To integrate Orthogramic with your application, you need an API token to authenticate requests. This guide walks you through generating and managing your API token securely.
.png?version=1&modificationDate=1741861264812&cacheVersion=1&api=v2&width=1312 "Orthogramic user guide > Adding an API token > API keys (2).png")
Click the Add token button.
Select the scope of your token:
Organization: All business architecture data for the organization
Document: Only the selected document
Select the access of your token:
Read-Only: Allows retrieving mindmaps and metadata.
Read & Write: Allows creating, updating, and deleting data.
Admin: Only Admin users have write access.
Click Generate token.
.png?version=1&modificationDate=1741861171115&cacheVersion=1&api=v2&width=373 "Orthogramic user guide > Adding an API token > Create an API key (3).png")
Your new API token will be displayed. Copy and securely store it, as it will only be shown once.
Do not share your token publicly or expose it in frontend code.
Store it in environment variables (.env files) or a secrets manager.
Rotate tokens regularly to maintain security.
If a token is compromised, revoke and regenerate a new one immediately.
Example environment variable usage:
ORTHOGRAMIC_API_TOKEN=your-secure-token |
Include the token in the Authorization header of your API requests:
curl -X GET "https://api.orthogramic.com/mindmap/12345" \
-H "Authorization: Bearer YOUR_API_TOKEN" |
Example using JavaScript (fetch API):
fetch("https://api.orthogramic.com/mindmap/12345", {
method: "GET",
headers: {
"Authorization": `Bearer ${process.env.ORTHOGRAMIC_API_TOKEN}`
}
})
.then(response => response.json())
.then(data => console.log(data)); |
View Active Tokens: See a list of currently active tokens.
Revoke a Token: Click the Revoke button next to a token to disable it.
Generate a New Token: Follow the steps above to create a replacement token.
If you experience issues generating or using your API token, please contact support@orthogramic.com.