Skip to main content

Authentication Methods

The Feed API supports two authentication methods: API keys (for server-to-server integrations) and M2M Bearer tokens (for OAuth-based flows). Pass your API key in the X-API-Key header: 
curl https://app.alana.shopping/api/v1/feeds/google \
  -H "X-API-Key: ak_live_your_api_key"

M2M Bearer Token

For OAuth-based server integrations, use a Bearer token in the Authorization header: 
curl https://app.alana.shopping/api/v1/feeds/google \
  -H "Authorization: Bearer your_m2m_token"

Required Scopes

OperationRequired Scope
Read feedsfeed:read
Manage webhooksfeed:write
View analyticsfeed:read
API keys created in the Alana dashboard have feed:read by default. To create webhook subscriptions, enable feed:write in the key settings.

Creating API Keys

  1. Go to Settings → API Keys in your workspace
  2. Click New API Key
  3. Select the feed:read and/or feed:write scopes
  4. Copy the key — it is shown only once

Error Responses

StatusMeaning
401 UnauthorizedMissing or invalid API key
403 ForbiddenValid key but insufficient scope
429 Too Many RequestsRate limit exceeded (60 req/min)
Last modified on March 18, 2026