Authentication

All OxAPI requests must be authenticated using a Bearer token.

API Key Header

Include your API key in the Authorization HTTP header as a Bearer token.

Authorization: Bearer YOUR_API_KEY

Example request

curl https://api.oxlo.ai/v1/chat/completions \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{ "model": "llama-3.2-3b", "messages": [{"role":"user","content":"Hello"}] }'

Security Best Practices

Do not expose API keys in client-side applications.
Store keys securely using environment variables.
Rotate keys periodically from the Oxlo.ai Portal.