All requests are authenticated by OAuth 2.0. Each access token is valid for 3 hours. To get an access token, use this endpoint.
The access token contains the user and the department.
To obtain your API key and secret:
In a production application, your back-end server will need to generate an Access Token for every user in your application. For example, if your application has 20 users that use Glassix, you'll have to generate 20 different tokens, one for each user.
After obtaining the access token, you must pass it in every request in the Authorization header.