Skip to main content
Sheet Ninja lets you control who can access your endpoints using API keys and access tokens. By default, endpoints are public and read-only. This means anyone with the endpoint URL can fetch data, but write operations are disabled. Enabling authentication allows you to protect read access and securely enable write access.
In a Project Dashboard, click on the Authentication tab. Create a new token and select the endpoints you’d like to protect. Authentication

Authentication methods

Sheet Ninja currently supports API key authentication using the Bearer token scheme. When authentication is enabled, clients must include an Authorization header with a valid API key in every request.

Best practices

  • Keep API keys secret and store them securely
  • Never expose API keys in frontend or client-side applications
  • Rotate keys periodically, especially if a key may have been exposed
  • Use separate API keys for different services or integrations