Authentication

Demo authentication

If you wish to try out the API before registering a developer agreement, you can do this using our REST demo credentials. There are two ways of doing that.

Via a query string

The first way is really easy. Just append the query string ?demo=true to your request URL. You only need to this on the first request, then all links in the API will have that query string appended. All 401 Not Authorized responses also include a demo link to that exact resource. This allows for easy browsing of the API when discovering what is available.

Via headers

The second way is one that allows for an easy "hello world" application. You need to follow the normal authentication flow, but replace the connection tokens with the word "demo". That way you can create an application and connect just as you would if you had a real integration, but without the need to register.

Note that when using the demo integration, you can only use the GET http method.

Obtaining your own Agreement Grant Token and App Secret Token

If you don't have a developer agreement

Sign up for a developer agreement by filling in the following form.

If you already have a developer agreement

1. Start by logging on to your Reviso agreement.
2. Select the 'Developer' tab
3. Click 'New app'
4. Enter an application name and select required role(s) ('Superuser' recommended)
5. Click 'Save'
6. Your app appears in the app list
7. The App Secret Token is shown in the list
8. Click the link in the 'Request URL' column for the app. A new page opens.
9. Type in the credentials of a user on a production or demo agreement and grant your app access
10. The Agreement Grant Token is displayed on the page

Setting up authentication HTTP headers on REST requests

Obtain the X-AppSecretToken and X-AgreementGrantToken as described above.

In all requests, send both an 'X-AppSecretToken' and an 'X-AgreementGrantToken' header with the tokens as values.