API key — CI / server-to-server
Long-lived sutra_… API keys for non-interactive callers — CI pipelines, backend services, and scripts that run without a browser. Generate from your dashboard; use as a Bearer token.
Generate a key
- 1Sign in to your KundaliMCP account.
- 2Go to Dashboard → API Keys → Generate key.
- 3Copy the
sutra_live_…value immediately — it is shown only once. Store it in an environment variable or secrets manager.
Keys are shown once
KundaliMCP stores keys as SHA-256 hashes — plaintext is never persisted. If you lose a key, revoke it and generate a new one.
Using your key
Pass the key as an Authorization: Bearer header on every tools/call request:
curl -X POST https://mcp.kundalimcp.com/mcp \
-H "Authorization: Bearer sutra_live_<32 hex chars>" \
-H "Content-Type: application/json" \
-d '{
"jsonrpc": "2.0",
"id": 1,
"method": "tools/list"
}'Calling a tool:
curl -X POST https://mcp.kundalimcp.com/mcp \
-H "Authorization: Bearer sutra_live_<32 hex chars>" \
-H "Content-Type: application/json" \
-d '{
"jsonrpc": "2.0",
"id": 2,
"method": "tools/call",
"params": {
"name": "compute_chart",
"arguments": {
"birth_datetime": "1990-01-15T08:00:00",
"latitude": 19.0760,
"longitude": 72.8777,
"school": "parashari",
"locale": "en"
}
}
}'Key properties
Format
sutra_live_ for production; sutra_test_ for sandbox. Both followed by 32 hex characters.
Tier
Tier is baked in at issuance — Free, Pro, HighTraffic, or Custom. To change tier, upgrade your plan and issue a new key.
Revocation
Revoke from Dashboard → API Keys at any time. Revoked keys return 401 immediately.
Discovery
tools/list, initialize, ping, and get_version are unauthenticated — no key needed to discover what the server can do.