Skip to main content
RunComfy API endpoints use Bearer token authentication. Send your API key in the Authorization header: Authorization: Bearer <YOUR_API_KEY> The same API key works across RunComfy APIs (including Serverless API (ComfyUI), Serverless API (LoRA), and the Model API).

Get an API key

  1. Sign in to RunComfy.
  2. Click your avatar in the top-right.
  3. Open Account and find API Token.
Alt RunComfy Profile Button Alt RunComfy API Token If you Regenerate your API key, the old key is revoked immediately—update all integrations and environments accordingly.

Security best practices

  • Never expose your API key in client-side environments (browsers, mobile apps, desktop GUIs).
  • Route requests through a server-side proxy you control.
  • Treat API keys like passwords: rotate if leaked, and limit access to trusted systems.