Authentication

API Key Authentication

Generate an API key from your workspace settings and pass it via the Authorization header.

curl ${API_URL}/v1/workspaces \
  -H "Authorization: Bearer <your-api-key>"

OAuth 2.0

AmDital supports the OAuth 2.0 Authorization Code flow with PKCE for third-party integrations.

GET ${AUTH_URL}/authorize?
  response_type=code&
  client_id=<client-id>&
  redirect_uri=<redirect-uri>&
  scope=openid+profile+email+workspace

JWT Sessions

All API responses include a Set-Cookie for Supabase session management. The access token expires in 1 hour; the refresh token is valid for 30 days.