Skip to main content

Authentication

All API requests must include valid credentials. The primary authentication method is a JWT issued by id.briefedmedia.com.

JWT (primary)

Pass your JWT in the Authorization header:
Authorization: Bearer eyJhbGciOiJIUzI1NiIs...
The token must include the products.consumer_signals claim. Tokens are HMAC-SHA256 signed and short-lived. The API also accepts JWTs from the cs_jwt httpOnly cookie.

Alert Token

For alerts and views endpoints only. Pass the token in the X-Alert-Token header:
X-Alert-Token: at_abc123...
Obtain an alert token via POST /api/alerts/token using JWT authentication.

Admin

For platform administration endpoints only:
Authorization: Bearer <ADMIN_SECRET>

For full details on token lifecycle, plan tiers, and claim requirements, see the Authentication guide.