Authentication
The Consumer Signals API supports two primary authentication methods: API keys for long-lived programmatic integrations and JWTs for the web application.API Key Authentication (recommended for integrations)
Briefed API keys provide long-lived, scoped access for automated workflows, data pipelines, and programmatic integrations. They do not expire unless manually revoked.Creating a key
- Sign in at id.briefedmedia.com
- Navigate to API Keys
- Create a new key with the scopes you need (e.g.,
read:signals,read:briefings)
Using your key
Pass the API key in theAuthorization header:
Available scopes
| Scope | Description |
|---|---|
read:signals | Read CPIx scores, signals, and drivers |
read:briefings | Read weekly briefings and narratives |
read:data | Read general data endpoints |
read:markets | Read market data (US and UK) |
write:alerts | Create and manage alerts |
API keys require an Enterprise plan. Non-Enterprise keys will receive a
403 response.JWT Authentication (web application)
JWTs are used automatically by the web application at app.consumersignals.io. They are short-lived (15 minutes) and not recommended for programmatic integrations. JWTs are issued by id.briefedmedia.com and signed with HMAC-SHA256. The API also accepts JWTs from thecs_jwt httpOnly cookie set during browser authentication.
Plan Tiers & API Access
Programmatic API access is available exclusively on the Enterprise plan. Professional and Team customers access Consumer Signals through the web application at app.consumersignals.io.| Professional | Team | Enterprise | |
|---|---|---|---|
| Price | £5,000 / year | £20,000 / year | Custom |
| Seats | 1 | 5 | Unlimited |
| Web application | Full access | Full access | Full access |
| Programmatic API access | — | — | Full access |
| Data Explorer | — | — | Full access |
| Dedicated support | — | — | Included |
| Custom integrations | — | — | Included |
curl or custom integrations) will receive a 403 response:
To discuss Enterprise API access, contact sales@briefedmedia.com.
Alert-Token Authentication
Alert tokens provide scoped access to the alerts and views endpoints. They are designed for webhook receivers and downstream integrations that do not require full API access.Obtaining an alert token
Using an alert token
Pass the token in theX-Alert-Token header:
Admin Authentication
Admin endpoints accept a static secret in theAuthorization header. This method is restricted to platform administration and is not available to standard API consumers.