LEDGERS API uses API keys to authenticate requests.
Your API keys carry many privileges, so be sure to keep them secure! Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, and so forth.
Authentication to the API is performed via OAuth. Provide your API key, username and password to generate a token. A token is valid for 24 hours. With the token and the API keys, you can invoke various other LEDGERS APIs.
All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.