Skip to content
Discussion options

You must be logged in to vote

Hey! That's a good question. From what I can see in the code, authentication for non-API endpoints is handled via cookies, and the Authorization header is skipped (though ideally it shouldn't be).

In the upcoming final v2 release, there will be per-user API key management, so you'll be able to create an API key and pass it to the attachment URL using the X-Api-Key header. But for now, you can pass an access token via the accessToken cookie.

Replies: 1 comment

Comment options

You must be logged in to vote
0 replies
Answer selected by bergziege
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
2 participants