Getting Started
Authentication & API Keys
All API requests must include your API key via the Authorization header using the Bearer scheme.
Bearer Token Auth
HTTP Header
Authorization: Bearer YOUR_API_KEY
Content-Type: application/jsonRequired Headers (Choose one)
| Field | Type | Required | Description |
|---|---|---|---|
Authorization |
string | Optional | Bearer token — your API key prefixed with Bearer |
X-API-Key |
string | Optional | Alternatively, send your API key directly via this header. |
Content-Type |
string | Required | Must be application/json (for POST requests) |
Keep your key secret
Never expose your API key in client-side code, public repos, or frontend JavaScript. Rotate keys immediately if compromised via your Dashboard → API Keys.
Never expose your API key in client-side code, public repos, or frontend JavaScript. Rotate keys immediately if compromised via your Dashboard → API Keys.
Managing API Keys
Create
Create named keys per project to track usage independently.
Rotate
Instantly invalidate and replace a key — old key stops working immediately.
Reveal once
Keys are shown only at creation. Store them securely — they cannot be retrieved again.
Per-key analytics
See request counts, credits consumed, and error rates per key.