The Fragment API uses API keys to authenticate requests. Your API keys should be kept secure. Don’t share them on a public repository on Github, nor on the client side.

All API requests must be done over HTTPS. Any request over HTTP will fail with a code 521.

Make sure that your client enables automatic follow redirects. If you receive a 3xx code, either manually update the URI with the redirect or enable automatic following.

The API key must be passed as headers to all of your requests. The API uses the following header

  • x-api-key : identifies you and grants you access to your private resources.

An example of request is (using curl)

curl -X GET \
-H "x-api-key: 9d0a33f69da2eb548ef5b47640169af1"