Skip to main content
The Admin API authenticates every request with a project API key. Keys are scoped to a single project and cannot be reused across projects.

Get a key

Generate an API key from the Magna admin dashboard under your project’s Settings → API keys. Treat the key like a password — store it in a secrets manager and never commit it or expose it in client-side code. If you don’t see the option, contact the Magna team to enable API access for your project.

Send the key

Pass the key on every request in the x-magna-api-token header:

API key types

Magna offers two kinds of Admin API key, generated under Settings → API keys:

Full Access API Token

Scope FULL. Full read/write access to every Admin API endpoint — the default for backend integrations that manage allocations, funding, tokens, portals, and more.

Statistics API Key (Read-Only)

Scope EXTERNAL_STATS_READ. Read-only access to the Statistics endpoints only (total, unlocked, and locked supply). Safe to share with third-party data providers.
Most integrations use a Full Access API Token. Issue a Statistics API Key when an integration only needs to read supply figures — for example a public stats page or a market-data feed (CoinMarketCap, etc.) — so you can share it without granting full project access. A Full Access token also works on the Statistics endpoints.

Key lifecycle

  • Keys are bound to a project — a key for project A cannot act on project B.
  • Keys may have an expiry; expired keys are rejected.
  • Last-used time is recorded each time a key authenticates.

Errors

Errors use the standard envelope: