Add API Key Authentication For openai_entrypoints #3297

rankaiyx · 2025-08-02T06:50:45Z

Description

This PR adds API key authentication to the server. Now users can secure their endpoints with a simple API key.

Key features:

API key is optional (disabled by default)
API key is passed via --api-key command line argument (not hardcoded or using environment variables)
Authentication follows OpenAI API standard (Bearer token in Authorization header)
No breaking changes - existing functionality remains unchanged

Start server with API key:

mlc_llm serve  /somemodel --host 0.0.0.0 --device cuda --mode interactive --api-key "mlc-ai-is-awesome"

Test with correct key (should succeed):

curl http://localhost:8000/v1/models -H "Authorization: Bearer mlc-ai-is-awesome"

Test with incorrect key (should return 401):

curl http://localhost:8000/v1/models -H "Authorization: Bearer wrong-key"

Test without key (should return 401):
```
curl http://localhost:8000/v1/models
```
Start server without API key (all requests should work without authentication):
```
python -m mlc_llm.serve --model your-model
```

This change follows the minimal modification principle and keeps the API simple and secure.

rankaiyx added 7 commits August 2, 2025 14:31

Update serve.py to add api-key

40414a2

Update serve.py to add api-key

cbfd8af

Update server_context.py to add api-key

1fe334c

Update openai_entrypoints.py to add api-key

51a6ea5

Update serve.py for Formatting issue

f5dce87

Update openai_entrypoints.py for Formatting issue

8c09364

Update openai_entrypoints.py for Formatting issue

6410b89