Authentication in PfP’s API is achieved by using a organisation token, provided to your organisation by PfP on request.



Once you have your token, to create a valid API call, you should add a header to each call:


Key: apikey

Value: the_apikey_you_were_provided with


Set your headers to accept application/json.


Key: accept

Value: application/jason


API access can be restricted to an IP range on request.


The application will associate all interactions from the IP address/API Key combination, with the identified organisation.

Information about your users, their assessments and reports, will fall hierarchically within your identified organisation.