Create API Key

curl --request POST \
  --url https://api.example.com/v1/projects/{projectId}/api-keys \
  --header 'Content-Type: application/json' \
  --header 'X-Access-Key: <x-access-key>' \
  --header 'X-Signature: <x-signature>' \
  --header 'X-Timestamp: <x-timestamp>' \
  --data '
{
  "name": "<string>",
  "permissions": [
    {}
  ],
  "expiresAt": "<string>",
  "ipAllowlist": [
    {}
  ]
}
'

{
  "apiKey": {
    "keyId": "<string>",
    "clientKey": "<string>",
    "secretKey": "<string>",
    "name": "<string>",
    "permissions": [
      {}
    ],
    "createdAt": "<string>"
  }
}

POST

projects

{projectId}

api-keys

Create API Key

curl --request POST \
  --url https://api.example.com/v1/projects/{projectId}/api-keys \
  --header 'Content-Type: application/json' \
  --header 'X-Access-Key: <x-access-key>' \
  --header 'X-Signature: <x-signature>' \
  --header 'X-Timestamp: <x-timestamp>' \
  --data '
{
  "name": "<string>",
  "permissions": [
    {}
  ],
  "expiresAt": "<string>",
  "ipAllowlist": [
    {}
  ]
}
'

{
  "apiKey": {
    "keyId": "<string>",
    "clientKey": "<string>",
    "secretKey": "<string>",
    "name": "<string>",
    "permissions": [
      {}
    ],
    "createdAt": "<string>"
  }
}

Create API Key

Create a new API key for authenticating server-side requests.

The secret key is only shown once upon creation. Store it securely.

Authentication

X-Access-Key

string

required

API access key

X-Signature

string

required

HMAC-SHA256 signature

X-Timestamp

string

required

ISO 8601 timestamp

Path Parameters

projectId

string

required

The project identifier

Request Body

name

string

required

Display name for the API key

permissions

array

Array of permission scopes

expiresAt

string

Expiration date (ISO 8601). If not provided, key never expires.

ipAllowlist

array

Array of allowed IP addresses or CIDR ranges

Response

apiKey

object

Show properties

keyId

string

Unique key identifier

clientKey

string

Public client key (ak_…)

secretKey

string

Secret key (sk_…) - only shown once

name

string

Key display name

permissions

array

Granted permissions

createdAt

string

ISO 8601 timestamp

Example

curl -X POST https://api.axonvault.io/v1/projects/proj_abc123/api-keys \
  -H "X-Access-Key: ak_live_abc123" \
  -H "X-Signature: sha256=..." \
  -H "X-Timestamp: 2024-01-15T10:30:00Z" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "Production Server",
    "permissions": ["wallets:read", "wallets:write", "transactions:write"],
    "ipAllowlist": ["203.0.113.0/24"]
  }'

Response:

{
  "apiKey": {
    "keyId": "key_abc123",
    "clientKey": "ak_live_xyz789",
    "secretKey": "sk_live_secret_key_only_shown_once",
    "name": "Production Server",
    "permissions": ["wallets:read", "wallets:write", "transactions:write"],
    "ipAllowlist": ["203.0.113.0/24"],
    "createdAt": "2024-01-15T10:30:00Z"
  }
}

Available Permissions

Permission	Description
`wallets:read`	Read wallet information
`wallets:write`	Create and modify wallets
`accounts:read`	Read account information
`accounts:write`	Create and modify accounts
`addresses:read`	Read address information
`addresses:write`	Derive new addresses
`transactions:read`	Read transaction information
`transactions:write`	Build and submit transactions
`signing:write`	Sign transactions and hashes
`policies:read`	Read policy rules
`policies:write`	Create and modify policies

⌘I

API documentation

Wallets

Accounts

Addresses

Transactions

Signing

Policy Engine

Metadata

Reference

Create API Key

Create API Key

Authentication

Path Parameters

Request Body

Response

Example

Available Permissions

API documentation

Wallets

Accounts

Addresses

Transactions

Signing

Policy Engine

Metadata

Reference

​Create API Key

​Authentication

​Path Parameters

​Request Body

​Response

​Example

​Available Permissions

Create API Key

Authentication

Path Parameters

Request Body

Response

Example

Available Permissions