List keys for an API

GET

apis.listKeys

curl --request GET \
  --url https://api.unkey.dev/v1/apis.listKeys \
  --header 'Authorization: Bearer <token>'

{
  "keys": [
    {
      "id": "key_1234",
      "start": "sk_5j1",
      "workspaceId": "ws_1234",
      "apiId": "api_1234",
      "name": "Customer X",
      "ownerId": "user_123",
      "meta": {
        "roles": [
          "admin",
          "user"
        ],
        "stripeCustomerId": "cus_1234"
      },
      "createdAt": 123,
      "updatedAt": 123,
      "deletedAt": 123,
      "expires": 123,
      "remaining": 1000,
      "refill": {
        "interval": "daily",
        "amount": 10
      },
      "ratelimit": {
        "async": true,
        "limit": 10,
        "duration": 60
      },
      "roles": [
        "admin",
        "finance"
      ],
      "permissions": [
        "domain.dns.create_record",
        "finance.read_receipt"
      ],
      "enabled": true,
      "plaintext": "<string>"
    }
  ],
  "cursor": "eyJrZXkiOiJrZXlfMTIzNCJ9",
  "total": 123
}

Changelog

Date	Changes
Dec 06 2023	Introduced endpoint
May 15 2024	Return updatedAt timestamp

Authorizations

Authorization

string

headerrequired

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Query Parameters

apiId

string

required

The id of the api to fetch

limit

integer

default: 100

The maximum number of keys to return

cursor

string

Use this to fetch the next page of results. A new cursor will be returned in the response if there are more results.

ownerId

string

If provided, this will only return keys where the ownerId matches.

decrypt

boolean | null

Decrypt and display the raw key. Only possible if the key was encrypted when generated.

Response

200 - application/json

keys

object[]

required

keys.id

string

required

The id of the key

keys.start

string

required

The first few characters of the key to visually identify it

keys.workspaceId

string

required

The id of the workspace that owns the key

keys.apiId

string

The id of the api that this key is for

keys.name

string

The name of the key, give keys a name to easily identify their purpose

keys.ownerId

string

The id of the tenant associated with this key. Use whatever reference you have in your system to identify the tenant. When verifying the key, we will send this field back to you, so you know who is accessing your API.

keys.meta

object

Any additional metadata you want to store with the key

keys.createdAt

number

required

The unix timestamp in milliseconds when the key was created

keys.updatedAt

number

The unix timestamp in milliseconds when the key was last updated

keys.deletedAt

number

The unix timestamp in milliseconds when the key was deleted. We don't delete the key outright, you can restore it later.

keys.expires

number

The unix timestamp in milliseconds when the key will expire. If this field is null or undefined, the key is not expiring.

keys.remaining

number

The number of requests that can be made with this key before it becomes invalid. If this field is null or undefined, the key has no request limit.

keys.refill

object

Unkey allows you to refill remaining verifications on a key on a regular interval.

keys.ratelimit

object

Unkey comes with per-key ratelimiting out of the box.

keys.roles

string[]

All roles this key belongs to

keys.permissions

string[]

All permissions this key has

keys.enabled

boolean

Sets if key is enabled or disabled. Disabled keys are not valid.

keys.plaintext

string

The key in plaintext

cursor

string

The cursor to use for the next page of results, if no cursor is returned, there are no more results

total

integer

required

The total number of keys for this api

Was this page helpful?

Retrieve an API Delete all keys of an API

curl --request GET \
  --url https://api.unkey.dev/v1/apis.listKeys \
  --header 'Authorization: Bearer <token>'

{
  "keys": [
    {
      "id": "key_1234",
      "start": "sk_5j1",
      "workspaceId": "ws_1234",
      "apiId": "api_1234",
      "name": "Customer X",
      "ownerId": "user_123",
      "meta": {
        "roles": [
          "admin",
          "user"
        ],
        "stripeCustomerId": "cus_1234"
      },
      "createdAt": 123,
      "updatedAt": 123,
      "deletedAt": 123,
      "expires": 123,
      "remaining": 1000,
      "refill": {
        "interval": "daily",
        "amount": 10
      },
      "ratelimit": {
        "async": true,
        "limit": 10,
        "duration": 60
      },
      "roles": [
        "admin",
        "finance"
      ],
      "permissions": [
        "domain.dns.create_record",
        "finance.read_receipt"
      ],
      "enabled": true,
      "plaintext": "<string>"
    }
  ],
  "cursor": "eyJrZXkiOiJrZXlfMTIzNCJ9",
  "total": 123
}

API Documentation

​Changelog

Authorizations

Query Parameters

Response

Changelog