Skip to main content
All Quark API endpoints except GET /api/v1/health require authentication via a Bearer token.

Bearer token

Include your token in the Authorization header of every request: 
Authorization: Bearer <token>
The token is a Supabase JWT obtained from Supabase Auth. Sign in through your Supabase project to receive an access token, then pass it directly as the Bearer value.
GET /api/v1/health is unauthenticated and can be called without an Authorization header.

Example

curl -X POST http://localhost:3000/api/v1/session/ \
  -H "Authorization: Bearer <token>" \
  -H "Content-Type: application/json" \
  -d '{ "label": "My first session" }'

Error responses

Requests with a missing, malformed, or invalid token are rejected before reaching the endpoint handler.
401 Unauthorized — returned when the token is absent or invalid: 
{ "error": "Unauthorized Access" }
500 Internal Server Error — returned when an unexpected error occurs during token verification: 
{ "error": "Internal Server Error", "code": "<error_code>" }

Build docs developers (and LLMs) love

Get started for freeTalk to us