A majority of clients required additional access control to be offered in order to protect player data exposed via the member API.  To achieve this a service called createMemberToken was added to the admin api. See link below. 


https://documentation.ziqni.com/admin-api/#tag/member-token/operation/createMemberToken


POST https://api.ziqni.com/member-token


The video below shows how to access the token and the steps to take once the token has been retrieved. 






You can use the token retrieved above with the member -sdk.


https://www.npmjs.com/package/@ziqni-tech/member-api-client


https://github.com/ziqni-tech/gamification-ux-package/tree/ziqni-member-sdk


This means security is now your choice,  ZIQNI has no opinion on how you do this. 

 

The options are; 


1. Pass the token to a mciro service that calls the admin api and returns the member - api token for use OR 

2. Generate the token in the brower like this : https://test-space-1.cdn.ziqni.com/widget/index.html


The above method will also be more beneficial as ZIQNi starts to release instant wins and other game like prize components top use in product promotion and customer retention activities.


If you require any further guidence on how to retrieve a token please contact us via the helpdesk.