Orbit Cloud

API Key Dashboard

Manage API keys without shell commands. Create, rotate, and revoke keys with audit-safe flows.

Connection

Browser requests use /api/dashboard/* server routes. Authentication and upstream API access are handled server-side.

Checking session...

No Orbit Bearer token is stored in localStorage or exposed to client-side JavaScript.

Security-sensitive configuration remains server-only and is never sent to the browser.

Dashboard Sign-In

API key management is locked behind a server-issued session cookie.