JWT Authentication
All API requests require a JWT token:API Key Authentication (MCP)
For programmatic access via the MCP server, use an API key:Creating an API Key
- Go to API Keys in the app
- Click Create API Key
- Copy and securely store your key
Key Management
Rate Limiting
- MCP server: 60 requests per minute per API key
- Backend APIs: Standard rate limiting applies
Internal Service Auth
Services communicate usingX-Internal-Secret header for service-to-service calls..png?fit=max&auto=format&n=gbfjATVuDlrW3nc5&q=85&s=18d74c7d9905cdd8e08147a76da1eab2)