API Keys
Create and manage API keys for secure programmatic access to demeterrr
Use API keys to authenticate server-to-server requests to demeterrr endpoints.
Open API Key Settings
Go to Settings > API (/settings/api).
You can:
- Create keys with scoped permissions
- View key prefixes and usage metrics
- Delete keys that are no longer needed
Create a New API Key
- Click Create API Key.
- Enter a key name.
- Select one or more scopes.
- Save and copy the generated key immediately.
Important: The full key is only shown once.
Available Scopes
Current scope options include:
contacts:read,contacts:writesurveys:read,surveys:sendsequences:read,sequences:executeresponses:readreviews:read,reviews:writewebhooks:read,webhooks:write
Send Authenticated Requests
Use either header format:
X-API-Key: dem_...Authorization: Bearer dem_...
Security Best Practices
- Use one key per environment or integration
- Grant only required scopes
- Rotate keys regularly
- Delete compromised or stale keys immediately
- Keep keys in a secret manager, not client code
Troubleshooting
Invalid key format
The API expects keys starting with dem_.
Unauthorized or inactive key
Confirm the key:
- Exists in your organization
- Is active
- Is not expired
Forbidden on an endpoint
Your key is valid but missing the required scope for that action.
// Related articles
Zapier Integration
Connect demeterrr to Zapier for trigger-based automations and inbound actions
API-Triggered Sequences
Enroll contacts into sequences programmatically using the API
Sequence Webhooks
Send step-completion callbacks to external systems from your sequence workflow
HubSpot Integration
Connect HubSpot to sync contacts and push NPS and CSAT data into your CRM
Was this article helpful?
Let us know if you found this article helpful or if you need more information.
Join hundreds of businesses already using demeterrr to collect feedback, boost reviews, and grow faster.
Start Your Trial