Wie man eine Börse mit BackFuture AI verbindet: API-Schlüssel, Sicherheit und Verbindungsprüfung
BackFuture AI works through an Börse Verbindung via API. This means that the Nutzer’s Gelder remain on the Börse account, while das System receives only the permissions that the Nutzer explicitly grants in the API-Schlüssel.
Supported Börsen
At the current stage, the Plattform is focused on working with MEXC and KuCoin. In the future, the list of Verbindungen can be expanded: Binance, OKX, Bitget, Gate.io, HTX, BingX, Coinbase, Bybit and other Börsen.
General Verbindung process
- The Nutzer logs into their Börse account.
- Creates a new API-Schlüssel.
- Disables Auszahlungsberechtigung.
- Enables only the required permissions: balance reading, order reading and Trading.
- Sets an IP restriction if the Börse supports it.
- Copies the API Key and Secret Key.
- Adds the Verbindung in the BackFuture AI dashboard.
- Runs a Verbindung test.
- After a successful check, enables the required Strategie or bot.
Required API permissions
| Permission | Needed? | Warum |
|---|---|---|
| Read | ✅ Yes | So das System can see balances, orders, positions and Status. |
| Trade | ✅ Yes | So the bot can open, add to and close Trades. |
| Withdraw | ❌ No | This permission must not be given to a Trading bot. |
| Futures | ◐ If needed | Only for Strategien that work with futures. |
| IP whitelist | ✅ Recommended | Restricts key usage to approved server IP addresses. |
Wie to name a Verbindung correctly
In the dashboard, it is better to use clear Verbindung names. This is especially wichtig if the Nutzer has several Börsen, sub-accounts or Strategien.
- MEXC Spot Main — main spot account on MEXC.
- KuCoin Futures Conservative — futures account for a conservative Strategie.
- Recovery PRO Connection — separate Verbindung for Recovery/PRO logic.
- BTC ETH New Groups — separate Verbindung for new BTC/ETH Gruppen.
Step-by-step Beispiel
Step 1. Create an API-Schlüssel on the Börse
In the Börse account, open API Management or API Keys. Usually the Börse asks for a key name and confirms the action through email, phone or 2FA.
Step 2. Set permissions
For a Trading Verbindung, read and Trade permissions are usually needed. Withdrawal must be disabled. If the Börse offers separate permissions for spot and futures, enable only the Markt you really plan to use.
Step 3. Add the key to BackFuture AI
In the dashboard, the Nutzer selects an Börse, enters API Key and Secret Key, sets a Verbindung name and saves it. Secrets should not be displayed in full after saving.
Step 4. Test the Verbindung
Das System checks the key, permissions, balance access and the ability to receive Status. If everything is correct, the Verbindung receives an “Online” or “Connected” Status.
Step 5. Enable a Strategie
After the test, the Nutzer can select pairs, Risiko level, Margin limit, Nachkauf behavior, Recovery Mode and other Einstellungen.
Typical Verbindung errors
| Error | Cause | Was to do |
|---|---|---|
| Invalid key | API-Schlüssel or secret was copied incorrectly. | Create a new key or copy the values again. |
| No Trading permission | Trade permission is disabled. | Enable Trading permission, but keep withdrawal disabled. |
| IP not allowed | IP restriction does not include the server IP. | Add the correct server IP to the Börse whitelist. |
| Exchange unavailable | The Börse API is temporarily unavailable. | Wait and run the test again. |
Security principles
- Never enable Auszahlungsberechtigung for bot API-Schlüssel.
- Use separate API-Schlüssel for different Strategien.
- Use IP restrictions wann possible.
- Do not show API secrets in full after saving.
- Delete old keys if they are no longer used.
- Use 2FA on the Börse account.
Fazit
The safest model is wann Gelder remain on the Nutzer’s Börse, and BackFuture AI works only through limited API permissions. This allows the Plattform to automate Trading logic without direct access to withdrawals.