Skip to main content

API Keys

API keys authenticate pings from the SDK to the Crontify API. Every ping request includes your API key in the X-API-Key header.

Creating an API key​

  1. Go to API Keys in the dashboard
  2. Click New API Key
  3. Enter a name (e.g. Production Server, Staging)
  4. Click Create Key
  5. Copy the key immediately — it is shown only once and cannot be retrieved again

Store the key as an environment variable:

CRONTIFY_API_KEY=ck_live_...

Key format​

API keys start with ck_live_ followed by a random string. The key is stored as a SHA-256 hash — Crontify cannot recover your plaintext key if you lose it.

Security​

  • One key per environment (production, staging, etc.)
  • Never commit API keys to source control
  • If a key is compromised, revoke it immediately and create a new one
  • Keys are rate-limited to 120 pings per minute

Revoking a key​

Click Revoke next to a key. Any application using the revoked key will immediately receive 401 Unauthorized responses.

warning

Revoking a key is instant and permanent. Make sure your jobs are updated to use a new key before revoking the old one, or they will stop sending pings and monitors will start alerting.