Skip to main content
If you are new to Meilisearch, check out the getting started guide.
By providing Meilisearch with a master key at launch, you protect your instance from unauthorized requests. The provided master key must be at least 16 bytes. From then on, you must include the Authorization header along with a valid API key to access protected routes (all routes except /health). 
# replace the MASTER_KEY placeholder with your master key
curl \
  -X GET 'MEILISEARCH_URL/keys' \
  -H 'Authorization: Bearer MASTER_KEY'
The /keys route can only be accessed using the master key. For security reasons, we recommend using regular API keys for all other routes. To learn more about keys and security, refer to our security tutorial.