Meilisearch exposes its API to create indexes, update settings, and retrieve results on HTTP port 7700. If you publicly expose that port, we highly recommend using Meilisearch built-in authentication features to prevent unauthorized persons making request against your Meilisearch installation.
In the Meilisearch docs you'll find how to start Meilisearch with a master password and how to retrieve the API Keys.
Here's how you can create a new API key for a given master key:
curl -X POST 'http://localhost:7700/keys' -H 'Content-Type: application/json' -H 'Authorization: Bearer <MASTER-KEY>' --data-binary '{
"description": "Site search key",
"actions": ["*"],
"indexes": ["*"],
"expiresAt": null
}'
You can view all previously created keys with this command:
curl -X GET 'http://localhost:7700/keys' -H 'Content-Type: application/json' -H 'Authorization: Bearer <MASTER-KEY>'
You can specify the API Key (can be public or private key) that this package should use by adding a meilisearch.apiKey JSON value to the extra attribute in the site_search_configs table. Here's how that would look like:
{"meilisearch":{"apiKey":"your-private-or-public-api-key"}}