API Keys for Users and Devices

  • Updated

Introduction

Flywheel provides CLI, SDK, and Connector interfaces for users to accomplish powerful, scriptable, and customizable data and system operations not available in the Web UI. Usage of these interfaces requires authenticating with an API Key, to ensure every request is associated with an authorized User or Device.

 

Note

Flywheel recommends all users update to using Enhanced API Keys for their improved security.

 

Note

Compromised API Keys can be used to impersonate users and devices. If an API Key is inappropriately disclosed, it should be promptly revoked and replaced with a new API Key.

 

Note

Disabling a User account or device interface does not cause API Keys to be revoked, but will cause any use of any corresponding API Keys to be rejected.

 

User API Keys

User API Keys each belong to one and only one user account. All interactions using the User API Key will be logged as originating from the associated user, and only operations that the user has permission to do will be permitted. A user can manage their User API Keys in their User Profile page.

 

Screen_Shot_2023-05-03_at_9.26.11_AM.png

 

User API Keys are commonly used with the Flywheel CLI and SDK.

 

When a Flywheel user account is disabled, all use of that user’s API Keys is rejected .

 

 

Device API Keys

Device API Keys each belong to one and only one device interface. Site Admins manage the registration of authorized devices. All interactions using the Device API Key will be logged as originating from the associated Device, and limited to operations only allowed for devices. Site Admins can manage all registered devices and Device API Keys in the Admin Interfaces page.

 

Screen_Shot_2023-05-03_at_8.55.23_AM.png

 

Device API Keys are commonly used with the Flywheel CLI and Connectors for bulk and/or automated data import.

 

Enhanced vs. Legacy

Enhanced API Keys

Enhanced API Keys are the new and only type of User and Device API Keys that may be created with Flywheel Enterprise version 16.19.0 and later. Enhanced API Keys provide improved storage security, and can support additional future security features, such as expiration & resource scopes. 

 

Legacy API Keys

Legacy API Keys are the type of User and Device API Keys created with Flywheel Enterprise versions prior to 16.19.0. These API Keys are easy to identify in the web UI, can no longer be created, and use of existing Legacy API Keys will not be supported in a future major version update of Flywheel Enterprise.

 

To migrate away from a Legacy API Key:

  1. Confirm your Flywheel version is 16.19.0 or later
  2. Create a new API Key - Learn more about creating API Keys for Users and Devices.
  3. Update any Flywheel CLI, SDK, or custom applications to use the new API Key 

 

 

 

Resources