Skip to main content

Documentation Index

Fetch the complete documentation index at: https://fireblocks-43c4b3ee-chore-add-cli.mintlify.app/llms.txt

Use this file to discover all available pages before exploring further.

API Authentication

The Fireblocks API uses an API key and a request-signing process to provide a highly secure communication protocol. You can create API keys through the Fireblocks Console or the API.

Create an API key in the Console

To create your first API key:
  1. Generate an RSA 4096 private key and CSR file: 
    openssl req -new -newkey rsa:4096 -nodes -keyout fireblocks_secret.key -out fireblocks.csr -subj '/O=<your_organization>'
  2. In the Fireblocks Console, go to the Developer center’s API users page.
  3. Select Add API user.
  4. Enter a display name for the API key (up to 30 characters) and select the appropriate role. Permissions follow the same user roles used for Console users.
  5. Upload the CSR file you generated in step 1.
  6. Select whether a Co-signer setup is required.
    1. If you’re in a testnet workspace, you can connect to the Fireblocks Communal Test Co-signer.
    2. Only select First user on this machine if you’re using the API user to install a new SGX Co-signer.
  7. Select Add user.
After the required approval quorum is reached, the API key appears in the API users list. You can copy the API key from there by hovering your pointer over the value in the API User (ID) column. Every request using this API key must follow the Fireblocks API authentication scheme.

Create an API key via the Fireblocks API

Complete step 1 from the Console procedure above to generate your RSA key and CSR file, then call the Create API Key endpoint to complete the API key creation operation.