Documentation Index
Fetch the complete documentation index at: https://docs.msgflash.com/llms.txt
Use this file to discover all available pages before exploring further.
The two surfaces
| Surface | Method | Header | Usage |
|---|---|---|---|
| Dashboard | JWT Bearer | Authorization: Bearer <jwt> | Web interface and console /api/* endpoints |
| Public API | API key | x-api-key: <api_key> | /api/v1/* endpoints for server-to-server integrations |
The web console and the public API do not use the same authentication method.
API key format
A MsgFlash API key looks like this:- prefix
msgf_live_ - 64 lowercase hexadecimal characters
The full key is only shown once when it is created.
Using your API key
Creating and revoking a key
- Sign in to app.msgflash.com
- Open API Keys
- Click New API Key
- Give it a descriptive name
- Copy the key immediately
- Go back to API Keys
- Click Revoke
- Confirm
Dashboard authentication
The main dashboard flows are:- signup
- login
- Google OAuth
- email verification
- password reset
Number of keys per plan
| Plan | Allowed API keys |
|---|---|
| Free | 1 |
| Starter | 3 |
| Pro | 10 |
| Plus | 10 |
Best practices
One key per environment
Use separate keys for production, staging, and development.
Environment variables
Store your key in an environment variable such as
MSGFLASH_API_KEY or in a secrets manager.Authentication-related errors
| Code | HTTP | Description |
|---|---|---|
UNAUTHORIZED | 401 | Missing, invalid, or revoked key |
FORBIDDEN | 403 | The key is valid but cannot access the resource |
SUBSCRIPTION_INACTIVE | 403 | The account no longer has an active subscription for the requested action |
API_RATE_LIMIT_EXCEEDED | 429 | More than 10 requests/second on the same key |
MONTHLY_API_REQUEST_QUOTA_EXCEEDED | 429 | Monthly API request quota exhausted |