API keys authenticate your server-side calls to the Orqex API. Each key starts with
sk_ and is tied to one project and environment.
Create a key
Generate a key from the dashboard. The full secret is shown once at creation — copy
it and store it securely. Create separate keys for sandbox and live.
Authorization: Bearer sk_live_xxx
Manage keys
- Rotate — create a new key, deploy it, then revoke the old one.
- Revoke / deactivate — disable a key immediately if it is exposed.
- Last used — the dashboard shows when each key was last used, to spot stale keys.
Treat secret keys like passwords: server-side only, never in a browser, mobile app or
public repository. If a key leaks, revoke it immediately.
