Knowledge Base
API keys & authentication
Store keys securely, use Bearer auth, and avoid the most common “it works locally” problems.
Using a key
Authorization: Bearer ew_xxxxxxxxx
Keep keys out of the browser. Prefer server-side calls and environment variables.
Key safety checklist
- Never commit keys to git (even “temporary” ones).
- Rotate keys if they’ve been exposed.
- Use separate keys for test vs production.