API request must be authorized. This is achieved by including an "x-api-key" and a "signature" in the request headers. The API key is used to identify the SubAccount, while the signature provides a layer of security to verify the request's authenticity.
These are encoded as HTTP headers named
x-api-key (Your API key)
signature (Signature created using your API secret)