Your API key
Your key lives in the API Console — copy it straight to your clipboard. No key yet? Click Request API Access there; requests are reviewed and approved within one business day.Why only one key per team?
Why only one key per team?
Most investment teams work collaboratively from one source of truth. A shared key keeps data permissioning straightforward while still enforcing rate and credit limits at the workspace level.
Making an authenticated request
Keep your key safe
Treat the key like a password — it grants access to your firm’s data.- Store it in an environment variable (e.g.
SPECTER_API_KEY), never hard-coded in source. - Never put it in client-side code, a browser, or a public repository.
- If a key is exposed, contact api-support@tryspecter.com to rotate it.
Authentication errors
| Code | Meaning | Fix |
|---|---|---|
401 | Missing or invalid key | Confirm you’re sending the X-API-Key header (not Authorization: Bearer) and the key is correct and active. |
403 | Key is valid, but your plan doesn’t include this endpoint | Contact support to discuss access. |
402) and rate (429) limits — see Errors.