Authentication & Security
Our API uses a multi-layered approach to security, requiring every request to be authenticated, signed, and sent from a trusted location.
Every request to our API will need to:
- Establish an MTLS connection.
- Include an API Key for authentication and authorisation.
- Be signed with a Digital Signature for integrity checks.
- Include a Timestamp and Request ID.
- Come from a whitelisted IP address.
On this page
- Authentication & Security