Automate and integrate with a fully documented API
The promptDeck API gives you programmatic access to every resource in your account. Authenticate with a Sanctum bearer token, then create, read, update, and delete prompts, workflows, categories, and teams over standard HTTPS. Sync endpoints let you build custom clients, and rate limiting ensures fair, reliable access for everyone.
What's included
RESTful design
The API follows REST conventions with predictable resource URLs, standard HTTP verbs, and consistent JSON response structures. If you have used any modern REST API, you will feel at home.
Bearer token authentication
Authenticate using Laravel Sanctum bearer tokens. Generate tokens from the dashboard or via the login endpoint. Tokens are scoped to your account and expire after 30 days.
Full CRUD endpoints
Every core resource — prompts, workflows, categories, teams, and team members — exposes create, read, update, and delete endpoints. Bulk operations are supported where applicable.
Rate limiting
Endpoints are rate-limited to protect the platform. Login is capped at 6 requests per minute and device auth at 10 per minute. Standard API calls have generous limits for normal usage.
JSON with UUIDs
All requests and responses use JSON. Every resource is identified by a UUID, making it safe to reference across systems without sequential ID leakage.
Sync endpoints
Dedicated push and pull endpoints power the offline-first sync protocol. Use them to build custom clients or integrate promptDeck into automated pipelines that need the latest prompt data.
Authentication
The API uses Laravel Sanctum for token-based authentication. Send your credentials to the login endpoint to receive a bearer token, then include it in the Authorization header of every subsequent request. Tokens expire after 30 days and can be revoked from the dashboard at any time.
Available endpoints
The API covers every resource you see in the promptDeck interface. Prompt endpoints handle CRUD, search, and variable resolution. Workflow endpoints manage multi-step chains. Category and team endpoints let you organize and share. Sync endpoints power the offline-first protocol used by the desktop app.
Rate limiting and security
Rate limits protect the API from abuse and ensure reliable performance for all users. Authentication endpoints have tighter limits to prevent credential-stuffing attacks. All endpoints require HTTPS. Responses include standard security headers, and CORS is restricted to known origins.
Integrate promptDeck into any workflow
CI/CD pipelines
Fetch the latest prompt versions during build or deployment. Ensure production systems always use approved, version-controlled prompts pulled directly from the API.
Custom integrations
Connect promptDeck to internal tools, Slack bots, or custom dashboards. The REST API makes it straightforward to read and write prompts from any language or platform.
Automated testing
Write integration tests that create prompts, run workflows, and verify outputs via the API. Automate prompt QA before rolling changes out to production.
Bulk operations
Import or export large prompt libraries programmatically. Migrate from spreadsheets, Notion databases, or other tools by scripting against the CRUD endpoints.
Monitoring and analytics
Poll the API to track prompt usage, team activity, and sync health. Build dashboards that give leadership visibility into how AI prompts are managed across the organization.
Third-party tools
Integrate with Zapier, Make, n8n, or any automation platform that supports REST APIs. Trigger prompt updates from external events or push prompt data into other systems.
Start building with the promptDeck API
Generate an API token from your dashboard and make your first request in minutes. Full documentation is available for every endpoint.