Bearer tokens


When using an HTTP API, a Bearer token is like a password that you specify in the Authorization header of your HTTP requests to access protected resources.

We’ve updated our API to support a standard Bearer authorization scheme rather than a custom/non-standard Token scheme. We’ve also updated our API docs and OpenAPI specification to use the new format:

curl -H "Authorization: Bearer r8_...."

The old Authorization: Token r8... format is still supported, so your existing API integrations will continue to work without any code changes.