Curosa
Supplier Portal API Reference New Changelog

Getting started

Authentication

Learn how to authenticate and obtain an API token for accessing the Curosa API.

Overview

Before you can access any of the Curosa API endpoints, you need to authenticate and obtain an API token. This token will be used in the Authorization header for all subsequent API requests.

Obtaining an API Token

To get your API token, send a POST request to the login endpoint with your Curosa supplier portal credentials.

Request

Use your existing supplier portal email and password to authenticate:

curl --location 'https://api.curosa.com/v1/login' \
--form 'email="your@email.address"' \
--form 'password="your_supplier_portal_password"'

Parameters:

  • email (required): Your registered email address
  • password (required): Your supplier portal password

Response

Upon successful authentication, you'll receive a response containing your API token:

{
    "message": "Authenticated",
    "status": "success",
    "data": {
        "token": "5|VivSxZyTcpL1xJrViiuPbiOoUoj8djslmaI4FeB89e4ba1c"
    }
}

Important: Store this token securely. You'll need to include it in the Authorization header of all API requests as a Bearer token:

Example Response

Authorization: Bearer 5|VivSxZyTcpL1xJrViiuPbiOoUoj8djslmaI4FeB89e4ba1c

Token Security

  • Keep your API token secure and never share it publicly
  • Treat your token like a password
  • If you believe your token has been compromised, requesting a new token will automatically expire any other token you have on your account

Rate Limiting

To protect the system from brute force attacks, the endpoint is rate limited to 10 requests per hour.