New 42-day free trial Get it now
Smarty
    • RecommendedPinpoint 2025: Day 1 recapNovember 28, 2025Pinpoint 2025: Day 2 recapNovember 28, 2025What to look for in an address data solution: Ease of implementation November 19, 2025
    In this webinar breakdown, you'll learn some of the most useful tips and tricks to ensure your APIs are authenticated

    We brought out the big guns in the way of our Development Team Lead, Kent Gividen, in a webinar all about authenticating your APIs. He went over some of his most useful tips and tricks that he uses to ensure APIs are authenticated. Was it helpful? You betcha. You wanna get the SparkNotes? Read on.

    Common and not-so-common APIs to know about

    Kent began by outlining the APIs that he has run into the most in his years as a developer. Some of them he dug into a little deeper than others, but these are all useful to be aware of.

    • REST
      • XML
      • JSON
    • SOAP
      • XML
      • WSDL
    • RPC
    • Proprietary
    • Socket

    For the rest of the session he focused on the REST APIs as those are the most common from an HTTP perspective.

    Advantages between API and SDK

    You can work with APIs raw, and there are benefits to doing so. However, you may find that using an SDK is much easier.

    With an SDK you’ll most likely experience a faster startup, you can use one that is code specific, and there may be features built in such as multi-threading, batch modes, and more. You can see a list of Smarty’s SDKs here.

    With a raw API you’ll get much more control over how it is implemented, even if that makes your setup a little more tedious. You’ll also be able to use any code base supporting HTTP, which is basically all of them.

    Different types of authentication

    The key to authentication is security. Keeping that in mind you’ll want to know the difference between Embedded keys, which is client side and mobile app focused, or Secret keys which is using a server side key that you do not want to share with people.

    You can also use the increasingly popular OAuth, but Kent didn't cover that too deeply. But essentially it’s allowing you to use your login for some services on other services, like logging in with your Google account.

    Other considerations

    When you’re using an API you’ll want to make sure you’re using HTTPS with TLS for encryption. You may also want to consider rate limiting. Other things that are becoming more common are nonce, or expiring keys, and proxy servers for additional off-site security. You can pick from several different proxy server options including HA Proxy, Auth0, Okta, etc. This will help you provide an API to your customer that is secure.

    Tips and tricks for testing authentication

    Kent went through several different tips and tools that he uses to authenticate his APIs. He dives into detail in the recording, but we’ll list a few of them here:

    • curl
    • postman
    • SoapUI
    • Use environment variables for config files
    • shell / command line
    • st / sd / sl

    He gave examples of many of these so if you’re curious about any of them you can check out the 6:40 mark in the recording.

    Try it yourself

    The latter half of the webinar was filled with fantastic examples and demonstrations of the different ways to authenticate APIs. This is difficult to represent in text, so you’ll probably just want to watch the recording below.

    However, if you’d like to try setting up some address validation via an API, you can check 1,000 addresses for free by signing up for a free trial of the Smarty tools, and you can use the API—or any of our SDKs—even on those 1,000 lookups!

    Webinar recording

    Subscribe to our blog!
    Learn more about RSS feeds here.
    Read our 5 address validation use cases ebook now
    Read our recent posts
    Pinpoint 2025: Day 1 recap
    Arrow Icon
    For two days, Smarty users gathered together with other address data experts for Pinpoint, Smarty’s first virtual user conference, where developers, industry experts, and product specialists talked all things addresses and pulled back the curtain on address data solutions. Attendees asked questions about cloud-based software, the impact of accurate address data on fintech and insurance companies, and the ROI of good address data across all industries. Plus, attendees got to take a peek behind the scenes and see what makes Smarty’s address data solutions tick.
    Pinpoint 2025: Day 2 recap
    Arrow Icon
    For two days, Smarty gathered address data experts for Pinpoint, our first-ever virtual user conference. There, developers, product specialists, and industry experts delved into the nitty-gritty details of address data that you need to understand in order to succeed in your industry. Attendees learned how to process addresses faster (much faster) than the blink of an eye, with and without using code! They also got to look under the hood on how insurance is evolving and becoming even more efficient than ever to create a “delightful user experience.
    What to look for in an address data solution: Ease of implementation
    Arrow Icon
    You’ve maybe chosen an address data provider (or maybe you’ve just recently fallen out of love with the one you’ve got). Now comes the time to really test what matters: implementation. Even the best solution falls short if it’s hard to integrate, confusing to use, or impossible to maintain. This blog is part of our five-part series, What to look for in an address data solution. Previously, we discussed why human support teams should be top of mind when choosing an address data solution. Not just tech support, but educational materials, help getting started, and more.
    Previous Post
    Next Post

    Ready to get started?

    Schedule Demo
    42-day Free Trial