API Keys
Every request to FieldMCP requires an API key. Keys authenticate your application and determine your rate limits and billing tier.
Key Format
API keys follow this format:
field_live_<32 random hex characters>
Example: field_live_a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6
Creating a Key
- Go to Dashboard > API Keys
- Click Create API Key
- Give it a descriptive name (e.g., "Production", "Development")
- Copy the key immediately — it's shown only once
Using Your Key
Pass the API key in the Authorization header:
Authorization: Bearer field_live_YOUR_API_KEY
For MCP clients, this is configured in the server connection settings. See the Quickstart for examples.
Security
- Keys are stored as SHA-256 hashes — we never store the plaintext key
- If a key is compromised, delete it from the dashboard and create a new one
- Use separate keys for development and production
- Never commit keys to version control
Rate Limits
Your API key's rate limits depend on your billing tier:
| Tier | Requests/Minute | Monthly Requests |
|---|---|---|
| Free | 60 | 10,000 |
| Developer | 100 | 100,000 |
| Startup | 500 | 1,000,000 |
| Enterprise | 1,000 | Custom |
When you exceed your rate limit, requests return a RATE_LIMIT_USER error with a retryAfter value in seconds.