Manage API Keys

API keys authenticate server-to-server requests for a tenant.

List keys

GET/admin/api-keys

Create a key

POST/admin/api-keys

Delete a key

DELETE/admin/api-keys/{id}

Recommended lifecycle

Create separate keys for each environment.
Rotate keys on a planned schedule.
Disable or delete unused keys.
Track last-used metadata.
Restrict keys by operation or network policy when supported.