Interactive demo — sample data only. No account required. Create an account to use your own documents.
← Documentation

Authentication & API keys

OAuth2, API keys, and rotation.

Edit for real
Branch main · Current saved content (live branch tip)

Authentication

Use OAuth 2.0 client credentials for server-to-server calls. Human flows use the hosted login; API keys are for trusted automation only.

Authorization: Bearer <token>

Rotate API keys every 90 days. Scoped keys cannot escalate privileges.