Skip to content

Authentication

Every request is authenticated with an API key in the Authorization header:

Terminal window
curl "https://api.scrapersocial.com/v1/me" \
-H "Authorization: Bearer sk_live_..."

Keys start with sk_live_ and are shown once at creation — store them in a secrets manager, not in source control.

Managing keys

Create, name, and revoke keys at scrapersocial.com/app/keys. You can hold several keys at once (one per environment or service), and revoking one takes effect within seconds.

Checking who you are

/v1/me returns the account attached to the key — useful in CI to verify a secret is wired correctly:

{
"data": {
"account_id": "acc_01J...",
"plan": "annual",
"credits_remaining": 11310,
"rate_limit_rpm": 300
},
"request_id": "req_01JZX4M8Q2TE9W"
}

Failure modes

StatusCodeMeaning
401unauthorizedMissing or malformed Authorization header
401invalid_keyKey revoked or unknown
402insufficient_creditsBalance is empty — top up or upgrade

For OAuth-based agent access (the MCP server supports OAuth 2.1 with PKCE), see For AI agents.

Next: Errors · Rate limits