Manage & Operate
Manage credentials
API keys, service accounts, and credential rotation for your Agenetix organization.
Agenetix supports multiple credential types for different access patterns.
Credential types#
| Type | Best for | Lifetime |
|---|---|---|
| API key | Programmatic server config updates, CI/CD | Long-lived, rotatable |
| Dashboard login | Interactive users | Browser session |
| OAuth token (coming soon) | CLI interactive login | Short-lived + refresh |
| Service account token (coming soon) | Headless automation | Scoped, time-bound |
API keys#
API keys let you update MCP server configurations programmatically. Each key is scoped to your organization and has its own permissions.
Create an API key#
- Go to Settings > API Keys
- Click Create API Key
- Name it and set an optional expiry date
- Copy the full key — it is only shown once
Use the key in requests with the X-API-Key header.
Rotate a key#
- Create a new key
- Update your systems to use the new key
- Revoke the old key
Revoke a key#
Revoking a key immediately invalidates it. Any in-flight requests using the key will fail. This is useful if a key is compromised.
Upstream API credentials#
When your generated MCP server needs to authenticate with your upstream API (e.g. OAuth client credentials, API keys), those credentials are configured in the server's Auth settings — they are stored securely in Agenetix and never exposed to the CLI or SDK.
Audit trail#
All credential operations (create, rotate, revoke, use) are recorded in the audit log with timestamps and actor identity.