> ## Documentation Index
> Fetch the complete documentation index at: https://docs.uapi.nl/llms.txt
> Use this file to discover all available pages before exploring further.

# Authentication

> Send X-API-Key on every request

Authentication is simple and explicit. Every request must include a single header named X-API-Key. Keys are created and managed in your dashboard at [https://uapi.nl/](https://uapi.nl/). Treat keys like passwords and never expose them in client-side code.

<ParamField header="X-API-Key" type="string" required>
  Account credential that authorizes usage and ties requests to your plan.
</ParamField>

## Key management and rotation

Keys can be created, disabled, and deleted in the dashboard. To rotate a key without downtime:

1. Create a new key in [https://uapi.nl/api/](https://uapi.nl/api/).
2. Deploy your services with both keys accepted during a short transition window.
3. Remove the old key from all deployments.
4. Disable or delete the old key in the dashboard.

<ResponseExample>
  ```http Headers theme={null}
  X-API-Key: UAPI_API_KEY
  ```
</ResponseExample>