Authenticate to the Dench API

Send a bearer token on every request:

Authorization: Bearer <token>

API key
Agent session

Workspace-scoped key from settings, ideal for CI and services. The same key is exposed to sandboxes as DENCH_API_KEY.

curl -sS https://www.dench.com/api/v1/status \
  -H "Authorization: Bearer $DENCH_API_KEY"

A token from dench signin (starts with dch_agent_). Gateway-backed routes exchange it for the workspace gateway key automatically.

curl -sS https://www.dench.com/api/v1/context \
  -H "Authorization: Bearer $DENCH_AGENT_SESSION"

Authentication is wired into the API Reference playground, enter your token once and every “Try it” request uses it.

Run attribution

When an API-key caller acts from inside a running agent turn, include the run id so Dench attributes the action to the right user:

x-dench-run-id: <run_id>

Local session commands (dench sessions, dench use, dench logout, dench backend, dench fs) stay on the CLI, they change the caller’s machine and have no server endpoint.

Dench HTTP API overview

⌘I

​Run attribution

Run attribution