ClawTickClawTickDocs

API Keys

API keys authenticate CLI requests and programmatic API access.

Creating an API Key

  1. Go to Dashboard → API Keys
  2. Enter a name for the key (e.g. "CLI", "Production")
  3. Click Generate New Key
  4. Copy the key immediately — it's only shown once

Using with the CLI

clawtick login --key cp_your_api_key_here

The key is stored locally at ~/.clawtick/config.json.

Using with the API

Pass the key in one of these ways:

# Header (recommended)
X-Api-Key: cp_your_api_key

# Or Authorization header
Authorization: Bearer cp_your_api_key

# Or query parameter
?api_key=cp_your_api_key

Key Format

ClawTick API keys use the cp_ prefix followed by 64 hex characters. Keys are hashed (SHA-256) before storage — we never store the raw key.

Revoking Keys

Click Revoke next to any key in the dashboard. The key stops working immediately. Any CLI or integration using that key will need a new one.

Security Best Practices

  • Never commit API keys to version control
  • Use environment variables in production
  • Revoke keys you no longer need
  • Create separate keys for different environments (dev, staging, prod)