# Authentication setup

The RogerRoger API gives you the foundation to create custom integrations and share data with other platforms, letting you sync contacts,  generate tasks, or run automations with ease.

To get started, you need:

1. An active RogerRoger subscription
2. An administrator account
3. An API key  ([create an API key here](https://app.rogerroger.io/admin/api))

#### Authentication and connection with API keys

RogerRoger only supports API key authentication. You can view and manage your API keys in the RogerRoger admin. We recommend starting with a simple GET call:

```
// Get all people
curl -X GET "https://api.rogerroger.io/people"
  -H "X-API-KEY: YOUR_API_KEY"
```

{% hint style="success" %}
The API key needs to be passed as a header in every API call you make.
{% endhint %}

All API requests must be made over HTTPS.

* Calls made over plain HTTP will fail.
* API requests without authentication will also fail.

{% hint style="warning" %}
Your API key carries many privileges, so be sure to keep it confidential! Do not share your API keys in publicly accessible areas such as GitHub, client-side code, and so forth.
{% endhint %}