Authentication

Mosaic API

The Mosaic API is designed for robust and flexible integration capabilities. It supports simultaneous multi-instance integration and is platform-independent, ensuring compatibility with any API-enabled platform.

Getting Started

  1. Requesting an API Key

To start, reach out to your Mosaic Customer Success Manager to request an API Key. You'll need to provide:

  • The domain from which your server makes API calls.
  • Your preference regarding callback enablement:
    • For an Auto-Generated Webhook URL in the format <domain>/webhook, ensure your server is set to accept callbacks via this Webhook URL.
    • If you prefer a Custom Webhook URL that does not adhere to the <domain>/webhook format, inform your Mosaic Customer Success Manager to accommodate this customization.
    • Mosaic advises using HTTPS for secure data transmission. If you need to use HTTP, indicate this preference in your Webhook URL setup.

All REST API endpoints require an API Key in the request header for authorization.

Important: If you misplace your API Key, promptly contact your Customer Success Manager for a new one. Issuing a new key does not automatically deactivate any previous keys. If you need to deactivate an API key, please let us know.

  1. Receiving Your API Key and Mosaic Team ID

Upon request, your Customer Success Manager will provide you with an API Key and your unique Mosaic Team ID.

Using Your API Key

For API requests, include both your team id and API Key within the request header:

Example: /api/{team_id}/{data_type}

In the request header, include your API Key and Origin (the domain used for making API calls):

Authorization = {api_key}
Origin = {domain}

Note: Your origin should match the domain or the base of your Webhook URL (if you are using the auto-generated webhook, this should excluding the final /webhook). For example, if your Webhook URL is myCoolApp.com/api/webhook, your origin is myCoolApp.com/api.

API Rate Limit

The Mosaic API has a rate limit in place to ensure fair usage and maintain optimal performance for all users. The rate limit for Mosaic is set at 300 requests per 5 minutes, which averages to 1 request per second.

This means that you can make up to 300 requests to the Mosaic API within a 5-minute window. If you exceed this limit, you may receive a rate limit error response. It's important to manage your requests and ensure they stay within the specified limits to avoid disruptions in service.

Please note that the rate limit is subject to change based on system conditions and usage patterns. We recommend periodically checking our documentation for any updates or announcements regarding rate limit adjustments.

API Access for Single Tenant Customers

Single tenant customers will receive a unique API server URL, distinct from the common URL in our standard documentation. Please use the provided URL for your environment to ensure seamless integration and complete access to our tailored API services.