PLATFORM RC-74 Developer API Keys (v1) + audit trail (contract) (v1)

Download OpenAPI specification:

Contract-only API key lifecycle endpoints. This document does not imply a runtime backend implementation.

Create developer API key (idempotent)

header Parameters

X-Correlation-Id required	string Required for all requests; echoed into responses and audit.
X-Idempotency-Key required	string Required for write operations; enforces deterministic replay semantics.

Request Body schema: application/json
required

display_name required	string
scopes required	Array of strings
expires_at	string or null <date-time>
requested_by	string or null Actor hint for contracts/fixtures only; runtime must derive actor identity from auth.

Responses

Request samples

Payload

Content type

application/json

{"display_name": "string",
"scopes": ["string"
],
"expires_at": "2019-08-24T14:15:22Z",
"requested_by": "string"
}

Response samples

200

Content type

application/json

Example

ApiKeyWriteApplied

{"outcome": "APPLIED",
"reason_code": "string",
"key_id": "string",
"key_last4": "string",
"api_key_secret": "string",
"correlation_id": "string",
"idempotency_key": "string",
"audit_event_id": "string"
}

List API keys (metadata only)

header Parameters

X-Correlation-Id

required

string

Required for all requests; echoed into responses and audit.

Responses

Response samples

200

Content type

application/json

{"keys": [{"key_id": "string",
"display_name": "string",
"status": "ACTIVE",
"scopes": ["string"
],
"created_at": "2019-08-24T14:15:22Z",
"last_used_at": "2019-08-24T14:15:22Z",
"key_last4": "string"
}
],
"correlation_id": "string",
"audit_event_id": "string"
}

Rotate developer API key (idempotent)

path Parameters

key_id

required

string

header Parameters

X-Correlation-Id required	string Required for all requests; echoed into responses and audit.
X-Idempotency-Key required	string Required for write operations; enforces deterministic replay semantics.

Request Body schema: application/json
optional

reason	string or null
requested_by	string or null

Responses

Request samples

Payload

Content type

application/json

{"reason": "string",
"requested_by": "string"
}

Response samples

200

Content type

application/json

Example

ApiKeyWriteApplied

{"outcome": "APPLIED",
"reason_code": "string",
"key_id": "string",
"key_last4": "string",
"api_key_secret": "string",
"correlation_id": "string",
"idempotency_key": "string",
"audit_event_id": "string"
}

Revoke developer API key (idempotent)

path Parameters

key_id

required

string

header Parameters

X-Correlation-Id required	string Required for all requests; echoed into responses and audit.
X-Idempotency-Key required	string Required for write operations; enforces deterministic replay semantics.

Request Body schema: application/json
optional

reason	string or null
requested_by	string or null

Responses

Request samples

Payload

Content type

application/json

{"reason": "string",
"requested_by": "string"
}

Response samples

200

Content type

application/json

Example

ApiKeyWriteApplied

{"outcome": "APPLIED",
"reason_code": "string",
"key_id": "string",
"key_last4": "string",
"api_key_secret": "string",
"correlation_id": "string",
"idempotency_key": "string",
"audit_event_id": "string"
}

PLATFORM RC-74 Developer API Keys (v1) + audit trail (contract) (v1)

Create developer API key (idempotent)

header Parameters

Request Body schema: application/jsonrequired

Responses

Request samples

Response samples

List API keys (metadata only)

header Parameters

Responses

Response samples

Rotate developer API key (idempotent)

path Parameters

header Parameters

Request Body schema: application/jsonoptional

Responses

Request samples

Response samples

Revoke developer API key (idempotent)

path Parameters

header Parameters

Request Body schema: application/jsonoptional

Responses

Request samples

Response samples

Request Body schema: application/json
required

Request Body schema: application/json
optional

Request Body schema: application/json
optional