Authentication

Every request authenticates with an API key. Generate one in your dashboard. Keys look like hpx_….

Send it as either header — both are accepted, same as Stripe / OpenAI:

http

X-API-Key: hpx_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

# or

Authorization: Bearer hpx_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Keep your keys secret

Keep keys server-side. Never ship them in client code. Lost a key? Revoke it and create a new one in Settings → API Keys.

Was this helpful?