Documentation / Authentication

Authentication

Authenticate with X-API-Key and rotate keys safely.

Header

X-API-Key: your_api_key_here

Get API Key

curl -X POST "https://webfry.dev/api/get_api_key" \
  -H "Content-Type: application/json" \
  -d '{"email":"[email protected]","password":"your_password"}'

Rotate API Key

curl -X POST "https://webfry.dev/api/new_api_key" \
  -H "X-API-Key: CURRENT_KEY"

Best Practices

  • Store API keys in environment variables, not source code.
  • Rotate keys periodically and immediately after suspected exposure.
  • Use separate keys per environment and integration.