Bir borsayı BackFuture AI’ye bağlama: API anahtarları, güvenlik ve bağlantı kontrolü
BackFuture AI works through an borsa bağlantı via API. This means that the kullanıcı’s fonlar remain on the borsa account, while sistem receives only the permissions that the kullanıcı explicitly grants in the API anahtarı.
Supported borsalar
At the current stage, the platform is focused on working with MEXC and KuCoin. In the future, the list of bağlantılar can be expanded: Binance, OKX, Bitget, Gate.io, HTX, BingX, Coinbase, Bybit and other borsalar.
General bağlantı process
- The kullanıcı logs into their borsa account.
- Creates a new API anahtarı.
- Disables para çekme izni.
- Enables only the required permissions: balance reading, order reading and ticaret.
- Sets an IP restriction if the borsa supports it.
- Copies the API Key and Secret Key.
- Adds the bağlantı in the BackFuture AI dashboard.
- Runs a bağlantı test.
- After a successful check, enables the required strateji or bot.
Required API permissions
| Permission | Needed? | Neden |
|---|---|---|
| Read | ✅ Yes | So sistem can see balances, orders, positions and durum. |
| Trade | ✅ Yes | So the bot can open, add to and close işlemler. |
| Withdraw | ❌ No | This permission must not be given to a ticaret bot. |
| Futures | ◐ If needed | Only for stratejiler that work with futures. |
| IP whitelist | ✅ Recommended | Restricts key usage to approved server IP addresses. |
Nasıl to name a bağlantı correctly
In the dashboard, it is better to use clear bağlantı names. This is especially önemli if the kullanıcı has several borsalar, sub-accounts or stratejiler.
- MEXC Spot Main — main spot account on MEXC.
- KuCoin Futures Conservative — futures account for a conservative strateji.
- Recovery PRO Connection — separate bağlantı for Recovery/PRO logic.
- BTC ETH New Groups — separate bağlantı for new BTC/ETH gruplar.
Step-by-step örnek
Step 1. Create an API anahtarı on the borsa
In the borsa account, open API Management or API Keys. Usually the borsa asks for a key name and confirms the action through email, phone or 2FA.
Step 2. Set permissions
For a ticaret bağlantı, read and işlem permissions are usually needed. Withdrawal must be disabled. If the borsa offers separate permissions for spot and futures, enable only the piyasa you really plan to use.
Step 3. Add the key to BackFuture AI
In the dashboard, the kullanıcı selects an borsa, enters API Key and Secret Key, sets a bağlantı name and saves it. Secrets should not be displayed in full after saving.
Step 4. Test the bağlantı
Sistem checks the key, permissions, balance access and the ability to receive durum. If everything is correct, the bağlantı receives an “Online” or “Connected” durum.
Step 5. Enable a strateji
After the test, the kullanıcı can select pairs, risk level, marjin limit, ek alım behavior, Recovery Mode and other ayarlar.
Typical bağlantı errors
| Error | Cause | Ne to do |
|---|---|---|
| Invalid key | API anahtarı or secret was copied incorrectly. | Create a new key or copy the values again. |
| No ticaret permission | Trade permission is disabled. | Enable ticaret permission, but keep withdrawal disabled. |
| IP not allowed | IP restriction does not include the server IP. | Add the correct server IP to the borsa whitelist. |
| Exchange unavailable | The borsa API is temporarily unavailable. | Wait and run the test again. |
Security principles
- Never enable para çekme izni for bot API anahtarları.
- Use separate API anahtarları for different stratejiler.
- Use IP restrictions ne zaman possible.
- Do not show API secrets in full after saving.
- Delete old keys if they are no longer used.
- Use 2FA on the borsa account.
Sonuç
The safest model is ne zaman fonlar remain on the kullanıcı’s borsa, and BackFuture AI works only through limited API permissions. This allows the platform to automate ticaret logic without direct access to withdrawals.