Authentication
When making requests to the Bridge API, you will need to pass the proper authentication headers to identify yourself. Use the values of the API Keys, managed within the Developers section of your Bridge dashboard.
Secret and Publishable Keys
There are two types of API Key, “Secret” and “Publishable”. All REST API’s will function with a valid Secret API Key. A subset of API’s, with limited behavior, are available using the Publishable API Key. These public APIs may be called directly from a user’s browser, so it must be assumed you do not have full control.
Patient Tokens
Some of the public APIs (those available with the Publishable API Key), require “Patient Token”. This is a short-lived token that validates access to existing resources. See the Create Patient Token API. This token will typically be passed through as a field in the request, in addition to the API key header.