Authentication

The OpenAPI implementation in Sitecore Content Hub™ supports two security schemes:

• ApiKey:

  • An API key is a token that a client provides when making API calls.

  • Requires an X-Auth-Token header in the request.

    Note

    For more information about creating an API key, see Generate an API Token.

• OAuth 2:

  • OAuth 2.0 is an authorization protocol that gives an API client limited access to user data on a web server.

  • Uses an authorization header with bearer tokens.

    Note

    For more information about OAuth 2, see the OAuth 2.0 protocol and the Swagger specification.