
Create an API key
1
Open API Keys
Click Account > API Keys in the sidebar.
2
Click Create API Key
The button is in the top-right.
3
Enter details
Name the key and pick any scopes if shown.
4
Confirm
Click create. The new key value is shown once.
The key value is shown only once, right after creation. Copy it
immediately and store it somewhere secure. If you lose it, you’ll have to
revoke and create a new one.

View key details
1
Open API Keys
Click Account > API Keys in the sidebar.
2
Click the key in the list
The row expands inline.
- Creation date.
- Last used date.
- Status (
activeorinactive). - Permissions and usage stats.

Rotate a key
Rotation generates a new key value with the same name and permissions, and immediately invalidates the old one.1
Open API Keys
Click Account > API Keys in the sidebar.
2
Find the key
Locate it in the list.
3
Click Refresh
The refresh icon sits next to the Copy icon on each row.
4
Confirm regeneration
Click Regenerate Key in the dialog. The new value is shown once.
Once you regenerate, the old key stops working straight away. Update every
service using it before rotating, or production will break.
Revoke a key
1
Open API Keys
Click Account > API Keys in the sidebar.
2
Find the key
Locate it in the list.
3
Click Delete
The trash icon on the row.
4
Confirm
Confirm in the dialog.

Revoked keys cannot be recovered. Make sure nothing in production is still
using the key before you revoke.
Security best practices
API keys grant access to your credits and resources. Treat them like passwords.Rotate regularly
Rotate regularly
Every 90 days is a reasonable baseline. Rotate sooner if you suspect a leak.
Don't commit keys to source control
Don't commit keys to source control
Use environment variables or a secrets manager (1Password, Vault, AWS
Secrets Manager, etc.).
Monitor usage
Monitor usage
Review the Last used column periodically. If a key is being used when it
shouldn’t be, revoke it.
