...
Approach one: Keeping token/cookie for the duration of two hours.
Pros: Easy, Allows for single API calls.
Cons: Need to track time, Logic to handle token/cookie time out.
...
Cons: Need to track cookie, Logic to handle token/cookie time out.
Some REST clients will automatically track cookies with minimal or even without any custom logic required
How to authenticate
You will be issued a username and password. These credentials can be used to authenticate via the API endpoint /api/v2/authenticate. A successful call to this API will result with being issued a cookie and token.
...