1. JWT Token
   
2. X-API-Key

22 July 2023 onwards, all EasyEcom API can only be accessed by passing both parameters in request headers. Failing to provide that token, the user will not be allowed to access the API and will receive HTTP code 401.

You can access our API documentation at https://api-docs.easyecom.io which now reflects a new method of authorizing your requests

1. JWT Token

To generate a JWT token, refer to the Authorization section in the API documentation

Jwt_token generated by the above method needs to be passed in the header for subsequent API calls 'Authorization: Bearer <jwt_token>'.

This token will be valid for 90 days and the new token can be generated by calling the above API again.

2. X-API-Key

We are also introducing API Throttling. All clients under the same company will be provided with a limit of 10 requests/seconds and a burst of 20 requests. Once the allowed quota is consumed, HTTP Code 429 Too Many Requests will be responded to by API. 

Steps to generate x-API-key 

1. Log in to easyecom.io primary account. X-API-Key can only be generated from the primary account of the seller.
2. Go to Account Settings > Change credentials
3. Under X-API-KEY section, click on Generate X-API-KEY button
4. Sample Token : 681d976c3bkgkjg6577754lkh46dc8927366eee4

Below is a sample curl request which uses both the mandatory headers: 

curl --location --request GET 'https://api.easyecom.io/<endpoint>' 

--header 'Authorization: Bearer  eyJ0eXAiOiJKV1QiLCJhbGciOixxxxxxxxxxxxxxxxxxxxx’

--header 'Content-Type: application/json'