Skip to content
Pore docs

API keys

All endpoints on this page require the admin scope.

GET /v1/keys

Section titled “GET /v1/keys”

List keys in the tenant. The secret is only returned at creation time; this endpoint returns only prefix, label, scope mask, and timestamps.

POST /v1/keys

Section titled “POST /v1/keys”

Create a new API key.

Request

{
  "label": "production-backend",
  "scopes": ["check:read", "grant:write"]
}

Response 201

{
  "id": "key_01HXYZ...",
  "prefix": "pore_live_",
  "secret": "pore_live_aB3cD4eF5...",
  "label": "production-backend",
  "scopes": ["check:read", "grant:write"],
  "created_at": "2026-04-14T10:22:00Z"
}

The full secret is returned exactly once. Store it immediately.

DELETE /v1/keys/{id}

Section titled “DELETE /v1/keys/{id}”

Revoke a key. Effective globally at edge latency.