⌘Ctrlk

Try Nected For Free

5 min QuickStart Guide
- Overview
- Managing Dataset
Test API for Bulk Inputs
- Overview
- Define AI Provider
- White-Labelling
- Embeddable View

Powered by GitBook

Security
External API Authentication

API Key

Use this method when the provider gives you a key-value credential and expects it in a header or query parameter.

What this method does

Nected appends your API key either:

as a header (recommended), or
as a query parameter (if provider requires).

When to use

Provider requires API key authentication
You need simple machine-to-machine auth without OAuth flow

Required fields in Nected

Key: field name, for example X-API-Key or api_key
Value: secret key provided by the external API owner

Format examples

Header style:

Query style:

Step-by-step setup

Start from either location:
- Path A: Open Security > Authorization and click + New Authentication.
- Path B: Open the REST API connector configuration sidebar and click Create Authentication from the Authentication dropdown.
Select API Key.
Add Key and Value.
Save configuration.
Attach/select this auth config in the integration/API request step.
Test against the provider endpoint.

Validation checklist

Key name matches provider docs exactly.
Placement matches provider requirement (header/query).
Key value has no extra characters.

Security considerations

Prefer header placement over query when supported.
Avoid logging full URLs if key is passed as query param.
Rotate and revoke keys regularly.

Common errors and fixes

401 Unauthorized: key is wrong or revoked.
403 Forbidden: key is valid but lacks required permission.
Works in one tool only: verify header vs query placement mismatch.

PreviousBearer Token NextBasic Auth

Last updated 1 month ago

What this method does
When to use
Required fields in Nected
Format examples
Step-by-step setup
Validation checklist
Security considerations
Common errors and fixes

X-API-Key: <api_key_value>

GET /resource?api_key=<api_key_value>