REST authentication and exposing the API key
We’re exposing an API that partners can only use on domains that they have registered with us. Its content is partly public (but preferably only to be shown on the domains we know), but is mostly private to our users. So: To determine what is shown, our user must be logged in with us, but … Read more