# Authentication

**Session Authentication (commerceSessionAuth):** All endpoints require session-based authentication. Requests are validated using the session cookie issued after login.

**Required Headers:**

```
Cookie: sessionid=<your-session-id>
```

#### Domain Glossary

**Offer Type:**

* `voucher_code`: Single-use promo codes valid for any user
* `coupon_code`: Single-use promo codes assigned to specific users
* `coupon`: Multi-use promotions assigned to specific users
* `sitewide`: Automatic promotions for all users
* `external_offer`: Offers originating from external promotion systems

**Benefit Type:**

* `FIXED`: Fixed amount discount (e.g. 100 TRY off)
* `PERCENTAGE`: Percentage discount (e.g. 20% off)
* `SHIPPING_FREE`: Free shipping benefit
* `SAMPLE_PRODUCT`: Free sample / gift product

**Condition Type:**

* `QUANTITY`: Minimum quantity requirement
* `AMOUNT`: Minimum basket amount requirement
* `QUERY`: Custom query-based condition

**Offer Status:**

* `ACTIVE`: Active and usable
* `PASSIVE`: Disabled / inactive
* `USED`: Consumed, cannot be reused
* `REVOKED`: Revoked / cancelled