GET /api/v1/enterprise/api-keys
Request Parameters
This endpoint accepts no request body and no query parameters.Code Examples
Response
A200 OK response returns an array of API key metadata objects. An empty array ([]) indicates no keys are currently active for the organization.
The unique identifier for the API key. Use this value as the
keyId path parameter when calling the rotate or delete endpoints.The human-readable label assigned to the key at creation time. Useful for identifying keys by their intended purpose or integration target.
The list of permission scopes granted to this key. A value of
["*"] indicates unrestricted access to all endpoints. Narrower scopes such as risk:read or suppliers:write limit the key to specific resource groups and HTTP methods.The UTC timestamp at which the key was originally generated, formatted as an ISO 8601 date-time string.
Error Responses
| HTTP Status | Error Code | Description |
|---|---|---|
401 Unauthorized | UNAUTHORIZED | The Authorization header is missing or the bearer token is invalid. |
403 Forbidden | FORBIDDEN | The authenticated identity does not have permission to list API keys for this organization. |
429 Too Many Requests | RATE_LIMITED | You have exceeded the hourly rate limit. Check X-RateLimit-Reset for your reset time. |