Cloud API
API Keys
Manage your AI Media Maker API keys for server-side integration.
API Keys
Manage your AI Media Maker API keys for server-side integration.
Creating an API Key
- Sign in at maker.cappuai.com/login
- Navigate to Cloud Console → API Keys
- Click Add Key
- Enter a descriptive name (e.g., "Production", "Development")
- Click Create Key
- Copy your key immediately - you won't be able to see it again
Key Format
API keys use the format:
wi_live_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxwi_live_- Prefix identifying AI Media Maker keys- 64 hex characters - Cryptographically random identifier
Security
Hashed Storage
For your security, we only store a SHA-256 hash of your API key. This means:
- We cannot retrieve your key if you lose it
- Even if our database is compromised, your keys are safe
- You must copy the key when it's first displayed
Best Practices
- Never commit keys to git - Use environment variables
- Use different keys for development and production
- Rotate keys periodically - Delete old keys and create new ones
- Delete unused keys - Reduce attack surface
Using Your API Key
HTTP Header (Recommended)
Include your API key in the Authorization header with the Bearer prefix:
Authorization: Bearer YOUR_API_KEYEnvironment Variables
# .env
AI_MEDIA_MAKER_API_KEY=wi_live_xxxx...
# Node.js
const apiKey = process.env.AI_MEDIA_MAKER_API_KEY;API Endpoints
Bulk Image Generation
Generate images from text prompts. Each image deducts 1 credit from your account.
Request:
curl -X POST https://maker.cappuai.com/api/playground/images \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{"prompts": ["A beautiful sunset over the ocean", "A futuristic cityscape"]}'Response:
{
"jobId": "uuid",
"totalImages": 2,
"creditsUsed": 2,
"credits": 4
}| Field | Description |
|---|---|
jobId | Job ID to poll for status |
totalImages | Number of images being generated |
creditsUsed | Credits deducted |
credits | Remaining credits |
Get Job Status
curl https://maker.cappuai.com/api/playground/images/{jobId} \
-H "Authorization: Bearer YOUR_API_KEY"Error Responses:
| Status | Error | Description |
|---|---|---|
| 401 | Missing or invalid Authorization header | API key not provided |
| 401 | Invalid API key format | Key doesn't match expected format |
| 401 | Invalid API key | Key not found or deleted |
| 402 | Insufficient credits | No credits remaining |
Managing Keys
View Keys
Go to API Keys to see all your keys with:
- Key name
- Key prefix (first 12 characters)
- Last used date
- Created date
Delete Keys
Click Delete next to any key to revoke it immediately. Deleted keys:
- Cannot be used for new requests
- Are soft-deleted for audit compliance
- Cannot be recovered
Audit Logging
All key operations are logged for security:
- Key creation (with IP address)
- Key deletion (with IP address)
- Key usage (last used timestamp)
These logs are available for 90 days and can be requested for compliance purposes.