Skip to content
chrisala edited this page Oct 24, 2018 · 1 revision

Ecodata implements a REST-like JSON / HTTP based API.

API access

The ecodata API authenticates clients using two mechanisms:

  1. An API key
  2. The client IP address

The API key must be supplied in the "Authorization" HTTP header. It is checked for validity against the API key service specified by the

security.apikey.serviceUrl

configuration item.

Valid IP addresses are maintained in a comma separated list in the:

app.api.whiteList

If acting on behalf of a user, the client should supply the user id in an HTTP header defined by the value of the:

app.http.header.userId

configuration item. This user information will be made available to the service and included in the audit mechanism.

Clone this wiki locally