API keys are used to authenticate your requests to the Yorlet API. To create an API key, you need to have a Yorlet account.

Secret and publishable keys

Yorlet uses two types of API keys:

  • Secret key: This key is used to authenticate your requests to the Yorlet API. Keep this key secure and never expose it in public.
  • Publishable key: This key is used to authenticate your requests to the Yorlet API. You can expose this key in public.

Secret keys have full access to your account and can perform any action on your behalf. Keep them secure and never expose them in public. If you suspect that a secret key has been compromised, roll the key immediately.

Roll an API key

To roll an API key:

  1. Go to the API keys page.
  2. In the row for the key you want to roll, click the overflow menu (•••), then select Roll key….
  3. Confirm that you want to roll the key.
  4. The window displays the new key value. Copy it by clicking it.
  5. Save the key value. You can’t retrieve it later.

Delete an API key

You cannot delete a publishable key. You can only delete a secret key.

To delete an API key:

  1. Go to the API keys page.
  2. In the row for the key you want to delete, click the overflow menu (•••), then select Delete key.
  3. Confirm that you want to delete the key.

Deleting an API key is irreversible. If you delete an API key, you can’t retrieve it later.

Create a secret API key

To create a secret API key:

  1. Go to the API keys page.
  2. Click the Create secret key button.
  3. Enter a name for the API key and a note (optional).
  4. Click Create.
  5. The window displays the new key value. Copy it by clicking it.
  6. Save the key value. You can’t retrieve it later.

Use an API key

Include the API key in the Authorization header of your requests to the Yorlet API.

Authorization: Bearer {API_KEY}

Learn more about API Authentication.