Authentication
All API requests require authentication via the X-AUTH-TOKEN header.
Getting Your API Token
- Go to the API dashboard
- Generate a new API token
- Copy and store the token securely - it is only shown once
Store your token securely
The full API token is only displayed once when generated. If you lose it, you'll need to generate a new one. Never expose tokens in client-side code, public repositories, or logs.
Making Authenticated Requests
Include the X-AUTH-TOKEN header in every API request:
bash
curl https://exportcomments.com/api/v1/ping \-H "X-AUTH-TOKEN: your-api-key"
Token Properties
| Property | Details |
|---|---|
| Format | 120-character alphanumeric string |
| Expiration | 1 year from generation |
| Tier | Inherits the plan tier (Premium or Business) at generation time |
| Scope | Full API access for the associated user account |
Authentication Errors
| Status Code | Error Code | Description |
|---|---|---|
| 401 | AUTH_HEADER_TOKEN | Missing or invalid X-AUTH-TOKEN header |
| 403 | PLAN_EXPIRED | Your subscription has expired |
| 403 | TOKEN_EXPIRED | The API token has expired |