search

Authentication Methods

The Enterprise API supports three authentication methods. Choose the one that fits your security requirements:

hashtag
Method 1: OAuth 2.0 Client Credentials (Recommended)

Best for: Machine-to-machine authentication, enterprise integrations

Steps:

  1. Get OAuth token from /v1/oauth/token endpoint (1 hour lifetime)

  2. Use token in Authorization: Bearer header for API calls

Example:

# Step 1: Get token
curl -X POST https://enterprise.bitmind.ai/v1/oauth/token \
  -d "grant_type=client_credentials" \
  -d "client_id=YOUR_ID" \
  -d "client_secret=YOUR_SECRET"

# Step 2: Use token
curl https://enterprise.bitmind.ai/image \
  -H "Authorization: Bearer YOUR_TOKEN" \
  --data-binary @image.jpg

hashtag
Method 2: OAuth + mTLS (High Security - RFC 8705)

Best for: Government, healthcare, financial institutions

Steps:

  1. Get OAuth token using certificate (certificate replaces client_secret)

  2. Use token + certificate for all API calls

Example:

hashtag
Method 3: Organization API Key (Legacy)

Best for: Existing enterprise clients

Steps:

  1. Use API key directly in Authorization: Bearer header

Example:

Setup: Configure your authentication at https://app.bitmind.ai/api/enterprise

Documentation: Complete Authentication Guidearrow-up-right

Previous🔒 Enterprise Compliance & PrivacyNextAuthentication

Last updated