Authentication

New app, who dis? We secure every call with your Builton API key and a JSON Web Token. Here's how to use them.

Your JSON Web Token

You'll get these from your Authentication Provider, or create them yourself if you're using a custom auth solution. Once you've set that up in the dashboard, you'll use those JWTs to connect with our APIs using the Authorization header.

Authorization: Bearer <jwt>

Your Builton API key

This is found in your Builton dashboard in Settings. Every request must have it included in the X-Builton-Api-Key Header.

X-Builton-Api-Key: <builton-api-key>

Here's how they'd look if you were creating a user:

POST /users HTTP/1.1
Content-Type: application/json
Authorization: Bearer <jwt>
X-Builton-Api-Key: <builton-api-key>
Host: api.builton.dev

Note the Authorization header comes before the X-Builton-Api-Key header. And be sure to include Bearer before the JWT.