Settings
Manage API Keys
Create and manage API keys for your SignatureAPI account.
API keys connect your application to your SignatureAPI account. Every request to the API requires a key, and the key determines whether the request runs in test mode or live mode.
To manage your API keys, go to Settings > API Keys in the Dashboard.
For technical details on how authentication works, see Authentication.
Test and live keys
SignatureAPI provides two types of API keys:
| Type | Prefix | Purpose |
|---|---|---|
| Test | key_test_... | Build and test your integration without sending real documents |
| Live | key_live_... | Send legally binding documents in production |
Test keys are free to use. Envelopes created with a test key don’t send emails to recipients and are not legally binding. Use test keys while setting up your integration.
Live keys create real envelopes that send emails and produce legally binding documents. Use live keys only when you’re ready to go to production.
Creating an API key
Open the API Keys page
Go to Settings > API Keys and click Create API Key.
Give the key a description
Enter a name or description to help you remember what this key is for. This is especially helpful if you have multiple keys.
Copy the key
The new key is displayed once. Copy it and store it in a safe place. You won't be able to see the full key again.
Revoking an API key
To revoke a key, go to Settings > API Keys, find the key you want to revoke, and click Revoke.
Revoking a key is permanent and takes effect immediately. Any application using that key will stop working. Existing envelopes are not affected.
Keeping your keys safe
- Never share API keys in public repositories, emails, or client-side code.
- Store keys in environment variables or a secrets manager.
- Use test keys during development and keep live keys restricted to production systems.
- Revoke any key you suspect has been exposed and create a new one.