PUSHTech™ API Icon

API Authentication


Most of the Resources in the REST API are protected by security privileges granted to a specific user. Each HTTP request to a protected Resource in the REST API must be accompanied by one of the two supported Authentication methods.

See Reference

Token Authentication

PUSHTech™ Autentication passes the Account ID from PUSHTech™ and the Account Secret or Account Master Secret to the REST API in an Authorization.

Authorization HTTP header with each request

In the Authorization HTTP header, the account secret or the account master secret are introduced after the String 'Token token='.
The account secret dGVzdEBleGFtcGxlLmNvbTpsZXRtZWlu, will result in the Authorization header: 'Token token=dGVzdEBleGFtcGxlLmNvbTpsZXRtZWlu'
A sample HTTP header would look like the following:

  1. POST /api/v2/account/{{account_id}}/sms/deliveries
  2. Host: https://www.pushtech.com
  3. Authorization: Token token={{account_master_secret}}

PUSHTech™ Account Authentication

Account authentication

Account requests require a secret token from the related account. All such requests require the HTTP header: 'Authentication: Token: token' along with the account token.

Api key
PUSHTech™ Apps Authentication

Apps authentication

App requests require a secret token from the related application. Each app will have its own authentication token. All app requests require the HTTP header: 'Authentication: Token: token'.

App details