Merge pull request #86 from SeeClickFix/pjm/feat/tp-187377-update-api-authentication-documentation

ssawyer1024 · web-flow · commit 0ac8afb65d9a · 2024-08-30T13:33:25.000-04:00
[TP-187377] add Token Authentication
diff --git a/content/v2/overview/authentication.md b/content/v2/overview/authentication.md
@@ -5,18 +5,24 @@ title: API v2 - Overview - Authentication
 # Authentication
 
 SeeClickFix currently supports the following authentication methods for access to API v2.
-1. HTTP Basic Authentication
+1. Token Authentication
 1. OAauth2 Authentication
 
-### HTTP Basic Authentication
+### Token Authentication
+This method is appropriate for API access. It is a secret that is included as a request header.
 
-This method is appropriate when the client has direct access to user credentials (username
-and password).
+Header Format:
+<pre class="terminal">
+Authorization: Bearer [token]
+</pre>
+
+To create and manage Bearer Tokens for Authentication, visit [Password & Security](https://account.civicplus.com/security) and go to the Personal Access Token section. Personal Access Tokens are Bearer Tokens.
 
 <pre class="terminal">
-$ curl -u "email@example.com:password" <%= root_version_url %>/profile
+$ curl -i https://seeclickfix.com/api/v2/profile -H "Authorization: Bearer test-08/12/2024-01/01/2025-xxxxxxxxxxxxxx"
 </pre>
 
+
 ### OAuth2 Authentication
 
 This method is appropriate when the client application is being used by multiple users
