Authentication

The MaxCare Public API uses Bearer token authentication with API keys. Every request must include two headers.

Required Headers

Header	Description	Example
`Authorization`	Bearer token with your API key	`Bearer sk_live_abc123...`
`X-Organization-Id`	The clinic organization you’re accessing	`org_abc123`

Example Request

curl -X GET "https://api.maxcare.ai/external/v1/patients" \
  -H "Authorization: Bearer sk_live_abc123..." \
  -H "X-Organization-Id: org_abc123"

Getting Your API Key

Log in to the MaxCare dashboard
Navigate to Settings > Marketplace Apps
Select your app (or create a new one)
Under API Keys, click Generate New Key
Copy the key — it will only be shown once

Organization ID

The X-Organization-Id header identifies which clinic’s data you’re accessing. Your marketplace app must be installed by the clinic to access their data. You can verify your app’s access and see which organization you’re connected to using the /marketplace/me endpoint.

Error Responses

Status	Code	Description
401	`unauthorized`	Missing or invalid API key
403	`forbidden`	Valid key but insufficient scope for this endpoint
404	`not_found`	Resource doesn’t exist or isn’t accessible to your org

​Authentication

​Required Headers

​Example Request

​Getting Your API Key

​Organization ID