Authentication

Bearer token auth

Send your API key in the Authorization header:

Authorization: Bearer <API_KEY>

All /v1/* endpoints require this header.

In self-hosted setups, use the key printed by npm run seed or any key you have provisioned via the dashboard.

{
  "error": {
    "code": "unauthorized",
    "message": "Missing or invalid Authorization header"
  }
}

{
  "error": {
    "code": "unauthorized",
    "message": "Invalid API key"
  }
}

⌘I