Authentication
Learn how to authenticate your API requests.
API Keys
All API requests require authentication using an API key. API keys are available for Starter, Pro, and Enterprise plans.
Your API key should be included in the Authorization header using the Bearer scheme:
curl -X POST https://meshqa.vercel.app/api/v1/validate \
-H "Authorization: Bearer mqk_your_api_key" \
-F "file=@model.glb"Creating an API Key
- Log in to your MeshQA account
- Navigate to the API Keys section in your profile
- Click "Create New Key"
- Copy the key and store it securely (it won't be shown again)
Key Format
MeshQA API keys follow this format:
mqk_[32 random alphanumeric characters]Example: mqk_a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6
Security Best Practices
- Never commit API keys to version control
- Use environment variables to store keys
- Rotate keys periodically
- Revoke compromised keys immediately
- Use different keys for development and production
Error Responses
Authentication errors return a 401 status code:
{
"error": "Missing Authorization header. Use: Authorization: Bearer <api_key>",
"code": "MISSING_API_KEY"
}Common authentication errors:
| Code | Description |
|---|---|
MISSING_API_KEY | No Authorization header provided |
INVALID_API_KEY | The API key is invalid or malformed |
API_KEY_REVOKED | The API key has been revoked |
API_KEY_EXPIRED | The API key has expired |