The Certify API uses access tokens to authenticate requests. You can view and manage your access tokens in the Certify Dashboard.
Your access tokens carry many privileges, so be sure to keep them secure! Do not share your secret access tokens in publicly accessible areas such as GitHub, client-side code, and so forth.
Authentication to the API is performed via HTTP Bearer Auth. Provide your access token in Authorization header with Bearer auth-scheme header:
Authorization: Bearer <TOKEN>
All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.