Authentication
To use the Canopy API, you must send an access token in an Authorization header with each request. You can obtain tokens in two ways: manually (UI‑generated) or programmatically (OAuth2 client credentials). Both methods return the same type of Bearer token — the difference is in how they’re managed:
Temporary access tokens
Copy a temporary access token from your Canopy account page. These expire every 24 hours and must be manually via the Canopy user interface.
Client credentials (OAuth2)
Programmatically request tokens that can be refreshed automatically, making them suitable for long‑running applications or integrations.
Updated 21 days ago