docs
  1. SCAYLE Resource Center
  2. Storefront API
  3. Getting Started
  4. Authentication

Authentication

Authentication for Basket and Wishlist Endpoints

For secure access to the basket and wishlist endpoints, it is strongly recommended to use API keys. These endpoints are designed for server-side use only.

You can manage your API keys within the SCAYLE Panel. Authentication is handled through the HTTP header, where the API key should be provided as the value for X-Access-Token. No password is required.

The backend service is responsible for both authenticating and authorizing users, ensuring that users can only access their own data.

Your API Tokens grant many privileges, so it is important to use and store them in a secure way. Do not use your token in client-side code or any publicly accessible areas like Git repositories.