Skip to main content
Demomatic has two authentication methods: session-based authentication for the dashboard and API key authentication for the REST API.

Dashboard authentication

When you sign in to the Demomatic dashboard at demomatic.tech, your session is managed automatically. No additional setup is required.

API key authentication

The Demomatic REST API uses API keys to authenticate requests. Include your API key as a Bearer token in the Authorization header of every request. 
Authorization: Bearer <your_api_key>

Create an API key

1

Open API key settings

In the dashboard, go to SettingsAPI Keys.
2

Create a new key

Click New API key. Give the key a name and select a permission level:
  • read_only — allows GET requests only. Use this for read-only integrations.
  • all_access — allows all request methods including POST, PUT, and DELETE.
Click Create.
3

Copy your key

Copy the API key immediately. For security reasons, the full key is only shown once. Store it in a secure location such as an environment variable or secrets manager.
API access is available on the Starter and Growth plans. If you are on a free plan, upgrade your subscription to use the API.

Make an authenticated request

The following example retrieves your list of videos: 
curl https://api.demomatic.tech/v1/videos \
  -H "Authorization: Bearer <your_api_key>"
On success, the API returns a { data: <payload> } response. On failure, it returns { error: "<message>" }.

Rate limits

The API is rate-limited to 100 requests per 2 minutes per IP address. If you exceed this limit, the API returns a 429 Too Many Requests response.
To stay within the rate limit, cache responses where possible and avoid making redundant requests in rapid succession.

Manage your API keys

You can view and delete API keys from SettingsAPI Keys in the dashboard. Deleting a key immediately revokes access for any integration using it. For a full guide on managing API keys, see API keys.