All calls to our API endpoints must be authenticated - no exceptions - and must be over HTTPS. To accomplish this, include your API key in the Authorization header of every request you make.
You should send your Authorization header in the following format:
Authorization: Bearer TOKEN
As in Authorization: Bearer TOKEN
Authorization
All verification through the endpoints are authorized based on Bearer Token
Secure your token
Never put your API keys in any client-facing code, or commit it to source control. Ignore this warning, and, well, the world thanks you for your sacrifice...