Is it possible to pass the the ID/keys as an auth header instead of the documented query params?
Not at this time, no. Currently, the only supported mechanism for authentication with the Valence APIs is the IDKey Auth system passing signatures as query parameters.