Authentication

Authenticate every request with a Bearer API key. Create and manage keys in the dashboard.

API keys

Create a key in the dashboard under API keys. Keys look like cite42_live_… and are shown in full once at creation, store it then; we only keep a hash. The same key works for the REST API and the MCP server.

Using the key

Pass it as a Bearer token on every request:

Authorization: Bearer cite42_live_xxx

Auth errors

A missing or malformed header returns 401 with a JSON error. A revoked or unknown key also returns 401. See Errors for the full shape.

Authentication - Cite42 Docs | Cite42