Gitcoin · Authentication Profile

Gitcoin Authentication

Authentication

Gitcoin secures its APIs with apiKey and openIdConnect across 4 declared security schemes, as derived from its OpenAPI definitions.

Public GoodsGrantsBountiesQuadratic FundingWeb3Verifiable CredentialsIdentityOpen Source
Methods: apiKey, openIdConnect Schemes: 4 OAuth flows: API key in: header, query

Security Schemes

ApiKeyAuth apiKey
· in: query (_key)
ApiSecretAuth apiKey
· in: query (_secret)
GitHubAuth openIdConnect
function apiKey
· in: header (X-API-Key)

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/gitcoin-grants-api-openapi.json, openapi/gitcoin-passport-stamps-api-openapi.json
summary:
  types:
  - apiKey
  - openIdConnect
  api_key_in:
  - header
  - query
schemes:
- name: ApiKeyAuth
  type: apiKey
  in: query
  parameter: _key
  description: API key obtained from the response body's meta.api_key field after authenticating
    via the GitHub authentication flow
  sources:
  - openapi/gitcoin-grants-api-openapi.json
- name: ApiSecretAuth
  type: apiKey
  in: query
  parameter: _secret
  description: API secret used alongside the API key for authentication
  sources:
  - openapi/gitcoin-grants-api-openapi.json
- name: GitHubAuth
  type: openIdConnect
  openIdConnectUrl: https://github.com/.well-known/openid-configuration
  description: GitHub OAuth authentication for Gitcoin
  sources:
  - openapi/gitcoin-grants-api-openapi.json
- name: function
  type: apiKey
  in: header
  parameter: X-API-Key
  sources:
  - openapi/gitcoin-passport-stamps-api-openapi.json