API Key Types
SearchAnything uses two types of API keys:Live Keys (sk_live_...)
Production keys that:
- Process real files
- Count against your quota
- Store data permanently
- Should be kept secret
Test Keys (sk_test_...)
Sandbox keys that:
- Return mock data instantly
- Don’t count against quota
- Don’t process or store files
- Safe to use in public code
Creating an API Key
- Log in to your Dashboard
- Click Developers in the navigation
- Click Create New Key
- Choose Live or Test environment
- Copy your key immediately (you won’t see it again!)
Authentication
All API requests require authentication via theAuthorization header:
Sandbox Mode (Test Keys)
Test keys provide realistic responses without processing real files:Security Best Practices
Rotate keys regularly
Rotate keys regularly
Create new keys every 90 days and revoke old ones.
Use environment variables
Use environment variables
Never hardcode keys in your source code:
Separate keys per environment
Separate keys per environment
Use different keys for development, staging, and production.
Monitor key usage
Monitor key usage
Check your Developer Dashboard regularly for suspicious activity.
Key Management
List Your Keys
View all active keys in the Developer Dashboard. Keys are displayed with:- Key name
- Prefix (e.g.,
sk_live_...) - Creation date
- Type (Live or Test)
Revoke a Key
Deleting a key immediately invalidates it. Any applications using that key will receive 401 errors.Rate Limits
All API endpoints are rate-limited to prevent abuse:| Plan | Requests per Second |
|---|---|
| Free | 5 req/s |
| Pro | 50 req/s |
| Enterprise | Custom |
429 Too Many Requests response.