Using HTTPS

You communicate with the REST API using HTTP protocols. For added security, we require all requests to the REST API to be HTTPS. Your client for the REST APIs is not a web browser. Instead, you would use a client tool, such as SoapUI, or curl. For integration into your native application, you would write your own client using a language such as Java or Python. Any tool that can send HTTPS requests to our REST API server over the Internet, set specific request headers, and receive downloaded data can use the REST API.

To support the case where you perform simple REST API tests from a web browser, the API includes cross-origin resource sharing (CORS) metadata in the headers.