Used for API requests from a trusted backend, scripts, and integrations. Use Basic authentication for index management, crawler URL queues, search tools, and any endpoint where you can keep the API key private.
# Use https://api-us1.cludo.com for the US regioncurl -X POST "https://api.cludo.com/api/v4/3/6/search" \ -H "Authorization: Basic MzpjOGZrMkw5bUs0cFE=" \ -H "Content-Type: application/json" \ -d '{"query": "test"}'
Used for public website search widgets and other client-side search integrations. SiteKey authentication exists so browser code can call search-related endpoints without exposing your API key.
# Format: base64(customerId:engineId:SearchKey)# "SearchKey" is a fixed, literal string. Do not replace it with a value.echo -n "3:6:SearchKey" | base64# Mzo2OlNlYXJjaEtleQ==
A SiteKey is tied to one specific engine. You cannot use a SiteKey from one engine to authenticate requests to another engine.
# Use https://api-us1.cludo.com for the US regioncurl -X POST "https://api.cludo.com/api/v4/3/6/search" \ -H "Authorization: SiteKey Mzo2OlNlYXJjaEtleQ==" \ -H "Content-Type: application/json" \ -d '{"query": "test"}'
Use the tool below to generate your SiteKey or Basic authorization header and a ready-to-run cURL command. Switch between SiteKey and Basic to see the correct prefix for each scheme.