Skip to main content
Every OmniaKey API request uses an API key from the API Keys dashboard.

Bearer token

The universal form is an Authorization header:
Use this form for cURL, OpenAI-compatible clients, and most custom integrations.

SDK conventions

Official SDKs use different auth conventions. OmniaKey accepts the common forms for the protocol being called. For custom integrations, prefer Authorization: Bearer. It works consistently across all documented endpoints.

Keep keys scoped

Create separate keys for local development, CI, and shared team workflows. This makes it easier to rotate a compromised key and set per-key spending caps.

Common auth errors