Skip to main content
Your request reached the API without an Authorization header, so it was rejected before any work was done.
401 application/problem+json
Every PermitCore endpoint requires a key. Unauthenticated requests always return this error — there is no anonymous access tier.

Fix it

1

Get an API key

Sign in at permitcore.io/account/api-keys and create a key. The plaintext key is shown once at creation — copy it then. Don’t have an account yet? Start free (no card, 1,000 requests/month).
2

Send it as a Bearer token

Pass the key in the Authorization header on every request:
The header name is Authorization and the scheme is Bearer — a bare key, a query parameter, or any other header will still return this error.

Common causes

  • The Authorization header was dropped by a proxy, or never set by your HTTP client.
  • The key was placed in the URL or a custom header instead of Authorization.
  • An environment variable holding the key was empty at request time.

Make your first authenticated call

The quickstart walks through creating a key and calling /v1/permits end to end.
See also Authentication and the full error catalog. Every response carries an x-request-id header — include it in any support request.