Docs

API Keys

Create and manage API keys for programmatic access

Overview

API keys authenticate requests to the coSPEC API. Keys are workspace-scoped — a key grants full API access for its workspace.

Key format: csk_live_* prefix followed by a random token.

Creating a Key

In the dashboard, go to API Keys → Create API Key.

Name the key (for your reference) and copy the full key immediately.

The key is shown only at creation. It cannot be retrieved afterward.

Using a Key

Pass the key as a Bearer token in the Authorization header:

Terminal
curl https://api.cospec.io/v1/runs \
  -H "Authorization: Bearer csk_live_..."

Managing Keys

Keys are visible in the dashboard with the following details:

  • Name — your label for the key
  • Prefix — first characters of the key (e.g. csk_live_abc123...)
  • Created by — team member who created it
  • Last used — timestamp of the most recent API call

To revoke a key, use the dashboard or the API. Revoked keys stop working immediately.

Keys do not expire — they are valid until revoked.

Templates

Configure reusable sandbox environments for your runs

Workspaces & Members

Workspace and member management

On this page

OverviewCreating a KeyUsing a KeyManaging Keys