Asset Transformation API
Security
Authentication
The Unilever APIs uses HTTP headers to pass authentication information to all endpoints. The headers have the following format:
client_id:xxxxxx
client_secret:xxxxxx
An example HTTP request containing authentication headers is shown below:
GET https://productassetdata.unileverservices.com/{API Specific URL} HTTP/1.1
client_id: sample_client_id
client_secret: sample_client_secret
Details of how to obtain your Client ID and Client Secret can be found in the "Getting Started" section.
Unauthorised Access
If the Client ID and Client Secret are invalid the following HTTP Response will be returned.
HTTP/1.1 401
Server: nginx
Date: Fri, 22 Apr 2016 09:26:26 GMT
Content-Type: text/plain
Content-Length: 34
Connection: keep-alive
Invalid client_id or client_secret
IP Whitelisting
The Unilever APIs uses IP white listing to secure the endpoint. You will need to provide all IP addresses that you will be using to access the API. Please note that there is a 5 day SLA on the addition/update of any IP white listing.