View All Products
Compute
Storage
Databases
Networking
Developer Tools
Delivery
Security
Services
Industries
Pricing
Community
Engage With Us
Community Questions Can I have a narrowly scoped API key?
Log in to Ask a Question

Can I have a narrowly scoped API key?

authentication api-key authorization

I want to set up some automation to modify one specific domain. Can I set up an API key that only allows RW access for that domain, and nothing else?

4 Replies

Linode Staff

Yes. You can set the access rights you want users authorized to use the API token to have right from the Cloud Manager. Here's our section of the guide which shows you how to do this:

API Keys/Tokens

I hope that answers your question!

Thanks -

I see that I can say I want the key to control domains only. But can I only allow it to control a specific domain?

Linode Staff

Hello,

API tokens have the same permissions as the linode.com user that owns them. So, I believe this is what you want:

Cloud Manager -> Account -> Users -> Add a User -> "This user will have full access to account features" to OFF, then on the Permissions page: grant the access you desire (read/write to that domain only or whatever).

Log in as this new user, My Profile -> API Tokens -> Add…

Hope that helps!
-Chris

Ah, I see, thanks. Having narrowly scoped users was the piece I was missing.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Log in to Reply
Community Code of Conduct