# Authentication

All API endpoints require authentication using an API key and a Hyperhash App ID header. Include the following headers with every request:

* **x-api-key**\
  `string` **(required)**\
  Your Hyperhash API key used to authenticate the request.
* **hyperhash-app-id**\
  `string` **(required)**\
  Your Hyperhash App ID, used to identify your application.

Requests missing either of these headers will be rejected by Hyperhash’s authentication middleware.