account
API Keys
Each OriginChain instance has its own bearer token. Tokens are returned once and stored only as an Argon2 hash — rotate here if a token is lost or leaked. The control plane uses a separate cookie-based session for this console.
Instance tokens
0 issued LOAD ERROR
Couldn't load — try again in a moment.
Instance
Region
Created
Action
Instance
Region
Created
Action
no tokens yet
Tokens are issued per instance. Create your first instance to get one.
+ Create your first instanceHandling tokens safely
- do Store tokens in your secrets manager. Load them via env var (e.g.
OC_BEARER) — never commit them. - do Rotate immediately if a token appears in logs, shell history, or a VCS leak scan.
- don't Share tokens between environments (staging, prod). Create a separate instance for each.
- don't Use a bearer from the client — they're server-side credentials. For browser auth, proxy requests through your backend.