Documentation/

Developer

API Keys

Create and manage API keys for programmatic access to the Kite platform from the CLI, MCP server, or CI/CD pipelines.

Overview

Overview

API keys provide long-lived, non-interactive authentication for headless environments. They start with the prefix kite_ and work anywhere a Firebase token is accepted — every API endpoint, including the agent orchestrator.

Never expire

Unlike Firebase tokens (1 hour), API keys live until revoked.

SHA-256 hashed

Plaintext is never stored — only a secure hash.

Prefix-indexed

Fast lookup using the first 13 characters.

Usage tracking

last_used_at updated on every authentication.

Creating a key

Creating a key

From the dashboard: Go to Settings > API Keys and click "Create API key".

From the API:

Terminal
curl -X POST https://api.kiteml.com/api/api-keys \
  -H "Authorization: Bearer <your_firebase_token>" \
  -H "Content-Type: application/json" \
  -d '{"name": "CI Pipeline"}'
Note

The raw key is returned only once in the response. Store it securely — you won't be able to see it again.

Using a key

Using a key

Pass the key as a Bearer token in the Authorization header:

HTTP
Authorization: Bearer kite_aBcDeFgH...

Or set it as an environment variable:

Terminal
export KITE_API_KEY=kite_aBcDeFgH...

# Now both CLI and MCP server will use it automatically
kite project list
kite-mcp  # MCP server reads KITE_API_KEY

Security

Security

SHA-256 hashing

Keys are stored as hashes — the plaintext is never persisted.

Prefix index

First 13 characters used for efficient database lookup.

User-scoped

Each key is tied to a single user account.

Soft revocation

Revoked keys are soft-deleted and cannot be reactivated.

Managing keys

Managing keys

View and revoke keys from Settings > API Keys in the dashboard. Each key shows its name, creation date, prefix, and last used date.

API reference

API reference

MethodPathDescription
POST/api/api-keysCreate a new key. Body: { name: string }
GET/api/api-keysList active keys (no secrets returned)
DELETE/api/api-keys/:idRevoke a key

Built for the team you're becoming.

Start free, scale when you need to — or partner with us as a startup.

Basic

Start building with Kite.

Free
  • 1 project
  • Limited compute credits
Sign up
For startups

Startups

Tailored to your stack and your data.

Custom
  • Unlimited projects
  • Compute on demand
  • Forward deployed engineers

Pro

Scale to production with cloud GPUs.

$100/ user / month
  • Unlimited projects
  • Generous compute credits
Subscribe now