Quatrix APIs v1.0
Space shortcuts
Quatrix APIs v1.0 QA1
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Current »

To perform a non-anonymous call on Quatrix API, a client application should obtain a session token. Additionally, every call should be signed with the user's password pbkdf2 to form 'authorisation' header.

Login call accepts user login (email), referer (to differentiate accounts) and authorisation token. Authorisation token is calculated based on HTTP request method, route URI, login, timestamp and user's password pbkdf2.

If the login was successful, API returns 200 OK status with X-Auth-Token header containing newly created session token. This session ID is than used as variable to calculate authorisation token for next API calls that require authorisation.

Failed login returns 401 HTTP error.

  • No labels
Quatrix APIs v1.0 QA1