πŸ” Drill Down 0
πŸ›‘οΈ
Welcome to OnlyAllowAI β€” Your AI Firewall is Ready
Your account comes with 1 free API key slot and 100 free credits. Create your API key, then hit πŸ§ͺ Test API below to send a real request through the full firewall pipeline β€” authentication, riddle gate, provider forwarding β€” and watch it appear live in your Looking Glass.
πŸ” Go to Key Vault

πŸ” Looking Glass β€” Pipeline View

Complete flow: Request β†’ Routing β†’ Authentication β†’ Forward or Block
Total Requests 0 Last 24h
Forwarded 0 Passed riddle or cert
Blocked 0 Failed authentication
Speed Pass 0 Certificate fast-path
Pass Rate β€” Riddle success %
πŸ§ͺ Test API β€” Send Your First Request
Uses ~2-5 of your free credits
This sends a real request through the entire OnlyAllowAI pipeline β€” rate limiter β†’ auth β†’ cert check β†’ riddle gate β†’ provider forward β†’ audit log. You'll see it appear in the Live Feed below and in the Pipeline counters above.
Endpoint
POST /v1/chat/completions
Model
grok-3-mini
Provider
xAI (auto-detected)
X-Agent-ID
onboarding-test
X-Domain
general
Auth
oaai-sk-… (your key)
Riddle Gate
Active β€” agent must pass
Message
Hello! This is my first request through OnlyAllowAI. Confirm my firewall is active and respond with a short greeting.
Recent Activity
Request Breakdown

🌐 By Provider 0

πŸ‘€ vs πŸ€– User / AI Assignment

🏒 By Department 0

🎯 Outcome Distribution

Request Pipeline
β‘ 
πŸ“₯
Feed Intake
API requests arrive
0
β†’
β‘‘
πŸ‘€
User Rules
Org rules applied
0
β†’
β‘’
🏒
Dept / Asset
Routed to infra
0
β†’
β‘£
πŸ€–
Assignment
Human or AI agent
0
β†’
β‘€
⚑
Cert Check
Speed pass?
0
β†’
β‘₯
🧩
Riddle Test
Contextual auth
0
β†’
⑦
πŸš€
Forwarded
To provider
0
βœ•
βœ•
🚫
Blocked
Denied access
0

πŸ—οΈ My Company

Create and manage your company profile β€” link it to your OnlyAllowAI account
βž•
Register a New Company
Create your own company, choose a license, and start protecting AI agent access

πŸ’³ Billing & Plans

OnlyAllowAI is pay-as-you-go β€” no monthly plans. Buy capacity (API key slots) and fuel (token credits) independently, in USD.

πŸ” We retired monthly plans

There used to be Free / Starter / Pro / Enterprise tiers billed in ZAR. They're gone. You now pay only for what you mint and what you spend.

  • πŸ—οΈ API Key Slots β€” one-time USD purchase of capacity. Slots never expire. Free tier ships with 1 slot.
  • ⚑ Token Credits β€” pre-paid fuel for requests routed through OnlyAllowAI pooled keys. 1 credit = $0.0006 USD. Credits never expire.
  • πŸ”’ BYOK β€” paste your own provider key for $0 credit cost. The firewall, audit trail and riddle gates still run.

All purchases are billed in USD via Paystack. No subscriptions, no auto-renewal, no clawbacks.

πŸ” Manage everything in the Key Vault

Your keys, your credit wallet, your auto top-up rules and your provider rate card all live in one place.

πŸ” Open Key Vault ⚑ Buy Credits πŸ—οΈ Buy Key Slots

βš–οΈ Pay-as-you-go policy

1. Company Registration. Each company registers with a valid business email and ships with 1 free API key slot. No plan selection required.

2. Capacity vs Fuel. Slots gate how many keys you can hold; credits gate how many requests those keys can route through OnlyAllowAI pools. BYOK requests cost zero credits.

3. Data Isolation. Each company operates in a fully isolated multi-tenant environment. Keys, riddles, departments, assets, audit logs, and credit ledgers are scoped exclusively to the company.

4. Fair Use. Rate limiting (60 req/min global, 30 req/min per agent) applies to all accounts. Automated abuse (flooding, riddle brute-forcing, cert farming) may result in temporary suspension.

5. Billing. All purchases are billed in USD via Paystack. Credits and slots are non-refundable but never expire. See docs/OnlyallowKeyandtokencost.md for the full pricing schedule.

6. Enterprise SLA. Enterprise customers can negotiate a 99.9% uptime SLA, dedicated support channel, custom domain mapping, and priority feature requests via a separate Enterprise Agreement β€” contact sales.

7. Data Retention. Audit logs and accountability records are retained for 1 year by default; Enterprise contracts may extend this.

8. Termination. Companies may delete their account at any time. All data is permanently purged within 30 days. Unused credits and slots are forfeited on account deletion.

πŸ“Š Request Analytics

Deep breakdown: providers, user vs AI, department routing, outcomes
Total Requests 0 All time
Unique Agents 0 Distinct agent IDs
Providers Used 0 OpenAI, Anthropic, etc.
Block Rate 0% Denied / total
Avg Score β€” Riddle attempts
Provider Breakdown

🌐 Requests by Provider β€” Where did the AI requests come from?

🌐 Provider Γ— Outcome

Provider Passed Blocked Speed Total % Pass

🏒 Department Γ— Outcome

Department Passed Blocked Speed Total
User vs AI Split

πŸ‘€ Human-Assigned vs πŸ€– AI-Assigned Requests

Department Routing

🏒 Requests per Department β†’ Asset

Top Agents

πŸ€– Most Active Agents

πŸ“‘ Live Feed β€” Glass Box

Real-time stream of every request through the firewall
Events / min 0
Pass 0
Fail 0
Cert Fast-Path 0

πŸ‘€ Users & Creation Rules

User accounts, roles, and riddle ownership rules per organization
User Role Department Riddles Owned Module Created

🏒 Structure & Rules

Departments β†’ Assets β†’ Riddle Gates β€” the full access control hierarchy
🏒 Department
β†’
πŸ‘€ Members
β†’
πŸ“¦ Asset
β†’
🧩 Riddle Gate
β†’
βœ… AI Access
Departments 0
Assets 0
Riddle Rules 0
Protected 0
Exposed 0

πŸ‘€ Users

Team members across the organization
User Role Department Riddles Owned Module Created

οΏ½ User & AI Management

Dual audit trail β€” separate tabs for User and AI actions
πŸ‘€
No user actions yet
User accountability events will appear here
πŸ€–
No AI actions yet
AI accountability events will appear here

βš™οΈ Settings

Dashboard configuration, API connection, and user profile
API Configuration
API Base URL
Organization ID
SSE Connection Not connected
User Guide
Welcome Guide Banner
Visible
The welcome banner and Test API card help new users get started. Hide it once you're comfortable.