API Access Keys
Control programmatic access to your organization's prompts and workflows. These keys enable API integrations—external systems calling your Aisle-powered tools.
How Access Keys Work
When someone creates an API entry point for a prompt or workflow, they can require an access key. Without a valid key, the API call fails.
This prevents:
- Unauthorized access to your AI tools
- Unexpected API usage from unknown sources
- External systems calling sensitive workflows without permission
Key Management
View all keys - See every active API access key in your organization. Each key shows which entry points it's authorized for.
Generate new keys - Create keys when someone needs API access. You can scope keys to specific entry points or make them work across multiple endpoints.
Revoke access - Immediately disable any key. Useful when:
- A team member leaves and had API access
- A key might have been compromised
- An integration is being decommissioned
- You're troubleshooting API issues and need to eliminate access as a variable
Revoked keys fail immediately. Any system using that key will get authentication errors until you provide a new one.
Common Scenarios
External System Needs API Access
- Team builds workflow with API entry point
- Request access key from admin panel
- Provide key to external system
- Monitor usage
- Revoke key if system is decommissioned
Security Incident
- Immediately revoke the potentially compromised key
- Generate a new key
- Update external systems with new key
- Review logs to assess impact