Authorization header with a Bearer token. You obtain this token by logging in to the platform or via the JWT token endpoint. Without a valid token, the API returns a 401 Unauthorized response.
The token is the only credential the API uses. There is no separate API key, no client secret, and no signature step — once you have a valid JWT, you are authenticated.
Getting your token
You have two options for obtaining a Bearer token. Option 1: Log in through the WeCareRemote web interface. After logging in, your session token is available in the platform settings. Copy it and use it in your API requests. Option 2: Call the JWT token endpoint directly.Passing your token
Add theAuthorization header to every request to the AI agent API. Use the Bearer scheme followed by your token.
Authentication errors
If your request is rejected due to an authentication problem, the API returns one of the following status codes.| Status code | Cause |
|---|---|
401 Unauthorized | The token is missing, expired, or invalid. |
403 Forbidden | The token is valid, but it does not have the required permissions for this operation. |
401, obtain a new token and retry your request.
JWT tokens expire after a set period. If your requests start returning
401 errors after previously succeeding, your token has likely expired. Re-authenticate through the web interface or call the token endpoint again to get a fresh token.