Authentication

Move API uses API key authentication to secure your requests. All API requests must include your API key in the request headers.

Getting your API key

Sign up for a Move AI account at dev.move.ai
Navigate to the API section in your dashboard
Generate a new API key
Copy the key and keep it secure

Using your API key

Include your API key in the Authorization header of all API requests:

curl -X POST https://api.move.ai/ugc/graphql \
  -H "Authorization: YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"query": "query Client {created id name portal}"}'

JavaScript/TypeScript example

const response = await fetch('https://api.move.ai/ugc/graphql', {
  method: 'POST',
  headers: {
    'Authorization': 'YOUR_API_KEY',
    'Content-Type': 'application/json'
  },
  body: JSON.stringify({
    query: 'query Client {created id name portal}'
  })
});

Python example

import requests

headers = {
    'Authorization': 'YOUR_API_KEY',
    'Content-Type': 'application/json'
}

data = {
    'query': 'query Client {created id name portal}'
}

response = requests.post(
    'https://api.move.ai/v1/files',
    headers=headers,
    json=data
)

Security best practices

Never expose your API key in client-side code or public repositories
Rotate your API keys regularly
Use environment variables to store API keys securely
Monitor your API usage to detect any unauthorized access

Error responses

If authentication fails, you'll receive a 401 Unauthorized response:

{
    "errors": [
        {
            "errorType": "UnauthorizedException",
            "message": "You are not authorized to make this call."
        }
    ]
}

Getting your API key​

Using your API key​

JavaScript/TypeScript example​

Python example​

Security best practices​

Error responses​

Next steps​