admin Tested: December 28, 2025

API Keys

Secure API key management for programmatic access, supporting role-based permissions and broker-scoped authentication.

adminapiauthenticationsecurityintegration
API Keys

Overview

The API Keys page provides secure management of authentication tokens for programmatic API access. Keys can be scoped to specific brokers with role-based permissions, enabling secure third-party integrations and automated workflows.

Key Features

API Keys Table

Each key displays:

  • Key: Friendly name and masked key prefix (hure_xxx•••)
  • Role: Permission level (Admin, Partner)
  • Broker: Associated brokerage or “Global” for admin keys
  • Status: Active or Revoked badge
  • Last Used: Most recent API call timestamp
  • Created: Key creation date
  • Actions: Revoke button for active keys

Create Key

Button to generate new API keys with:

  • Descriptive name for identification
  • Role selection (Admin or Partner)
  • Broker association (for Partner keys)
  • One-time display of full key value

Show Revoked Keys

Toggle to display previously revoked keys for audit purposes.

Key Roles

RolePermissions
AdminFull API access across all resources
PartnerScoped to associated broker’s data only

Admin Keys

  • Global scope (not tied to specific broker)
  • Full read/write access to all endpoints
  • Used for internal automation and admin tools

Partner Keys

  • Scoped to a specific brokerage
  • Access limited to broker’s own data
  • Ideal for broker integrations and CRM sync

Security Features

Key Format

All keys follow the pattern: hure_[random]

  • Prefix identifies HURE keys in logs
  • Random suffix provides cryptographic security
  • Partial display (•••) protects key values

Revocation

  • Instant revocation with single click
  • Revoked keys cannot be reactivated
  • Historical record maintained for audit

Usage Tracking

  • Last Used timestamp updates on each API call
  • Helps identify unused keys for cleanup
  • Supports security auditing

Integration Use Cases

CRM Integration

Partner keys enable brokers to sync lead data with their existing CRM systems.

Automated Reporting

Admin keys power scheduled data exports and analytics dashboards.

Third-Party Tools

Partner keys provide secure access for authorized vendor integrations.

Testing Results

  • ✅ All 3 API keys display correctly
  • ✅ Role badges show correct styling
  • ✅ Broker associations display accurately
  • ✅ Status badges reflect key state
  • ✅ Last used timestamps update properly
  • ✅ Revoke action prompts confirmation
  • ✅ Create key generates secure tokens
Back to All Features View Live Site