Overview
/
Developer Tools
/
API Reference
/
Authentication

Authentication

Zoo's APIs use API keys, also referred to as API tokens, to authenticate requests. You can view and manage your API keys in your account on the Zoo website.

Authentication to the API is performed via Bearer Token Auth. Provide your API key as the token value. We will automatically add your token to the examples here if you are logged in.

If you are building an application that acts on behalf of Zoo users,ask each user to provide their own API key and use that key for requests made for that user. Many of Zoo's API SDKs handle authentication automatically once configured with a token.

All API requests must be made over HTTPS. API requests without authentication will fail.

WebSockets

WebSocket endpoints are a little special: instead of sending an HTTP Authorization header directly with each request, provide authentication in the initial WebSocket message as a JSON payload with a headers object.

WebSocket headers payload
Authenticated request