Docs

Authentication

How to authenticate with the DUAL API using JWT tokens and API keys.

Authentication Methods

The DUAL API supports two authentication methods that can be used independently or together:

Bearer JWT Token

Obtain a JWT token by calling the POST /wallets/login endpoint with your credentials. Include the token in subsequent requests via the Authorization header:

Authorization: Bearer eyJhbGciOiJIUzI1NiIs...

API Key

Create an API key through the dashboard or via POST /api-keys. Include it in the x-api-key header:

x-api-key: your-api-key-here

Security Model

DUAL implements a 5-layer security architecture:

  • Layer 1 — EIP-712 typed data signatures for all state-changing requests
  • Layer 2 — Hash chain integrity for action ordering
  • Layer 3 — Batch fingerprinting for on-chain anchoring
  • Layer 4 — ZK proof verification for dispute resolution
  • Layer 5 — Smart contract enforcement on Ethereum

Rate Limits

API requests are rate-limited per organization. Contact support for higher limits.

Previous
Overview
Next
Quick Start