Getting started

Welcome to the ZedTech developer platform.

This guide helps you make your first authenticated API request to ZedTech. Our APIs use OAuth 2.0 with JWT access tokens signed by our authorization server.

Overview

Authentication flow:

Obtain an API Key

Request an OAuth Access Token

Call ZedTech APIs using the Bearer Token

APIs validate tokens using the JWKS endpoint

Auth Server:

https://auth.zed.co.ug

JWKS Endpoint:

https://auth.zed.co.ug/.well-known/jwks.json

Step 1 — Obtain an API Key

Before you can authenticate, you must obtain an API Key from ZedTech.

Example:

API_KEY=zk_live_123456789

Treat your API key like a password.

• Never expose it in frontend code
• Store it in environment variables

Step 2 — Request an Access Token

Use the OAuth client_credentials flow to obtain a token.

Token endpoint:

POST https://auth.zed.co.ug/oauth/token

Example:

Example response:

{
  "access_token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...",
  "token_type": "Bearer",
  "expires_in": 3600
}

Step 3 — Call an API

Include the token in the Authorization header.

Example:

Getting started

Overview#

Step 1 — Obtain an API Key#

Step 2 — Request an Access Token#

Step 3 — Call an API#

Overview

Step 1 — Obtain an API Key

Step 2 — Request an Access Token

Step 3 — Call an API