Authentication

API Keys

All requests require a bearer token in the Authorization header.

Authorization: Bearer orchid-your-key-here

Get your API key from app.orchid.ac under Settings → API Keys.

Your API key is secret. Never commit it to version control or expose it in client-side code. Use environment variables.

Setting	Value
Base URL	`https://llm.orchid.ac/v1`
Auth header	`Authorization: Bearer <your-key>`
Model	`orchid01`

The base URL must include /v1. Using https://llm.orchid.ac alone (without /v1) will return a 404.

export ORCHID_API_KEY="orchid-your-key-here"

Then in code:

import os
from openai import OpenAI

client = OpenAI(
    base_url="https://llm.orchid.ac/v1",
    api_key=os.environ["ORCHID_API_KEY"],
)

Authentication errors return an OpenAI-compatible error object:

{
  "error": {
    "message": "Invalid API key",
    "type": "authentication_error",
    "code": "invalid_api_key"
  }
}

Status	Meaning
`401`	Missing or invalid API key
`403`	Key exists but is inactive

⌘I