Bearer authorization type string enforced for API authentication

When you authenticate your API client to use Toast APIs, you must provide a bearer-type authentication token in the Authorization header field of your request. The string Bearer is a required part of the header field format Authorization: Bearer [token].

On 2024-10-28, the Toast APIs will enforce the required bearer token Authorization field format, including the string Bearer. If your integration does not include the string Bearer in the Authorization header field for all Toast API requests, implement authentication in a way that includes that string. Requests without the required bearer token field format will receive an error response

For more information about Toast API authentication, see Using an authentication token.