Keys & OAuth API

Manage third-party API keys and OAuth connections.

Store a Key

bash

curl -s -X POST https://api.universalapi.co/keys/store \
  -H "Authorization: Bearer YOUR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"serviceName": "serpapi", "apiKey": "your-serpapi-key"}' | jq

List Keys

bash

curl -s https://api.universalapi.co/keys/list \
  -H "Authorization: Bearer YOUR_TOKEN" | jq

Returns metadata only — never exposes the actual key values.

Check Key Exists

bash

curl -s https://api.universalapi.co/keys/check/serpapi \
  -H "Authorization: Bearer YOUR_TOKEN" | jq

OAuth Authorization

bash

curl -s "https://api.universalapi.co/oauth/authorize/google" \
  -H "Authorization: Bearer YOUR_TOKEN" | jq

Returns an authorization URL. Redirect the user to complete OAuth. Supported providers: google, microsoft, github.

How Keys Are Injected

Resource Type	How Keys Are Available
Actions	`event['keys']['serviceName']`
MCP Servers	`process.env.SERVICENAME_KEY`
Agents	`os.environ['UAPI_KEYS_JSON']` (JSON dict)

See Authentication for full details.

Keys & OAuth API ​

Store a Key ​

List Keys ​

Check Key Exists ​

OAuth Authorization ​

How Keys Are Injected ​

Keys & OAuth API

Store a Key

List Keys

Check Key Exists

OAuth Authorization

How Keys Are Injected