API Key
This is a secret key which is used for authentication of API function calls. You can think of this as the master password for all of your trading accounts.
This key should be kept secret and must not be shared with anyone.
- By default, system creates an API key when you register
- Access your API Key
- If your API key is compromised, you can always re-generate it using “Re-generate” button
- To view your existing API key, please click “View” button
- Note: You must enter your AutoTrader login password for above actions
The key is saved in an encrypted format in our database, so even our support staff cannot read it. To know more about security, please refer to Security Concerns.
Two-Factor Authentication (2FA)
What is it?
An extra security layer using a time-based 6-digit code generated by an authenticator app (e.g., Google Authenticator or Authy).
How it works:
- You enable 2FA in Settings → Security.
- Scan the displayed QR code (or manually enter the secret) into your authenticator app.
- Each time you login, after entering your username and password, you’ll be prompted to enter the current 6-digit code.
- This code changes every 30 seconds, making unauthorized access even harder—even if someone knows your password.
Why should you use it?
- It’s a simple yet powerful way to protect your account from unauthorized access.
- Especially helpful if you share your login with staff—2FA ensures they cannot login without the code from your personal device.
- Enhances account safety, aligning with best practices beyond standard username/password security.