AUTHENTICATION: All endpoints currently require authenication. We plan to make some endpoints public in the future, but the timeline is not yet known.

You can authenticate a request by providing an e-mail and password with HTTP Basic authentication or, if you are authorizing a session on behalf of a user, exchanging an e-mail and password for a session token by POSTing a JSON object that matches the following structure to /users/sign_in:

  "user": {
    "email": "",
    "password": "someones_password"

Make sure to set the Accept HTTP header to application/json. The token will be the token property in the response JSON.