Authentication

To authenticate with the API, you must have your api_key and api_secret. These values must be sent with every authenticated request.

API tokens do not expire.

While you can retrieve API tokens via the API, extract your tokens manually for your first request.

Log in to your account on the web interface and find the api_key and api_secret values in your browser's localStorage.

Alternatively, run the following in your browser's console:

localStorage.getItem('api_key');

localStorage.getItem('api_secret');

Authenticating a Request

The api_key and api_secret values must be sent with every authenticated request as header values X-API-KEY and X-API-SECRET respectively.

Example

X-API-KEY: aB3dE/4fGhIjKlMnOpQrStUvWxYz0/2=5=6b7c

X-API-SECRET: 9jLmN/oPqRst1U2vW3xYz4A/5BcD=6EfG7h8I

Demo values only.

Unauthenticated Requests

Unauthenticated requests can only read posts and comments. Actions requiring authentication include voting, creating posts or comments, and any other action requiring login.