Skip to main content
NekoHub supports two authentication methods for management APIs.

JWT Bearer

Use JWT when the request acts on behalf of a logged-in user. First call POST /api/v1/auth/login, then send:
Example:
JWT is the only accepted method for:
  • POST /api/v1/auth/logout
  • GET /api/v1/auth/me

API key

Use API keys for scripts, automation, CI/CD, and MCP. API keys also use the Authorization header. Do not use the legacy custom header form:
Example:
Enable it with:
/mcp only accepts API keys.

Endpoint support matrix

Common errors