Authentication (v2)

Access to our API is achieved via HTTPS requests to the https://api.evrythng.io/v2 url. A combination of API key, URL validation, and roles and permissions are used to determine the validity of each request.

All API requests must use one of the secure https, mqtts, or wss protocols.


Authenticating Requests

Every request to our API must (unless otherwise stated) contain a valid API key in the Authorization HTTP header to identify the user or application issuing the request and execute it if authorized.

Here is an example of a request to our API that returns the list of all the Thngs you have created. Note the appropriate use of the Authorization header.

curl -i -H "Accept: application/json" \
  -H "Authorization: $OPERATOR_API_KEY" \
  -X GET "https://api.evrythng.io/v2/thngs"

As an alternative, instead of sending the API key in the Authorization header, you can simply append ?access_token=$APPLICATION_USER_API_KEY to any URL in the API. This request is equivalent to the one above:

curl -i -H "Accept: application/json" \
  -X GET "https://api.evrythng.io/v2/thngs?access_token=$APPLICATION_USER_API_KEY"

Updated 3 months ago


Authentication (v2)


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.