LatentKit

Authentication

Authenticate LatentKit API requests with a Bearer API key stored server-side.

Send your raw API key on every /v1/* request:

Authorization: Bearer <LATENTKIT_API_KEY>
Content-Type: application/json

Base URL

https://ai.latentkit.com

SDKs default to this base URL and normalize paths to /v1.

Where keys come from

  1. Sign in to console.latentkit.com
  2. Open API Keys or use the default key from AI Router
  3. Copy the secret when created and store it in your server environment

Security rules

Never expose raw API keys in frontend code, public repos, or AI tool prompts. Load secrets from environment variables or a secrets manager on the server only.

  • Rotate keys from the console if a secret may have leaked
  • Use separate keys per environment (development, staging, production)
  • Log X-LK-Request-ID on failures for support correlation

Invalid or missing keys

ConditionTypical response
Missing key401 with missing_api_key or {"detail":"Missing API key"}
Invalid or revoked key401 with invalid_api_key or {"detail":"Invalid or revoked API key"}

See Error handling for the full error contract.

Next

Core Concepts

Routes, API keys, capabilities, and how LatentKit resolves provider execution.

API Keys

Create and manage workspace API keys and route assignments in the LatentKit console.

On this page

HeaderBase URLWhere keys come fromSecurity rulesInvalid or missing keysNext