API reference
Authentication
All Public API endpoints authenticate with a workspace API key sent as a Bearer token.
Base URL
https://app.deelflows.com/api/v1API keys
Create keys in Settings → API Keys. Keys start with df_ and are shown once at creation — only a hash is stored on our side. Each key is scoped to the workspace it was created in.
Send the key on every request:
curl https://app.deelflows.com/api/v1/me \
-H "Authorization: Bearer df_your_api_key"Keep keys out of client-side code, mobile apps, and version control. Call the API from your server. Revoke leaked keys immediately in Settings — revocation is instant.
Verify a key
GET
/v1/meReturns the workspace the key belongs to. Useful as a connection test.
{
"workspaceId": "9f3c2e7a-…",
"workspaceName": "Acme Realty",
"plan": "growth"
}Authentication errors
A missing, malformed, or revoked key returns 401:
{
"error": "unauthorized",
"message": "Invalid or revoked API key."
}