Wind Wind / Docs
Dashboard

Authentication

API Keys

API keys authenticate your server requests to the Wind API.

Creating keys

API keys are generated per-app in the Dashboard.

  1. 1 Open your app in the Dashboard
  2. 2 Go to the General tab
  3. 3 Click Generate API Key
  4. 4 Copy and store the key immediately — it won't be shown again

Key format

sk_live_<64 hex chars>

Using keys

Pass the key in the Authorization header of every request. Keys are scoped to a single app.

http
Authorization: Bearer sk_live_your_api_key_here
typescript
// Node.js example
const response = await fetch('https://wind-production-3225.up.railway.app/v1/chat/completions', {
  method: 'POST',
  headers: {
    'Authorization': `Bearer ${process.env.WIND_API_KEY}`,
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({ ... }),
})
Never expose your API key client-side. Only use it in server environments (Node.js, Deno, server functions). Your key controls billing and is never meant to be public.

Security

Store in environment variables

Never hardcode keys in source code. Use WIND_API_KEY in your .env file and load it with dotenv or your platform's secrets manager.

Rotate if compromised

Generate a new key in the Dashboard and revoke the old one. Old keys stop working immediately on revocation.

One key per app

Each app has its own key. If you run multiple apps, keep their keys separate — a leaked key only affects one app.