Skip to content

WIP: Scoped API Key Authentication #53

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
aditya-damerla128 wants to merge 4 commits into
base: main
Choose a base branch
from
Draft

WIP: Scoped API Key Authentication #53

aditya-damerla128 wants to merge 4 commits into from

Conversation

@aditya-damerla128
Copy link
Collaborator

@aditya-damerla128 aditya-damerla128 commented Jan 8, 2026
edited
Loading

Link to the Demo

Summary

Implements scoped API key authentication system per #37.

What's done:

  • SQLite database with users, api_keys, sessions tables
  • Two key types: ozw_ (general) and ozw_scoped_ (limited)
  • Dashboard auth + API key management endpoints
  • Real API key validation on /v1/chat/completions
  • Server-side LLM provider config (no more "ollama" API key hack)
  • Live Demo section for testing the flow

Still TODO:

  • Production-ready PostgreSQL migration
  • Rate limiting per key
  • Usage tracking/analytics
  • Key rotation support

Closes #37

@aditya-damerla128
Dashboard Prototype with a quick explanation of the methodology
3ada9d3
@aditya-damerla128
feat: implement scoped API key authentication system
d8d1876 
Add complete API key authentication infrastructure:
- SQLite database with users, api_keys, and sessions tables
- Two key types: ozw_ (general) and ozw_scoped_ (limited)
- Dashboard auth routes (/auth/register, /auth/login)
- API key management routes (/v1/api-keys)
- Real API key validation middleware for /v1/chat/completions
- Server-side LLM provider config (removes "ollama" API key hack)
- Live Demo section with API test dialog

Closes #37
@aditya-damerla128
Copy link
Collaborator Author

aditya-damerla128 commented Jan 8, 2026

Will be checking the failing workflows after the methodolgy is settled on if this is the way we want to go forward with the implementation

@aditya-damerla128
Copy link
Collaborator Author

aditya-damerla128 commented Jan 8, 2026

Link to the demo: https://youtube.com/shorts/2cH6Vtcj8vY?si=-clyjMXSNVXgCmtC

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Scoped API Keys

2 participants

@aditya-damerla128