Kako povezati berzu sa BackFuture AI: API ključevi, sigurnost i provera veze
BackFuture AI works through an berza veza via API. This means that the korisnik’s sredstva remain on the berza account, while sistem receives only the permissions that the korisnik explicitly grants in the API ključ.
Supported berze
At the current stage, the platforma is focused on working with MEXC and KuCoin. In the future, the list of veze can be expanded: Binance, OKX, Bitget, Gate.io, HTX, BingX, Coinbase, Bybit and other berze.
General veza process
- The korisnik logs into their berza account.
- Creates a new API ključ.
- Disables dozvola za povlačenje.
- Enables only the required permissions: balance reading, order reading and trgovanje.
- Sets an IP restriction if the berza supports it.
- Copies the API Key and Secret Key.
- Adds the veza in the BackFuture AI dashboard.
- Runs a veza test.
- After a successful check, enables the required strategija or bot.
Required API permissions
| Permission | Needed? | Zašto |
|---|---|---|
| Read | ✅ Yes | So sistem can see balances, orders, positions and status. |
| Trade | ✅ Yes | So the bot can open, add to and close trgovine. |
| Withdraw | ❌ No | This permission must not be given to a trgovanje bot. |
| Futures | ◐ If needed | Only for strategije that work with futures. |
| IP whitelist | ✅ Recommended | Restricts key usage to approved server IP addresses. |
Kako to name a veza correctly
In the dashboard, it is better to use clear veza names. This is especially važno if the korisnik has several berze, sub-accounts or strategije.
- MEXC Spot Main — main spot account on MEXC.
- KuCoin Futures Conservative — futures account for a conservative strategija.
- Recovery PRO Connection — separate veza for Recovery/PRO logic.
- BTC ETH New Groups — separate veza for new BTC/ETH grupe.
Step-by-step primer
Step 1. Create an API ključ on the berza
In the berza account, open API Management or API Keys. Usually the berza asks for a key name and confirms the action through email, phone or 2FA.
Step 2. Set permissions
For a trgovanje veza, read and trgovina permissions are usually needed. Withdrawal must be disabled. If the berza offers separate permissions for spot and futures, enable only the tržište you really plan to use.
Step 3. Add the key to BackFuture AI
In the dashboard, the korisnik selects an berza, enters API Key and Secret Key, sets a veza name and saves it. Secrets should not be displayed in full after saving.
Step 4. Test the veza
Sistem checks the key, permissions, balance access and the ability to receive status. If everything is correct, the veza receives an “Online” or “Connected” status.
Step 5. Enable a strategija
After the test, the korisnik can select pairs, rizik level, margina limit, dokup behavior, Recovery Mode and other podešavanja.
Typical veza errors
| Error | Cause | Šta to do |
|---|---|---|
| Invalid key | API ključ or secret was copied incorrectly. | Create a new key or copy the values again. |
| No trgovanje permission | Trade permission is disabled. | Enable trgovanje permission, but keep withdrawal disabled. |
| IP not allowed | IP restriction does not include the server IP. | Add the correct server IP to the berza whitelist. |
| Exchange unavailable | The berza API is temporarily unavailable. | Wait and run the test again. |
Security principles
- Never enable dozvola za povlačenje for bot API ključevi.
- Use separate API ključevi for different strategije.
- Use IP restrictions kada possible.
- Do not show API secrets in full after saving.
- Delete old keys if they are no longer used.
- Use 2FA on the berza account.
Zaključak
The safest model is kada sredstva remain on the korisnik’s berza, and BackFuture AI works only through limited API permissions. This allows the platforma to automate trgovanje logic without direct access to withdrawals.