Create a provider key

Create a new provider key for the organization. The API key is encrypted at rest.

POST/api/provider-keys

Authorization

better-auth.session_token<token>

Cookie session from Better Auth. Requires X-Org-Id header for org-scoped routes.

In: cookie

Header Parameters

X-Org-Id?string

Organization ID. Required for cookie auth. Not needed for API key auth (org resolved from key).

Formatuuid

Request Body

application/json

label*string

Display name for the provider key

api*string

API type (openai-completions, openai-responses, anthropic-messages, google-generative-ai, google-vertex, azure-openai-responses, bedrock-converse-stream)

baseUrl*string

Provider API base URL

Formaturi

apiKey*string

API key for authentication

curl -X POST "https://loading/api/provider-keys" \  -H "Content-Type: application/json" \  -d '{    "label": "string",    "api": "string",    "baseUrl": "http://example.com",    "apiKey": "string"  }'

{
  "id": "string"
}

{
  "type": "https://docs.appstrate.dev/errors/invalid-request",
  "title": "Invalid Request",
  "status": 400,
  "detail": "Field is required",
  "code": "invalid_request",
  "requestId": "req_abc123"
}

{
  "type": "https://docs.appstrate.dev/errors/forbidden",
  "title": "Forbidden",
  "status": 403,
  "detail": "Insufficient permissions",
  "code": "forbidden",
  "requestId": "req_abc123"
}