HTTP API (API key)

Create a key on Profile. Keys can call POST /search and GET /records/{key} only. Use HTTPS in production. Treat keys like passwords.

Base URL

Replace with your server (example: https://your-host:4156).

Semantic search

curl -s -X POST "https://YOUR_HOST/search" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: sv_YOUR_KEY_HERE" \
  -d '{"query":"wifi password","limit":10}'

Optional: "category":"personal" in the JSON body to filter.

Get record by key

curl -s "https://YOUR_HOST/records/my_record_key" \
  -H "X-API-Key: sv_YOUR_KEY_HERE"

JWT (browser / full API)

Other endpoints (create, update, delete, import, export) require Authorization: Bearer <JWT> from login. See interactive docs at /docs when the app is running.