Skip to main content

Documentation Index

Fetch the complete documentation index at: https://sentralbee.mintlify.app/llms.txt

Use this file to discover all available pages before exploring further.

Every request needs your API key, sent as a Bearer token: 
Authorization: Bearer sk_live_your_key_here
If a Bearer token doesn’t suit your setup, you can send the key in an X-Api-Key header instead. Either one works.

Live and test keys

A key that starts with sk_live_ works against your real workspace. One that starts with sk_test_ is for development and staging. The first part of the key — the bit you can see in the dashboard — is just there to help you tell keys apart. The rest is the secret, and you only see it once, when you create the key.

The key already knows your workspace

A key belongs to one workspace, and that’s how we know whose data you’re asking for. It’s why the workspace never shows up in the URL: GET /v1/products returns the products for whatever workspace the key belongs to.

Keep your keys safe

Treat a key like a password:
  • Keep it on your server — never in a browser, a mobile app, or a public repo.
  • Always call the API over HTTPS.
  • To rotate a key, create a new one and delete the old one. Deleting takes effect right away and can’t be undone.
  • Give each key only the permissions it needs (see Scopes & permissions).

When sign-in fails

  • 401 — the key is missing, wrong, or no longer active.
  • 403 insufficient_scope — the key is valid but isn’t allowed to do this.
  • 403 plan_required — the workspace’s plan doesn’t include the API.
Errors shows exactly what these responses look like.