# Bypass Solution

## **How the Solution Works**

To bypass Castle:

1. Send to our endpoint the website domain and mail
2. Parse the response and use it as `cognitoAsfData`

### **Required Parameters**:

* `website`: The website domain
* username: The username or mail you are going to use for authentiation

It's highly recommended to provide your session’s `User-Agent`, `Sec-Ch-Ua`, and `Accept-Language` headers for more accurate token generation.

### Example Response

```json
{
  "response": "...",  // Use this token for your next request
}
```

{% hint style="info" %}
In order to access any of our endpoint you'll need **a valid API Key,** either [join our discord](https://takionapi.tech/discord) for a trial or [puchase a plan](https://takionapi.tech/buy)
{% endhint %}

{% openapi src="<https://2720813823-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fn0x4RrnIfxXvmfh6rJHh%2Fuploads%2FRUForWGea7kcwnDAm82m%2Fopenapi.yaml?alt=media&token=f1ebf064-db66-4a46-9cdf-0ffbb69345fc>" path="/generate" method="get" %}
[openapi.yaml](https://2720813823-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2Fn0x4RrnIfxXvmfh6rJHh%2Fuploads%2FRUForWGea7kcwnDAm82m%2Fopenapi.yaml?alt=media\&token=f1ebf064-db66-4a46-9cdf-0ffbb69345fc)
{% endopenapi %}