Authentication
Secure your Larz API requests with a key.
Every Larz API request is authenticated with your secret key in the Larz-Api-Key header.
Larz-Api-Key: larz_sk_xxxxxxxxxxxxxxxxxxxxxxxx
An Authorization: Bearer larz_sk_… header is also accepted. Keys are secret — keep them server-side, never in client code.
Managing keys
- Create, name and revoke keys on the developer dashboard.
- The secret is shown once at creation — store it immediately.
- Revoke a key any time; apps using it stop working instantly.
Errors
Auth problems return HTTP 401 with {"error":{"type":"auth","message":"…"}}. See all error types.