Skip to main content

Authentication

All API endpoints (except /v1/health) require an API key passed in the X-API-Key header.

Getting a key

Sign up at gildea.ai to receive your API key. Keys are prefixed with gld_.

Using your key

Include the key in every request: 
curl -H "X-API-Key: gld_your_key_here" \
  "https://api.gildea.ai/v1/signals?q=test"

Tiers

TierRate limitMonthly limitFeatures
Hacker (Free)5 req/min200/monthAll read endpoints
Pro30 req/min2,000/monthAll read endpoints + hybrid search
Team120 req/min10,000/monthAll read endpoints + hybrid search

Error responses

Missing or invalid API key returns 401: 
{
  "error": {
    "code": "unauthorized",
    "message": "Invalid or missing API key",
    "status": 401
  }
}
Missing the header entirely returns 422 (FastAPI validation error for required header).

Security

  • Keys are hashed with SHA-256 before storage — we never store plaintext keys
  • Keys can be revoked instantly from your dashboard
  • All requests are logged for usage tracking