# Authentication

Authentication is done via oauth using the one-legged approach. All requests sent to the API must be signed oauth requests using a provided oauth `key` and `secret` which is assigned to a particular partner or user.

## Endpoint

The endpoint for the API is based on your private label configuration. An example is:

```
https://yourprivatelabel.cloudfrontend.net/api/v2/..
```

We only support JSON for serialization of data. You have to send `Content-Type: application/json;` when you're POSTing or PUTing data to the API