remix-api-auth
Configure and verify authentication for Remix REST, CLI, and MCP workflows. Use when a task needs `REMIX_API_KEY`, `remix login`, stored Remix credentials, or auth troubleshooting.
Best use case
remix-api-auth is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Configure and verify authentication for Remix REST, CLI, and MCP workflows. Use when a task needs `REMIX_API_KEY`, `remix login`, stored Remix credentials, or auth troubleshooting.
Teams using remix-api-auth should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/remix-api-auth/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How remix-api-auth Compares
| Feature / Agent | remix-api-auth | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Configure and verify authentication for Remix REST, CLI, and MCP workflows. Use when a task needs `REMIX_API_KEY`, `remix login`, stored Remix credentials, or auth troubleshooting.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Remix Authentication Setup Use this skill when a user needs to authenticate a terminal, MCP client, or external service against Remix. ## Auth Modes - REST or custom services: send `Authorization: Bearer <api_key>` to `https://api.remix.gg`. - CLI: run `remix login`, then verify with `remix whoami`. - MCP: prefer `REMIX_API_KEY`; if unset, the server can reuse CLI credentials from `~/.config/remix/credentials.json`. ## Preferred Terminal Flow ```bash curl -fsSL https://remix.gg/install.sh | bash remix login remix whoami ``` The CLI stores credentials in `~/.config/remix/credentials.json`. ## API Key Flow 1. Log in to your Remix account. 2. Go to `https://remix.gg/api-keys`. 3. Create a new API key. 4. Store it as a server-side secret or export `REMIX_API_KEY`. 5. Use base URL `https://api.remix.gg`. ## Verification Use one of these checks first: - `remix whoami` - `remix config where` - `GET /health` - `GET /v1/games` if the user explicitly wants an authenticated data call ## Troubleshooting Invalid API Key - Check whether `REMIX_API_KEY` is overriding stored CLI credentials. - Check `Authorization` is formatted as `Bearer <api_key>`. - Re-copy the key from `https://remix.gg/api-keys` and rotate if needed. - Verify your service is reading the expected secret/env var in the current runtime. - Confirm the request is server-side and not exposed through browser code. - Run `remix whoami --json` to inspect the resolved auth/config context. - If behavior seems inconsistent with local docs, use `https://api.remix.gg/docs` as source of truth. ## Current Auth Model Server API base URL: `https://api.remix.gg` Remix server API uses bearer API keys generated from Remix account settings. Supported auth header: - `Authorization: Bearer <api_key>` for direct HTTP usage Runtime precedence in the CLI is: 1. explicit command flags 2. environment variables 3. stored config and credentials 4. defaults The backend resolves the key to a user and enforces ownership checks on game/version mutations. ## How to Get an API Key 1. Log in to your Remix account. 2. Go to `https://remix.gg/api-keys`. 3. Generate a new API key. 4. Copy it once and store it in your server-side secret manager. ## Required Headers ```http Authorization: Bearer <api_key> Content-Type: application/json ``` ## Security Notes - Never expose API keys in client-side browser code. - Store in server env vars or secret manager. - Revoke and rotate keys from `https://remix.gg/api-keys`. - Usage updates `lastUsed` automatically. ## API Authentication Rules - Use API keys created from `https://remix.gg/api-keys`. - Use `Authorization: Bearer <api_key>`. - Send requests to `https://api.remix.gg`. - Do not place keys in browser-side code. - Rotate keys immediately if leaked. - Account must not be banned or deleted.
Related Skills
remix-upload-game
Upload and validate HTML game code for Remix. Use when creating or updating a draft version through the CLI, MCP tools, or direct REST calls.
remix-upload-asset
Upload images, audio, or 3D models as hosted game assets
remix-submission-rules
Validation and publish constraints for Remix game submissions
remix-shop-items
Create, update, delete, and integrate Remix shop items. Use when a game needs Bits items, consumables, one-time unlocks, tier unlocks, store icons, or purchase handling in @remix-gg/sdk code.
remix-save-game
Add save and load game state functionality via RemixSDK
remix-rest-snippets
REST client snippets for Remix agent publishing
remix-open-game
Open a game in the Remix Studio browser for preview and editing
remix-multiplayer
Enable multiplayer support for a Remix game
remix-game-sdk
Reference for the current @remix-gg/sdk runtime. Use when generating or repairing Remix game code, shop item integrations, save-state flows, multiplayer hooks, or host-safe mobile UI behavior.
remix-game-creation
Create a new game draft via the Remix API
remix-game-best-practices
Mobile-first game creation best practices for Remix
remix-cli
Use the official Remix CLI for authentication, config inspection, game creation, uploads, and analytics. Trigger this skill when a task involves `remix login`, `remix whoami`, `.remix-cli.json`, `REMIX_API_KEY`, or terminal-based game management on Remix.