API keys belong to individual user accounts and inherit the same permissions as the associated account. If you want to your API key to ...
API keys belong to individual user accounts and inherit the same permissions as the associated account. If you want to your API key to have a different set of permissions than your user account, you can create a new user under which to generate the key. See 14.1 Create, edit, and delete users.
To create a new API key:
Please store your API Keys securely, such as in a password manager, and avoid publishing them in source code because they grant access to your account.
If a key is compromised or you wish to stop using the key you can revoke it using the following steps: