Authentication
Secure your requests with API keys
The Trustyn API uses API keys to authenticate requests. Each request must include your key in the X-API-Key HTTP header.
bash
curl -X POST https://api.trustyn.ai/v1/check \
-H "X-API-Key: trustyn_live_xxxxxxxxxxxxxxxx" \
-H "Content-Type: application/json" \
-d '{"content": "https://example.com"}'Key Types
Test Key
trustyn_test_*Use during development. Requests are not billed and results are simulated.
- • Available for all plans (including Free)
- • 50 requests/day maximum
- • Simulated results (no real AI analysis)
Live Key
trustyn_live_*Use in production. Each request triggers real AI analysis and counts against quota.
- • Requires B2B plan (Starter, Business, Enterprise)
- • Quota based on your plan (1K, 10K, unlimited)
- • Real AI analysis (Mistral AI)
Security Best Practices
Never share your keys
Your API keys are confidential. Never commit them to source code, share them publicly, or include them in client-side code.
Environment variables example
# .env (do not commit this file!)
TRUSTYN_API_KEY=trustyn_live_xxxxxxxxxxxxxxxx
# Python
import os
api_key = os.environ.get("TRUSTYN_API_KEY")
# Node.js
const apiKey = process.env.TRUSTYN_API_KEY;Authentication Errors
401 - Invalid API key
{
"error": {
"code": "INVALID_API_KEY",
"message": "The provided API key is invalid or expired."
}
}403 - Quota exceeded
{
"error": {
"code": "QUOTA_EXCEEDED",
"message": "Your monthly quota is exhausted.",
"details": {
"quota_limit": 1000,
"quota_used": 1000,
"reset_at": "2024-02-01T00:00:00Z"
}
}
}