API Key as a request header?

Question

API Key as a request header?

justanotherbyte opened this issue 4 years ago · 3 comments

Currently we're forced to set our api keys in the api_key URL parameter. It would be extremely useful if we could set it in an Authorization header of some sort. It is also recommended to do it like this.

Answer 1 · 2021-04-25T11:19:15.000Z

The APOD API, as well as all the other services that NASA provides (here) operate under the same auth system, some of the APIs are hosted by them and some of them are just proxies (see NeoWS for example).

While your proposition has value, I think that you probably need to suggest this in other places instead in order to successfully deliver a proposal for a global solution:

With an email to the official mail of the api.nasa.gov services: nasa-data@lists.arc.nasa.gov
Opening an Issue on the api-docs girhub repo here
Contacting either Jenna Horn (the site developer) or Brian Thomas (the NASA official which I presume is in charge of api.nasa.gov)

Good luck!

Answer 2 · 2021-04-27T15:28:37.000Z

I see, thank you very much

Answer 3 · 2021-05-24T20:27:39.000Z

For the record
https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication#the_general_http_authentication_framework