Skip to content

Authentication

Omniflare authenticates every request with a single API key, passed as a bearer token in the Authorization header — the same place the OpenAI SDK already puts it. You never hold provider keys yourself; Omniflare brokers them for you.

Keys are created and revoked from the dashboard, and can be scoped per environment or per service so you can rotate one without disturbing the rest.

TODO: Document key formats, scopes, rotation, and the header example.