Skip to main content

Authentication

Anona Memory uses API key-based authentication with Bearer tokens.

Getting an API Key

  1. Sign up at the Anona Memory dashboard
  2. Verify your email
  3. Go to SettingsAPI KeysCreate API Key
  4. Choose environment (live or test) and a name
  5. Copy your key immediately - it’s shown only once
Keys follow the format anona_live_<random> (production) or anona_test_<random> (testing).

Using Your API Key

Python SDK:

Key Security

  • Never share your API key - treat it like a password
  • Never commit to version control - use environment variables
  • Rotate regularly - create new keys and revoke old ones if compromised
  • Use test keys in development, live keys only in production

Authentication Errors

401 Unauthorized:
Common causes:
  • API key not included in header
  • API key is invalid or revoked
  • API key belongs to a different organization
  • Header format incorrect (must be Authorization: Bearer <key>)

Organization & Space Context

Every request operates in the context of your organization (from the API key) and a space_id you supply. You cannot access spaces belonging to another organization - enforced at both the gateway and database level.

API Key Management

Manage keys from the dashboard: SettingsAPI Keys.
  • List - see key name, prefix, environment, created date, last used date, status
  • Revoke - immediately and permanently disables the key (cannot be undone)
  • Rotate - create a new key, update your app, then revoke the old one

Rate Limiting

Requests are rate-limited per organization based on your plan. When exceeded:
Retry with exponential backoff.

Next Steps

Memories API

Store and manage memories

Search API

Query memories semantically

Spaces API

Manage memory spaces