API Key Management

Create, list, and revoke API keys for your organization.

API Key Management

Create, list, and revoke API keys for your organization.

POST/v1/org/keysJWT

Create API key (shown once)

DELETE/v1/org/keys/:idJWT

Revoke an API key

GET/v1/org/agentsJWT

List all API keys for org

Key format: navil_live_{base62} — stored as SHA-256 hash. Plaintext shown once at creation.

Create key

POST /v1/org/keys
Authorization: Bearer eyJhbGci...

{ "label": "production-agent" }

Response

{
  "id": "key_abc123",
  "key": "navil_live_x7k9m2...",
  "label": "production-agent",
  "created_at": "2026-03-12T..."
}

Key Security

API keys are hashed with SHA-256 before storage. The plaintext key is only returned once at creation time. If you lose the key, you will need to create a new one.

Always store API keys in environment variables or a secrets manager. Never commit them to version control or include them in client-side code.

Telemetry & Threat Intel

Agent Nodes

API Key Management

Create, list, and revoke API keys for your organization.