> For the complete documentation index, see [llms.txt](https://docs.innopaas.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.innopaas.com/api-reference/api-reference-en/overview/innopaas-api-getting-started-guide.md). # InnoPaaS API Getting Started Guide ## API Signature Verification Instructions ### Common Request Headers To ensure API security, all APIs must include security verification request headers, Authorization and AppKey can only be obtained after creating an AppKey on the InnoPaaS platform Used for API authentication verification; if verification fails, the API cannot be called and authentication failure is returned.
No.FieldData TypeRequiredDescription
1Content-TypeStringYesThe value is "application/json;charset=utf-8", and the request content is JSON
2AppKeyStringYesApiKey, application access key
3AuthorizationStringYesAuthorization token for application access
**Headers sample code** ```python headers = { 'Authorization': 'YUIYIUIAIIASUDIAOSIDUOIWUOQWUEOIUWOEUQWOEUOQWUOUWOUWQOWU', 'AppKey': 'XFbZY1rtTKo3UD4n1' } ``` ### Get AppKey Click the \[Copy] button in the application list to copy the AppKey
### Get Authorization 1\. Select an application and get the \[Token] button. Generate the Authorization information required for the app to access the API,**We do not store customers' Token information. Each time a new Token is generated, the previously generated Token will become invalid. If this app's Token is already being used in your production environment, please use this feature with caution. Invalidating the original Token may result in inability to access the API normally.**
2\. Generate and copy the Token * Choose the Token expiration time. By default, it never expires, but you can also specify an expiration date. * Click the \[Create Access Token] button to generate the Token * Click the \[Copy] button to copy the Token
## Configure WebHook callback address ### Configure WebHook events **When pushing template messages, uplink replies, and other signaling events, if the App cannot be recognized or matched, the data will be pushed to the default application; if there is no default application, nothing will be pushed.** 1\. In the API Keys function menu list, click the callback event configuration button to start configuration
2\. Click the \[Add] button to add
3\. Select the product whose WebHook needs to be configured from the available product list
4\. Configure the callback URL and select the events to receive, then click Next to continue
5\. Select the callback request method, default is POST. If the customer's business system needs to verify the signature of the WebHook source, you can configure the UserName and Authorization header information. When the WebHook notification is pushed, UserName and Authorization will be added to the header information, and the customer's configured information will be pushed to the customer's system together**.**
--- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.innopaas.com/api-reference/api-reference-en/overview/innopaas-api-getting-started-guide.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.