Revoke API Key
Revoke (deactivate) an existing API key.
Request
Permanently revoke an API key by its ID. Once revoked, the key can no longer be used for authentication. This action cannot be undone.
This endpoint requires session authentication (you must be logged in via the dashboard).
Query Parameters
idstringRequiredThe unique identifier of the API key to revoke. Get this from the List Keys endpoint.
Example Request
curl -X DELETE "https://app.ewasl.com/api/settings/api-keys?id=key_123abc" \
-H "Authorization: Bearer ewasl_YOUR_SESSION_TOKEN"
Response
successbooleantrue if the key was successfully revoked.
When to Revoke
- A key has been leaked or compromised
- A team member leaves the organization
- An application or integration is being decommissioned
- You're rotating keys as part of regular security hygiene
Response Example
{
"success": true
}