Authentication against the API is done through a stateless JWT token, sent along as an Authentication header. To obtain a token, a request to the API endpoint /auth/token should be made with the user credentials. The JWT token will expire after one week for security reasons.


Authorization: Bearer [token]

How did we do?