Skip to main content


All customer-specific requests in Quiltt require a valid User Session Token. We support several different flows to generate these tokens, depending on your use-case.

Server-Side Auth allows you to generate a User Session Token on behalf of your customer, authenticating via your App Secret.

Client-Side Auth allows your customers to create a User Session Token on their own behalf, authenticating via a one-time passcode sent to their phone or email.

In addition to authenticating existing users, both flows support creating new users on the fly, as well as importing/syncing existing users into Quiltt. For more details, please see the appropriate guides and the Authentication API Reference.