API key
Every request must include your API key in theAuthorization header:
Example
Error responses
| Status | Code | Cause |
|---|---|---|
401 | missing_api_key | No Authorization header was sent. |
401 | invalid_api_key | The key was not recognised. |
402 | credits_exhausted | Your credit balance is zero. |
429 | daily_credit_cap_exceeded | You’ve hit the daily cap for your plan. |
Security
- Store your API key in an environment variable — never commit it to source control.
- Each API key is scoped to a single tenant. Creating multiple tenants for isolation is not supported at this time.
- There is no key rotation endpoint in the current release; contact support to rotate a compromised key.