Kako povezati burzu s BackFuture AI: API ključevi, sigurnost i provjera veze
BackFuture AI works through an burza veza via API. This means that the korisnik’s sredstva remain on the burza account, while sustav receives only the permissions that the korisnik explicitly grants in the API ključ.
Supported burze
At the current stage, the platforma is focused on working with MEXC and KuCoin. In the future, the list of veze can be expanded: Binance, OKX, Bitget, Gate.io, HTX, BingX, Coinbase, Bybit and other burze.
General veza process
- The korisnik logs into their burza account.
- Creates a new API ključ.
- Disables dozvola za povlačenje.
- Enables only the required permissions: balance reading, order reading and trgovanje.
- Sets an IP restriction if the burza supports it.
- Copies the API Key and Secret Key.
- Adds the veza in the BackFuture AI dashboard.
- Runs a veza test.
- After a successful check, enables the required strategija or bot.
Required API permissions
| Permission | Needed? | Zašto |
|---|---|---|
| Read | ✅ Yes | So sustav can see balances, orders, positions and status. |
| Trade | ✅ Yes | So the bot can open, add to and close trgovine. |
| Withdraw | ❌ No | This permission must not be given to a trgovanje bot. |
| Futures | ◐ If needed | Only for strategije that work with futures. |
| IP whitelist | ✅ Recommended | Restricts key usage to approved server IP addresses. |
Kako to name a veza correctly
In the dashboard, it is better to use clear veza names. This is especially važno if the korisnik has several burze, sub-accounts or strategije.
- MEXC Spot Main — main spot account on MEXC.
- KuCoin Futures Conservative — futures account for a conservative strategija.
- Recovery PRO Connection — separate veza for Recovery/PRO logic.
- BTC ETH New Groups — separate veza for new BTC/ETH grupe.
Step-by-step primjer
Step 1. Create an API ključ on the burza
In the burza account, open API Management or API Keys. Usually the burza asks for a key name and confirms the action through email, phone or 2FA.
Step 2. Set permissions
For a trgovanje veza, read and trgovina permissions are usually needed. Withdrawal must be disabled. If the burza offers separate permissions for spot and futures, enable only the tržište you really plan to use.
Step 3. Add the key to BackFuture AI
In the dashboard, the korisnik selects an burza, enters API Key and Secret Key, sets a veza name and saves it. Secrets should not be displayed in full after saving.
Step 4. Test the veza
Sustav checks the key, permissions, balance access and the ability to receive status. If everything is correct, the veza receives an “Online” or “Connected” status.
Step 5. Enable a strategija
After the test, the korisnik can select pairs, rizik level, margina limit, dodatna kupnja behavior, Recovery Mode and other postavke.
Typical veza errors
| Error | Cause | Što to do |
|---|---|---|
| Invalid key | API ključ or secret was copied incorrectly. | Create a new key or copy the values again. |
| No trgovanje permission | Trade permission is disabled. | Enable trgovanje permission, but keep withdrawal disabled. |
| IP not allowed | IP restriction does not include the server IP. | Add the correct server IP to the burza whitelist. |
| Exchange unavailable | The burza API is temporarily unavailable. | Wait and run the test again. |
Security principles
- Never enable dozvola za povlačenje for bot API ključevi.
- Use separate API ključevi for different strategije.
- Use IP restrictions kada possible.
- Do not show API secrets in full after saving.
- Delete old keys if they are no longer used.
- Use 2FA on the burza account.
Zaključak
The safest model is kada sredstva remain on the korisnik’s burza, and BackFuture AI works only through limited API permissions. This allows the platforma to automate trgovanje logic without direct access to withdrawals.