Authorization header:
Endpoints
Typical session flow
Login methods compared
Token lifetime
- Maximum token lifetime is 3600 seconds (1 hour).
- Call Refresh before the token expires to get a new JWT without logging in again.
- Once a token expires, you must call Login again.
- Call Logout to immediately invalidate a token.
Related
- Accounts & onboarding — create and verify an account before logging in.
- Authentication guide — full details on HMAC signing, bearer tokens, and security best practices.
- Login flows guide — step-by-step walkthroughs of each login method.