Learn how to authenticate with Dastra API.

Obtaining the secret API key

The Dastra Rest API uses API keys to authenticate each request. You can manage your keys in your organization's configuration interface. You can use an API key for a specific workspace or for the entire organization. Your API key allows you to do many things, so keep it safe. Don't share your secret key in public parts of applications like GitHub, client code...etc.... If you wish to use OAuth2 authentication in "authorization_code" mode, you'll need to configure the redirection url(s) and the authorized CORs origins.

API key (X-API-Key)

To authenticate yourself, the simplest way is to use an HTTP X-API-Key header containing the private key of your API key, as in the example below:

curl -X 'GET' \
  '' \
  -H 'accept: */*' \
  -H 'X-API-Key: <your private key here>'

Last updated