Authentication

All requests to the Mindo API require authentication via an API Key sent in the X-API-Key header.

Authentication header

X-API-Key: mindo_xxxxxxxxxxxxxxxxxxxxxxxx

curl -X GET https://api.mindosoftware.com/api/v1/business-accounts/ \
  -H "X-API-Key: mindo_xxxxxxxxxxxxxxxxxxxxxxxx"

Code	Message	Cause
`401`	`"Este endpoint requiere autenticacion con API Key (header X-API-Key)"`	The `X-API-Key` header was not sent
`401`	`"API Key expirada"`	The API Key has expired or was revoked
`403`	`"API Key no tiene acceso a este recurso"`	The API Key does not have permissions for this endpoint

API Key security

Never expose your API Key in client-side code (frontend, mobile apps).
Use environment variables to store it in your applications.
Rotate your API Key periodically from the Dashboard.
If you believe your API Key has been compromised, revoke it immediately from the Dashboard.