Skip to main content
POST
/
v1
/
sender
/
api-key
/
rotate
Rotate API Key
curl --request POST \
  --url https://b2b.usetapp.xyz/v1/sender/api-key/rotate \
  --header 'API-Key: <api-key>'
{
  "status": "success",
  "message": "API key rotated",
  "data": {
    "api_key_id": "9f1c2d3e-4a5b-6c7d-8e9f-0a1b2c3d4e5f",
    "secret": "sk_live_…"
  }
}
Rotates your API key. Authenticate this request with your current key; the old key is invalidated immediately and the response returns the new one.
After rotating, use the returned api_key_id as your API-Key header. The previous key stops working right away — update your integration before the next request. Store the secret securely; it’s used to verify webhook signatures.

Header Parameters

API-Key
string
required
Your current API key.

Response

status
string
Response state (success).
data
object
api_key_id
string
The new key — use it as your API-Key header.
secret
string
The new webhook HMAC signing secret.
{
  "status": "success",
  "message": "API key rotated",
  "data": {
    "api_key_id": "9f1c2d3e-4a5b-6c7d-8e9f-0a1b2c3d4e5f",
    "secret": "sk_live_…"
  }
}