Authentication

All API requests require an API key passed in the x-api-key header.

Getting your API key

  1. Create an account or sign in
  2. Go to your dashboard
  3. Create an API key and give it a name (e.g. Production, Development)

Using your API key

Include the x-api-key header in every request:

bash
curl "https://api.secdailyapi.com/filings?limit=5" \
  -H "x-api-key: YOUR_API_KEY"

Security best practices

  • Never expose your API key in client-side code or public repositories
  • Use environment variables to store your key
  • Rotate keys if you suspect they may be compromised

Environment variable example

python
# .env file (never commit this!)
SEC_API_KEY=your_api_key_here
# In your code
import os
api_key = os.environ["SEC_API_KEY"]

Error responses

If your API key is missing or invalid, you'll receive a 403 response:

json
{
  "error": "Forbidden",
  "message": "Invalid API key"
}