Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.steppd.com/llms.txt

Use this file to discover all available pages before exploring further.

The Steppd API uses API key authentication. Every request must include your key in the Authorization header as a Bearer token.

Requirements

API keys are available on the Scale plan only. If your account is on the Publish plan, the API Keys tab will not appear in your profile.

Creating an API key

1

Open your profile

In the Steppd app, click your avatar or name to open Profile, then select the API Keys tab.
2

Name your key

Click New API key, enter a descriptive name (for example, Production integration), then click Create.
3

Copy the key immediately

Steppd displays the raw key value only once, at the moment of creation. Copy it and store it in a secrets manager or environment variable. Once you dismiss the confirmation, the value cannot be retrieved, only revoked.
If you lose an API key, you cannot recover it. Delete the old key and create a new one.

Attaching the key to requests

Pass your key in the Authorization header using the Bearer scheme: 
Authorization: Bearer YOUR_API_KEY

curl example

curl https://api.steppd.com/YOUR_ORG_SLUG/inbox \
  -H "Authorization: Bearer YOUR_API_KEY"
Replace YOUR_ORG_SLUG with your organization’s slug (visible in your profile) and YOUR_API_KEY with the key you copied.

Error responses

StatusMeaning
401 UnauthorizedThe Authorization header is missing, malformed, or the key is invalid.
403 ForbiddenThe key is valid but your plan does not have access to this feature.

Managing existing keys

You can view all active keys (name and creation date, never the raw value) in Profile → API Keys. To revoke a key, click the delete icon next to it. Deletion is immediate, any requests using that key will begin returning 401 at once.
Use one API key per integration so you can rotate or revoke a single key without affecting other connections.