Dashboard
API Keys
Create, manage, and revoke API keys for server-side access
API keys authenticate server-side requests to the CloudSignal REST API. You create and manage them from the dashboard.
Key Types
| Type | Prefix | Purpose |
|---|---|---|
| Secret | sk_ | Full access - server-side only, never expose in frontend code |
| Publishable | pk_ | Limited access - safe to include in client-side code |
| Legacy | cs_ | Older key format, still supported |
Secret keys (sk_) grant full API access. Never include them in frontend code, mobile apps, or public repositories.
Creating a Key
- Navigate to Dashboard → API Keys
- Click Create Key
- Choose the key type (Secret or Publishable)
- Enter a descriptive name (e.g., "Production Backend", "Staging Server")
- Click Create
- The full key is displayed once - copy and store it securely
Managing Keys
From the API Keys page:
- View all keys with their name, type, status, created date, and last used date
- Rotate a key - generates a new key value and revokes the old one. From the actions menu, click Rotate Key
- Revoke a key - permanently disables the key. From the actions menu, click Revoke Key
Key Display
- Keys are shown in masked format (e.g.,
sk_...x7m4) in the table - The full key is only shown at creation time or after rotation
- The Last Used column shows when the key was last used for an API request