BoardPulse AI uses different authentication models for its two API surfaces. The main REST API is open by design for internal and development use, while the OpenAI-compatible endpoint uses a Bearer token to protect integrations exposed to chat clients like Open WebUI.Documentation Index
Fetch the complete documentation index at: https://mintlify.com/FloxTBoTyy/BoardPulse-AI/llms.txt
Use this file to discover all available pages before exploring further.
Main API (/api/v1/)
All endpoints under /api/v1/ — including health, chat, workspaces, and exports — require no authentication. This is intentional for the MVP stage, where the API is expected to run in a trusted internal network or behind a reverse proxy.
OpenAI-compatible endpoint (/openai/v1/)
The endpoints under /openai/v1/ require an Authorization header with a Bearer token. This protects integrations where the API is accessible from a browser-based chat client.
Passing the token
Include the token in every request as an HTTP header:Configuring the key
Set theBOARDPULSE_OPENAI_COMPAT_KEY environment variable to control the expected token value:
| Variable | Default | Description |
|---|---|---|
BOARDPULSE_OPENAI_COMPAT_KEY | boardpulse-dev-key | Bearer token required for /openai/v1/ endpoints |
Error responses
If theAuthorization header is missing or the token does not match:
Missing token (no Authorization header provided):
401 Unauthorized.