BYOK Keys
List BYOK Providers
List all supported BYOK (Bring Your Own Key) providers
GET
List BYOK Providers
Returns all supported LLM, STT, TTS, and Phone providers that accept BYOK API keys.Request
Response
Supported Providers
| Provider | Type | Models / Use |
|---|---|---|
openai | LLM | GPT-4o, GPT-4o-mini, o1, o3 |
anthropic | LLM | Claude 4, Claude 3.5 Sonnet |
google | LLM | Gemini 2.5, 2.0 Flash, 1.5 Pro |
groq | LLM | Llama, Qwen, GPT-OSS, Kimi K2 |
mistral | LLM | Mistral Large, Codestral |
deepseek | LLM | DeepSeek V3, R1 |
cohere | LLM | Command R+, Command R |
xai | LLM | Grok-2, Grok-3 |
perplexity | LLM | Sonar Large/Small |
together | LLM | 100+ open models |
deepgram | STT | Nova-3, Nova-2, Aura TTS |
assemblyai | STT | Universal-3 Pro |
cartesia | TTS | Sonic-3, Ink Whisper STT |
elevenlabs | TTS | Turbo v2.5, Scribe STT |
sarvam | STT/TTS | Saarika/Saaras STT, Bulbul v2/v3 TTS |
rime | TTS | Mist |
google_cloud | STT | Chirp, Studio TTS |
vobiz | Phone | Import your own Vobiz Indian DID numbers |
twilio | Phone | Import your own Twilio phone numbers |
plivo | Phone | Import your own Plivo numbers (per-phone webhook signature uses your auth token) |
exotel | Phone | Import your own Exotel numbers (per-phone webhook uses IP allowlist + token) |
telnyx | Phone | Import your own Telnyx numbers — webhook signatures verified via your portal-exported Ed25519 public key |
razorpay_key_id + razorpay_key_secret | Tool | Per-tenant Razorpay merchant credentials for the UPI Payment voice tool |
surepass | Tool | Per-tenant Surepass API key for the Aadhaar eKYC voice tool |
Phone Provider BYOK
Phone providers require two credentials (stored as a JSON string): Vobiz:auth_token is reused at runtime to verify X-Plivo-Signature-V3
on inbound /plivo/incoming/{phone_id} and /plivo/status/{phone_id}
webhooks (HMAC-SHA256 over url + nonce + body).
Exotel:
/exotel/incoming/{phone_id}
and /exotel/status/{phone_id} endpoints fail closed unless the request
comes from an IP in the EXOTEL_ALLOWED_IPS env (default: built-in
allowlist of current AP-South-1 + US-West-2 callback IPs). Optionally
add a per-phone token to the URL as a ?token=… query param and store
it as phone_numbers.config.exotel_webhook_token.
Telnyx:
public_key is REQUIRED if you want inbound webhook signature
verification — /webhooks/telnyx/voice rejects unsigned POSTs (pre-fix
they were accepted, which let any internet attacker dispatch a
billable agent on call.initiated). Rotates ~annually from the Telnyx
portal.
Use the dedicated BYOK endpoints for phone providers:
POST /voice/vobiz/byok/validate— Validate Vobiz credentials and list numbersPOST /voice/vobiz/byok/import— Import a Vobiz numberPOST /voice/twilio/byok/validate— Validate Twilio credentials and list numbersPOST /voice/twilio/byok/import— Import a Twilio numberPOST /voice/plivo/byok/validate— Validate Plivo credentials and list numbersPOST /voice/plivo/byok/import— Import a Plivo numberPOST /voice/exotel/byok/validate— Validate Exotel credentials and list numbersPOST /voice/exotel/byok/import— Import an Exotel numberPOST /voice/telnyx/byok/validate— Validate Telnyx credentials and list numbersPOST /voice/telnyx/byok/import— Import a Telnyx number
billing_status: "byok" and monthly_cost_cents: 0. You pay your phone provider directly — thinnestAI only charges for AI agent processing minutes.
Tool Provider BYOK (UPI Payment, Aadhaar eKYC)
Some voice tools are per-tenant: each agent owner brings their own merchant / KYC account so the platform never holds custody of the underlying credentials. UPI Payment — uses Razorpay. Set both keys withPOST /byok/set:
Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Response
200 - application/json
Successful Response