keys

Verify API key

Verify an API key’s validity and permissions for request authentication.

Use this endpoint on every incoming request to your protected resources. It checks key validity, permissions, rate limits, and usage quotas in a single call.

Important: Always returns HTTP 200. Check the valid field in response data to determine if the key is authorized.

Common use cases:

Authenticate API requests before processing
Enforce permission-based access control
Track usage and apply rate limits

Required Permissions

Your root key needs one of:

api.*.verify_key (verify keys in any API)
api.<api_id>.verify_key (verify keys in specific API)

If you are getting a NOT_FOUND error, ensure your root key has the required verify key permissions.

Get API key by hashFind out what key this is. **Required Permissions** Your root key must have one of the following permissions for basic key information: - `api.*.read_key` (to read keys from any API) - `api.<api_id>.read_key` (to read keys from a specific API) If your rootkey lacks permissions but the key exists, we may return a 404 status here to prevent leaking the existance of a key to unauthorized clients. If you believe that a key should exist, but receive a 404, please double check your root key has the correct permissions.

⌘I

Introduction

Endpoints

Verify API key