Skip to main content

Authentication

API Keys

All programmatic access uses API keys. Get one from Settings → Developer in the DialogBrain app.

Using Your Key

# REST API
curl https://api.dialogbrain.com/api/v1/conversations \
  -H "X-API-Key: db_live_YOUR_KEY_HERE"

# MCP server (Python)
from dialogbrain import get_langchain_tools
async with get_langchain_tools(api_key="db_live_YOUR_KEY_HERE") as tools:
    ...

Key Properties

  • Format: db_live_<random> (production) or db_test_<random> (test)
  • Scope: Tied to a specific workspace
  • Rotation: Create a new key, update your integration, then revoke the old one
  • Revocation: Immediate — the key stops working the moment it's revoked

MCP Server OAuth

MCP clients (Claude Code, Cursor, VS Code) use OAuth 2.0 — you authenticate via browser.

{
  "mcpServers": {
    "dialogbrain": {
      "url": "https://api.dialogbrain.com/mcp/"
    }
  }
}

The MCP server also accepts X-API-Key for programmatic access (e.g., langchain-mcp-adapters).

JWT Bearer (Internal)

The DialogBrain web app uses short-lived JWT access tokens. Webhook endpoints also accept Bearer tokens so the frontend can manage webhooks without an API key.