API keys
Create and manage API keys for authenticating with the Agentbot API. All endpoints require session authentication.List keys
Response
Create key
Request body
Response (201 Created)
Errors
Get key
Response
Errors
Delete key
Response
Errors
Validate key
The
POST /api/keys/validate endpoint is planned for a future release. API key validation is currently available through the backend endpoint POST /api/validate-key, which uses SHA-256 hash comparison.Request body
Response
How it works
- The key prefix (first 10 characters) is used for a fast database lookup.
- Candidate keys matching the prefix are compared using
bcrypt.compareagainst the stored hash. - On match, the user’s profile and subscription information are returned.