> ## Documentation Index
> Fetch the complete documentation index at: https://docs.contactbutton.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Authentication

> Authenticate API clients with a Contact Button access token.

## Sign in

Create an access token with:

```http theme={null}
POST /auth/login
Content-Type: application/json
```

The request accepts the account email, password, and a token name. Keep the token name stable so clients can identify and revoke tokens later.

## Authenticated requests

Send the returned token as a bearer token:

```http theme={null}
Authorization: Bearer <access-token>
```

The project-management endpoints require this header.

## Security

Never put access tokens in browser source, public repositories, logs, or support tickets. Use an environment variable or your server-side secret manager.
