Skip to main content

Connect Your Binance API Key

GridFlow needs a Binance API key to place orders on your behalf. Your key never leaves your server — it's stored encrypted in your local database.

1. Create an API key on Binance

  1. Log in to binance.com
  2. Click your profile icon → API Management
  3. Click Create API
  4. Choose System generated
  5. Give it a label, e.g. GridFlow
  6. Complete 2FA verification

2. Set the correct permissions

On the API key settings page, enable only these permissions:

PermissionRequiredWhy
Read Info✅ YesView balances and orders
Enable Spot & Margin Trading✅ YesPlace and cancel orders
Enable Withdrawals❌ NoNever needed — disable for safety
Enable Futures❌ NoGridFlow is Spot only
Disable withdrawals

Never enable the withdrawal permission on a bot API key. If your server were ever compromised, an attacker with withdrawal permission could drain your account. Read + Spot trading is all GridFlow needs.

On the same API settings page, find IP access restrictions and select Restrict access to trusted IPs only. Enter your VPS IP address.

This means even if someone steals the API key, it won't work from any other IP.

4. Copy your API key and secret

Binance shows the Secret Key only once — copy it immediately and save it somewhere safe (like a password manager). The API Key is always visible in your API Management page if you need it again.

5. Add the key to GridFlow

  1. Open your GridFlow dashboard: http://YOUR_SERVER_IP:8000/dashboard/
  2. If you haven't registered yet, create an account first
  3. Go to API Keys in the sidebar
  4. Click Add API Key
  5. Paste your API Key and Secret Key
  6. Toggle Testnet if you're using the Binance Testnet
  7. Click Save

GridFlow encrypts the key before storing it in the database. The raw key is never saved in plaintext.

Testnet mode

If you want to test without real funds:

  1. Go to testnet.binance.vision
  2. Log in with GitHub
  3. Generate a testnet API key
  4. Add it to GridFlow with Testnet toggled on

Testnet funds are fake. All bot behavior is identical to live trading.

Next: Create your first bot →