Authentication

Learn how to authenticate your API requests to GonkaGate.

Looking for the Gonka API hub? Start here.

Overview

GonkaGate uses two authentication methods depending on the endpoint type:

Getting Your API Key

Follow these steps to get your API key:

Using Your API Key

Include your API key in the Authorization header of all API requests:

Authorization: Bearer gp-your-api-key-here

Code Examples

Here's how to use your API key in different languages:

from openai import OpenAI

client = OpenAI(
    base_url="https://api.gonkagate.com/v1",
    api_key="gp-your-api-key-here"  # Get from dashboard
)

response = client.chat.completions.create(
    model="qwen/qwen3-235b-a22b-instruct-2507-fp8",
    messages=[{"role": "user", "content": "Hello!"}]
)

print(response.choices[0].message.content)

Security Best Practices

Follow these practices to keep your API key secure:

• Never expose in frontend code — Never include your API key in client-side JavaScript. It will be visible in browser dev tools.
• Use environment variables — Store your API key in environment variables, not in source code.
• Rotate if compromised — If you suspect a key is compromised, rotate it from the dashboard (create a new key and disable the old one).

See Security for policy details and Best Practices for production guidance.

Using Environment Variables

import os
from openai import OpenAI

# Read from environment variable
client = OpenAI(
    base_url="https://api.gonkagate.com/v1",
    api_key=os.environ.get("GONKAGATE_API_KEY")
)

# Now use client as normal
response = client.chat.completions.create(
    model="qwen/qwen3-235b-a22b-instruct-2507-fp8",
    messages=[{"role": "user", "content": "Hello!"}]
)

Rotating API keys

Rotate keys by creating a new key, saving it, then disabling (or deleting) the old key.