I plan to build an API for my website, the user who wants to use it must authorize themselves by sending an API key via POST.

I am thinking if the user is authorized, it saves their details in a session so that I do not need to check the database each time to verify the key.

Will this work if I just store this in a simple session? Bare in mind people would be writing scripts to interact with the API and not using their web browser.