# Authentication

All requests to the JondaX API require a Bearer token.

## Getting your API key

Retrieve your API key from the **Integration** section under **Settings** in the JondaX client portal at [https://app.jondax.eu/login](https://app.jondax.eu/login).

## Using your API key

Include the key in every request header:


```
Authorization: Bearer <JONDAX_API_KEY>
```

## Rules

- Do not include extra prefixes, suffixes, quotes, or spaces in the token value.
- Never expose the API key in client-side code.
- Store the key securely (environment variables, secrets manager, etc.).
- Rotate or regenerate keys in the client portal immediately if exposed.