Every device must provide a valid access token when it sends telemetry to the Tracking backend via the Tracking API. Tokens must be obtained from the Tracking API upon the device login. In order to be able to login, the device must be associated with a user project, that is claimed by an end user.
The Tracking API requires the device token requests to be signed. The signature method uses the OAuth 1.0 standard. For more information on this standard, see the OAuth Core 1.0 specification.
IMPORTANT You must create a new signature for each device access token request to the Tracking API. Signatures can only be used once. For more details on the Tracking API authentication, see the Tracking API documentation.
For the available authentication options, see the Identity & Access Management Developer Guide.