> ## Documentation Index
> Fetch the complete documentation index at: https://docs.renovationfind.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Authentication

> How to authenticate with the RenovationFind Internal Manager API

# Authentication

All Internal API endpoints require a **Bearer token** in the `Authorization` header.

## Getting Your Token

Manager API tokens are issued from the **RenovationFind Manager Portal** under
**User Management**. Only users with the **Admin** role can have API tokens generated.

1. Navigate to **User Management** in the Manager Portal
2. Find the admin user in the table
3. Click the actions menu and select **Manager API Token**
4. Click **Generate Token** and copy the token

## Making Requests

Include the token in every request:

```bash theme={null}
curl -X GET https://www.renovationfind.com/rest-manager-api-v1/vendors?search=acme \
  -H "Authorization: Bearer YOUR_MANAGER_JWT_TOKEN" \
  -H "Content-Type: application/json"
```

## Example: Update Vendor Features

```bash theme={null}
curl -X PATCH https://www.renovationfind.com/rest-manager-api-v1/vendors/123/features \
  -H "Authorization: Bearer YOUR_MANAGER_JWT_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "enableFullRMS": true,
    "enableStandaloneFeedbackBooster": true
  }'
```

## Token Details

* Tokens are JWT-based and tied to a specific **admin** manager account
* Each manager has one active token at a time
* Tokens do not expire but can be regenerated from the Manager Portal
  (this invalidates the previous token)
* Only managers with the **Admin** role can be issued tokens
* The token grants access to all Internal API endpoints
