Authentication

API key management and user authentication

API Key Setup

ALICE supports optional API key authentication for production deployments.

Enable Authentication

Edit config.yaml:

auth:
  enabled: true
  api_keys:
    - key: your-secret-key-here
      name: production-client

Using API Keys

Authorization: Bearer your-secret-key-here

User Management

Admin users can manage API keys through the web interface or configuration file.

Security Best Practices

• Use HTTPS in production
• Rotate API keys periodically
• Never commit keys to version control
• Use environment variables for secrets

Next Steps

• Deployment - Production setup
• API Reference - Using the API
• Privacy - Image access control