Authentication

Basic Authentication

The Digital Value Services API requires authentication for all requests using unique API keys. These keys can be viewed and managed within the DT Shop.

  • Security Scheme Type: HTTP
  • HTTP Authorization Scheme: basic
API Key Management
  • API keys are required for all requests.
    • Keys are managed within DT Shop.
    • Treat keys as highly sensitive information.
    • Avoid exposing keys in public repositories or client-side code.
HTTP Basic Authentication
  • Use HTTP Basic Authentication for requests.
    • API key as username.
    • API secret as password.
Transport Security (HTTPS)
  • All API requests must use HTTPS with TLS 1.2 or 1.3. Older TLS versions are not supported.
    • Except when using a site-to-site VPN.
Security Best Practices
  • Secure applications against common vulnerabilities.
    • Follow security best practices (e.g., OWASP Top 10).
Security Scheme Summary
  • Security Scheme Type: HTTP
    • Authorization Scheme: basic