# Authenticate to the API

When integrating Digital Samba Embedded you will most likely use the developer [REST API](https://docs.digitalsamba.com/rest-api). 

To make requests to it you need to authenticate with your **developer key** and **team id**. They can be found in the [dashboard team](https://dashboard.digitalsamba.com/team) section after you sign up.

 

<figure><img src="https://1546941876-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FiO3v6IGLbE8FriBtsLy2%2Fuploads%2F330Vvlair0rrfvwmwlbp%2Fteam.png?alt=media&#x26;token=4dcfbcdf-b8d4-4470-aa1d-9b3e4fea87f0" alt=""><figcaption><p>Team section in your dashboard including developer key and team id</p></figcaption></figure>

Include an **Authorization** http header with your team id and developer key separated by colon and then **base64** encode the concatenated string. To make an analogy - you can think of **team id** as a username and **developerKey** as a password.

Both Bearer and Basic Authentication tokens are supported.\
\&#xNAN;**`Authorization: Bearer base64(teamId:developerKey)`**\
and\
\&#xNAN;**`Authorization: Basic base64(teamId:developerKey)`**

{% hint style="warning" %}
Never expose your **developer key** to the outside world or in frontend code. Its role is similar to a password, so protect it with care the same way you are protecting your passwords and other secrets. If you think your developer key has leaked or has been breached you can always regenerate it in our dashboard from the team section.
{% endhint %}