Shareaholic authenticates API requests using API keys. If you don't include your key when making an API request or use an incorrect or outdated one, you will get an error.
There are two types of API keys: Publishable API keys and Secret API tokens.
|Publishable API keys||These API keys are meant solely to identify your account with Shareaholic, they don't have to be kept secret. The Site ID is the Publishable API Key.|
|Secret API tokens||You must keep your secret API tokens confidential and only store them on your own servers. You must not share your secret API token with any third parties.|
Secret API tokens
All our Analytics Data APIs require Secret API token authentication credentials to be supplied. If you don't include your secret token when making an API request or use an incorrect or outdated one, you will get an error.
Obtaining your Secret API token
Once you have your Site ID:
- Go to Settings > Integrations
- Scroll down to the API Tokens section
- Click Create new token
Keeping your Secret API tokens safe
You should treat your Secret API token as you would any other password. Publicly exposing your credentials can result in your account being compromised. Grant access only to those who need it. Ensure it is kept out of any version control system you may be using. Control access to your key using a password manager or secrets management service.