API Documentation
Authentication
Review the authentication information carefully before sending any API requests.
LongShot's API uses a customized Bearer or Secret Token to authenticate all API requests. You get this exclusive token after you sign up.
Secure this exclusive token and do not share it on publicly accessible platforms like GitHub, client-side code, etc.
Authentication to the APIs is performed via HTTP Basic Auth.
'Authorization': 'Bearer <Secret_token>'
Things to Note
To authenticate via bearer auth (e.g., for a cross-origin request), use -H "Authorization: Bearer sk_test_4eC39HqLyjWDarjtT1zdp7dc" instead of just sk_test_4eC39HqLyjWDarjtT1zdp7dc.
The Bearer authentication scheme, created as part of OAuth 2.0 in RFC 6750, can also be used independently.
Like the Basic authentication, the Bearer authentication should also be used over HTTPS (SSL).
All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.