All requests provided to the HowNow Server require an Authorization header to provide context to who is accessing the HowNow APIs and what information should be returned.
If you are creating an integration for HowNow that will run On-Premise, the server uses an access key and username combination for authentication. The HowNow Server will complete the handshake required with incoming requests before providing access to the requested content.
Every call made to the HowNow Server must be received with an API key and username as custom header properties to the HTTP request. This is in the form X-BF-Key: <key> and X-BF-Username: <username>. Each Application that has been allowed, by Business Fitness, to access the HowNow Server can generate an API key through the HowNow application. Please note that all API keys are database specific and will only work on the database it was generated for.
To create an integration for HowNow, please contact Business Fitness so we can provide you access to a test server with a test API Key.
Each time you deploy your integration to a HowNow client the client will need to contact Business Fitness to have an API key generated for your application against their account.
For a cloud based integration, more documentation will be added soon. (if you are looking to provide an external integration to HowNow, please contact Business Fitness)