Authentication

All API requests require a Bearer token in the Authorization header.

Authorization: Bearer pf_key_...

Creating an API key

Go to Settings → API Keys
Click New Key, give it a name, and choose a permission level
Copy the key — it’s only shown once

Store your API key in an environment variable or secrets manager — never commit it to source control. Keys are prefixed with pf_key_ so they’re easy to detect in accidental leaks.

Permission levels

Level	Access
`all_access`	Full read and write — upload, search, manage collections
`read_only`	Search and read only — no uploads or deletes

Use read_only keys for client-side or agent integrations where you don’t need to upload.

Revoking a key

Revoke a key immediately from the API Keys dashboard if it’s compromised — requests using it will be rejected within seconds.