Authentication
Two auth modes are used in this platform.
Dashboard routes (`/v1/keys`, `/v1/usage`, billing)
Use JWT bearer token from `/v1/auth/token`.
Authorization: Bearer <jwt_token>
Conversion routes (`/v1/convert`, `/v1/convert/async`)
Use HTTP Basic Auth where username is API key and password is empty.
-u "sk_live_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx:"
Security notes
- Store API keys server-side only.
- Rotate compromised keys immediately.
- Use separate test/live keys per environment.