How to authenticate API requests
Alloy API uses API keys to authenticate requests. When you are issued with and API key you can use this with all API requests. If you do not include your key when making an API request, or use one that is incorrect or outdated, Alloy returns an error.
Your API keys carry many privileges, so be sure to keep them secure! Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, and so forth.
For more information go to Get session information.
All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.