Authentication
The API uses temporary user-generated keys. Keys are read-only, revocable, and expire based on the window selected by the user.
Bearer token
Use the generated key as a bearer token:
Authorization: Bearer tja_live_xxxExample:
curl "https://api.sixoneeighters.com/v1/me" \
-H "Authorization: Bearer tja_live_xxx"Alternative header
Non-browser integrations can also use:
x-api-key: tja_live_xxxKey storage
Raw key material is never stored. 618ers stores only a server-side HMAC hash of the key.
Scopes
Keys can include these read scopes:
| Scope | Access |
|---|---|
trades:read | Trades and trade groups |
journals:read | Trade and group journals |
sessions:read | Trading sessions |
reviews:read | Weekly reviews |
analytics:read | Analytics summaries |
missed_trades:read | Missed trade journal entries |
agent_summary:read | Compact summary endpoint |