مصادقة API
All API v2 requests require authentication via Bearer token.
كيف يعمل
- Generate an API key in الإعدادات > API Keys
- Include it in the
Authorizationheader of every request:
Authorization: Bearer YOUR_API_KEY_HERE
Example (cURL)
curl -X GET "https://yourdomain.com/api/v2/submissions" \
-H "Authorization: Bearer fp_key_abc123xyz789" \
-H "Accept: application/json"
Example (JavaScript)
const response = await fetch('https://yourdomain.com/api/v2/submissions', {
headers: {
'Authorization': 'Bearer fp_key_abc123xyz789',
'Accept': 'application/json',
'Content-Type': 'application/json'
}
});
const data = await response.json();
Example (PHP)
$client = new \GuzzleHttp\Client();
$response = $client->get('https://yourdomain.com/api/v2/submissions', [
'headers' => [
'Authorization' => 'Bearer fp_key_abc123xyz789',
'Accept' => 'application/json',
]
]);
$data = json_decode($response->getBody(), true);
Example (Python)
import requests
headers = {
'Authorization': 'Bearer fp_key_abc123xyz789',
'Accept': 'application/json'
}
response = requests.get('https://yourdomain.com/api/v2/submissions', headers=headers)
data = response.json()
الأمان
| Feature | Detail |
|---|---|
| Storage | Keys are SHA256 hashed in the database |
| Scoping | Keys are scoped to a specific tenant |
| Tracking | last_used_at timestamp is updated on every use |
| Expiration | Keys can have optional expiration dates |
| Revocation | Keys can be revoked instantly from الإعدادات |
API Key Management
| Action | How |
|---|---|
| Create | الإعدادات > API Keys > Create New Key |
| View | See key name, creation date, last used date |
| Revoke | Click Revoke to permanently disable a key |
تحذير
The full key is only shown once when created. Store it securely. If lost, revoke and create a new one.