PeerLMHelp Center
HelpAPI ReferenceAuthentication

Authentication

Create API keys, scopes, and authentication headers.

The PeerLM API is available on Pro and Enterprise plans. All requests require an API key.

Creating an API Key

Go to Settings > API Keys and click Create API Key. Give it a name and select a scope:

  • Read — list suites, runs, models, and usage
  • Read-Write — everything above plus creating system prompts, test prompts, suites, and triggering runs

Key Format

Keys use the prefix plm_live_ followed by 32 base58 characters. The full key is shown only once on creation — copy it immediately. PeerLM stores only the SHA-256 hash.

Authentication Headers

Pass your key using either header format:

X-API-Key: plm_live_abc123...

# or

Authorization: Bearer plm_live_abc123...

Key Expiry

Keys can have an optional expiration date. Expired keys return a 401 error. The lastUsedAt timestamp is updated on every request.

Revoking Keys

Revoke a key from the API Keys settings page. Revoked keys immediately stop working and cannot be reactivated.

Audit LogEndpoints