Authentication Models

SlaunchX uses different authentication models for different chains.

Web Chain

The WEB chain typically uses:

1. portal entrypoint context
2. Secure Channel for sensitive entry operations
3. JWT for authenticated requests
4. X-Client-Hash for session fingerprint binding

API Chain

The API chain typically uses:

1. X-Api-Key
2. X-Signature
3. X-Timestamp
4. X-Nonce

Do Not Mix Them

These models are not interchangeable:

1. JWT does not make a WEB endpoint API-key accessible
2. HMAC does not make a WEB session endpoint callable
3. Secure Channel is not a general replacement for API signing

What To Check Before Calling

1. chain type
2. required credentials
3. required headers
4. whether Secure Channel is required
5. whether portal and fingerprint context must already exist

Read Next

1. Secure Channel
2. Permissions and Scopes