Skip to main content
StoreInspect API requests use Bearer authentication. 
curl https://storeinspect.com/api/v1/usage \
  -H "Authorization: Bearer $STOREINSPECT_API_KEY"

API keys

API keys are created from the StoreInspect dashboard by paid-plan accounts with API access enabled. Keep keys server-side. Do not put them in browser code, mobile apps, public repos, client logs, or query strings.

Request IDs

Every API response includes an X-Request-Id header and a request_id field in the JSON body. Include the request ID when contacting support. 
X-Request-Id: req_abc123

Key safety

  • Store keys in environment variables or a secret manager.
  • Use separate keys for separate integrations.
  • Rotate a key immediately if it may have been exposed.
  • Never log raw API keys.