Logo

API Key Reference

These APIs can be called from the backend using your PropelAuth API Key. These APIs are used to validate, create, and delete API Keys for your users - which are separate from your PropelAuth API Key.

These can also be referred to as M2M (Machine to Machine) Keys or Service Accounts.

POST/api/backend/v1/end_user_api_keys/validate

Validate API Key

Validates an API key and returns any associated user or organization. This also returns any metadata attached to the API key.

Required Permissions

Validate End-user API Keys

Properties

  • Name
    apiKey *
    Type
    string
    Description
    The API key to validate

Request

auth.validateApiKey(
    "dhopw42...",
)

Successful Response

{
    metadata: {
        "customKey": "customValue"
    },

    // This is only included if the API key is associated with a user
    user: {
        userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        email: "test@example.com",
        // ...
    },

    // This is only included if the API key is associated with an organization
    org: {
        orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        orgName: "Example Organization",
        // ...
    },

    // This is only included if the API key is associated 
    // with BOTH a user and an organization
    userInOrg: {
        userAssignedRole: "Guest",
        userPermissions: ["CanReadProjectList"],
        // ...
    }
}
{
    "metadata": {
        "customKey": "customValue"
    },

    // This is only included if the API key is associated with a user
    "user": {
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "email": "test@example",
        // ...
    },

    // This is only included if the API key is associated with an organization
    "org": {
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "org_name": "Example Organization",
        // ...
    },

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    "user_in_org": {
        "userAssignedRole": "Guest",
        "userPermissions": ["CanReadProjectList"],
        // ...
    }
}
ValidateApiKeyResponse {
    metadata: Some(serde_json::json!({
        "customKey": "customValue"
    }),

    // This is only included if the API key is associated with a user
    user: Some(UserMetadata {
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
        email: "test@example.com".to_string(),
        // ...
    }),

    // This is only included if the API key is associated with an organization
    org: Some(OrgMetadata {
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492".to_string(),
        org_name: "Example Organization".to_string(),
        // ...
    }),

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    user_in_org: Some(UserInOrg {
        user_assigned_role: "Guest".to_string(),
        user_permissions: vec!["CanReadProjectList".to_string()],
        // ...
    }),
}
APIKeyValidation {
    Metadata: map[string]interface{}{
        "customKey": "customValue",
    },

    // This is only included if the API key is associated with a user
    User: &UserMetadata{
        UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        Email: "test@example.com",
        // ...
    },

    // This is only included if the API key is associated with an organization
    Org: &APIKeyOrgMetadata{
        OrgID: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        OrgName: "Example Organization",
        // ...
    },

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    UserInOrg: &OrgMemberInfoFromToken{
        UserAssignedRole: "Guest",
        UserPermissions: []string{"CanReadProjectList"},
        // ...
    },
}
{
    "metadata": {
        "customKey": "customValue"
    },

    // This is only included if the API key is associated with a user
    "user": {
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "email": "test@example",
        // ...
    },

    // This is only included if the API key is associated with an organization
    "org": {
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "org_name": "Example Organization",
        // ...
    },

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    "user_in_org": {
        "userAssignedRole": "Guest",
        "userPermissions": ["CanReadProjectList"],
        // ...
    }
}
POST/api/backend/v1/end_user_api_keys/validate

Validate Personal API Key

A convenience function that both validates an API key and makes sure it is assigned to a user, not an organization.

Required Permissions

Validate End-user API Keys

Properties

  • Name
    apiKey *
    Type
    string
    Description
    The API key to validate

Request

auth.validatePersonalApiKey(
    "dhopw42...",
)

Successful Response

{
    metadata: {
        "customKey": "customValue"
    },

    user: {
        userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        email: "test@example.com",
        // ...
    },
}
{
    "metadata": {
        "customKey": "customValue"
    },

    "user": {
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "email": "test@example",
        // ...
    },
}
ValidatePersonalApiKeyResponse {
    metadata: Some(serde_json::json!({
        "customKey": "customValue"
    }),

    user: UserMetadata {
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
        email: "test@example.com".to_string(),
        // ...
    },
}
PersonalAPIKeyValidation{
    Metadata: map[string]interface{}{
        "customKey": "customValue",
    },

    User: &UserMetadata{
        UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        Email: "test@example.com",
        // ...
    },
}
// Note: This is a convenience function implemented in the client libraries.
// If you are using curl, you will need to check the response for validate_api_key 
// for the "user" field.
POST/api/backend/v1/end_user_api_keys/validate

Validate Org API Key

A convenience function that both validates an API key and makes sure it is assigned to an organization. It may be assigned to a user within that organization, but it must be associated with an organization.

Required Permissions

Validate End-user API Keys

Properties

  • Name
    apiKey *
    Type
    string
    Description
    The API key to validate

Request

auth.validateOrgApiKey(
    "dhopw42...",
)

Successful Response

{
    metadata: {
        "customKey": "customValue"
    },

    org: {
        orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        orgName: "Example Organization",
        // ...
    },


    // These two fields are only included if the API key is also associated with a user
    user: {
        userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        email: "test@example.com",
        // ...
    },
    userInOrg: {
        userAssignedRole: "Guest",
        userPermissions: ["CanReadProjectList"],
        // ...
    }
}
{
    "metadata": {
        "customKey": "customValue"
    },

    "org": {
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "org_name": "Example Organization",
        // ...
    },

    // These two fields are only included if the API key is also associated with a user
    "user": {
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "email": "test@example",
        // ...
    }, 
    "user_in_org": {
        "userAssignedRole": "Guest",
        "userPermissions": ["CanReadProjectList"],
        // ...
    }
}
ValidateOrgApiKeyResponse {
    metadata: Some(serde_json::json!({
        "customKey": "customValue"
    }),

    org: OrgMetadata {
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492".to_string(),
        org_name: "Example Organization".to_string(),
        // ...
    },

    // These two fields are only included if the API key is also associated with a user
    user: Some(UserMetadata {
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
        email: "test@example.com".to_string(),
        // ...
    }),
    user_in_org: Some(UserInOrg {
        user_assigned_role: "Guest".to_string(),
        user_permissions: vec!["CanReadProjectList".to_string()],
        // ...
    }),
}
OrgAPIKeyValidation {
    Metadata: map[string]interface{}{
        "customKey": "customValue",
    },

    Org: &APIKeyOrgMetadata{
        OrgID: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        OrgName: "Example Organization",
        // ...
    },

    // These two fields are only included if the API key is also associated with a user
    User: &UserMetadata{
        UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        Email: "test@example.com",
        // ...
    },
    UserInOrg: &OrgMemberInfoFromToken{
        UserAssignedRole: "Guest",
        UserPermissions: []string{"CanReadProjectList"},
        // ...
    },
}
// Note: This is a convenience function implemented in the client libraries.
// If you are using curl, it will match the response for validate_api_key
POST/api/backend/v1/end_user_api_keys

Create API Key

Creates a new API key. This API key can be associated with a user, an organization, or no one. If it's associated with a user, the user's information will be returned on validation. It will also invalidated if the user is blocked/deleted. If it's associated with an organization, the organization's information will be returned on validation. It will also invalidated if the organization is deleted. You can associate it with both a user and an organization, in which case both will be returned on validation, including the role and permissions of the user within the organization. Finally, you can associate it with no one, in which case it will only be returned on validation if the API key is valid. In this case, the API key will not be invalidated if the user or organization is deleted. For any API key, you can attach metadata, which will be returned on validation as well.

Required Permissions

Create End-user API Keys

Properties

  • Name
    orgId
    Type
    string
    Description
    The ID of the organization to associate the API key with. If not provided, the API key will not be associated with an organization.
  • Name
    userId
    Type
    string
    Description
    The ID of the user to associate the API key with. If not provided, the API key will not be associated with a user.
  • Name
    expiresAtSeconds
    Type
    number
    Description
    A unix timestamp of when the API key should expire. If not provided, the API key will not expire.
  • Name
    metadata
    Type
    { [key: string]: any }
    Description
    Metadata to attach to the API key. This will be returned on validation.
  • Name
    displayName
    Type
    string
    Description
    A human-readable name for the API key.

Request

auth.createApiKey({
    orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    expiresAtSeconds: 1630425600,
    metadata: {
        customKey: "customValue",
    },
    displayName: "My API Key",
})

Successful Response

{
    apiKeyId: "justAnId",
    apiKeyToken: "dhopw42...",
}
{
    "api_key_id": "justAnId",
    "api_key_token": "dhopw42...",
}
CreateApiKeyResponse {
    api_key_id: "justAnId".to_string(),
    api_key_token: "dhopw42...".to_string(),
}
APIKeyNew{
    APIKeyID: "justAnId",
    APIKeyToken: "dhopw42...",
}
{
    "api_key_id": "justAnId",
    "api_key_token": "dhopw42...",
}
PATCH/api/backend/v1/end_user_api_keys/<apiKeyId>

Update API Key

Updates an API Key. You can update the metadata or expiration, but you cannot change ownership.

Required Permissions

Update API Key ExpirationUpdate API Key Metadata

Properties

  • Name
    apiKeyId *
    Type
    string
    Description
    The ID of the API key to update. This is NOT the full API key, just the ID.
  • Name
    expiresAtSeconds
    Type
    number
    Description
    A unix timestamp of when the API key should expire.
  • Name
    metadata
    Type
    { [key: string]: any }
    Description
    Metadata to attach to the API key. This will be returned on validation.
  • Name
    setToNeverExpire
    Type
    boolean
    Description
    If true, the API key will never expire.

Request

auth.updateApiKey(
    "justAnId",
    {
        expiresAtSeconds: 1630425600,
        metadata: {
            customKey: "customValue",
        },
        setToNeverExpire: false,
    },
)

Successful Response

{}
{}
Ok(())
true, nil
{}
DELETE/api/backend/v1/end_user_api_keys/<apiKeyId>

Delete API Key

Archives an API Key. You probably know this already, but after deleting/archiving an API Key, it will no longer be valid.

Required Permissions

Delete End-user API Keys

Properties

  • Name
    apiKeyId *
    Type
    string
    Description
    The ID of the API key to update. This is NOT the full API key, just the ID.

Request

auth.deleteApiKey(
    "justAnId"
)

Successful Response

{}
{}
Ok(())
true, nil
{}
GET/api/backend/v1/end_user_api_keys/<apiKeyId>

Fetch API Key

Fetches an API Key by it's ID. This will not return the full API key, just the metadata, expiration, and ownership.

Required Permissions

Read End-user API Keys

Properties

  • Name
    apiKeyId *
    Type
    string
    Description
    The ID of the API key to update. This is NOT the full API key, just the ID.

Request

auth.fetchApiKey(
    "justAnId"
)

Successful Response

{
    apiKeyId: "justAnId",
    createdAt: 1630425600,
    expiresAtSeconds: 1640425600,
    metadata: {
        "customKey": "customValue",
    },
    userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    displayName: "My API Key",
}
{
    api_key_id: "justAnId",
    created_at: 1630425600,
    expires_at_seconds: 1640425600,
    metadata: {
        "customKey": "customValue",
    },
    user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    display_name: "My API Key",
}
FetchApiKeyResponse {
    api_key_id: "justAnId".to_string(),
    created_at: 1630425600,
    expires_at_seconds: 1640425600,
    metadata: Some(serde_json::json!({
        "customKey": "customValue",
    })),
    user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
    org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492".to_string(),
    display_name: Some("My API Key".to_string()),
}
models.APIKeyFull{
    APIKeyID: "dhopw42...",
    CreatedAt: 1630425600,
    ExpiresAtSeconds: 1640425600,
    Metadata: map[string]interface{}{
        "customKey": "customValue",
    },
    UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    OrgID: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    DisplayName: "My API Key",
}
{
    "api_key_id": "justAnId",
    "created_at": 1630425600,
    "expires_at_seconds": 1640425600,
    "metadata": {
        "customKey": "customValue",
    },
    "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
    "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    "display_name": "My API Key",
}
GET/api/backend/v1/end_user_api_keys

Fetch Active API Keys

Fetches a list of active API Keys. This will not return the full API key, just the metadata, expiration, and ownership.

Required Permissions

Read End-user API Keys

Properties

  • Name
    userId
    Type
    string
    Description
    Filter by the user ID of the API key owner.
  • Name
    userEmail
    Type
    string
    Description
    Filter by the email of the API key owner.
  • Name
    orgId
    Type
    string
    Description
    Filter by the organization ID of the API key owner.
  • Name
    pageSize
    Type
    number
    Description
    The number of results to return per page.
  • Name
    pageNumber
    Type
    number
    Description
    The page number to return.

Request

auth.fetchCurrentApiKeys({
    userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    userEmail: "test@example.com",
    pageSize: 10,
    pageNumber: 0,
})

Successful Response

{
    apiKeys: [{
        apiKeyId: "justAnId",
        createdAt: 1630425600,
        expiresAtSeconds: 1640425600,
        metadata: {
            "customKey": "customValue",
        },
        userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        displayName: "My API Key",
    }],
    totalApiKeys: 1,
    currentPage: 0,
    pageSize: 10,
    hasMoreResults: false,
}
{
    api_keys: [{
        api_key_id: "justAnId",
        created_at: 1630425600,
        expires_at_seconds: 1640425600,
        metadata: {
            "customKey": "customValue",
        },
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        display_name: "My API Key",
    }],
    total_api_keys: 1,
    current_page: 0,
    page_size: 10,
    has_more_results: false,
}
FetchApiKeysPagedResponse {
    api_keys: vec![FetchApiKeyResponse {
        api_key_id: "justAnId".to_string(),
        created_at: 1630425600,
        expires_at_seconds: 1640425600,
        metadata: map!{
            "customKey".to_string() => "customValue".to_string(),
        },
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492".to_string(),
        display_name: Some("My API Key".to_string()),
    }],
    total_api_keys: 1,
    current_page: 0,
    page_size: 10,
    has_more_results: false,
    display_name: "My API Key",
}
models.APIKeyResultPage{
    ApiKeys: []models.APIKeyFull{
        APIKeyID: "dhopw42...",
        CreatedAt: 1630425600,
        ExpiresAtSeconds: 1640425600,
        Metadata: map[string]interface{}{
            "customKey": "customValue",
        },
        UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        OrgID: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        DisplayName: "My API Key",
    }],
    TotalAPIKeys: 1,
    CurrentPage: 0,
    PageSize: 10,
    HasMoreResults: false,
}
{
    "api_keys": [{
        "api_key_id": "justAnId",
        "created_at": 1630425600,
        "expires_at_seconds": 1640425600,
        "metadata": {
            "customKey": "customValue",
        },
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "display_name": "My API Key",
    }],
    "total_api_keys": 1,
    "current_page": 0,
    "page_size": 10,
    "has_more_results": false,
}
GET/api/backend/v1/end_user_api_keys/archived

Fetch Expired API Keys

Fetches a list of expired API Keys. This will not return the full API key, just the metadata, expiration, and ownership.

Required Permissions

Read End-user API Keys

Properties

  • Name
    userId
    Type
    string
    Description
    Filter by the user ID of the API key owner.
  • Name
    userEmail
    Type
    string
    Description
    Filter by the email of the API key owner.
  • Name
    orgId
    Type
    string
    Description
    Filter by the organization ID of the API key owner.
  • Name
    pageSize
    Type
    number
    Description
    The number of results to return per page.
  • Name
    pageNumber
    Type
    number
    Description
    The page number to return.

Request

auth.fetchArchivedApiKeys({
    userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    userEmail: "test@example.com",
    pageSize: 10,
    pageNumber: 0,
})

Successful Response

{
    apiKeys: [{
        apiKeyId: "justAnId",
        createdAt: 1630425600,
        expiresAtSeconds: 1640425600,
        metadata: {
            "customKey": "customValue",
        },
        userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        displayName: "My API Key",
    }],
    totalApiKeys: 1,
    currentPage: 0,
    pageSize: 10,
    hasMoreResults: false,
}
{
    api_keys: [{
        api_key_id: "justAnId",
        created_at: 1630425600,
        expires_at_seconds: 1640425600,
        metadata: {
            "customKey": "customValue",
        },
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        display_name: "My API Key",
    }],
    total_api_keys: 1,
    current_page: 0,
    page_size: 10,
    has_more_results: false,
}
FetchApiKeysPagedResponse {
    api_keys: vec![FetchApiKeyResponse {
        api_key_id: "justAnId".to_string(),
        created_at: 1630425600,
        expires_at_seconds: 1640425600,
        metadata: map!{
            "customKey".to_string() => "customValue".to_string(),
        },
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492".to_string(),
        display_name: "My API Key".to_string(),
    }],
    total_api_keys: 1,
    current_page: 0,
    page_size: 10,
    has_more_results: false,
}
models.APIKeyResultPage{
    ApiKeys: []models.APIKeyFull{
        APIKeyID: "dhopw42...",
        CreatedAt: 1630425600,
        ExpiresAtSeconds: 1640425600,
        Metadata: map[string]interface{}{
            "customKey": "customValue",
        },
        UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        OrgID: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        DisplayName: "My API Key",
    }],
    TotalAPIKeys: 1,
    CurrentPage: 0,
    PageSize: 10,
    HasMoreResults: false,
}
{
    "api_keys": [{
        "api_key_id": "justAnId",
        "created_at": 1630425600,
        "expires_at_seconds": 1640425600,
        "metadata": {
            "customKey": "customValue",
        },
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "display_name": "My API Key",
    }],
    "total_api_keys": 1,
    "current_page": 0,
    "page_size": 10,
    "has_more_results": false,
}
GET/api/backend/v1/end_user_api_keys/usage

Fetch API Key Usage

Fetches the amount of times an API key was validated on a certain date. Either the API Key ID, user ID, or organization ID must be provided to filter the results.

Required Permissions

Read User Insights Data

Properties

  • Name
    apiKeyId
    Type
    string
    Description
    The ID of the API ke.
  • Name
    userId
    Type
    string
    Description
    The ID of the user
  • Name
    orgId
    Type
    string
    Description
    The ID of the organization
  • Name
    date *
    Type
    string
    Description
    The date to filter by. Must be in YYYY-MM-DD format

Request

auth.fetchApiKeyUsage({
    userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    api_key_id: "dhopw42...",
    date: "2025-01-30",
})

Successful Response

{
    count: 2
}
{
    count: 2
}
FetchApiKeyUsageResponse {
    count: 2
}
models.APIKeyUsage{
    Count: 2
}
{
    "count": 2
}
POST/api/backend/v1/end_user_api_keys/import

Import API Key

Imports an API key from a third-party system. This API key can be associated with a user, an organization, or no one. If it's associated with a user, the user's information will be returned on validation. It will also invalidated if the user is blocked/deleted. If it's associated with an organization, the organization's information will be returned on validation. It will also invalidated if the organization is deleted. You can associate it with both a user and an organization, in which case both will be returned on validation, including the role and permissions of the user within the organization. Finally, you can associate it with no one, in which case it will only be returned on validation if the API key is valid. In this case, the API key will not be invalidated if the user or organization is deleted. For any API key, you can attach metadata, which will be returned on validation as well.

Required Permissions

Create End-user API Keys

Properties

  • Name
    importedApiKey *
    Type
    string
    Description
    The API key string imported from a third-party system.
  • Name
    orgId
    Type
    string
    Description
    The ID of the organization to associate the API key with. If not provided, the API key will not be associated with an organization.
  • Name
    userId
    Type
    string
    Description
    The ID of the user to associate the API key with. If not provided, the API key will not be associated with a user.
  • Name
    expiresAtSeconds
    Type
    number
    Description
    A unix timestamp of when the API key should expire. If not provided, the API key will not expire.
  • Name
    metadata
    Type
    { [key: string]: any }
    Description
    Metadata to attach to the API key. This will be returned on validation.
  • Name
    displayName
    Type
    string
    Description
    A human-readable name for the API key.

Request

auth.importApiKey({
    importedApiKey: "dhopw42...",
    orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
    userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
    expiresAtSeconds: 1630425600,
    metadata: {
        customKey: "customValue",
    },
    displayName: "My API Key",
})

Successful Response

{
    apiKeyId: "justAnId",
    apiKeyToken: "dhopw42...",
}
{
    "api_key_id": "justAnId",
    "api_key_token": "dhopw42...",
}
CreateApiKeyResponse {
    api_key_id: "justAnId".to_string(),
    api_key_token: "dhopw42...".to_string(),
}
APIKeyNew{
    APIKeyID: "justAnId",
    APIKeyToken: "dhopw42...",
}
{
    "api_key_id": "justAnId",
    "api_key_token": "dhopw42...",
}
POST/api/backend/v1/end_user_api_keys/validate_imported

Validate Imported API Key

Validates an imported API key and returns any associated user or organization. This also returns any metadata attached to the API key.

Required Permissions

Validate End-user API Keys

Properties

  • Name
    apiKey *
    Type
    string
    Description
    The API key to validate

Request

auth.validateImportedApiKey(
    "dhopw42...",
)

Successful Response

{
    metadata: {
        "customKey": "customValue"
    },

    // This is only included if the API key is associated with a user
    user: {
        userId: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        email: "test@example.com",
        // ...
    },

    // This is only included if the API key is associated with an organization
    org: {
        orgId: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        orgName: "Example Organization",
        // ...
    },

    // This is only included if the API key is associated 
    // with BOTH a user and an organization
    userInOrg: {
        userAssignedRole: "Guest",
        userPermissions: ["CanReadProjectList"],
        // ...
    }
}
{
    "metadata": {
        "customKey": "customValue"
    },

    // This is only included if the API key is associated with a user
    "user": {
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "email": "test@example",
        // ...
    },

    // This is only included if the API key is associated with an organization
    "org": {
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "org_name": "Example Organization",
        // ...
    },

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    "user_in_org": {
        "userAssignedRole": "Guest",
        "userPermissions": ["CanReadProjectList"],
        // ...
    }
}
ValidateApiKeyResponse {
    metadata: Some(serde_json::json!({
        "customKey": "customValue"
    }),

    // This is only included if the API key is associated with a user
    user: Some(UserMetadata {
        user_id: "31c41c16-c281-44ae-9602-8a047e3bf33d".to_string(),
        email: "test@example.com".to_string(),
        // ...
    }),

    // This is only included if the API key is associated with an organization
    org: Some(OrgMetadata {
        org_id: "1189c444-8a2d-4c41-8b4b-ae43ce79a492".to_string(),
        org_name: "Example Organization".to_string(),
        // ...
    }),

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    user_in_org: Some(UserInOrg {
        user_assigned_role: "Guest".to_string(),
        user_permissions: vec!["CanReadProjectList".to_string()],
        // ...
    }),
}
APIKeyValidation {
    Metadata: map[string]interface{}{
        "customKey": "customValue",
    },

    // This is only included if the API key is associated with a user
    User: &UserMetadata{
        UserID: "31c41c16-c281-44ae-9602-8a047e3bf33d",
        Email: "test@example.com",
        // ...
    },

    // This is only included if the API key is associated with an organization
    Org: &APIKeyOrgMetadata{
        OrgID: "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        OrgName: "Example Organization",
        // ...
    },

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    UserInOrg: &OrgMemberInfoFromToken{
        UserAssignedRole: "Guest",
        UserPermissions: []string{"CanReadProjectList"},
        // ...
    },
}
{
    "metadata": {
        "customKey": "customValue"
    },

    // This is only included if the API key is associated with a user
    "user": {
        "user_id": "31c41c16-c281-44ae-9602-8a047e3bf33d",
        "email": "test@example",
        // ...
    },

    // This is only included if the API key is associated with an organization
    "org": {
        "org_id": "1189c444-8a2d-4c41-8b4b-ae43ce79a492",
        "org_name": "Example Organization",
        // ...
    },

    // This is only included if the API key is associated
    // with BOTH a user and an organization
    "user_in_org": {
        "userAssignedRole": "Guest",
        "userPermissions": ["CanReadProjectList"],
        // ...
    }
}