Skip to main content

API Keys

API keys authenticate external applications that call your Blueprints. You need an API key for any integration that connects to Leapter at runtime — including the REST API, MCP connections, and n8n HTTP workflows.

Where to find API Keys

Click API Keys in the left sidebar of Leapter. This opens the API Keys management page. The API Keys page showing a table of keys with name, permissions, status, and usage information The table shows all your API keys with:
ColumnDescription
NameThe friendly name you gave the key
PermissionsThe projects the key can access
KeyThe key prefix (the full key is only shown once at creation)
StatusWhether the key is Active or Revoked
Last UsedWhen the key was last used to make an API call
CreatedWhen the key was created

Create an API key

  1. Click Create API Key in the top right.
  2. Enter a Key Name — a friendly name to help you identify this key later (e.g., “n8n Integration” or “Production API”).
  3. Select one or more Projects the key should have access to. A single key can grant access to several projects — useful when one integration calls Blueprints from multiple projects.
  4. Click Create Key.
The Create API Key dialog with fields for key name and project selection After creation, the full API key is displayed. Copy it immediately — you will not be able to see the full key again. All keys start with the lpt_ prefix.

Edit which projects a key can access

You can change a key’s project scope without revoking it. This is useful when you add a new project that an existing integration should also be able to call.
  1. Find the key in the table.
  2. Click the three-dot menu on the right.
  3. Select Edit projects.
  4. Adjust the project selection and confirm.
The key keeps the same value — anything authenticating with it continues to work, with access to the new set of projects.
Store your API key securely. If you lose it, you will need to create a new one. Never share API keys in public repositories or client-side code.

Use your API key

Pass the API key as a header in all requests to Leapter:
  • Header name: X-API-Key
  • Header value: your API key
For example, in a curl request that runs a Blueprint: 
curl -X POST "https://lab.leapter.com/runtime/api/v1/{appspace}/{project-id}/models/{blueprint-id}/runs" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: lpt_your-api-key-here" \
  -d '{"input1": "value1"}'
Each integration page explains where to configure the API key for that specific tool:

Revoke a key

If a key is compromised or no longer needed, you can revoke it:
  1. Find the key in the table.
  2. Click the three-dot menu on the right.
  3. Select Revoke.
Revoked keys stop working immediately. You can toggle Show revoked keys to see previously revoked keys.

What to do next