On an upcoming update to RPM, the system will start requiring that the key be the first piece of data to be present in the request data.
Like this:
{
"Key": "<Your API Key>",
... <"Rest of the Request Data>
}
The reason for this change is to optimize resource usage by not having to parse the entire request if the key is incorrect.
If you don’t do this already, we recommend that you do as it will not affect the way requests works at the moment and will ensure future compatibility when this requirement starts to be applied.
RPM Developers Website - API Documentation and News 