Account
API keys
3 min read
API keys let your own scripts and tools call the DevThrottle API under your account. The app itself does not need one - your devices authenticate as devices - so keys are for the things you build.
Creating a key
Open API Keys and create
Name the key for what will use it - "build server", "usage script" - because usage is reported per key and a good name is what makes that report readable.Copy it now
The full key is shown once, at creation. Copy it into your secret store; after you leave the page, only the key's name and prefix remain visible.Use it as a bearer token
Send it in the Authorization header on API calls - see authentication for the exact shape.
Screenshot coming soonThe one-time display of a newly created API key with the copy button
Managing keys
- Per-key usage - every key's spend shows separately in Usage, so you can tell which integration is doing what.
- Revoke - deleting a key stops it immediately. If a key leaks, revoke it and create a fresh one; your other keys and devices are unaffected.
Warning
Treat keys like passwords: never commit one to a repository, and prefer one key per integration so a leak has a small blast radius and a clean revoke.
Note
Anything a key spends comes out of the same prepaid credit balance as the rest of your account - keys cannot spend money you have not loaded.