Skip to content
N'entropy EUDR API

Authentication

Authentication

Section titled “Authentication”

The Integration API uses Bearer token authentication. Tokens are generated through the platform UI and scoped to specific permissions.

Token Format

Section titled “Token Format”

API tokens follow the format:

eudr_live_<48 hex characters>

Example: eudr_live_a1b2c3d4e5f6...

Using Your Token

Section titled “Using Your Token”

Include the token in the Authorization header of every request:

Terminal window
curl -X GET https://backend.joinnentropy.com/api/v1/integration/suppliers \
  -H "Authorization: Bearer eudr_live_your_token_here" \
  -H "Content-Type: application/json"

Token Scopes

Section titled “Token Scopes”

Each token is created with specific scopes that control what operations it can perform:

ScopeDescription
integration:suppliers:readRead supplier data and sync status
integration:suppliers:writeCreate and update suppliers
integration:products:readRead product data and sync status
integration:products:writeCreate and update products
integration:batches:readRead batch data and sync status
integration:batches:writeCreate and update batches
integration:dds:readRead DDS status for batches
integration:webhooks:manageCreate and manage webhooks
integration:sync:readRead sync status and logs

Generating Tokens

Section titled “Generating Tokens”
  1. Navigate to Integrations in the platform UI
  2. Under API Access, create a new integration
  3. Click API Tokens on your integration
  4. Enter a name, select scopes, and click Generate Token
  5. Copy the token immediately — it will never be shown again

Token Security

Section titled “Token Security”
  • Tokens are stored as SHA-256 hashes — we never store the raw token
  • Revoke compromised tokens immediately via the UI
  • Use the minimum scopes required for each integration
  • Set token expiration dates for automated systems

Error Responses

Section titled “Error Responses”
StatusError CodeDescription
401AUTHENTICATION_REQUIREDNo Authorization header provided
401INVALID_TOKEN_FORMATToken doesn’t match expected format
401INVALID_TOKENToken not found or invalid
401TOKEN_REVOKEDToken has been revoked
401TOKEN_EXPIREDToken has expired
403INTEGRATION_INACTIVEParent integration is not active
403INSUFFICIENT_SCOPESToken lacks required scopes