GuideAPI Reference

Authentication Guide

Authentication Guide for Arrow APICopied!

The Arrow API uses a session token to authenticate requests. You can fetch a session token using the ClientId and ClientSecret pair provided during your onboarding with Walnut.

Key NotesCopied!

  • ClientId and ClientSecret are unique to each provider, so make sure to keep them safe from unauthorized access.

  • To protect your credentials, it’s a good practice to store them in environment variables, outside of your application's source tree.

Making Authenticated RequestsCopied!

To authenticate HTTP requests to Walnut's API, include the session token in the HTTP request headers as shown below:

'sessionToken': Bearer xxxxxxxxxxxxxxx

Handling Unauthorized RequestsCopied!

API requests without proper authentication will fail with a 401 Unauthorized status code.

By adhering to these best practices, you ensure secure and seamless integration with Walnut's API.

Previous Page

Introduction

Next Page

Errors