API Key Management
Learn how to create, manage, and secure your FreeFileTools API keys.
Creating an API Key
To create an API key:
- Log in to your account at freefiletools.io
- Navigate to Dashboard > API Keys
- Click Create API Key
- Give your key a descriptive name (e.g., "My App", "CI Pipeline")
- Copy and store the key securely -- it will only be shown once
Your key will look like: fft_abc123def456...
Free Plan
| Feature | Limit |
|---|---|
| API keys per account | 1 |
| Requests per hour | 50 |
| Max file size | 25 MB |
| All endpoints | Included |
Regenerating a Key
If your API key is compromised or you need a new one:
- Go to Dashboard > API Keys
- Click the Regenerate button next to your existing key
- Confirm the action -- your old key will be immediately invalidated
- Copy and store the new key
Warning: Regenerating a key immediately invalidates the old key. Any applications using the old key will stop working until updated with the new key.
Security Best Practices
1.
Never share your API key
Do not share your key in public repositories, forums, or client-side code.
2.
Use environment variables
Store your API key in environment variables, not in source code.
3.
Keep it server-side
Make API calls from your backend server. Never expose the key in frontend JavaScript.
4.
Regenerate if compromised
If your key may have been exposed, regenerate it immediately from the dashboard.
Example: Using environment variables
bash
# .env file (do NOT commit this)
FFT_API_KEY=fft_your_api_key_herejavascript
// Read from environment variable
const apiKey = process.env.FFT_API_KEY;
const response = await fetch("https://freefiletools.io/api/image-compress", {
method: "POST",
headers: {
"x-api-key": apiKey,
},
body: formData,
});