Freede supports two modes of Authentication. Basic and Verified.
Basic Authentication
Requests need to be sent with the apikey header in order to authenticate.
Verified Authentication
Requests will be sent with the below headers:
Freede-Verification-Key
Freede-Verification-Token
Freede will perform a SHA256 hash with the Freede-Verification-Token and the agencies API key, comparing it against the Freede-Verification-Key.
This is SHA(Token + API Key).
The token should be different on each request.
Freede further suggests to IP whitelist the Freede servers.
Unauthorized requests will return a 401 Unauthorized response.
All requests will require whitelisting of your requesting IP's.