Revoke an API key
Revoke an API key. Idempotent: an active key is stamped revokedat = now and rejected immediately thereafter; a key that already has a revokedat (a prior revoke…
Revoke an API key. Idempotent: an active key is stamped revoked_at = now and rejected immediately thereafter; a key that already has a revoked_at (a prior revoke or a future-dated rotation grace) keeps its existing timestamp — revoke never shortens or extends a rotation grace window. Requires the manage:keys scope, which is a dashboard-session scope (owner or admin only) and cannot be granted to API keys today: every mf_ API key receives 403. Call this endpoint with a dashboard session token. Takes no request body.
Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Path Parameters
The API key resource id (`key_…`).
Response
The key's revocation timestamp.
idstringrequiredrevoked_atstring<date-time>requiredThe revocation timestamp; `now` on first revoke, or the pre-existing timestamp otherwise.