RSMG Engage — User Engagement Platform API
Multi-tenant engagement API for publishers: comments, discussions, reactions, moderation, real-time streaming (SSE), and webhooks.
Authentication
- HTTP: Bearer Auth
- API Key: apiKey
- API Key: identityAssertion
- API Key: identitySignature
Admin panel JWT (issued by POST /api/v1/admin/auth/login)
Security Scheme Type: | http |
|---|---|
HTTP Authorization Scheme: | bearer |
Bearer format: | JWT |
Tenant API key for authentication
Security Scheme Type: | apiKey |
|---|---|
Header parameter name: | X-API-Key |
base64url identity assertion vouching for the acting end-user (signed by the publisher backend; see the identity-signing guide).
Security Scheme Type: | apiKey |
|---|---|
Header parameter name: | X-RSMG-Engage-Identity |
HMAC-SHA256 signature over the assertion: t=<unix>,v1=<hex>,kid=<8hex>. Required whenever X-RSMG-Engage-Identity is sent. An OIDC ID token in Authorization: Bearer is the alternative proof (ADR-0054).
Security Scheme Type: | apiKey |
|---|---|
Header parameter name: | X-RSMG-Engage-Identity-Signature |