Docs | Kash

HTTP status: 401 · Title: “Authentication required”

When it fires

A route that requires authentication received a request with no X-API-Key header.

Why it happens

The request was sent without the header (most common — first integration).
A reverse proxy or HTTP client stripped the header.
The wrong base URL — the documented endpoints live under /v1/*; some other route may not require auth.

How to fix

GET /v1/portfolio HTTP/1.1
Host: api.kash.bot
X-API-Key: kash_live_<your-key-here>

Pass the key on every authenticated request. Keys are issued via the webapp Settings → API Keys page or kash-admin api-keys issue.
The plaintext is shown once at issuance. If you’ve lost it, revoke and re-issue.

API_KEY_MALFORMED — header present but doesn’t match the kash_(live|test)_* shape
API_KEY_INVALID — header well-formed but no row matches

API_KEY_MALFORMED

API_KEY_REVOKED

When it fires
Why it happens
How to fix
Related codes

Overview

REST API

Webhooks

TypeScript SDK

CLI

Protocol SDK (TypeScript)

Protocol SDK (Python)

API Error Catalogue

Public Embed API

Embed — Organization Endpoints

Embed — Partner Endpoints

Embed — Thread Endpoints

Embed — Market Endpoints

Embed — Twitter Deep Links

Embed — Guides

Embed — Code Examples

API_KEY_MISSING

When it fires

Why it happens

How to fix

Overview

REST API

Webhooks

TypeScript SDK

CLI

Protocol SDK (TypeScript)

Protocol SDK (Python)

API Error Catalogue

Public Embed API

Embed — Organization Endpoints

Embed — Partner Endpoints

Embed — Thread Endpoints

Embed — Market Endpoints

Embed — Twitter Deep Links

Embed — Guides

Embed — Code Examples

Documentation Index

​When it fires

​Why it happens

​How to fix

​Related codes

When it fires

Why it happens

How to fix

Related codes