Managing API Keys

Create and manage Public API keys from the Account page. Keys authenticate server-to-server calls to https://api.toksta.com.

Open API key management

1. Sign in at Toksta.
2. Open Account from the main navigation.
3. Scroll to the API keys section (or go directly to /account#api-keys).

You must have an active dedicated API plan (Build, Scale, Enterprise, or PAYG) or a SaaS plan with API access enabled. Free accounts cannot create keys.

Create a key

1. Click Create key.
2. Enter a name (for example, Production CRM sync or Enrichment worker).
3. Optionally restrict which endpoint scopes the key may use.
4. Click create and copy the secret immediately — it is shown once. Toksta cannot show it again.

Keys look like tk_live_ followed by 48 hex characters. Store them in a secrets manager, not in source code.

Rotate a key

Use Rotate when you need a new secret (scheduled rotation or suspected exposure). Rotation:

• Issues a new secret (shown once).
• Revokes the previous key immediately.

Update your servers with the new secret before removing the old one from your secrets manager.

Revoke a key

Use Revoke for keys you no longer need. Revoked keys stop working immediately and return 401 UNAUTHORIZED on API calls.

View usage

The Account page shows plan entitlements tied to your keys: included credits, rate limit, overage rate, and whether workspace API endpoints are enabled.

For live credit consumption, call GET /v1/account/usage or see Managing Credits and Top-Ups.

Related docs

• Public API — Authentication
• Public API — Getting Started
• Public API — Pricing and Plans