Skip to main content

API keys

All requests to api.framelane.io/v1/* must include an Authorization header: 
Authorization: Bearer fl_live_kT9uQw...
You can create and manage API keys in the console under Settings → API Keys.
API keys are shown only once at creation time. Store them in a secret manager (e.g. AWS Secrets Manager, GCP Secret Manager, or a .env file excluded from version control).

Scopes

All API keys have full workspace access. Scoped keys with read-only or task-specific access are on the roadmap.

Rotating keys

  1. Create a new key in the console.
  2. Update your application to use the new key.
  3. Revoke the old key via DELETE /v1/api-keys/{key_id}.

Error responses

An invalid or missing API key returns: 
{
  "error": {
    "code": "unauthorized",
    "message": "Missing Authorization header."
  }
}
Status code: 401 Unauthorized.