Authentication

All API requests (except the health check endpoint) require authentication using an API key.

API Keys

API keys are used to authenticate your requests. Each key is tied to your account and has access to your data.

Getting Your API Key

Log in to your Limelight dashboard
Navigate to Settings > API Keys
Click Create New Key
Copy your API key — it will only be shown once

caution

Keep your API key secure. Do not share it in publicly accessible areas such as GitHub, client-side code, or public repositories.

Making Authenticated Requests

Include your API key in the Authorization header of every request:

curl -H "Authorization: Bearer llt_live_your_api_key" \
  https://api.limelighthq.com/api/endpoint

Example with JavaScript

const response = await fetch("https://api.limelighthq.com/api/endpoint", {
  headers: {
    "Authorization": "Bearer llt_live_your_api_key",
    "Content-Type": "application/json",
  },
});

const data = await response.json();

Example with Python

import requests

headers = {
    "Authorization": "Bearer llt_live_your_api_key",
    "Content-Type": "application/json",
}

response = requests.get("https://api.limelighthq.com/api/endpoint", headers=headers)
data = response.json()

Error Responses

If your API key is missing, invalid, or revoked, you will receive a 401 Unauthorized response:

{
  "error": {
    "code": "invalid_api_key",
    "message": "The API key provided is invalid or has been revoked."
  }
}

Key Management

You can manage your API keys from the dashboard:

Create new keys with descriptive labels
Revoke keys that are no longer needed
Rotate keys by creating a new one and revoking the old one

tip

Use descriptive labels for your keys (e.g., "Production Server", "Staging") to make key management easier.

API Keys​

Getting Your API Key​

Making Authenticated Requests​

Example with JavaScript​

Example with Python​

Error Responses​

Key Management​