Skip to main content
POST
/
v1
/
partner
/
api-keys
/
{key_id}
/
revoke
curl -X POST \
  https://grail-stack-dev.onrender.com/v1/partner/api-keys/0c9bd7e4-6b2e-4f3a-a9a7-1f6e5d4c3b2a/revoke \
  -H "x-api-key: grail_partner_<hex>"

{
  "key_id": "0c9bd7e4-6b2e-4f3a-a9a7-1f6e5d4c3b2a",
  "status": "revoked",
  "revoked_at": "2026-04-19T13:00:00.000Z"
}

Documentation Index

Fetch the complete documentation index at: https://docs.grail.oro.finance/llms.txt

Use this file to discover all available pages before exploring further.

Overview

Revokes an API key so that no further requests can authenticate with it. Revocation is permanent and takes effect immediately — the next request using the revoked key returns 401 unauthorized.
Revocation is irreversible. To restore access, mint a new key via the challenge-response flow.

Headers

x-api-key
string
required
A valid PARTNER scope key for the partner that owns the key being revoked.

Path Parameters

key_id
string
required
UUID of the key to revoke. Available from List API Keys.

Response

key_id
string
UUID of the revoked key.
status
string
Always "revoked" on success.
revoked_at
string
ISO-8601 timestamp of the revocation.

Errors

HTTPerrorWhen
400already_revokedThe key is already in revoked status
401unauthorizedMissing or invalid x-api-key
404key_not_foundkey_id does not exist, or belongs to a different partner
curl -X POST \
  https://grail-stack-dev.onrender.com/v1/partner/api-keys/0c9bd7e4-6b2e-4f3a-a9a7-1f6e5d4c3b2a/revoke \
  -H "x-api-key: grail_partner_<hex>"

{
  "key_id": "0c9bd7e4-6b2e-4f3a-a9a7-1f6e5d4c3b2a",
  "status": "revoked",
  "revoked_at": "2026-04-19T13:00:00.000Z"
}