Authentication
All requests sent to the API, must include an Authorization header, there are two ways to authorization within the api these are "Api-Key" and "Bearer" followed by the api key or an access token. Please note only one for these methods is required.
Api Key¶
"Authorization" : "Api-Key INSERT_KEY_HERE"
Access Token¶
Retrive an access token for the api send the following the request
Type: POST
URL: https://auth.tote.co.uk/oauth/token
Headers: Content-Type: application/json
Payload: {"grant_type":"password","client_id":"Mj1cmG5pXRLNhKVxW2YebdDTl0U0DpGN","username":"email@email.com","password":"password","audience":"https://partner.tote.co.uk"}
Send the api request to the product, event or bet graphql endpoints
"Authorization" : "Bearer INSERT_ACCESS_TOKEN"