the Bearer token issued by the server and sends it to the server in the header of the request. The server verifies the received bearer token and controls user access based on the token. The Bearer token is also usually sent over an encrypted connection via HTTPS. This prevents unauthorized access by malicious third parties even if the token is stolen and allows you to protect the URLs on your web server so that only you can access them.
In order to authenticate with HTTP, you may provide the email ID and password with the following URL format:
curl --location 'https://api.factori.ai/api/user/authenticate' \
--header 'Content-Type: application/json' \
--data-raw '{
"email":"your-email",
"password":"your-password"
}'
Once you are successfully authenticated you will receive your Bearer token in the response header. This Bearer token needs to be used to authenticate all subsequent API request to fetch Factori data.
Note: The API token once generated will be valid for 24 hours.
Updated 4 months ago