API Authentication

API Keys

All API requests require a Bearer token:

bash

curl https://api.zevcloud.net/v1/projects \
  -H "Authorization: Bearer sk_live_your_api_key"

API keys are scoped to a team. The team context is automatically set from the key.

Key Scopes

Scope	Allowed Operations
`full`	All CRUD operations
`deploy`	Deploy, restart, stop, logs, env vars
`read`	List and get resources (no modifications)

Endpoints

Generate a Key

POST /v1/api-keys
Authorization: Bearer <ZevID token>
x-team-id: <team-id>

json

{
  "name": "CI/CD Pipeline",
  "scope": "deploy"
}

Response:

json

{
  "id": "uuid",
  "name": "CI/CD Pipeline",
  "key": "sk_live_a1b2c3d4...",
  "keyPrefix": "sk_live_a1b2c3...",
  "scope": "deploy",
  "createdAt": "2026-03-28T00:00:00Z"
}

WARNING

The key field is only returned once at creation time. Store it securely.

List Keys

GET /v1/api-keys

Returns all active (non-revoked) keys for the team. The raw key is never shown — only the prefix.

Revoke a Key

DELETE /v1/api-keys/:keyId

Revoked keys are immediately invalid for all requests.

API Authentication ​

API Keys ​

Key Scopes ​

Endpoints ​

Generate a Key ​

List Keys ​