Afosto|Developer Docs
/K

Authentication#

The Afosto API uses API keys to authenticate requests. Include your API key in the Authorization header of every request.

Getting an API key#

  1. Log in to your Afosto account
  2. Go to Settings → API
  3. Click Create API key
  4. Copy the key — it will only be shown once
Warning:Your API key is shown only once at creation time. Store it in a secrets manager or environment variable immediately — there is no way to retrieve it later.

Using your API key#

Pass your API key as a Bearer token in the Authorization header:

POST https://afosto.app/graphql
Authorization: Bearer YOUR_API_KEY
Content-Type: application/json

Example request#

curl -X POST https://afosto.app/graphql \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"query": "query { me { id email } }"}'

Security#

  • Keep your API key secret — treat it like a password
  • Never expose API keys in client-side code or public repositories
  • Rotate keys periodically and immediately if compromised
  • Use one key per integration to make it easy to revoke access
Query Runnerhttps://afosto.app/graphql

No query loaded

Click play on any code block in the docs to load a query here.