Authentication methods and rate limits for BitMind APIs.
BitMind APIs use the same HTTP Bearer authentication format.
Authorization: Bearer <YOUR_API_KEY>The header format is identical.
The accepted key type is different.
https://api.bitmind.ai
Accepts standard API keys for normal platform usage.
These are typically universal service keys.
https://enterprise.bitmind.ai
Requires an enterprise API key.
These keys are enterprise-tier credentials.
Standard API keys are rejected with 401 Unauthorized.
Use API keys for server-to-server requests.
Use JWTs for user-facing applications where supported.
Some applications also send an application identifier header.
API key users: Based on subscription tier
JWT users: 1 request/second with burst up to 5
Store tokens in environment variables or a secret manager.
Never commit tokens to source control.
Rotate long-lived credentials regularly.
Use enterprise keys only against enterprise endpoints.
Last updated
Authorization: Bearer your-api-keyAuthorization: Bearer enterprise-your-keyAuthorization: Bearer your-jwt-tokenx-bitmind-application: oracle-api