Authentication

Three credential paths: business API key (server-side READ, DECIDE, merchant Actions), Smart Wallet JWT (first-party onchain Actions), and Connect delegated JWT (third-party EXECUTE). Business keys are rate-limited to 100 requests per rolling minute — see Errors & Rate Limits.

At a Glance

Credential	Header	Layers
sk_live_…	Authorization: Bearer sk_live_…	READ, DECIDE, Actions (merchant channel)
Smart Wallet JWT	Authorization: Bearer <jwt>	EXECUTE: Actions on_chain (`/api/v1/execute/`, alias `/actions/`)
Connect delegated JWT	Authorization: Bearer <delegated_jwt>	EXECUTE: third-party via OAuth (see below)

Business API Key

business-key.sh

# sk_live_… → app.torque.fi → API Integration (server only)

export TORQUE_KEY="sk_live_…"
curl -sS "https://app.torque.fi/api/v1/intelligence/feed" \
  -H "Authorization: Bearer $TORQUE_KEY" \
  | jq '.meta.manifestVersion, (.items | length)'

Smart Wallet JWT

Torque sign-in (OTP/Google): onchain POST /execute/** & GET /accounts/wallet. Partners → third-party integrators.

actions-request.sh

export WALLET_JWT="<smart_wallet_jwt>"

curl -sS -X POST "https://app.torque.fi/api/v1/execute/trades" \
  -H "Authorization: Bearer $WALLET_JWT" \
  -H "Content-Type: application/json" \
  -d '{ ... }'

Third-Party Integrators

auth-model.txt

sk_live_…     → read, decide, connect (server only)
walletAddress → chat context, not auth
User JWT      → execute
A data, B chat+hosted, C OAuth, D platform wallets

Profile	Who	What You Get
A: Data / terminal	Server with sk_live_…	Intelligence, markets, GET /read/portfolio
B: Advisory / copilot	Server + walletAddress	Assistant, hosted confirm
C: Embedded money	Connect OAuth	Delegated JWT + torque-actions
D: Platform / casino	Server + sk_live_… + entitlement	POST /accounts/end-users; deposit + withdraw via Connect (portal app URL)

Credential by Surface

Surface	Layer	Credential
Portfolio	READ	Smart Wallet JWT
Intelligence	READ	sk_live_…
Assistant	DECIDE	sk_live_…
Actions	EXECUTE	Smart Wallet JWT (on_chain); sk_live_… (merchant)

Testing

Execution API	https://app.torque.fi/api/v1
Local development	http://localhost:3000/api/v1
Capabilities probe (no auth)	https://app.torque.fi/api/v1/capabilities

Actions handoff

Connect confirm and OAuth

Quickstart

End-to-end flow from capabilities probe to EXECUTE

SDK Credentials

Package-by-package auth requirements

API Reference

All v1 routes grouped by runtime stage

Was this helpful?

← Introduction Quickstart →