API Keys
Revoke API Key
DELETE/v1/keys/{id}
Revoke an API key to immediately prevent it from being used for authentication. This is a soft delete — the key record is preserved with a revoked_at timestamp for audit purposes, but it will no longer authenticate any requests.
Warning: Revoking a key is immediate and cannot be undone. Any integrations using this key will immediately lose access. Create a new key before revoking the old one if you need to rotate credentials.
Authentication: JWT token. Requires role:
owner or admin.Path Parameters
idstringrequired
The API key ID (e.g. key_m8Xp2nQw).
Error Responses
401unauthorized
JWT is missing or expired.
403insufficient_role
Your role does not have permission to revoke API keys.
404key_not_found
No API key exists with the provided ID, or it has already been revoked.
Revoke API Key
curl -X DELETE https://api.cali-br.com/v1/keys/key_m8Xp2nQw \
-H #a5d6ff">"Authorization: Bearer eyJhbGciOiJSUzI1NiIs..."Response200
{
"success": true
}