Thread:Category talk:API/API used for an internal semantic wiki

How is internal data protected by the API? Do you have to supply username and password, or is it handled by some secret token? Or does the wiki have to be open?