> ## Documentation Index
> Fetch the complete documentation index at: https://docs.sequenzy.com/llms.txt
> Use this file to discover all available pages before exploring further.

# List API Keys

> List company API keys without exposing secret values

List company-scoped API keys for the selected company. The caller must have the
`api_keys:manage` permission.

The response contains only identification and permission metadata. It never
contains a plain API key, stored key hash, or another recoverable secret.

```bash theme={null}
curl "https://api.sequenzy.com/api/v1/api-keys" \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "x-company-id: company_abc123"
```

## Response

<ResponseExample>
  ```json 200 theme={null}
  {
    "success": true,
    "apiKeys": [
      {
        "id": "key_abc123",
        "name": "SST production handoff",
        "prefix": "seq_live_abcd",
        "type": "company",
        "scopes": ["account:read", "subscribers:read"],
        "permissions": {
          "preset": "custom",
          "fullAccess": false,
          "selectedScopeCount": 2,
          "currentScopeCount": 63,
          "description": "2 of 63 current permissions are enabled."
        },
        "deviceName": null,
        "lastUsedAt": null,
        "createdAt": "2026-07-17T10:30:00Z",
        "updatedAt": "2026-07-17T10:30:00Z",
        "isCurrent": false
      }
    ]
  }
  ```

  Use `id`, `name`, `prefix`, and `isCurrent` to verify the exact credential
  before revoking it.

  ```json 403 theme={null}
  {
    "error": "API key is missing required scope: api_keys:manage"
  }
  ```
</ResponseExample>
