API-only
This guide covers some important topics for getting started with server-side APIs.
As the API integration offers full flexibility it can be used with or without existing user bases. The individual flows for these two cases can be customized by yourself.
Create a
.env
file in your application.Setup an
AUTHORIZED_ORIGIN
which will be the origin of your application and the API_URL
of the Corbado API..env
AUTHORIZED_ORIGIN=https://www.your-application.com/
API_URL=https://api.corbado.com/v1/
To authenticate against the Corbado API, you need to set the
project ID
as well as the API secret
in your API requests.All endpoints are authenticated via HTTP Basic Auth. This means setting an authorization header using project ID as username and API secret as password.
Basic <<project ID>>:<<API secret>>
The authorization header needs to be Base64 encrypted.
If the authorization header is missing or incorrect, the API will respond with
401
.Security scheme type | HTTP |
HTTP authorization scheme | basic |
Last modified 3mo ago