Workestra
API ReferenceAuthentication

Authentication

Authenticate your API requests with API keys.

All API requests require authentication via an API key passed in the Authorization header.

Getting an API Key

  1. Go to Settings → API Keys in your Workestra workspace
  2. Click Create API Key
  3. Name your key (e.g., "Production Integration")
  4. Copy the key — it's only shown once

Using Your API Key

Include your API key in the Authorization header of every request:

curl -X GET \
  https://eitztntfwelucezqxjmw.supabase.co/functions/v1/api-contacts \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json"

Key Permissions

API keys inherit the permissions of the workspace they belong to. All keys have access to the modules active on the workspace's plan.

Revoking Keys

  1. Go to Settings → API Keys
  2. Click the delete icon next to the key
  3. The key is immediately invalidated

Security Best Practices

  • Never commit API keys to version control
  • Use environment variables to store keys
  • Rotate keys regularly
  • Use separate keys for development and production
  • Monitor key usage in the audit log

API Reference

Build integrations with the Workestra REST API.

Endpoints Overview

Summary of all available API endpoints.

On this page

Getting an API KeyUsing Your API KeyKey PermissionsRevoking KeysSecurity Best Practices