Public keys are designed for authenticating the UponAI Chat Widget when embedded on your website. Unlike API keys, public keys are safe to include in frontend code for this specific purpose. Public keys are used exclusively for:Documentation Index
Fetch the complete documentation index at: https://documentation.uponai.com/llms.txt
Use this file to discover all available pages before exploring further.
- Embedding the UponAI Chat Widget on your website
Allowed Domains
For security, public keys are restricted to specific domains — preventing unauthorized use on other websites.Add allowed domains
Add the domains where this public key can be used (e.g.,
example.com, app.example.com).Google reCAPTCHA v3 Protection (Optional)
Enable reCAPTCHA v3 to prevent abuse when using the chat widget. When enabled, the widget requires reCAPTCHA verification before initiating conversations.Add your reCAPTCHA Secret Key
Enter your reCAPTCHA Secret Key (obtain from Google’s reCAPTCHA page).
Set score threshold
Adjust the Score Threshold (default: 0.5). Lower scores are more likely bots — a higher threshold may block more real users.
Security Best Practices
- Only add domains you control to the allowed domains list
- Review your allowed domains regularly
- Use the most restrictive domain settings possible for your use case
- For server-to-server communication, use API keys instead