🔐 Authentication

Hows Maisa authentication works

The Maisa API requires the use of an API token for authentication. This ensures that only authorized entities can access the necessary data and services.

📘

API keys are not retained in their raw format post-creation for security purposes, rendering them non-recoverable. It is highly recommended to securely store these API keys using a robust secret management system or a secure storage solution

To manage your API keys, quickly go to theAPI keys section in the platform dashboard.

API keys authenticate organizations, not users. To maintain security, manage and track API key generation and usage. Establish access protocols and audit regularly for vulnerabilities.

Please note the following guidelines for using your API token:

Security: Your API tokens are essential to access controls with significant privileges. Protect them diligently. Never expose them in publicly available spaces such as GitHub repositories, client-side scripts, or any other area where unauthorized individuals can access them.

Using the API Token: When making requests to the API, include your API token in the request headers as the value for "X-API-KEY".

HTTPS Requirement: Ensure all your API requests are made over HTTPS. Requests made via plain HTTP will be redirected to HTTPS.

Delete a compromised API key from the dashboard in case of a security breach or unusual activity to prevent further unauthorized access. Note that deleted API keys cannot be restored.