Authentication methods
NexaTech supports three authentication mechanisms: API keys, OAuth 2.0 tokens, and short-lived OIDC tokens for CI environments.
API keys
API keys are long-lived credentials tied to your account. Generate them in the dashboard under Settings → API Keys.
Authorization: Bearer nt_live_xxxxxxxxxxxxxxxxxxxxUse nt_test_ prefix keys for testing — they can't make real-money operations or send external traffic.
OAuth 2.0
For user-facing applications that act on behalf of NexaTech users, use our OAuth 2.0 flow with PKCE.
GET /oauth/authorize?
client_id=YOUR_CLIENT_ID&
redirect_uri=https://yourapp.com/callback&
scope=compute:read compute:write&
response_type=code&
code_challenge=CHALLENGE&
code_challenge_method=S256Scopes
Request only the scopes your application needs. Available scopes: compute:read, compute:write, security:read, security:write, billing:read.