Authentication
All API requests require authentication via an API key.
Generating an API Key
- Navigate to Settings in your ReelBot dashboard
- Scroll to the Developer API section
- Click Generate API Key
- Enter a name for your key (e.g., "Production", "Development")
- Click Create Key
Your API key is displayed only once when created. Copy and store it securely immediately.
If you lose your key, you must revoke it and generate a new one.
API Key Format
ReelBot API keys follow this format:
rb_live_<random-string>
Example:
rb_live_a1B2c3D4e5F6g7H8i9J0k1L2m3N4o5P6q7R8s9T0
The rb_live_ prefix identifies it as a ReelBot API key.
Using Your API Key
Include your API key in the X-API-Key header with every request:
curl -X POST https://reelbot.space/api/v1/video/generate \
-H "X-API-Key: rb_live_your_key_here" \
-H "Content-Type: application/json" \
-d '{ ... }'
Header Name
| Header | Value |
|---|---|
X-API-Key | Your API key |
Key Limits
| Limit | Value |
|---|---|
| Keys per account | 1 |
| Key expiration | Never (until revoked) |
If you need a new key, revoke the existing one first.
Revoking an API Key
To revoke your API key:
- Go to Settings → Developer API
- Click the trash icon next to your key
- Confirm the revocation
Revoking a key is immediate and permanent. Any applications using the key will stop working instantly.
Security Best Practices
Do
- Store your API key in environment variables
- Use secrets management (AWS Secrets Manager, HashiCorp Vault, etc.)
- Rotate keys periodically by revoking and regenerating
- Use HTTPS for all API calls (enforced by default)
Don't
- Commit API keys to version control
- Share keys in plain text (email, Slack, etc.)
- Expose keys in client-side code
- Use the same key across multiple environments
Environment Variables Example
# .env file (never commit this)
REELBOT_API_KEY=rb_live_your_key_here
// Node.js
const apiKey = process.env.REELBOT_API_KEY;
# Python
import os
api_key = os.environ.get('REELBOT_API_KEY')
Authentication Errors
| Status Code | Error Code | Description |
|---|---|---|
| 401 | UNAUTHORIZED | Missing or invalid API key |
| 401 | UNAUTHORIZED | API key has been revoked |
| 401 | UNAUTHORIZED | API key has expired |
Example Error Response
{
"success": false,
"message": "Unauthorized. Please provide a valid API key via the X-API-Key header.",
"code": "UNAUTHORIZED"
}
Checking Your Key
To verify your API key is working, make a request to any endpoint:
curl -I https://reelbot.space/api/v1/video/generate \
-H "X-API-Key: rb_live_your_key_here"
A 401 response means the key is invalid.
A 400 or 200 response means authentication succeeded.
Next Steps
→ Generate Video — Start creating videos via API