Skip to main content


All requests are authenticated with tokens issued by common OAuth 2.0 compatible flow. In order to use the API, the application should be registered with us first to get your api key. Please login to your portal at to get one. You will receive an client_id and a client_secret. We support two authorization flows suitable for different scenarios. The password type is short and simple to be used by users trading directly on their account. The authorization_code type is longer and more complicated but allows third parties to get authorized access to client accounts. For security reasons, the third party applications will need to add one or more callback urls to the whitelist on our side first.

Successful authentication issues a security token that needs to be specified with every authenticated request in the Authentication HTTP header: Authentication: Bearer {token goes here}