Authentication
CyberPay MCP Server uses API Key authentication.
Get API Key
- Visit CyberDash
- Login with wallet connection
- Go to Settings → API Keys
- Create a new API Key
Configuration
Environment Variable
export CYBERPAY_API_KEY=cp_your_api_keyMCP Configuration
Pass via the env field in MCP config:
{
"mcpServers": {
"cyberpay": {
"command": "npx",
"args": ["@cyberpay/mcp"],
"env": {
"CYBERPAY_API_KEY": "cp_your_api_key"
}
}
}
}REST API
When calling REST API directly, pass in the Header:
curl -X POST https://api.cyberpay.org/v1/service/call \
-H "Authorization: Bearer cp_your_api_key" \
-H "Content-Type: application/json" \
-d '{"service_id": "card-list", "params": {"wallet": "0x..."}}'API Key Types
| Type | Prefix | Permissions |
|---|---|---|
| Production | cp_ | All services, real transactions |
| Testnet | cp_test_ | All services, test environment |
| Read-only | cp_ro_ | Query-only services |
Rate Limits
| Plan | Limit | Burst |
|---|---|---|
| Free | 100 req/min | 200 req/min |
| Pro | 1000 req/min | 2000 req/min |
| Enterprise | Custom | Custom |
Exceeding limits returns 429 Too Many Requests.
Security Best Practices
- Never expose API Keys in client-side code
- Store in environment variables
- Rotate keys regularly
- Use different keys for different environments
- Monitor API Key usage