Vacasa Connect
Powered by Stoplight
post

/auth

Create a refreshable auth session. Used the returned data to build your subsequent requests.

Signature generation:

Signature is a HMAC-SHA256 hash of api_key.timestamp.api_secret (in hex)

  • api_key: your api key
  • timestamp: epoch timestamp(aka unix time), for example 1507584555
  • api_secret: your api secret

PHP Example:

$timestamp = time();
$correct_signature = hash_hmac('sha256', $api_key.$timestamp.$api_secret, $api_secret);

Authorization

apiKey - Authorization

Request Parameters

1 Header

Request Body

Schema
object
data
object
required
api_key
string
required
timestamp
integer
required
signature
string
required

Responses

Schema
object
data
object
type
string
required
id
string
required
attributes
object
errors
array[object]
meta
object
errors
array[object]

Send a Test Request

Send requests directly from the browser (CORS must be enabled)
$$.env
1 variable not set
Authorization