Authorization header. Tokens are scoped to your team and provide access to all brands within your account.
Getting Your API Token
1
Navigate to API Access
Go to your Team Settings > API Access.
2
Create a new token
Click Create API Token and give it a descriptive name (e.g., “Marketing Dashboard”, “Data Warehouse”).
3
Copy and store securely
Your token will be shown only once. Copy it immediately and store it securely.
Using Your Token
Include the token in theAuthorization header with the Bearer prefix:
Token Format
All Qwairy API tokens follow this format:qw-api-a1b2c3d4e5f6789012345678abcdef01
Authentication Errors
| Status Code | Error | Description |
|---|---|---|
| 401 | Missing authorization header | No Authorization header provided |
| 401 | Invalid authorization format | Header doesn’t follow Bearer <token> format |
| 401 | Invalid or expired token | Token is invalid, revoked, or team is inactive |
Example Error Response
Best Practices
Use Environment Variables
Store tokens in environment variables, not in code.
Create Descriptive Names
Name tokens by their purpose for easy management.
Rotate Regularly
Delete and recreate tokens periodically for security.
Use Separate Tokens
Create different tokens for different integrations.
Managing Tokens
You can manage your API tokens from the Integrations page:- View tokens: See all active tokens with their last usage date
- Delete tokens: Revoke access immediately by deleting a token
- Create new tokens: Generate new tokens as needed
There’s no limit to the number of tokens you can create, but we recommend keeping only the tokens you actively use.