API keys allow you to authenticate with the Vibe OnCall Public API and integrate with external systems without relying on user sessions. Each key is scoped to your organization and should be treated as a secret credential.

Creating an API Key

1. Navigate to Administration → API Keys.
2. Click Create API Key.
3. Enter a descriptive name that identifies the integration this key will be used for (e.g., CI/CD Pipeline, Monitoring Script).
4. Click Create and copy the key immediately — it is displayed only once and cannot be retrieved after you leave the page.

API keys use the format vlk_ followed by 40 hex characters (e.g., vlk_a1b2c3d4e5f6...).

Using an API Key

Include the key in the Authorization header of all API requests:

Authorization: Bearer vlk_your_api_key_here

See Public API Reference for available endpoints and usage examples.

Managing Keys

Navigate to Administration → API Keys to view all keys for your organization. For security, only the key prefix is shown after creation — the full key is never displayed again.

• Revoke a key — If a key is compromised or no longer needed, revoke it immediately from the API Keys list. Revoked keys stop working instantly.

Best Practices

• Create separate keys for each integration rather than sharing a single key across systems.