All API resources are authenticated with API keys or session cookies. Other authentication mechanisms (e.g. basic auth), are not supported.
Keep your API keys private
The preferred way to authenticate with the API is by adding an
Authorization header containing your API key to your requests:
Authorization: api_key [[app:key]]
You can find your API key on your Account Settings page.
For testing purposes, you can make API calls directly from your web browser. If you're logged in to the application, the API will use your existing session to authenticate calls.