Authentication
All API requests to Gro must be authenticated using an API key. This page covers the authentication mechanisms available.
Bearer Token Authentication
Section titled “Bearer Token Authentication”Pass your API key as a Bearer token in the Authorization header:
curl -H "Authorization: Bearer YOUR_API_KEY" \ -H "Content-Type: application/json" \ https://api.gro.xyz/api/subscriptionsKey Types and Permissions
Section titled “Key Types and Permissions”| Key Type | Can access API? | Use case |
|---|---|---|
| SDK | No | Browser-side tracking only |
| API | Yes | Server-to-server integrations |
Only API keys can authenticate backend API requests. SDK keys are rejected with a 401 Unauthorized response.
Getting an API Key
Section titled “Getting an API Key”- Navigate to Settings → API Keys in the Gro dashboard
- Click Create API Key and select the API type
- Copy the key immediately — it’s only shown once
For more details, see API Keys.
Rate Limiting
Section titled “Rate Limiting”API requests are rate-limited per account. If you exceed the limit, you’ll receive a 429 Too Many Requests response. Back off and retry with exponential delay.
Full API Reference
Section titled “Full API Reference”See the API Reference for all available endpoints, request/response schemas, and examples.