Authentication

API Key Authentication

Every request to the apeek API must include a valid API key in the X-API-Key header. Keys are issued through insight.apeek.io.

Header Format

X-API-Key: your_api_key_here

Rate Limits

Each API key is subject to the following rate limits:

  • 60 requests per minute
  • 1,000 requests per day

Exceeding these limits returns a 429 Too Many Requests response.

Security Best Practices

  • Never expose your API key in client-side code or public repositories.
  • Store your key in environment variables or a secrets manager.
  • Rotate your key immediately if you suspect it has been compromised.