With regard to authentication, the easiest way to do this is to provide a way to specify your API token and to store it locally in a cookie.
Note: It is not READ via cookie (and must be set into the headers of all requests) so does not have CSRF implications.
With regard to authentication, the easiest way to do this is to provide a way to specify your API token and to store it locally in a cookie.
Note: It is not READ via cookie (and must be set into the headers of all requests) so does not have CSRF implications.