What format should my API key be?

Hex and base64 are common formats. Hex is more readable; base64 is more compact. UUID v4 is useful when you need a standardized format.

How long should an API key be?

At minimum 128 bits (32 hex chars or 22 base64 chars). For high-security applications, use 256 bits or more.

Is key generation secure?

Yes, uses crypto.getRandomValues() — the same cryptographic source used by operating systems for key generation.

Yes, completely free with no account required.

API Key Generator

Generate secure, cryptographically random API keys in multiple formats.

Format

Length

Secure random generator is not available in this environment.

API Key Generator creates cryptographically secure random keys using the Web Crypto API. Choose from hex, base64, alphanumeric, or UUID formats with lengths from 16 to 64 characters. All generation happens client-side.

Frequently Asked Questions

Are these keys cryptographically secure? +

Yes — all keys are generated using window.crypto.getRandomValues(), the browser's cryptographically secure random number generator, not Math.random().

Which format should I use? +

Hex is the most common for API keys. Base64 is shorter for the same entropy. Alphanumeric avoids special characters that need URL encoding. UUID format matches the standard v4 UUID shape.

Are keys sent to a server? +

No. Generation is entirely client-side. No keys are logged, stored, or transmitted.

Frequently Asked Questions

: Hex and base64 are the most common. Hex is easier to read and debug; base64 is more compact. UUID is useful when you need a standardized format.

API Key Generator

Frequently Asked Questions

Frequently Asked Questions

Related Tools