Learn how to authenticate to PandaScore REST and WebSockets APIs.

Access to our APIs is restricted by token-based authentication. Your access token is available on your Dashboard.



This token is private, do not use it in client-side applications.


All requests against the REST API must be authenticated. PandaScore accepts two authentication methods: via a Bearer token set in HTTP request headers or by passing the token in the URL.

Bearer Token

You can authenticate by setting an Authorization HTTP header on your request with the value Bearer <insert your token here>.

curl --request GET \
     --url '' \
     --header 'Accept: application/json' \
     --header 'Authorization: Bearer PLACEHOLDER_TOKEN_VALUE'

URL Parameter

Alternatively, you can also authenticate by passing your token via a token URL parameter.

curl --request GET \
     --url '' \
     --header 'Accept: application/json' 

These examples use the All Video games > List video games endpoint.

WebSockets API

The WebSockets API only accepts authentication via URL parameter. Append your token in a token URL parameter when trying to connect.

wscat -c "wss://" 



This example uses wscat to output WebSockets message in the terminal.

Next Step

Before taking your app to production, make sure to be aware of these limitations.