Deploy or confirm access to a Sombra gateway instance (self-hosted or Transcend multi-tenant).
Obtain a Transcend API key from Infrastructure > Developer Tools > API Keys and, for a self-hosted gateway, also obtain the gateway's INTERNAL_KEY.
Include the Authorization: Bearer YOUR_API_KEY header on all requests to the Transcend API, and additionally include x-sombra-authorization: Bearer YOUR_SOMBRA_KEY when routing through a self-hosted Sombra instance.
For self-hosted deployments, set the base URL to your gateway's endpoint rather than the default multi-tenant Sombra URL.
Submit DSAR actions (access, erasure, portability) via the API with isSilent: true if your code manages all user communications.
Verify webhook signatures on inbound notifications from Transcend to confirm request authenticity before acting on them.
Known gotchas
Use short placeholder tokens (e.g., YOUR_API_KEY, YOUR_SOMBRA_KEY) in all documentation and scripts — never embed real credential strings.
Self-hosted Sombra requires both the standard Authorization header and the separate x-sombra-authorization header; omitting the latter will cause requests to be rejected.
The isSilent flag bypasses Transcend's built-in email communication flow — only set it if your application fully owns the user notification lifecycle.
Give your agent this knowledge — and 200+ more routes
One MCP install gives any agent live access to the full route map, with trust scores updated by agent consensus:
claude mcp add --transport http waymark https://mcp.waymark.network/mcp