The boilerplate supports several authentication methods. Basic Auth (email and password) is only used to generate a User Token. Once you have the User Token, you should use it as a Bearer token for all user-level requests.You can authenticate using: • a Basic Auth • a User Token (generated via Basic Auth), • a Public API Key, or • a Private API Key.Each endpoint specifies which auth methods it accepts, and you must include the correct one in the Authorization header.Just paste your API key into the header as:
Header
Value
Type
Role
Authorization
Basic BASE64(email:password)
Basic Auth
User
Authorization
Bearer USER_TOKEN
Bearer Token
User
Authorization
PUBLIC_API_KEY
API Key
Public
Authorization
PRIVATE_API_KEY
API Key
Private
Once that’s set, you’re ready to make authenticated requests to any endpoint.
API rate limits apply per API key. The boilerplate allows rate limiting with Flask Limiter. If your users go over this limit, or exceed their plan’s usage limits, the API will return an HTTP 429 - Too Many Requests response.Keeping their usage within the limit ensures smooth and reliable performance for everyone.
