Authentication

All ironSource API endpoints are secured, and must be used with an authentication token.
First, you’ll need to add an authorization header for authentication.

Standard API Authentication

ironSource standard authentication is used for our Reporting API and for our User Ad Revenue API.

Description

This type of authentication is based on Basic HTTP Authentication with HTTPS. The HTTP Authorization header is created based on the base64 version of username:secret key.

  • username is the login/email that is used to login to our system.
  • secret key parameter is unique for your ironSource account.

You can find your Secret Key under ‘My Account‘:

1

Request Headers Example 

Basic UG9wY2FwOjI3MGYwODRirrxNmM0YTliNmUyMmFkMjRkOTA1ZGYz

AUTH API Authentication

AUTH API authentication is needed for the use of ironSource’s Application API and Instance API.

Description

AUTH API authentication is based on auth 2.0 Bearer authentication. The HTTP Authorization header is created based on your account’s unique Secret key & Refresh Token.
You can find your unique parameters under ‘My Account‘:

1

Method

GET platform.ironsrc.com/partners/publisher/auth

Request URL  

https://platform.ironsrc.com/partners/publisher/auth

Request Example Headers  

secretkey: e83defbasdasd9227a9d2a952b2c5ec8b02e
refreshToken: 5525553sdfcb87c4cab7eba082858d21a

 

Response Example

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzZWNyZXRLZXkiOiJlODNkZWZiNjQ5MjI3YTlkMmE5NTJiMmM1ZWM4YjAyZSIsInJlZnJlc2hUb2tlbiI6IjU1MjU1NTNkN2NiODdjNGNhYjdlYmEwODI4NThkMjFhIiwiZXhwaXJhdGlvblRpbWUiOjE1NDY0Mzc2Mjd9.mqtDslsA1E_MnFvyiMrBCz3DgUhEQaSUChVd_Ajvvf8

The generated token should be used for the bearer token authorization:

GET https://platform.ironsrc.com/partners/publisher/instances/v1?appKey=123abc
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzZWNyZXRLZXkiOiJlODNkZWZiNjQ5MjI3YTlkMmE5NTJiMmM1ZWM4YjAyZSIsInJlZnJlc2hUb2tlbiI6IjU1MjU1NTNkN2NiODdjNGNhYjdlYmEwODI4NThkMjFhIiwiZXhwaXJhdGlvblRpbWUiOjE1NDY0Mzc2Mjd9.mqtDslsA1E_MnFvyiMrBCz3DgUhEQaSUChVd_Ajvvf8

 Note: The token is valid for 60 minutes.