Skip to Content
API ReferenceAuthentication

Authentication

The Expirly API uses API keys for authentication. API keys are bound to a workspace and require a Business or Agency plan.

Creating an API Key

  1. Go to Settings → Integrations → API Keys
  2. Click Create API Key
  3. Assign a descriptive name (e.g., “CI/CD Pipeline”, “Monitoring Script”)
  4. Copy the key immediately — it is only shown once

API keys have the format eg_<64 hex characters>.

Usage

Pass your API key as a Bearer token in the Authorization header:

curl -H "Authorization: Bearer eg_your_api_key" \
  https://app.expirly.io/api/v1/items

Security

  • API keys are stored as SHA-256 hashes — Expirly never stores the raw key
  • Keys can be deleted at any time via the settings
  • Each request updates the lastUsedAt timestamp for auditing
  • All API actions are logged in the workspace audit log
Last updated on
OverviewItems