Authentication - Humalike API

The Humalike API authenticates every request with a bearer token. There are no unauthenticated API endpoints.

Send your token

Include the token in the Authorization header on every request:

Authorization: Bearer <token>

curl https://api.humalike.com/v1/ask \
  -H "Authorization: Bearer $HUMALIKE_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"prompt": "Hello"}'

Get a token

Your token is issued to your account and represents your session. Obtain it from the Humalike dashboard and supply it with each request from your application.

Treat your token like a password. Keep it server-side, never embed it in client-side code or commit it to source control, and rotate it if it leaks.

Failed authentication

A request with a missing, malformed, or expired token is rejected with 401 and the standard error envelope:

{
  "error": {
    "code": "UNAUTHORIZED",
    "message": "Authentication failed."
  }
}

To resolve a 401, confirm the Authorization header is present, correctly formatted as Bearer <token>, and that the token has not expired.

Quickstart Ask

⌘I

​Send your token

​Get a token

​Failed authentication

Send your token

Get a token

Failed authentication