# Authentication

The Sender API uses tokens to authenticate requests. You can view and manage your auth tokens in the Sender account settings. After logging in, navigate to Settings -> API access tokens for token management.

Your tokens carry full access to your account, so be sure to keep them secure! Do not share your secret API keys in publicly accessible areas such as GitHub, client-side code, and so forth.

All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.

Authentication to the API is performed using bearer auth.

Use -H "Authorization: Bearer {Your token}".

We have highlighted some examples how to send API request using bearer auth.