> ## Documentation Index
> Fetch the complete documentation index at: https://docs.gr4vy.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Creating an API key for use with Embed

Before the app can communicate with the API, create a new API key. The API handles authentication using a signed **JSON
Web Token** (JWT) which is passed in a HTTP header.

```bash theme={"system"}
curl -X GET https://api.example.gr4vy.app/transactions \
  -H "authorization: bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIi..."
```

<Tip>
  Using an SDK is recommended. SDKs make the process of generating a token a lot easier and are probably
  available in the preferred programming language. This is covered in the
  next step.
</Tip>

## Create a new API key

To use the API, generate a new **API key**. Head over to
the dashboard and visit the **Integrations** page.

<img src="https://mintcdn.com/gr4vy/jCFeFdffXM43huI0/assets/images/api-keys/add-key.png?fit=max&auto=format&n=jCFeFdffXM43huI0&q=85&s=303f2845a0f3727c623ccf3cd98b2ad1" alt="API key dashboard" width="1413" height="1040" data-path="assets/images/api-keys/add-key.png" />

On this page, click the **Add API key** button select a name for the key. The name is purely to track what key is for what integration.
The downloaded key needs to be stored securely as it is not stored by the system.

<Info>
  Learn more about private keys, key-pairs, and JWT in the
  [in-depth guide on authentication](/guides/api/authentication).
</Info>

## Summary

In this step:

* Learned about API authentication.
* Created a new private key for the API.
* Stored this API key in a secure place where the app can access it.