Skip to main content

Create an API key

POST 

/api/v1/auth/api-keys

Mint a new API key for the authenticated admin or owner.

Scopes are validated against the caller's role bundle (reduce-only; wildcards owner-only). The full key is returned exactly once in the response body — it cannot be recovered later.

  • Router-gated by release_api_keys (404 when off).
  • API-key scope required: api_keys:create.
  • 400 on invalid scopes or scope escalation attempts.

Request

Responses

Successful Response