ASD Logo ASD Logo ASD
FEATURE

API Keys & Tokens Management

Generate scoped API keys and CI/CD tokens with custom expiration times. Secure your automation workflows with instant revocation and usage tracking.

text
API Keys: Acme Corp
├── Personal Keys
│   ├── alice-dev-key (expires: 2025-12-31)
│   │   └── Last used: 2 hours ago (1,234 requests)
│   └── bob-cli-key (expires: 2026-06-15)
│       └── Last used: 5 minutes ago (856 requests)
├── Team Keys
│   └── frontend-team-key (expires: 2025-09-01)
│       └── Last used: 1 day ago (45,678 requests)
└── CI/CD Tokens
    ├── github-actions (expires: 2025-03-15)
    │   └── 10 tunnel slots, 8 in use
    └── gitlab-ci (expires: 2025-04-20)
        └── 10 tunnel slots, 3 in use

Capabilities

Scoped API Keys

Generate API keys scoped to organizations, departments, or teams. Control access with granular permission boundaries.

Custom TTL

Set expiration times from hours to years. Short-lived keys for CI/CD, long-lived keys for integrations.

CI/CD Tokens

Specialized tokens for automated pipelines with extended tunnel limits. Designed for GitHub Actions, GitLab CI, and Jenkins.

Instant Revocation

Revoke compromised keys immediately. All active sessions using the key are terminated within seconds.

Usage Tracking

Monitor API key usage with request counts and last-used timestamps. Identify unused keys for cleanup.

Programmatic Management

Create, list, and revoke keys via API. Automate key rotation in your infrastructure scripts.

Key Types

Different key types for different use cases. Choose the right key for your integration needs.

TypeScopeMax TTLUse CaseAvailability
Personal API KeyUserUp to 1 yearCLI authentication, personal integrationsAll plans
Team API KeyTeamUp to 1 yearShared team integrations, monitoring toolsPro and above
CI/CD TokenOrganizationUp to 90 daysAutomated pipelines, deployment scriptsPro (1 included), Scale (3 included)
Ephemeral TokenSingle useHoursMarketing demos, temporary accessCustom

CI/CD Integration

CI/CD tokens are designed for automated pipelines. Each token includes dedicated tunnel slots separate from your developer tunnels.

GitHub Actions

Store token in secrets, expose services in workflows

GitLab CI

CI/CD variables with masked token support

Jenkins

Credentials plugin integration for secure storage

.github/workflows/deploy.yml
- name: Start tunnel
  run: asd up --token ${{ secrets.ASD_CICD_TOKEN }}

Use Cases

Development Workflow

  • CLI authentication for local development
  • IDE plugin integration
  • Personal keys for each developer
  • Long TTL for convenience

Automated Testing

  • E2E testing with external services
  • Webhook endpoint testing
  • Integration test environments
  • Parallel test runners

Preview Deployments

  • PR preview environments
  • Branch-based tunnels
  • Automatic cleanup on PR close
  • Shareable preview links

Monitoring & Alerts

  • Health check endpoints
  • Webhook receivers
  • External monitoring services
  • Alert routing to local services

Security

Key Security

  • Keys shown once at creation (never stored in plain text)
  • SHA-256 hashed storage in database
  • Cryptographically secure key generation
  • TLS-only key transmission

Access Control

  • Row-level security for key visibility
  • Role-based key creation permissions
  • Audit log for all key operations
  • Automatic expiration enforcement

Plan Comparison

API key capabilities vary by plan. CI/CD tokens with dedicated tunnel slots are available on Pro and Scale plans.

View Pricing Get Started Free

Developer Documentation

Learn how to create and manage API keys programmatically with our API reference.

View Documentation