AlertEvents
AlertFields
AlertGroups
AlertRoutes
AlertRoutingRules
AlertUrgencies
AlertSources
Alerts
API Keys
Audits
Authorizations
Catalog Checklist Templates
CatalogEntities
Catalog Entity Checklists
CatalogEntityProperties
CatalogProperties
Catalogs
Causes
Communications Groups
Communications Stages
Communications Templates
Communications Types
[DEPRECATED] CustomFieldOptions
[DEPRECATED] CustomFields
CustomForms
DashboardPanels
Dashboards
Edge Connector Actions
Edge Connectors
Environments
EscalationPolicies
EscalationLevelsPolicies
EscalationLevelsPath
EscalationLevels
EscalationPaths
FormFieldOptions
FormFieldPlacementConditions
FormFieldPlacements
FormFieldPositions
FormFields
FormSetConditions
FormSets
Functionalities
WorkflowTasks
[DEPRECATED] WorkflowCustomFieldSelections
- GET[DEPRECATED] List workflow custom field selectionsdeprecated
- POST[DEPRECATED] Creates a workflow custom field selectiondeprecated
- GET[DEPRECATED] Retrieves a workflow custom field selectiondeprecated
- PUT[DEPRECATED] Update a workflow custom field selectiondeprecated
- DEL[DEPRECATED] Delete a workflow custom field selectiondeprecated
WorkflowFormFieldConditions
WorkflowGroups
WorkflowRuns
Workflows
Heartbeats
IncidentActionItems
[DEPRECATED] IncidentCustomFieldSelections
- GET[DEPRECATED] List incident custom field selectionsdeprecated
- POST[DEPRECATED] Creates an incident custom field selectiondeprecated
- GET[DEPRECATED] Retrieves an incident custom field selectiondeprecated
- PUT[DEPRECATED] Update an incident custom field selectiondeprecated
- DEL[DEPRECATED] Delete an incident custom field selectiondeprecated
IncidentEventFunctionalities
IncidentEventServices
IncidentEvents
IncidentFeedbacks
IncidentFormFieldSelections
IncidentPermissionSetBooleans
IncidentPermissionSetResources
IncidentPermissionSets
IncidentRetrospectives
IncidentRetrospectiveSteps
IncidentRoleTasks
IncidentRoles
IncidentStatusPageEvents
IncidentSubStatuses
IncidentTypes
Incidents
- GETList incidents
- POSTCreates an incident
- GETRetrieves an incident
- PUTUpdate an incident
- DELDelete an incident
- PUTMitigate an incident
- PUTResolve an incident
- PUTCancel an incident
- PUTTriage an incident
- PUTRestart an incident
- PUTMark an incident as a duplicate
- PUTDetach an incident from its parent
- PUTRemove duplicate marking from an incident
- POSTAdd subscribers to incident
- DELRemove subscribers from incident
- POSTAssign user to incident
- DELRemove assigned user from incident
IpRanges
LiveCallRouters
OnCallPayReports
OnCallRoles
OnCallShadows
OverrideShifts
OnCalls
PlaybookTasks
Playbooks
RetrospectiveTemplates
RetrospectiveConfigurations
RetrospectiveProcessGroupSteps
RetrospectiveProcessGroups
RetrospectiveProcesses
RetrospectiveSteps
ScheduleRotationActiveDays
ScheduleRotationUsers
ScheduleRotations
Schedules
Services
Severities
StatusPageTemplates
StatusPages
SubStatuses
Teams
UserEmailAddresses
UserNotificationRules
UserPhoneNumbers
WebhooksDeliveries
API Keys
Rotate an API key
Rotate an API key’s token. Issues a new secret token and returns it — the new token is only shown once, so store it securely.
Self-only: You can only rotate the API key that was used to authenticate this request. Attempting to rotate a different key returns 403 Forbidden.
Grace period: When enabled for your organization, the previous token remains valid after rotation, giving you time to deploy the new token without downtime. Pass grace_period_minutes (integer, 0–1440, default 30) to control how long the old token stays valid. Set to 0 to immediately invalidate the old token. The grace_period_ends_at field in the response confirms the exact time the old token will stop working.
Expiration: Optionally provide a new expires_at date (ISO 8601, up to 5 years). Defaults to 90 days from now if omitted. Dates in the past are rejected.
Typical rotation workflow:
- Call this endpoint to get a new token (optionally with a custom
grace_period_minutes). - Deploy the new token to your systems.
- The old token continues working for
grace_period_minutes(if grace period is enabled). - After the grace period, the old token is automatically invalidated.
POST
/
v1
/
api_keys
/
{id}
/
rotate
Rotate an API key
curl --request POST \
--url https://api.rootly.com/v1/api_keys/{id}/rotate \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/vnd.api+json' \
--data '
{
"data": {
"type": "api_keys",
"attributes": {
"expires_at": "2023-11-07T05:31:56Z",
"grace_period_minutes": 30
}
}
}
'{
"data": {
"id": "<string>",
"type": "api_keys",
"attributes": {
"name": "<string>",
"kind": "personal",
"created_at": "<string>",
"updated_at": "<string>",
"token": "<string>",
"description": "<string>",
"role_id": "<string>",
"on_call_role_id": "<string>",
"expires_at": "<string>",
"last_used_at": "<string>",
"grace_period_ends_at": "<string>"
}
}
}Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Path Parameters
Body
application/vnd.api+json
Show child attributes
Show child attributes
Response
API key rotated
Show child attributes
Show child attributes
Was this page helpful?
⌘I
Rotate an API key
curl --request POST \
--url https://api.rootly.com/v1/api_keys/{id}/rotate \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/vnd.api+json' \
--data '
{
"data": {
"type": "api_keys",
"attributes": {
"expires_at": "2023-11-07T05:31:56Z",
"grace_period_minutes": 30
}
}
}
'{
"data": {
"id": "<string>",
"type": "api_keys",
"attributes": {
"name": "<string>",
"kind": "personal",
"created_at": "<string>",
"updated_at": "<string>",
"token": "<string>",
"description": "<string>",
"role_id": "<string>",
"on_call_role_id": "<string>",
"expires_at": "<string>",
"last_used_at": "<string>",
"grace_period_ends_at": "<string>"
}
}
}