DocsAPI ReferenceRelease Notes
Docs
BigPanda AppRequest DemoBigPanda UniversityBigPanda Community

API Key Management

Create and manage keys to securely authenticate calls to the BigPanda Public API.

Suggest Edits

When invoking requests to the BigPanda Public API, an HTTP Authorization header with a specific API key must be included to authorize the request.

Currently, only v2.0 APIs support API Keys. Some APIs may instead leverage the Org Token Authorization token. See each API endpoint to determine which Authentication type is required.

API Keys Screen

API Keys Screen

Relevant Permissions

Roles with the following permission can access API Keys page in BigPanda Settings:

Role NameDescription
API KeysView, edit, and create API Keys in BigPanda Settings.

Permission access levels can be adjusted by selecting either View or Full Access. To learn more about how BigPanda's permissions work, see the Roles Management guide.

Manage API Keys

API keys are managed directly through the BigPanda console and can be generated, deactivated, and deleted by administrators.

To access the API Keys screen:

  1. In the upper right-hand corner of the BigPanda UI, click the Settings cog icon and select API Keys from the dropdown.
  2. Existing API Keys will be listed in the left pane, along with a Search bar. In this section, you can Create a New API Key as well as Edit or Delete existing keys.
  3. Click any API Key in the list to see the details of the key, displayed in the pane to the right. In this section, you can edit, activate, deactivate, or extend the expiration date of the key.

Create a New Key

An API key is activated only when explicitly assigned to an active user. Upon activation, the role of the user making the API request is authenticated and authorized. A single user can be assigned more than one API Key.

  1. In the API Keys menu, select the New key button.
  2. Enter a Key Name.
  3. Select a Key expiration date from the drop-down menu. You can choose from 6 months, 12 months, 24 months, or no expiration. Expiration dates can be updated at any time.
  4. Select the Associated User to assign the key to. The dropdown will contain all active users in the system to choose from.
  5. Optionally, enter a short description (limit 1000 characters) to identify this key.
  6. Select Create Key.
  7. The generated key will be presented to you at this time. Be sure to copy and save it now as this will be the only time it will be available to you.

See the Authentication and Headers page in our API Reference to learn more.

🚧

Copy and save API keys

Once the Create Key button is selected after filling out the fields in the menu, the generated key will only be exposed and shared in its full form once in the following pop-up. It is important to copy and safely store this key. BigPanda does not store a copy of the key for future reference.

👍

API key expiration

When an API key is close to expiring, an email notification will be sent to the user associated with the API key and the BigPanda user who created the key.

API key expiration dates can be extended at any time. To extend the expiration, click the Edit button on a key. If the API key is already expired and you need to re-activate it, follow the instructions to Extend the Expiration Date of an Expired Key.

📘

Usage monitoring

The frequency of key usage can be monitored easily - a call to the Public API will update the Last Used timestamp in the details section of the respective API Key used during the call.

Activate and Deactivate a Key

To deactivate an existing key without deleting it:

  1. Navigate to the desired key and select it.
  2. In the details pane to the right, click the Active toggle.
  3. (Optional) Click the Active toggle at any time to reactivate the key

🚧

Deleting active keys

If an active key is deleted, it cannot be regenerated. If the key that was deleted is associated with an external system, create a new key and update the key field on all external systems that make calls to BigPanda’s Public API.

Extend the Expiration Date of an Expired Key

Once a key's expiration date has been reached, it is automatically deactivated and appears in the list of keys as Expired. You can reactivate and extend the expiration dates of expired API keys. 

To extend the expiration date of an expired key: 

  1. Navigate to the expired key and select it.
  2. In the details pane to the right, change the Inactive toggle to Active.
  3. In the details pane, click the Edit icon.
  4. In the Edit key window, select the Key expiration drop-down menu and choose a new date.
  5. Click Update key.

Delete a Key

To delete and deactivate an existing key:

  1. Select or search for the desired key in the API Keys list.
  2. Select the Delete (trash can) icon.
  3. Type DELETE in the field to confirm and authorize the deletion. The field is case-sensitive.

🚧

Key deletion

Once a key is deleted, the action is permanent and not reversible.

Keys associated with users that have been deleted will automatically become inactive and no longer work.

Delete an API Key

Delete an API Key

Next Steps

Find your way around the BigPanda Settings screen

Read through the Introduction to BigPanda APIs

Learn about User Management in BigPanda

Updated 25 days ago