Revoke an API key by id. 404 if it doesn't exist or belongs to another application.
DELETE
Secret API key operationId: revoke/v1/api-keys/{id} Authorization
Server-to-server. Send a secret key as a Bearer token plus the x-application-id header.
Path parameters
idstring<uuid> requiredAPI key id
Responses
200 Revoked
{
"data": {
"active": false,
"created_at": "2026-01-15T09:30:00Z",
"expires_at": "2026-01-15T09:30:00Z",
"id": "018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f",
"last_used_at": "2026-01-15T09:30:00Z",
"name": "string",
"revoked_at": "2026-01-15T09:30:00Z",
"scopes": [
"string"
]
},
"error": {
"code": "string",
"message": "string"
},
"meta": {
"timestamp": "string"
},
"success": false
} 404 Not found
Request
curl -X DELETE "http://localhost:8080/v1/api-keys/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f" \Try it
live requestDELETE
http://localhost:8080/v1/api-keys/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f