> ## Documentation Index
> Fetch the complete documentation index at: https://docs.wadial.com/llms.txt
> Use this file to discover all available pages before exploring further.

# API keys

> Create, store, rotate, and revoke API keys for server-side integrations.

API keys authenticate your backend when it calls WADial.

Create keys from **Dashboard → API Keys**. WADial shows the secret once. Store it in your server environment and keep only the prefix for identification.

## Request format

```http theme={null}
GET /api/v1/sessions
Authorization: Bearer <api_key>
```

## Rotation

1. Create a new key.
2. Deploy your app with the new key.
3. Confirm requests succeed.
4. Revoke the old key.

Revoked keys stop working immediately.

## Recommended layout

Use separate keys for production, staging, and local development.

```env theme={null}
WADIAL_API_KEY=wd_...
WADIAL_BASE_URL=https://api.wadial.com
```

Never expose API keys in frontend code.