In regards to using the RESTful APIs in the POS WebService, I am aware that Basic Authentication is suitable, however I was wondering what other Authentication Methods are set up or able to be set up for using the APIs that would be more secure than a base64 encoding, for example Auth0 tokens, etc. Is there some documentation for setting up these authorisation methods?

We are trying to call the API in a web interface and have each company user use their own credentials to call the functions, but do not want to store what is effectively plaintext in a cookie or session just so the application can make consecutive calls without asking for details each time. It would be preferable to store some token in a cookie and use that for consecutive calls in that session.

Read More...