curl --request GET \
--url https://breadbox.example.com/api/v1/config \
--header 'X-API-Key: <api-key>'[
{
"key": "<string>",
"value": "<string>",
"masked": true,
"secret": true
}
]List app_config entries
Returns every row in the app_config table with the effective source
(env / db / default). Secret-flagged values are masked unless
?reveal=true is set. A denylist of keys (ENCRYPTION_KEY and the
Teller cert/key PEM rows) is always masked and never writable via
this surface — manage them through env vars or the admin UI.
Requires full_access scope.
curl --request GET \
--url https://breadbox.example.com/api/v1/config \
--header 'X-API-Key: <api-key>'[
{
"key": "<string>",
"value": "<string>",
"masked": true,
"secret": true
}
]Documentation Index
Fetch the complete documentation index at: https://docs.breadbox.sh/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
Breadbox API key with format bb_<base62>. Carries either read_only
or full_access scope. Write endpoints (and a handful of sensitive
reads — /api-keys, /users/{user_id}/login) require full_access;
endpoints that require it are flagged in their description.