Overview
Generates a new API key for the user. The old key is immediately invalidated.Authentication
Requires User API Key in theX-API-Key header (the old key you’re replacing).
Request
Response
Always
true on successful regenerationYour new API key. Save this immediately - it will never be shown again.
When to Regenerate
Security Breach
If your API key is exposed:Regular Rotation
Rotate keys periodically as a security best practice:User Flow
Settings Page
Automated Rotation
Best Practices
Show Key Only Once
Require Confirmation
Audit Trail
Security Considerations
Immediate Invalidation
The old key stops working immediately:Never Share Keys
Error Responses
Invalid API Key
Rate Limit
Related Endpoints
User Info
View user profile
User Preferences
Update scheduling preferences