API Keys

Session-authenticated key administration. Lives outside /api/public/v1/*; shown here for completeness. Use the FlowBeacon web console for these.

📄️Create an API key

**Session-authenticated — requires the admin or owner role.** Lives outside

📄️List API keys

Returns metadata for every key in the current organization. Never returns raw keys.

📄️Revoke an API key

Revoke an API key

📄️Rotate an API key

Rotates a key with a configurable grace period (1–168 hours, default 24h).