Welcome, Guest Login

Support Center

Authentication & OAuth

Last Updated: May 28, 2014 12:05PM EDT

AUTHENTICATION & OAUTH

 

AppBlade has two types of supported authentication:

 

Using Bearer: 

 

  • Add the following header to any request made to the API. Authorization: Bearer $YOUR_API_TOKEN_HERE_XXXXXXXXXXX

Using HMAC:

 
  • HMAC is required for only certain API calls, for most cases feel free to use the simple Bearer scheme.


Components to generate the Authorization Header

ID
The API Token of the project or the OAuth Access Key.
Request body Normalized request path/body (e.g, /called/path?a=1&b=2)
Ext The unique hardware identifier of the device (optional)
Nonce A salt value, the time since the authorization was granted in seconds and a unique string delimited by a colon.
Body hash A SHA256 hash of the request body, Base64 encoded.
Normalized request body A string constructed as follows (new-line characters are for clarification only):
				nonce↲
http method↲
request body↲
host name↲
port↲
body hash↲
ext↲
Mac An HMAC digest of the normalized request body using a SHA256 cypher with your project secret or OAuth Client Secret as the key; Base64 encoded.

For more on bearer and HMAC token usage in AppBlade, please see the article on obtaining API keys. For additional help, please contact us.
support@appblade.com
https://cdn.desk.com/
false
appblade
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete