Så ansluter man en börs till BackFuture AI: API-nycklar, säkerhet och anslutningskontroll
BackFuture AI works through an börs anslutning via API. This means that the användare’s medel remain on the börs account, while systemet receives only the permissions that the användare explicitly grants in the API-nyckel.
Supported börser
At the current stage, the plattform is focused on working with MEXC and KuCoin. In the future, the list of anslutningar can be expanded: Binance, OKX, Bitget, Gate.io, HTX, BingX, Coinbase, Bybit and other börser.
General anslutning process
- The användare logs into their börs account.
- Creates a new API-nyckel.
- Disables uttagsbehörighet.
- Enables only the required permissions: balance reading, order reading and handel.
- Sets an IP restriction if the börs supports it.
- Copies the API Key and Secret Key.
- Adds the anslutning in the BackFuture AI dashboard.
- Runs a anslutning test.
- After a successful check, enables the required strategi or bot.
Required API permissions
| Permission | Needed? | Varför |
|---|---|---|
| Read | ✅ Yes | So systemet can see balances, orders, positions and status. |
| Trade | ✅ Yes | So the bot can open, add to and close affärer. |
| Withdraw | ❌ No | This permission must not be given to a handel bot. |
| Futures | ◐ If needed | Only for strategier that work with futures. |
| IP whitelist | ✅ Recommended | Restricts key usage to approved server IP addresses. |
Hur to name a anslutning correctly
In the dashboard, it is better to use clear anslutning names. This is especially viktigt if the användare has several börser, sub-accounts or strategier.
- MEXC Spot Main — main spot account on MEXC.
- KuCoin Futures Conservative — futures account for a conservative strategi.
- Recovery PRO Connection — separate anslutning for Recovery/PRO logic.
- BTC ETH New Groups — separate anslutning for new BTC/ETH grupper.
Step-by-step exempel
Step 1. Create an API-nyckel on the börs
In the börs account, open API Management or API Keys. Usually the börs asks for a key name and confirms the action through email, phone or 2FA.
Step 2. Set permissions
For a handel anslutning, read and affär permissions are usually needed. Withdrawal must be disabled. If the börs offers separate permissions for spot and futures, enable only the marknad you really plan to use.
Step 3. Add the key to BackFuture AI
In the dashboard, the användare selects an börs, enters API Key and Secret Key, sets a anslutning name and saves it. Secrets should not be displayed in full after saving.
Step 4. Test the anslutning
Systemet checks the key, permissions, balance access and the ability to receive status. If everything is correct, the anslutning receives an “Online” or “Connected” status.
Step 5. Enable a strategi
After the test, the användare can select pairs, risk level, marginal limit, tillägg behavior, Recovery Mode and other inställningar.
Typical anslutning errors
| Error | Cause | Vad to do |
|---|---|---|
| Invalid key | API-nyckel or secret was copied incorrectly. | Create a new key or copy the values again. |
| No handel permission | Trade permission is disabled. | Enable handel permission, but keep withdrawal disabled. |
| IP not allowed | IP restriction does not include the server IP. | Add the correct server IP to the börs whitelist. |
| Exchange unavailable | The börs API is temporarily unavailable. | Wait and run the test again. |
Security principles
- Never enable uttagsbehörighet for bot API-nycklar.
- Use separate API-nycklar for different strategier.
- Use IP restrictions när possible.
- Do not show API secrets in full after saving.
- Delete old keys if they are no longer used.
- Use 2FA on the börs account.
Slutsats
The safest model is när medel remain on the användare’s börs, and BackFuture AI works only through limited API permissions. This allows the plattform to automate handel logic without direct access to withdrawals.