Skip to main content
The Workspace API gives external systems read-only access to workspace-level and per-agent data — the same information visible in the Workspace Explorer capability, but accessible over HTTP.

Authentication

Requests are authenticated with workspace API keys (wk_...) that have the Workspace read API scope enabled. Include the key as a Bearer token:
Authorization: Bearer wk_your_key_here

Enabling workspace API access

  1. Go to Workspace Settings → API Keys
  2. Create a new key (or edit an existing one)
  3. Check the Workspace read API scope
  4. Save and copy the key
Workspace API keys grant read access to all workspace data including chat histories, messages, member information, and agent configurations. Keep them secure and rotate them regularly.

Workspace endpoints

All endpoints are GET requests under /workspaceapi/. No workspace ID is needed in the URL — the key identifies the workspace.
EndpointDescription
/workspaceapi/overviewWorkspace settings, feature flags, and configuration
/workspaceapi/creditsCredit balance and per-agent/per-team usage
/workspaceapi/membersAll workspace members with roles and team memberships
/workspaceapi/invitesPending and expired workspace invitations
/workspaceapi/teamsAll teams (add ?includeMembers=true for member lists)
/workspaceapi/teams/:teamIdSingle team details with full member list
/workspaceapi/secretsSecret names and metadata (values are never exposed)
/workspaceapi/http-apisShared HTTP API capability configurations
/workspaceapi/capability-settingsWhich capabilities are available and their defaults
/workspaceapi/security-settingsSecurity alert configuration
/workspaceapi/agentsAll agents (add ?includeOverview=true for management overview)
/workspaceapi/value-captureValue capture compliance summary across agents

Per-agent endpoints

Drill into a specific agent’s data. The agent must belong to the workspace and not be private (restricted access).
EndpointDescription
/workspaceapi/agents/:agentIdFull agent configuration
/workspaceapi/agents/:agentId/chatsChat conversation list
/workspaceapi/agents/:agentId/chats/:chatIdSingle chat with full message history
/workspaceapi/agents/:agentId/documentsAgent documents and folders
/workspaceapi/agents/:agentId/documents/:docIdSingle document with content
/workspaceapi/agents/:agentId/diaryDiary entries (filters: ?date=, ?conversationId=, ?year=&month=)
/workspaceapi/agents/:agentId/activity-logActivity log (filters: ?limit=, ?page=, ?pageSize=, ?entryId=, ?newerThan=)
/workspaceapi/agents/:agentId/messagesEmail/SMS messages (filters: ?page=, ?pageSize=, ?direction=, ?channel=, ?since=, ?until=)
/workspaceapi/agents/:agentId/evalsEval definitions (add ?includeRecentResults=true for results)
/workspaceapi/agents/:agentId/connected-agentsAgent-to-agent connections
/workspaceapi/agents/:agentId/mcp-serversConnected MCP servers
/workspaceapi/agents/:agentId/tool-usage/:toolNameUsage stats for a specific tool (filters: ?since=, ?limit=)

Example

curl -s https://api.abundly.ai/workspaceapi/agents \
  -H "Authorization: Bearer wk_your_key_here" | jq

Data redaction

Credential values, API keys, and secret values are automatically stripped from all responses — the same redaction rules applied by the Workspace Explorer capability. Secret names and metadata are included so you can see what’s configured without exposing sensitive values.

API key scopes

Workspace API keys support two scopes that can be enabled independently:
ScopeWhat it grants
Custom agent endpointsAccess to agent-exposed APIs (HTTP API, Document API, MCP, Widget) on agents with “Allow Workspace Keys” enabled
Workspace read APIRead-only access to workspace and agent data via the /workspaceapi/ endpoints
Existing keys default to Custom agent endpoints only. Enable Workspace read API explicitly to use the endpoints documented on this page.

Learn more

API Access

Expose agents as HTTP APIs, MCP servers, webhooks, or chat widgets

Access Control

Workspace roles, team permissions, and agent access levels