Authentication
API keys, environments, and request signing.
All API requests are authenticated with a bearer token:
curl https://api.invitebase.com/v1/invites \
-H "Authorization: Bearer ib_test_..."Key types
| Prefix | Environment | Use |
|---|---|---|
ib_test_ | Test | Development and CI. No live side effects. |
ib_live_ | Live | Production traffic. |
Never expose secret keys in client-side code. Use scoped publishable keys for browser SDKs.