Authentication

API Interface: HTTPS

Authentication is required to access the Aerialink API. The authentication requirements consist of Firewall and Credentials described below.

Firewall

All accounts must white list their network server specific IP addresses (/32) or network subnet (/subnet) prior to accessing the Aerialink API. This can be done within the Aerialink Platform portal under the Authentication section within the API area.

Credentials

All API requests to Aerialink resources must authenticate using HTTP Basic Access Authentication (encrypted over HTTPS). Your API credentials must be passed in the HTTP header of the request as basic authentication username and password—not as individual parameters within the body of the request—with every API request, as there is no concept of sessions within any API request/response.

For further information on HTTP Basic Access Authentication,
please see: http://en.wikipedia.org/wiki/HTTP_authentication

The Username and Password passed in your API request are your account API Key and API Secret respectively. Note that some accounts may have multiple credential sets depending on requested configuration. Subsequently, each credential set may have different related permissions to API resources or associated resource assets such as Short Codes, Long Codes, or Alphanumeric Codes used for Messaging services.

Encryption and Security

All requests to the Aerialink API over HTTPS are processed using High-Grade Encryption SHA 256 RSA with a 2048 Bit Algorithm. The use of SSL (Secure Socket Layer) via HTTPS is required for requests to be processed with this encryption level. We highly recommend HTTPS connections over HTTP to ensure a secure and private connection between your application server and our network. Aerialink’s support for non-HTTPS requests will be phased out at a future date.

Troubleshooting

If you are having trouble authenticating with the Aerialink API, confirm that you have white-listed your IP address and are using the correct API credentials. You can view the API Authentication Error Log under Reports in the API section of the Platform portal. This will confirm whether your authentication requests are being rejected or not.

This page was last updated 1515185923000