Can a publishable key call POST /v1/entities?

No. Publishable keys are read-only on a small whitelist (formation sessions, stakeholder portal sessions, and a handful of public-config endpoints). Any mutation requires a secret key or a scoped token with the right tier.

Why do scoped tokens have tiers AND a policy?

Tiers express intent (observe vs prepare vs execute vs autonomous) — they give auditors and dashboards a single axis to reason about blast radius. The policy DSL expresses scope (which entities, which resources, which fields). Both are enforced; a tier-4 token still cannot touch resources its policy excludes.

Do test-mode keys work in live mode?

No. `sk_test_` and `tok_test_` are signed by a separate key hierarchy and cannot be laundered into live mode. Receipts and signatures issued in test mode carry a distinct `key_id` that live mode rejects on verification.

What happens if a scoped token is leaked?

Revoke it via `POST /v1/tokens/ /revoke` — every subsequent request returns `401 token_revoked` within ~5 seconds (the cache TTL). Audit entries for the revoked token remain immutable so post-mortem investigation works.

Authentication

Last updated Jun 14, 2026

TL;DR. Three credential types — secret keys (sk_*, full account scope), publishable keys (pk_*, read-only on whitelisted endpoints), and scoped tokens (tok_*, four tiers × a structured policy). Pick the narrowest credential that covers the job; agents almost always want a scoped token, not a secret key.

Every Matter request authenticates with a key or token. Secret keys (sk_live_, sk_test_) carry full account scope — treat them as God-mode credentials and store them in a secret manager. Publishable keys (pk_live_, pk_test_) are read-only on whitelisted endpoints, safe to ship in browsers and mobile apps. Scoped tokens (tok_) carry one of four tiers — observe, prepare, execute, autonomous — plus a structured policy that bounds what the holder can touch at the resource and field level. The tier model maps cleanly onto the OAuth 2.0 scope concept but with opinionated tiers so agent code stays portable across customers.

When to use which

Secret key — server-side code you fully control. Publishable key — front-end widgets that read but never mutate. Scoped token — every other case, especially anything an AI agent or third-party integrator touches. If you find yourself reaching for a secret key to give an agent, you almost certainly want a tier-2 or tier-3 scoped token instead.

Authentication

Tokens

Agents

FAQ

On this page

Authentication

Tokens

Agents

FAQ

On this page