Documentation
Start typing to search…

Manage API Keys

Authenticate with the Atono API using secure, user-specific keys.

API keys let you connect personal tools or automations to the Atono public API. Each key is tied to your user account and cannot be shared across users.

Manage API keys

The API keys page lists all the API keys you've created in Atono, along with their names, creation dates, and usage history. From here, you can create new keys, copy them for use in personal tools or scripts, track when they were last used, and rename or delete keys as needed.

🚧

Guard your keys!

API keys allow access to the Atono API using your credentials. If a key is ever exposed or compromised, delete it to prevent unauthorized use.


Create an API key

  1. Click the circular icon with your initials in the Atono workspace header.
  2. From the menu, select API keys.
  3. On the API keys page, click Create API key.
  4. In the Create API key dialog, enter a unique name for your key. Choose a name that helps you identify its purpose.
  5. Click Create API key.
  6. In the API key created dialog, click the copy icon to copy your key to the clipboard. (You can also do this later from the API keys page).
  7. Click Done.

Actions taken with your API key will appear as performed by your Atono user account. If needed, you can use the API key name to clarify the source (for example, Import script or Sync bot).


Copy an API key

To interact with the Atono public API, you'll need to provide a valid API key in your requests.

API keys are obfuscated in the Atono interface, but you can still copy them to your clipboard for use in your tools or scripts.

Click the copy icon next to the key in the API key column to copy it to your clipboard.


Rename an API key

While API key names are not used for authentication, they can help you keep track of what each key is used for.

  1. On the API keys page, hover over the API key you want to rename.
  2. Click the ellipses (...) icon that appears at the far right of the table row.
  3. From the menu, select Rename.
  4. In the Rename API key dialog, update the key name, then click Rename API key, or click X to cancel.

Delete an API key

You might want to delete an API key if it's no longer in use—or to revoke access if a key may have been exposed or misused.

  1. On the API keys page, hover over the API key you want to delete.
  2. Click the ellipses (...) icon at the far right of the table row.
  3. From the menu, select Delete.
  4. In the Delete API key dialog, click Delete API key, or click X to cancel.
    • If the key was used less than a month ago, the dialog will warn you that deleting it will cause any requests that use the key to fail. Make sure the key is no longer in use by any tools or automations before deleting it.


Best practices

  • Use clear names to show context: If you’re running automations, choose a key name that reflects the action or tool. This can help distinguish updates made through the API from those done manually.
  • Rotate keys regularly: If you're using long-lived keys, consider creating new ones periodically and removing old ones.
  • Limit usage per key: Use different keys for different tools when possible. That way, you can safely revoke one (delete it) without affecting the others.
  • Keep keys secure: Never share your API key publicly or commit it to version control.
  • Use the right account: Avoid using an admin account to create a key if all you need is access to stories and bugs. If possible, use a standard user account with only the permissions you need.


Troubleshooting tips

  • Deleted a key by mistake? Create a new one and update any tools or scripts that were using the old key.
  • "Not used yet" status? This means no successful API requests have been made with the key yet. Double-check your setup.
  • Requests failing after deletion? You may have deleted an active key. Create a replacement and update the tools or scripts that rely on it.

Updated about 14 hours ago