Authentication methods
The TLS certificates used to access pre-production and production environments are different.
This API Application Programming Interface; a set of clearly defined methods of communication between various software components. uses the following security policies:
Authorization
When calling APIs, you authenticate your identity using Base64 encoding of your username and password.
Your company’s participant administrator (PA Participant Administrator. Super-users who manage and perform system administration tasks for their own organisation’s participant users.) provides your username and password. You must encode it into a Base64 authorisation token using an application such as Postman (for help, see https://www.getpostman.com/).
The HTTP Basic authentication header takes the following format:
Authorization: Basic {Base64 hash of user:password}, for example:
Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==TLS certificates
For details on managing TLS certificates, see Manage TLS Certificates.