All requests made to the server are sent over an encrypted SSL connection using standard HTTPS methods such as GET and POST.
When submitting input parameters with your request, these are encoded either in the query string for GET requests, or in the body of a POST request using commonplace url encoding of key-value pairs (application/x-www-form-urlencoded).
The headers of your request should also include the IP of the client you’re forwarding for, as well as the credentials used to authenticate with the API. If you have an open session on the server, you can also pass in a session_id cooking containing the ID to have it automatically reopened.
|X-Forwarded-For||The IP address of the connecting client.|
|X-On-Behalf||The staff account to act on behalf of. Use “off” to act as a customer.|
|Authorization||Credentials used to query the API. See Authenticating with Token Pairs or OAuth2 Reference.|
For example, to query a list of bookings with a status of PAID starting today, your full raw request might look like the following:
GET /api/3.0/booking/index?start_date=today&status_id=PAID HTTP/1.1 Host: your-company.checkfront.com Accept: application/json X-Forwarded-For: 22.214.171.124 X-On-Behalf: 1 Authorization: Basic M2JlOTg2NDFmMDc0NWI2ZmU3ZGFjYzJkZjk0N2FkYmMxZGE3MzEyZDo0YzRkNTk4YTVkOTQwZjA4ZmRiNDM1YjY5YWY5ODZjNzBmMjIwNmRk