Download OpenAPI specification:Download
This topic describes the different forms of authentication that are available in the Rebilly API, and how to use them.
Rebilly offers four forms of authentication: secret key, publishable key, JSON Web Tokens, and public signature key.
JWT is a short lifetime token that can be assigned a specific expiration time. To create a JWT session, see JWT session resource.
Applications in the Rebilly App Store can create a JSON Web Token (JWT) by fetching an user's instance. For more information, see Retrieve an application instance.
This authentication method is applicable to specific operations.
To create a publishable API key, see Create an API key.
To create a JSON Web Token (JWT) using Storefront authentication, see Create a session with username and password.