Authentication
Token usage, abilities, and headers.
The Public Restaurant API uses bearer tokens with the restaurant-api ability.
Token Format
Authorization: Bearer <token>Required Header
All requests must send:
Accept: application/jsonIf this header is missing, some requests may redirect to HTML login responses.
IP Allowlist (Optional)
If an IP allowlist is configured, requests from non-allowed IPs will return 403.