API Keys

Workspace API keys are managed in Settings → Keys and authenticate calls to the Woes REST API.

Key Properties

Property	Behavior
Prefix	`woesk_`
Secret visibility	Full secret shown once at creation.
Storage	Only a hash and visible prefix are stored.
Scope	Workspace-scoped.
Current use	REST API authentication.

Open Settings → Keys

Find the Workspace API keys section.

Name the key

Use a clear integration name.

Create the key

Copy the full secret immediately.

Store it safely

Put the key in your server-side secret manager.

Revoking a key prevents future use. Create a replacement key before revoking if an integration depends on uninterrupted access.

Workspace API keys are not widget keys. Do not use woesk_ secrets in browser snippets.

curl https://woes.dev/api/v1/conversations \
  -H "Authorization: Bearer $WOES_API_KEY"

If the key is missing, unknown, revoked, or expired, the API returns 401.