API Endpoint

GET /management/api-keys

List generated API keys and their active/revoked state.

GET /management/api-keys

Endpoint context

Use these endpoints from internal tooling or your frontend backend to inspect licenses, manage slug policy templates, provisioning API keys, webhook endpoint configuration/logs, and offline JWT signing keys. Management routes require the management bootstrap key configured via MANAGEMENT_API_KEYS or MANAGEMENT_API_KEY.

Requires management API key auth.
Plaintext API key values are never returned by this endpoint.
Use this for admin listing and revocation workflows.

bash

curl -sS http://localhost:8080/management/api-keys \
  -H "Authorization: Bearer management_key_dev_123456"

Request body

json

{} (no request body)

Response body

json

{
  "api_keys": [
    {
      "id": 1,
      "name": "stripe-prod",
      "hint": "a94f",
      "created_at": "2026-04-21T10:00:00Z",
      "revoked_at": null
    }
  ]
}

Response field types

api_keys

array

List of generated API key metadata records.

Error codes

401

Missing or invalid management API key.

500

Unexpected server or storage error.

Back to API overview