CLI Authentication
The Onvera CLI supports multiple authentication methods. Choose the method that best fits your workflow.
Browser Login (Recommended)
Browser login is the default and recommended method. It opens your browser for authentication:
onvera auth loginHow it works:
- CLI creates a login session
- Opens your browser to the Onvera login page
- You authenticate and approve CLI access
- CLI receives an API key and stores it locally
Example output:
Opening browser for authentication...
Waiting for approval...
✓ Authentication successful!
API key stored in ~/.config/onvera/config.jsonAPI Key Authentication
Interactive Key Entry
Paste your API key interactively:
onvera auth login --keyThe CLI will prompt you to paste your API key securely.
Direct Key Entry
Provide the API key directly:
onvera auth login --token onv_sk_live_...API keys start with onv_sk_live_. You can create API keys in the Onvera dashboard (opens in a new tab).
Environment Variable
You can also set the API key as an environment variable:
export ONVERA_API_KEY=onv_sk_live_...This bypasses stored credentials. Useful for CI/CD environments.
Logout
Clear stored credentials:
onvera auth logoutThis removes the API key from local storage but does not revoke the key on the server.
Configuration Location
Credentials are stored in:
- Linux/macOS:
~/.config/onvera/config.json - Windows:
%APPDATA%\onvera\config.json
Troubleshooting
Browser doesn't open
If the browser doesn't open automatically:
- Check the terminal output for the login URL
- Copy and paste the URL into your browser manually
- Complete authentication in the browser
Authentication fails
If authentication fails:
- Ensure you're logged in at onvera.io (opens in a new tab)
- Check that your API key is valid and not revoked
- Verify network connectivity
API key expired
If your API key has expired:
- Create a new API key in the dashboard (opens in a new tab)
- Run
onvera auth login --token <new-key>
Next Steps
After authentication: