Connecting cloud providers (credentials)
CloudCO needs your provider API credentials to:
- Pull live inventory into Sniper Hub
- Run connection checks before you enable rules
- Place orders when you turn on Auto-Buy (paid plans) or when you confirm a manual snipe
All of this is configured in the dashboard:
https://cloudco.me/dashboard/settings/providers
Log in, open Settings → Providers, then complete each block for the providers you use. You do not have to fill in every provider—only the ones where you want CloudCO to act on your behalf.
What you see on the Providers page
Each provider has its own card with:
| Element | Meaning |
|---|---|
| Status (dot + word) | Whether the last verification succeeded. Use the refresh icon to test saved credentials without saving again. |
| Save & Verify | Stores credentials (encrypted) and asks the backend to confirm they work with the provider API. |
| Encrypted storage banner | Credentials are encrypted at rest; CloudCO uses them only for procurement-related API calls. |
If you change a password, token, or key later, update the fields and click Save & Verify again. The Sniper Hub also has a per-provider Verify / Sync control once you select that provider in the dropdown.
Hetzner Online (Robot Webservice)
CloudCO talks to Hetzner through the Robot Webservice login—not your normal Robot web UI password unless you intentionally reuse it (not recommended).
Where credentials live in CloudCO
| Dashboard field | What it is |
|---|---|
| Robot Webservice Username | Webservice user (often your client_login like K1234567). |
| Robot Webservice Password | The Webservice password you set in Robot (separate from the main portal password). |
How to obtain them
- Sign in to Hetzner Robot.
- Open Preferences → Webservice (direct link also shown from the Providers card).
- Under Webservice, enable access if it is disabled.
- Open the Ordering tab and ensure Webservice ordering is allowed so CloudCO can place auction orders when Auto-Buy or manual snipe runs.
- Return to Webservice, note the username, and set a strong dedicated password for API use.
- Copy username + password into CloudCO Settings → Providers → Hetzner and click Save & Verify.
If verification fails, check Robot-side permissions, account limits, and that you did not paste your normal web-login password by mistake.
OVHcloud Europe (ovh-eu)
Used for EU subsidiary APIs (Eco / Kimsufi / So you Start–style bare-metal catalog). Credentials are not interchangeable with Canada—use the OVHcloud Europe block only.
Where credentials live in CloudCO
| Dashboard field | What it is |
|---|---|
| Application Key | application_key from the OVH API application. |
| Application Secret | application_secret from the same application. |
| Consumer Key | User-approved token (consumer_key) that authorizes API access for your account. |
How to obtain them
- Create an API application on the EU portal: Create an EU API application.
Choose a name (e.g.CloudCO) and note the Application Key and Application Secret. - Generate a Consumer Key using OVH’s standard API login flow (credential request). You must grant rights sufficient for CloudCO to read availability/pricing and place orders for dedicated servers (cart / order endpoints).
Official overview: First steps with the OVHcloud API (follow the guide for your contract; paths may vary slightly by subsidiary). - Paste into CloudCO Settings → Providers → OVHcloud Europe:
- Application Key → Application Key
- Application Secret → Application Secret
- Consumer Key → Consumer Key
- Click Save & Verify.
Legacy format (not recommended)
Older installs may have stored Application Secret and Consumer Key together as secret:consumer_key in the secret field only. That still works if Consumer Key is left empty, but three separate fields are clearer and supported—prefer those.
OVHcloud North America (ovh-ca)
Same three-field layout as Europe, but you must register the application on the Canadian API host so tokens match your NA account.
How to obtain them
- Create the application here: Create a Canadian API application.
- Follow the same Consumer Key / access-rules process as for EU, using CA endpoints and documentation for your account currency (CAD/USD).
- Enter Application Key, Application Secret, and Consumer Key in Settings → Providers → OVHcloud North America, then Save & Verify.
DigitalOcean
CloudCO uses a Personal Access Token as the secret. The first field is only a label for your own reference (stored alongside the token in CloudCO).
Where credentials live in CloudCO
| Dashboard field | What it is |
|---|---|
| Token Description (Reference) | Human-readable label (e.g. CloudCO-Sniper). Not sent as the API credential. |
| Personal Access Token | The actual token string generated in DigitalOcean. |
How to obtain them
- Open DigitalOcean API tokens (Account → API → Generate New Token).
- Name the token (match what you put in Token Description if you like).
- Choose scopes that allow CloudCO to read account/resources and create Droplets when Auto-Buy fires. A scoped token is fine if it includes the permissions required for Droplet create and region/size discovery; full access is simpler but broader than necessary.
- Copy the token once (DigitalOcean shows it only at creation) into Personal Access Token, set the description field, then Save & Verify.
Vultr
CloudCO stores your Vultr API key in the secret field. The API Description field is for your notes only.
Where credentials live in CloudCO
| Dashboard field | What it is |
|---|---|
| API Description | Label for you (e.g. CloudCO-Vultr). |
| API Key | The key from the Vultr control panel. |
How to obtain them
- Sign in to Vultr and open API settings.
- Enable the API if needed, generate or copy the API Key.
- Optionally use Vultr’s access controls (IP allowlist, etc.) per your security policy—remember that CloudCO’s servers must be allowed to call the API if you restrict by IP.
- Paste the key into API Key, fill API Description, then Save & Verify.
Verification & troubleshooting
- After saving, status should move toward VERIFIED. If it shows ERROR, open the message: wrong key, expired token, missing Consumer Key, or insufficient API permissions are the usual causes.
- OVH: Wrong subsidiary (EU keys on CA card or vice versa) always fails—create the app on the matching
eu.api.ovh.comvsca.api.ovh.comhost. - Hetzner: “Forbidden” / ordering errors often mean Webservice ordering is disabled or the API user cannot order.
- DigitalOcean / Vultr: Regenerate the token/key if rotated or leaked; update CloudCO and verify again.
Security summary
- Credentials are encrypted when stored; CloudCO does not display full secrets again after save (only masked hints where applicable).
- You bill directly with the provider; CloudCO never holds your server budget.
Related guides
- How sniping works — categories, currencies, notifications
- Auto-Buy: providers & categories — which listings auto-order
- Getting started — dashboard overview