Deprecation Warning
This authentication method is in the process of being deprecated. Please use Service Accounts instead. We will continue to support Project Secret authentication for legacy customers indefinitely so you aren't at risk of your existing scripts breaking, but we highly recommend migrating to Service Accounts for any subsequent usage.
Before we introduced Service Accounts, Project Secret was the standard authentication mechanism for importing and exporting data in your project.
Your Project Secret is very powerful so be sure to keep it secure. Do not share your secret in publicly accessible or insecure places such as source code or plain-text configs.
Authenticating with a Project Secret
Project secret authentication is performed via HTTP Basic Auth. Provide your secret as the basic auth username value with an empty password. Make sure you use HTTPS and not HTTP - our API rejects requests made over HTTP since this sends your API Secret over the internet in plain text.
curl https://api.mixpanel.com/import
-u <api_secret>: \\ # trailing colon prevents a password prompt
-d data=<encoded_event_data>
Managing a Project's Secret
A project's secret can be found in the Access Keys section of a project's settings overview page: https://mixpanel.com/settings/project/.
To learn more, view our project settings guide.