Every request must include your API key as a Bearer token: 
Authorization: Bearer vk_live_your_key_here
As an alternative, you may use the X-API-Key header: 
X-API-Key: vk_live_your_key_here

Example

curl https://api.trysasha.ru/v1/account \
  -H "Authorization: Bearer $SASHA_API_KEY"
Treat your API key like a password. Don’t commit it to source control or ship it in client-side apps. If a key leaks, ask us to revoke it and issue a new one.

Errors

StatusCodeMeaning
401unauthorizedMissing, invalid, or revoked API key
403client_disabledThe account is not active
See Errors for the full list.