Authentication

The Duro GraphQL API uses Bearer token and API key (via x-api-key header) authentication. All API requests must include an authorization token in the header.

Obtaining an API Authentication Token

To get started with the Duro API, you'll need to:

Create a Duro account at durohub.com
Navigate to your account settings
Generate an API token from the Developer section
Your URL to get an API key is: https://durohub.com/org/@<your org slug>/libs/<your library slug>/settings/api-keys

Using the Token

Include your API token in all requests using the x-api-key header:

x-api-key: YOUR_API_TOKEN

Token Security

Never share your API tokens
Rotate tokens regularly
Use different tokens for development and production
Store tokens securely in environment variables

Never commit API tokens to version control or expose them in client-side code.

Next Steps

Learn how to make your first API call in the Hello World guide.

PreviousIntroduction NextHello World

Last updated 25 days ago