Authentication
The Molzait API uses Bearer token authentication with JWT (JSON Web Tokens).
Getting Your API Key
API keys are issued upon request. To obtain an API key, please include in your request:
- Who is requesting: Your name and company
- Integration purpose: Describe your planned integration and use case
Our team will review your request and provide you with an API key. Store it securely - API keys are sensitive credentials.
Using Your API Key
Include your API key in the Authorization header of every request:
curl -H "Authorization: Bearer YOUR_API_KEY" \
https://api.molzait.com/external/availability/experiences
Security Best Practices
- Never expose API keys in client-side code
- Store API keys in environment variables or secure vaults
- Use separate keys for development and production
- Contact us immediately if an API key is compromised
Token Format
API keys are JWT tokens containing:
- Restaurant ID
- Permissions scope
Error Handling
If authentication fails, you'll receive a 401 Unauthorized response:
{
"statusCode": 401,
"message": "Unauthorized",
"error": "Invalid or expired token"
}
Next Steps
Once authenticated, proceed to the Quickstart Guide to make your first API call.