# API Basics

### Our API is REST-based on HTTPS

* It works with standard HTTP verbs like `GET`, `POST` and `PATCH`
* We use standard HTTP error responses to describe errors
* All API requests MUST be made over SSL, including outgoing webhooks. Any non-secure requests return as `ssl_required`, and no redirects are performed
* POST data should be encoded as standard `application/json`
* All our responses are in JSON format