In order to authenticate requests to the Convert Tracking/Config API/Visitor Data API, you need to provide the SDK key secret inside the Authorization header.
Note:
- For the Projects that have
settings.disable_default_config=true, access will work only through the use of SDK Key Authentication method with the associated endpoints. - For the Projects that have
settings.disable_default_config=false, access will work through the use of SDK Key Authentication method with
the associated endpoints or without authentication, through the default endpoints. - An SDK key could have a secret associated or not. If it has a secret, it should be provided in the
Authorizationheader.
If it doesn't have a secret, theAuthorizationheader should be empty and the request would be authorized if the provided SDK key is found.