Skip to main content
GET
/
v1
/
keys
List API keys for the authenticated user
import requests

url = "https://api.13-215-85-171.sslip.io/v1/keys"

headers = {"Authorization": "Bearer <token>"}

response = requests.get(url, headers=headers)

print(response.text)
[
  {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "prefix": "ns_live_a1b2",
    "is_active": true,
    "name": "<string>",
    "created_at": "2023-11-07T05:31:56Z",
    "last_used_at": "2023-11-07T05:31:56Z",
    "scope": "<string>",
    "expires_at": "2023-11-07T05:31:56Z",
    "revoked_at": "2023-11-07T05:31:56Z",
    "rotation_parent_key_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a"
  }
]

Authorizations

Authorization
string
header
required

Supabase Auth access token passed as Bearer token

Response

API keys for the authenticated user

id
string<uuid>
required
prefix
string
required

Stored display prefix; the plaintext key is never returned.

Example:

"ns_live_a1b2"

is_active
boolean
required
name
string | null
created_at
string<date-time> | null
last_used_at
string<date-time> | null

Wall-clock time the key was last seen on an authenticated request, updated best-effort by the auth middleware. Always present (nullable) so clients can distinguish "never used" from "field absent".

scope
string | null

Advisory free-text scope label (T08 Phase 10); not enforced server-side.

expires_at
string<date-time> | null

Effective expiration time for a key scheduled for rotation retirement.

revoked_at
string<date-time> | null
rotation_parent_key_id
string<uuid> | null

Original key id when this key was minted by a rotation.