HTTP API access is based on RESTful APIs.
Authentication is usually handled using Basic Authentication.
The transport layer can be encrypted using SSL.
For security reasons, it is highly recommended to use encrypted access - using HTTPS (port 443) rather than HTTP (port 80) - but both methods are supported.
When using API keys, the API key must be posted in the request header with the “X-API” designation.