API
API authentication and tokens
The Content API is token-only: a dashboard session does not grant access to `/api/v1/`.
- Updated
- 2026-04-19
- Availability
- Paid plans
Bearer token
http
Authorization: Bearer nla_your_project_token- One active token per project.
- Plaintext token is shown once during generation.
- The token grants read access only to approved/published content for that project.
Rotation
A new token becomes active and the previous active token moves to grace for 24h. Revoke invalidates active and grace immediately.
Continue to limits and errors
Correct handling of 401, 403, and 429 is part of a stable integration.