Authorization header.
Prerequisites
- A TechnologyChecker account (sign up free)
- Access to the Settings > Developers section in the dashboard
Key formats
| Type | Prefix | Use case |
|---|---|---|
| Live | tapi_live_ | Production requests that consume credits |
| Test | tapi_test_ | Development and testing (limited functionality) |
How to get your API key
Sign in
Go to app.technologychecker.io and sign in to your account.
Example request
All
/v1/* endpoints require authentication. Account endpoints like /v1/usage and /v1/credits do not consume credits.Related pages
Rate limits
Request limits by plan and retry strategies.
Credits
Credit costs per endpoint and plan details.
Errors
Error codes, response format, and retry logic.
API reference
Explore all endpoints with interactive examples.
Frequently asked questions
How do I keep my API key secure?
How do I keep my API key secure?
Don’t expose your API key in client-side code, public repositories, or logs. Store it in environment variables or a secrets manager. If your key gets compromised, revoke it immediately from Settings > Developers and generate a new one.
Can I have multiple API keys?
Can I have multiple API keys?
Each organization gets a single API key with encrypted storage. Usage is tracked via credits with a monthly reset date. All team members in your organization share the same key.
What happens if my API key is invalid?
What happens if my API key is invalid?
The API returns HTTP
401 with error code UNAUTHORIZED and the message “Missing or invalid API key.” Verify your Authorization header uses the format Bearer YOUR_API_KEY. See errors for all error codes.What's the difference between live and test API keys?
What's the difference between live and test API keys?
Live keys (prefixed
tapi_live_) make production requests that consume credits from your plan balance. Test keys (prefixed tapi_test_) are for development and testing with limited functionality — they won’t charge credits. Use test keys while building your integration, then switch to live keys when you’re ready for production.Do TechnologyChecker API keys expire?
Do TechnologyChecker API keys expire?
No. API keys remain valid until you manually revoke them. There’s no automatic expiration or forced rotation schedule. If you suspect your key has been compromised, revoke it from Settings > Developers and create a new one immediately.
How do I rotate or revoke my API key?
How do I rotate or revoke my API key?
Go to Settings > Developers in your dashboard, revoke the current key, and create a new one. Update the key in all your applications before revoking — the old key stops working instantly. There’s no grace period.
Can I pass the API key as a query parameter instead of a header?
Can I pass the API key as a query parameter instead of a header?
No. TechnologyChecker only accepts API keys via the
Authorization: Bearer YOUR_API_KEY header. Query parameter authentication isn’t supported because it exposes keys in server logs, browser history, and referrer headers. Header-based auth is the industry standard for REST APIs.