Revoke an API key
Alpha
DELETE
https://api.voxrouter.ai/v1/keys/{id}Soft-delete (sets `is_active=false`) an API key by id. CREATOR- scoped: only the user that minted the key can revoke it, even within the same organization. Requires a `vr_session_*` token from `voxrouter login`. Returns 404 if the id doesn't exist or doesn't belong to the caller.
bash
curl -X DELETE https://api.voxrouter.ai/v1/keys/{id} \
-H "Authorization: Bearer $VOXROUTER_API_KEY"Headers
AuthorizationstringRequiredBearer token. Send as
Authorization: Bearer pk_....Response
Key revoked.
json
{
"deleted": false
}deletedbooleanRequiredAlways `true` on success; the endpoint returns 404 otherwise.
Errors
Non-2xx responses return a JSON body with a machine-readable error code and an optional details string.
| Status | Meaning |
|---|---|
| 400 | Request body failed validation or model string is malformed. |
| 401 | Missing or invalid API key. |
| 403 | The caller belongs to more than one organization, so org scope cannot be inferred. The CLI must select an org explicitly with `voxrouter org use <slug>` before retrying. |
| 404 | Key id is unknown or doesn't belong to the caller. |