> ## Documentation Index
> Fetch the complete documentation index at: https://docs.repdata.com/llms.txt
> Use this file to discover all available pages before exploring further.

# API Keys

> Learn how to manage and use API keys within ReDem.

API Keys in ReDem allow you to programmatically send and retrieve data, making it easy to integrate ReDem into your application or connect with other tools and services.

Users can create multiple API keys, each with specific permissions to control access, making integrations secure and flexible.

<Tip>
  If you're using ReDem through the Research Desk platform, see also the [Research Desk Authentication Guide](/demand/guides/01-authentication-flow) for JWT token-based authentication patterns.
</Tip>

<Info>To create an API Key, you'll need a ReDem account. Don’t have an account yet? <br />Get started by [setting up your account](/redem/account-setup).</Info>

## Create API Key

You can create an API key by following these steps:

<Steps titleSize="h3">
  <Step title="Navigate to manage API Keys">
    <p> Once you are logged in to [ReDem Application](https://app.redem.io/), navigate to the API Keys section in your profile. </p>
  </Step>

  <Step title="Create an API Key">
    Click on the "Create API Key" button to generate a new key.

    Give your API key a meaningful name to help you identify its use later.

    Once you’ve made an API key you should copy it and put it somewhere safe, as you will not be able to see it again once you navigate away.
  </Step>

  <Step title="Go and connect with ReDem 🚀">
    <p>Great! Now that you have your API key, you can use it to securely send or retrieve data from ReDem in any API request.</p>

    ```plainApiKey_xxx theme={null}
        api-key: your_api_key_xxx
    ```
  </Step>
</Steps>

**Best practices for API key management:**

* Use separate keys for different environments (development, staging, production).
* Regularly rotate your keys to maintain security. We recommend every 90 days.
* If a key is compromised, delete it immediately and generate a new one.

## Rate limits

All API requests authenticated with `api-key` are subject to per-key rate limiting.

* `addRespondent`:
  * Standard API keys: 600 requests per minute
  * Premium API keys (configured per client): up to 1200 requests per minute
* Other endpoints:
  * 1200 requests per minute

If you exceed the limit, you will receive a `429` response:

```json theme={null}
{
  "error": "rate_limit_exceeded",
  "message": "This API key exceeded 600 requests per minute.",
  "statusCode": 429
}
```
