The API uses the following request header:
The Authorization header includes the API key and session tokens.
Each request can optionally include:
An X-On-Behalf-Of-Customer-ID header containing the ID of the Vault customer that the service account is making the request for.
An X-On-Behalf-Of-Employee-ID header containing the ID of the bank employee that the service account is making the request for.
These headers are used only by the Audit and Action Logs services. The values assigned to the headers will be in the corresponding logs generated by the request.
These headers won't change any of the functionality of the underlying API call. Requests will behave identically whether they're included or not.