# Request Authorization ### Authorization header To authorize each API request, pass your API KEY in the `Authorization` header as follows: ``` Authorization: Token ``` ### Example of a request with a token An example of using the `Authorization` header in an API request: {% tabs %} {% tab title="cURL" %} ```bash curl -X POST https://api.cryptocloud.plus/v2/invoice/create \ -header "Authorization: Token eyJ0eXAi1iJKV1QiLCJhbGci1iJIAcI1NiJ9.eyJpZCI6MTMsImV4cCI6MTYzMTc4NjQyNn0.HQavV3z8dFnk56bX3MSY5X9lR6qVa9YhAoeTEH" ``` {% endtab %} {% tab title="Python" %} ```python import requests url = "https://api.cryptocloud.plus/v2/invoice/create" headers = { "Authorization": "Token eyJ0eXAi1iJKV1QiLCJhbGciOiJIAcI1NiJ9.eyJpZCI6MTMsImV4cCI6MTYzMTc4NjQyNn0.HQavV3z8dFnk56bX3MSY5X9lR6qVa9YhAoeTEH" } response = requests.post(url, headers=headers) if response.status_code == 200: print("Success:", response.json()) else: print("Fail:", response.status_code, response.text) ``` {% endtab %} {% tab title="JavaScript" %} ```javascript const url = 'https://api.cryptocloud.plus/v2/invoice/create'; const headers = new Headers({ 'Authorization': 'Token eyJ0eXAi1iJKV1QiLCJhbGciOiJIAcI1NiJ9.eyJpZCI6MTMsImV4cCI6MTYzMTc4NjQyNn0.HQavV3z8dFnk56bX3MSY5X9lR6qVa9YhAoeTEH' }); fetch(url, { method: 'POST', headers }) .then(response => { if (response.ok) { return response.json(); } else { return Promise.reject('Auth error'); } }) .then(data => { console.log('Success:', data); }) .catch(error => { console.error('Fail:', error); }); ``` {% endtab %} {% tab title="PHP" %} ```php ``` {% endtab %} {% endtabs %} {% hint style="info" %} You don't need to send a separate authorization request. API KEY should be transferred in the Authorization header. {% endhint %} ### Possible errors | Response code | Error key | Error description | | ------------------ | ------------ | ----------------- | | 400 | Bad request | Invalid request | | Некорректный токен | Unauthorized | Invalid token | ### Example of a response with an error ```json { "status": "error", "result": { "authorization": "Unauthorized request." } } ```