Manage API keys
Learn how to create, edit, and disable RunPod API keys.
Legacy API keys generated before November 11, 2024 have either Read/Write or Read Only access to GraphQL based on what was set for that key. All legacy keys have full access to AI API. To improve security, generate a new key with Restricted permission and select the minimum permission needed for your use case.
Create an API key
Follow these steps to create a new RunPod API key:
-
In the RunPod console, navigate to the Settings page.
-
Expand the API Keys section and select Create API Key.
-
Give your key a name and set its permissions (All, Restricted, or Read Only). If you choose Restricted, you can customize access for each RunPod API:
- None: No access
- Restricted: Customize access for each of your Serverless endpoints. (Default: None.)
- Read/Write: Full access to your endpoints.
- Read Only: Read access without write access.
-
Select Create, then select your newly-generated key to copy it to your clipboard.
RunPod does not store your API key, so you may wish to save it elsewhere (e.g., in your password manager, or in a GitHub secret). Treat your API key like a password and don’t share it with anyone.
Edit API key permissions
To edit an API key:
- Navigate to the Settings page.
- Under API Keys, select the pencil icon for the key you wish to update
- Update the key with your desired permissions, then select Update.
Enable/disable an API key
To enable/disable an API key:
- Navigate to the Settings page.
- Under API Keys, select the toggle for the API key you wish to enable/disable, then select Yes in the confirmation modal.
Delete an API key
To delete an API key:
- From the console, select Settings.
- Under API Keys, select the trash can icon and select Revoke Key in the confirmation modal.