Manage project access

Manage access before users, services, or integrations run project work.

Steps

Create API keys for trusted services.
Invite users who need project access.
Connect OAuth providers for user-authorized integrations.
Review access before running work in a project.

Try it with REST

List active API keys: GET /api-keys?status=active

Terminal

curl "https://api.veryfront.com/api-keys?status=active" \
  -H "Authorization: Bearer $VERYFRONT_API_KEY"

Create a server-side key: POST /api-keys

Terminal

curl -X POST https://api.veryfront.com/api-keys \
  -H "Authorization: Bearer $VERYFRONT_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "CI key"
  }'

API surfaces

Surface	Start here
REST	API Keys, OAuth, REST overview
GraphQL	API Keys, Create API Key
MCP	List API Keys, Create API Key

Verify

Confirm the current user has access to the target project. Rotate or delete keys that no trusted client uses.

Access surfaces

Surface	Use it for
API keys	Trusted server-side clients and MCP clients.
Project members	Human access to project resources.
OAuth connections	User or workspace authorization for integrations.

API reference

API	Use
REST	API keys, OAuth, users, project users, and favorites.
GraphQL	User and member views.
MCP	User, member, API key, and favorite tools.

Authenticate API requests Configure a project

​Steps

​Try it with REST

​API surfaces

​Verify

​Access surfaces

​API reference