Each partner is assigned a unique client secret. Users from the partner's organization must generate a secure token or use their email, depending on the authentication scopes allowed for the partner.
Each partner receives a unique client secret from us. This secret identifies the partner and determines the allowed authentication scopes.
Depending on the partner's allowed authentication scopes, users can either generate a secure token or use their email. Tokens can be generated at: https://app.quickli.com.au/settings/integrations
The authorization header is constructed based on the allowed authentication scopes. It always starts with the client secret, followed by the token and/or email if applicable.
The constructed authorization header is included in the API request as a Bearer token to access the scoped resources.
Partners can have one or more of the following authentication scopes:
Requires a client secret and a user token
Requires a client secret and a user email
Requires a client secret, a user token, and a user email
Token only: Bearer clientSecret:userToken
Email only: Bearer clientSecret:user@example.com
Token and Email: Bearer clientSecret:userToken:user@example.com
POST /api/v1/resource
Headers:
Authorization: Bearer clientSecret:userToken
Body:
{ /* request payload */ }