API Key Authentication
Most file operations use API key authentication via the x-api-key header.
Getting Your API Key
- Sign up at console.openfiles.ai
- Navigate to API Keys in your console
- Create API Key - Copy your key (starts with
oa_)
Using Your API Key
curl -X GET "https://api.openfiles.ai/functions/v1/api/files" \
-H "x-api-key: oa_your_api_key_here"
Security Best Practices
Never expose your API keys in client-side code or public repositories.
- Store API keys in environment variables
- Use different keys for development and production
- Regenerate keys if compromised
- Implement rate limiting in your applications
❌ Avoid:
- Hardcoding keys in source code
- Sharing keys in public channels
- Using production keys in development
Rate Limits
| Tier | Requests/Minute | File Size Limit |
|---|
| Free | 100 | 10MB |
| Pro | 1,000 | 100MB |
| Enterprise | Custom | Custom |
X-RateLimit-Limit - Your rate limit ceilingX-RateLimit-Remaining - Requests remaining in current windowX-RateLimit-Reset - UTC time when the rate limit resets
