API Keys
Control who in your organization can create API keys in Threo, and revoke any active key. Enablement is opt-in and required before a user can mint a key.
Overview
Section titled “Overview”API keys let your users call Synthreo programmatically. As an administrator you decide who may create keys, and you can revoke any active key. Enablement is opt-in and off by default: a user cannot create a key until you enable them.
These controls appear in two places, and work the same in both:
- Your organization - in Settings, under “API Keys”.
- A child customer - on the customer’s API Keys tab. See Adding a New Customer.
Enable who can create keys
Section titled “Enable who can create keys”The Enabled users list shows who is allowed to create API keys. Select Enable a user to add someone. Once enabled, that user can mint their own keys inside Threo; until then, they cannot. Use the same list to disable a user, which stops them creating new keys.

Review and revoke keys
Section titled “Review and revoke keys”The Active keys view lists keys grouped by owner, with a filter to switch between Active and All. Revoking a key takes effect immediately, so use it the moment a key is no longer needed or may be exposed.
Related
Section titled “Related”- Settings - where your organization’s API key controls live
- Adding a New Customer - the per-customer API Keys tab

