# Authentication All API requests are using the Bearer Token Authorization. A Bearer Token will last up to an hour from the time it is generated, allowing multiple API calls to be made securely without authorizing each time. ## Authenticate Use this endpoint if you want to authenticate and generate the token. To be able to get your token access, open the Settings page in the Portal, then navigate to the section Webhook & API settings. You will need the username and password. `Method: POST` `Endpoint: {{env}}/api/authorize` {% tabs %} {% tab title="Payload" %} ```json { "Username": "abc...123", "Password": "xyz...321" } ``` {% endtab %} {% tab title="Response" %} ```json { "statusCode": 200, "message": "POST Request successful.", "isError": false, "result": { "Role": "API", "Token": "eyJhbG...tOTuvNvJc", "CustomerId": "3012...042f2", "CompanyName": "Test Company Inc." "CustomerType": "Customer", "Username": "b022aced-fae9-414f-853e-959fdf90d8f1" } } ``` {% endtab %} {% endtabs %} **Input parameters**
ParameterTypeDescription
UsernamestringYour API username
PasswordstringYour API password
**Responses**
ParameterDescription
RoleThe role this login belongs to
TokenThe authorization token that needs to be used in any other API request
CustomerIdThe customer id this login belongs to
CompanyNameThe company name this login belongs to
CustomerTypeType for the customer account
UsernameUsername for the login
{% hint style="info" %} **INFO** You have to inform the Token field received in this endpoint in any other request you want to execute. Once the token expires, you have to authenticate again to be able to retrieve a new token. {% endhint %} ## Cancel token Use this endpoint to invalidate an active authorization token. Once canceled, the token can no longer be used for authentication or API access. `Method: PATCH` `Endpoint: {{env}}/api/authorize/canceltoken` {% tabs %} {% tab title="Response" %} ```json { "statusCode": 200, "message": "Token cancelled", "isError": false } ``` {% endtab %} {% endtabs %}