Overview
API keys enable secure access to Honeydew’s API and integrations, allowing you to:- Connect BI tools and other services to your Honeydew instance
- Execute queries and retrieve data programmatically
- Maintain audit trails for compliance and security
It is recommended to restrict API keys use to specific IP addresses or ranges,
by using the IP Access Control feature.
To set up IP Access Control, please contact support@honeydew.ai.
API Key Types
Organization-Level API Keys
What they are: Single API keys that provide access for your entire organization Who can create: Organization administrators Access level: Organization-wide access with assigned roles Use cases:- Simple integrations: When you are not required to track individual users’ access and actions
- Service accounts: For automated processes or system integrations
- Team-wide access: When multiple users share the same access level
- Quick setup: For initial integration testing and development
Per-User API Keys
What they are: Individual API keys for each user in your organization Who can create: Organization administrators or individual users (configurable) Access level: User-specific access with individual tracking. The key assumes the role of the user it is assigned to. Use cases:- Individual user identification: When you need to identify which specific user made each query
- Per-user Snowflake credentials: Integration with OAuth or other per-user authentication
- Compliance requirements: Organizations needing detailed audit trails per user
- Granular access control: Different access levels for different users
Configuration Modes
Per-user API keys support two operational modes:Admin-Only Mode
- Only administrators can create API keys for users
- Centralized control over key distribution
- Higher security with administrative oversight
User Self-Service Mode
- Users can create and manage their own API keys
- Distributed access with individual responsibility
- Suitable for organizations with independent user access needs
Setup Instructions
Contact support@honeydew.ai to enable per-user API keys for your organization.
Organization-Level API Keys
- Navigate to Settings → API Keys in the Honeydew application
- Select Create API Key
- Create a descriptive name for the API key
- Assign the appropriate role (Admin, Editor, or Viewer - see User Roles)
- Generate and securely store the API key
Per-User API Keys
For Admin-Only Mode:- Administrators navigate to Settings → API Keys
- Select Create API Key
- Choose the user for whom the API key is being created
- Generate and securely distribute the API key
- Users navigate to Settings → API Keys
- Select Create API Key (per-user option available)
- Generate and securely store the personal API key
Security Best Practices
- Key Rotation: Regularly rotate API keys
- Principle of Least Privilege: Assign minimal necessary roles
- Secure Storage: Store keys securely and never share them
- Access Review: Regularly review active API keys and usage