Sign inTry Free

Aura App API Keys

On this page

Note

This is a Preview feature.

Aura App API keys allow you to programmatically interact with your Aura environment. These keys are used to authenticate requests to Aura App APIs, which enables automation, integration with CI/CD pipelines, and secure service-to-service communication. An Aura App API key can be created for and used to access any Aura App, such as Cloud Functions and Dashboard Apps. The API key is unique and only enables access to the Aura App for which it is created.

Create an Aura App API Key

To create an API key, perform the following steps:

  1. In the Cloud Portal, under the Develop section, navigate to an Aura App.

  2. Select an App instance. An example with a Cloud Function App is demonstrated.

  3. Select View API Keys in the upper right corner.

    Shows View API keys in the upper right corner in Cloud Functions App

  4. Select Create API Key.

    Shows an option of creating API key by selecting +Create API Key in upper right corner of app instance

  5. In the Create API key for <Aura_App> - <Aura_App_name> dialog,

    1. Enter the name in the API Key Name field.

    2. In Expiration, select the expiration date.

      Shows the way of creating an API key in the dialog box. Enter the API key name.

    3. Select Create API Key.

  6. Once the API key is generated, select Copy API Key to copy it or Save As Secret to store it securely in Secrets. The API key is displayed only once.

    Shows the generated API key and you can save the API key as secret and copy as well.

  7. If Save As Secret is selected:

    1. In the New Secret dialog, enter the name for the secret in the Name field.

      Shows the way to save the API key as secret.

    2. Select Create Secret. The API key is stored in a secret.

  8. Select Close.

Types of Aura App API Keys

There are two types of Aura App API keys:

  1. Active API key: An API key that is currently valid, associated with an existing App instance or user, and has not been revoked. It can successfully authenticate requests to the Aura App APIs.

  2. Orphaned API key: An API key that is not associated with an existing App instance, as the App or user that created it, was deleted. Orphaned keys are inactive and cannot be used to authenticate API requests.

    Note

    Orphaned API keys pose a potential security risk and should be identified and revoked promptly.

Manage an Aura App API Key

You can manage an Aura App API key in two ways:

  1. Using the App instance

  2. Using the Aura App interface

Using the App Instance

  1. Navigate to the Aura App.

  2. Under the Name column, select the App instance for which you want to manage the Aura App API key.

  3. Select View API Keys in the upper right corner. You can view the total number of API keys for the App instance on the View API Keys button.

    Shows the option of creating API key in the Dashboard App instance with View API keys option.

  4. To revoke an active or orphaned Aura App API key, perform the following tasks:

    1. Revoke an Active Aura App API key:

      1. Navigate to the Active tab.

        Shows the Active API keys in the cloud function app instance.

      2. Select the delete icon under the Actions column next to your API key.

        Shows the way to delete the Active API key in the Actions column.

      3. In the Revoke API key dialog, enable the agreement and select Revoke.

    2. Revoke an Orphaned Aura App API key:

      1. Navigate to the Orphaned tab.

        Shows the orphaned API keys in the app instance.

      2. Select the delete icon under the Actions column next to your API key.

        Shows the way to delete the orphaned API key in the App instance.

      3. In the Revoke API key dialog, enable the agreement and select Revoke.

        Note

        Orphaned keys can only be revoked by the Aura Owner or Owner of the organization.

Using the Aura App interface

  1. Navigate to the Aura App.

  2. Select View API Keys in the upper right corner.

    Shows the option of View API key in the Dashboard App.

  3. To revoke an active or orphaned Aura App API key, perform the following tasks:

    1. Revoke an Active Aura App API key:

      1. Navigate to the Active tab.

        Shows the Active API keys in Cloud function App.

      2. Select the delete icon under the Actions column next to your API key.

        Shows the way of deleting the Active API key in the Cloud Function App.

      3. In the Revoke API key dialog, enable the agreement and select Revoke.

    2. Revoke an Orphaned Aura App API key:

      1. Navigate to the Orphaned tab.

        Shows the orphaned API keys in the Cloud function App.

      2. Select the delete icon under the Actions column next to your API key.

        Shows the way of deleting the orphaned API keys.

      3. In the Revoke API key dialog, check the agreement and select Revoke.

        Note

        Orphaned keys can only be revoked by Aura Owner or Owner of the organization.

Last modified: August 18, 2025

Was this article helpful?

On this page

Was this article helpful?

Verification instructions

Note: You must install cosign to verify the authenticity of the SingleStore file.

Use the following steps to verify the authenticity of singlestoredb-server, singlestoredb-toolbox, singlestoredb-studio, and singlestore-client SingleStore files that have been downloaded.

You may perform the following steps on any computer that can run cosign, such as the main deployment host of the cluster.

  1. (Optional) Run the following command to view the associated signature files.

    curl undefined

  2. Download the signature file from the SingleStore release server.

    • Option 1: Click the Download Signature button next to the SingleStore file.

    • Option 2: Copy and paste the following URL into the address bar of your browser and save the signature file.

    • Option 3: Run the following command to download the signature file.

      curl -O undefined

  3. After the signature file has been downloaded, run the following command to verify the authenticity of the SingleStore file.

    echo -n undefined |
        cosign verify-blob --certificate-oidc-issuer https://oidc.eks.us-east-1.amazonaws.com/id/CCDCDBA1379A5596AB5B2E46DCA385BC \
          --certificate-identity https://kubernetes.io/namespaces/freya-production/serviceaccounts/job-worker \
          --bundle undefined \
          --new-bundle-format -
    Verified OK