Authentication

Runsite has two separate authentication paths: one for humans using the dashboard, and one for programmatic access.

Dashboard

Sign in to the dashboard with email and password, or with Google. The dashboard manages its own session in the browser — there is nothing to configure on your side.

Programmatic access

For CI/CD pipelines, the CLI and any HTTP integration, use API keys. Each request to the Public API carries the key in the Authorization header:

Authorization: Bearer ak_live_a1b2c3d4...

API keys are created and managed from the dashboard. Each key has a scope (read, write, or admin) and can be rotated or revoked at any time. See API Keys for details.

Caution

The internal authentication endpoints used by the dashboard (login, refresh, OAuth callbacks) are not part of the Public API. Always use API keys for any non-browser integration.