SoarSoar
Broker setup

Connect Gemini

5 steps2 fields

Gemini doesn't offer practice mode. Your bot will trade with real money.

Step by step

Getting your Gemini API keys

  1. 1
    Open Gemini API settings
    Your Gemini account must be fully verified (ID check complete) before you can create a key.
  2. 2
    Tap "Create a new API key"
    Gemini asks for your 2-factor code. Enter it.
  3. 3
    Pick PRIMARY and TRADER
    • Scope: PRIMARY (single account — pick this, not Master)
    • Role: TRADER (default)
    • NEVER pick Fund Manager — that role can withdraw money
  4. 4
    Leave "Trusted IPs" off
    Turning IP restrictions on would block Soar bots, which use many different network addresses.
  5. 5
    Generate and copy both values
    Enter your 2-factor code again. Gemini reveals the API Key (starts with "account-") and the Secret. The secret is shown ONCE — copy both right away.
Permissions

What to enable — and what to leave OFF

Enable these
  • Trader role
Never enable these
  • Fund Manager (NEVER pick — that role can withdraw money)
Why this matters:Soar only ever needs read + place-order permissions. If you give a key withdraw or transfer access, anyone with that key could move funds — including a security risk if your machine is ever compromised. Disabling withdraw on the key itself means even a worst-case leak can't drain your account.
What you paste

The fields Soar asks for

  • API Key
    account-...
  • API Secret
    paste API secret
Security & trust

Where your keys live

Soar passes your Geminikeys straight from your browser into YOUR Cloudflare Worker. Soar's servers see them once during the ~30-second deploy window, then never again.

The bot that talks to Gemini runs on the free Cloudflare Workers tier in your own Cloudflare account. You see + control everything from your Cloudflare dashboard. You can rotate the keys, pause the bot, or destroy the Worker at any time — Soar has zero ability to undo that.

Read the full security model →
See also

Related help topics