Revokes an API key. Soft-delete -- the row is preserved for audit; the key stops working immediately. Idempotent: revoking an already-revoked key is a no-op.

curl --request DELETE \
  --url https://{install}/api/admin/api-key/{id} \
  --header 'Authorization: Bearer <token>'

DELETE

api

admin

api-key

{id}

Revokes an API key. Soft-delete -- the row is preserved for audit; the key stops working immediately. Idempotent: revoking an already-revoked key is a no-op.

curl --request DELETE \
  --url https://{install}/api/admin/api-key/{id} \
  --header 'Authorization: Bearer <token>'

Authorizations

Authorization

string

header

required

JWT Bearer token. Obtain via the OAuth 2.0 token endpoint.

Path Parameters

string

required

The unique identifier of the API key to revoke.

Response

Key revoked.

Mints a new API key. The full plaintext key is returned in the response EXACTLY ONCE. The caller must capture and store it immediately -- there is no way to retrieve it later.

Retrieves the webhook configuration for the current tenant.