Authentication & API Keys
Every public Docspeed customer API request uses bearer auth:
Authorization: Bearer YOUR_DOCSPEED_API_KEYWhat to send
- Send the bearer header on every
POST /v1/*andGET /v1/*request. - Use the same hosted API key across upload, parse, extract, schema builder, jobs, and chat calls.
- Rotate keys through your own secret manager, not source control.
Missing or invalid auth
Requests without a valid key return 401 Unauthorized.
{
"detail": "Missing bearer token"
}Recommended storage
- Local development: environment variables
- CI/CD: your deployment secret manager
- Customer-facing apps: backend proxy or server-side token injection