From c9f73d516400f669c812c8f77b3574b71edc5436 Mon Sep 17 00:00:00 2001
From: Gautam25Raj <ashragautam25@gmail.com>
Date: Tue, 19 May 2026 02:30:49 +0530
Subject: [PATCH] feat(api-keys): add API key management components and hooks

- Introduced new components for creating and managing API keys, including forms and detail views.
- Implemented hooks for API key creation and fetching, enhancing state management and user interactions.
- Added types for API key records and pagination to improve type safety and clarity.
- Created utility functions for handling API key details and formatting.
- Enhanced UI with new cards, buttons, and badges for better user experience.
- Implemented actions for rotating, revoking, and deleting API keys with appropriate feedback.
---
 .../src/controllers/apiKeyController.ts       |  32 ++-
 apps/server/src/routes/apiKeys.ts             |   4 +-
 apps/server/src/services/apiKeyService.ts     |  56 +++--
 .../(main)/(dashboard)/api-keys/[id]/page.tsx |  52 ++++
 .../(dashboard)/api-keys/create/page.tsx      |  57 +++++
 .../app/(main)/(dashboard)/api-keys/page.tsx  | 102 ++++++++
 .../(main)/(dashboard)/dashboard/error.tsx    |  49 ----
 apps/studio/app/(main)/editor/[id]/error.tsx  |  42 ----
 .../studio/app/(main)/editor/[id]/loading.tsx |  12 -
 .../app/(main)/editor/[id]/not-found.tsx      |  38 ---
 .../app/(main)/editor/[id]/preview/error.tsx  |  40 ---
 .../(main)/editor/[id]/preview/loading.tsx    |  10 -
 .../(main)/editor/[id]/preview/not-found.tsx  |  37 ---
 .../api-keys/components/ApiKeyList.tsx        | 227 +++++++++++++++++
 .../api-keys/components/ApiKeyRotateModal.tsx | 236 ++++++++++++++++++
 .../api-keys/components/ApiKeyScopes.ts       | 103 ++++++++
 .../api-keys/components/ApiKeySection.tsx     | 107 ++++++++
 .../api-keys/components/ApiKeyTypes.ts        |  44 ++++
 .../components/GeneratedApiKeyCard.tsx        |  44 ++++
 .../components/create/ApiKeyCreateClient.tsx  |  48 ++++
 .../components/create/ApiKeyDetailsForm.tsx   |  84 +++++++
 .../components/create/ApiKeyScopeRail.tsx     | 106 ++++++++
 .../create/ApiKeySelectedScopes.tsx           |  79 ++++++
 .../details/ApiKeyDetailActions.tsx           |  58 +++++
 .../components/details/ApiKeyDetailHeader.tsx |  71 ++++++
 .../details/ApiKeyDetailOverview.tsx          |  48 ++++
 .../components/details/ApiKeyDetailScopes.tsx |  65 +++++
 .../components/details/ApiKeyDetailView.tsx   | 182 ++++++++++++++
 .../details/api-key-detail-utils.ts           |  20 ++
 .../api-keys/hooks/useApiKeyCreate.ts         | 109 ++++++++
 .../features/api-keys/hooks/useApiKeys.ts     | 201 +++++++++++++++
 .../advanced/AdvancedProfileClient.tsx        |   7 +-
 .../advanced/AdvancedProfilePanels.tsx        |   4 +-
 packages/ui/src/components/ui/Checkbox.tsx    |   3 -
 packages/ui/src/components/ui/Input.tsx       |   2 +-
 35 files changed, 2120 insertions(+), 259 deletions(-)
 create mode 100644 apps/studio/app/(main)/(dashboard)/api-keys/[id]/page.tsx
 create mode 100644 apps/studio/app/(main)/(dashboard)/api-keys/create/page.tsx
 create mode 100644 apps/studio/app/(main)/(dashboard)/api-keys/page.tsx
 delete mode 100644 apps/studio/app/(main)/(dashboard)/dashboard/error.tsx
 delete mode 100644 apps/studio/app/(main)/editor/[id]/error.tsx
 delete mode 100644 apps/studio/app/(main)/editor/[id]/loading.tsx
 delete mode 100644 apps/studio/app/(main)/editor/[id]/not-found.tsx
 delete mode 100644 apps/studio/app/(main)/editor/[id]/preview/error.tsx
 delete mode 100644 apps/studio/app/(main)/editor/[id]/preview/loading.tsx
 delete mode 100644 apps/studio/app/(main)/editor/[id]/preview/not-found.tsx
 create mode 100644 apps/studio/features/api-keys/components/ApiKeyList.tsx
 create mode 100644 apps/studio/features/api-keys/components/ApiKeyRotateModal.tsx
 create mode 100644 apps/studio/features/api-keys/components/ApiKeyScopes.ts
 create mode 100644 apps/studio/features/api-keys/components/ApiKeySection.tsx
 create mode 100644 apps/studio/features/api-keys/components/ApiKeyTypes.ts
 create mode 100644 apps/studio/features/api-keys/components/GeneratedApiKeyCard.tsx
 create mode 100644 apps/studio/features/api-keys/components/create/ApiKeyCreateClient.tsx
 create mode 100644 apps/studio/features/api-keys/components/create/ApiKeyDetailsForm.tsx
 create mode 100644 apps/studio/features/api-keys/components/create/ApiKeyScopeRail.tsx
 create mode 100644 apps/studio/features/api-keys/components/create/ApiKeySelectedScopes.tsx
 create mode 100644 apps/studio/features/api-keys/components/details/ApiKeyDetailActions.tsx
 create mode 100644 apps/studio/features/api-keys/components/details/ApiKeyDetailHeader.tsx
 create mode 100644 apps/studio/features/api-keys/components/details/ApiKeyDetailOverview.tsx
 create mode 100644 apps/studio/features/api-keys/components/details/ApiKeyDetailScopes.tsx
 create mode 100644 apps/studio/features/api-keys/components/details/ApiKeyDetailView.tsx
 create mode 100644 apps/studio/features/api-keys/components/details/api-key-detail-utils.ts
 create mode 100644 apps/studio/features/api-keys/hooks/useApiKeyCreate.ts
 create mode 100644 apps/studio/features/api-keys/hooks/useApiKeys.ts

diff --git a/apps/server/src/controllers/apiKeyController.ts b/apps/server/src/controllers/apiKeyController.ts
index a87be75..9f8dbf8 100644
--- a/apps/server/src/controllers/apiKeyController.ts
+++ b/apps/server/src/controllers/apiKeyController.ts
@@ -5,7 +5,7 @@ import { requireAuthUser } from "#middleware/auth";
 import { ApiKeyService } from "#services/apiKeyService";
 
 import { logger } from "#utils/logger";
-import { createSuccessResponse, createErrorResponse } from "#utils/errors";
+import { ApiError, createSuccessResponse, createErrorResponse } from "#utils/errors";
 import { parseOffsetPagination, createOffsetPaginationMeta } from "#utils/pagination";
 
 const DEFAULT_ALLOWED_SCOPES = [
@@ -32,7 +32,7 @@ function parseScopes(value: unknown) {
   const invalidScopes = scopes.filter((scope) => !DEFAULT_ALLOWED_SCOPES.includes(scope));
 
   if (invalidScopes.length > 0) {
-    throw new Error(`Unsupported API key scope(s): ${invalidScopes.join(", ")}`);
+    throw new ApiError(400, `Unsupported API key scope(s): ${invalidScopes.join(", ")}`);
   }
 
   return scopes;
@@ -48,7 +48,7 @@ function parseRateLimit(value: unknown) {
   const limit = Number(value);
 
   if (!Number.isInteger(limit) || limit < 1) {
-    throw new Error("rateLimit must be a positive integer");
+    throw new ApiError(400, "rateLimit must be a positive integer");
   }
 
   return limit;
@@ -64,7 +64,7 @@ function parseExpiresAt(value: unknown) {
   const parsed = new Date(String(value));
 
   if (Number.isNaN(parsed.getTime())) {
-    throw new Error("expiresAt must be a valid ISO date string");
+    throw new ApiError(400, "expiresAt must be a valid ISO date string");
   }
 
   return parsed;
@@ -97,6 +97,27 @@ export class ApiKeyController {
     }
   }
 
+  /**
+   * Get full details for a single API key.
+   */
+  static async getKey(req: Request, res: Response, next: NextFunction) {
+    try {
+      const userId = requireAuthUser(req).id;
+      const { id } = req.params;
+
+      const apiKey = await ApiKeyService.getKey(userId, id);
+
+      if (!apiKey) {
+        return res.status(404).json(createErrorResponse(404, "API key not found"));
+      }
+
+      res.status(200).json(createSuccessResponse(apiKey, "API key fetched successfully"));
+    } catch (error) {
+      logger.error("Failed to get API key:", error);
+      next(error);
+    }
+  }
+
   /**
    * Generate a new API key for the user.
    */
@@ -148,7 +169,8 @@ export class ApiKeyController {
         expiresAt: parseExpiresAt(expiresAt),
       });
 
-      if (!rotated) return res.status(404).json(createErrorResponse(404, "API key not found"));
+      if (!rotated)
+        return res.status(404).json(createErrorResponse(404, "API key not found or inactive"));
 
       res
         .status(201)
diff --git a/apps/server/src/routes/apiKeys.ts b/apps/server/src/routes/apiKeys.ts
index b0db663..8922ede 100644
--- a/apps/server/src/routes/apiKeys.ts
+++ b/apps/server/src/routes/apiKeys.ts
@@ -10,9 +10,9 @@ router.use(authMiddleware);
 
 router.route("/").get(ApiKeyController.listKeys).post(ApiKeyController.createKey);
 
+router.route("/:id").get(ApiKeyController.getKey).delete(ApiKeyController.deleteKey);
+
 router.post("/:id/rotate", ApiKeyController.rotateKey);
 router.post("/:id/revoke", ApiKeyController.revokeKey);
 
-router.delete("/:id", ApiKeyController.deleteKey);
-
 export default router;
diff --git a/apps/server/src/services/apiKeyService.ts b/apps/server/src/services/apiKeyService.ts
index 0b0c1e0..ac4c479 100644
--- a/apps/server/src/services/apiKeyService.ts
+++ b/apps/server/src/services/apiKeyService.ts
@@ -49,17 +49,10 @@ type ApiKeyAuthRecord = {
 
 type ApiKeyListRecord = {
   id: string;
-  keyPrefix: string;
-  keySuffix: string;
   name: string;
-  userId: string;
+  keyPrefix: string;
   isActive: boolean;
-  rateLimit: number;
-  scopes: string[];
-  expiresAt: Date | null;
-  revokedAt: Date | null;
   createdAt: Date;
-  updatedAt: Date;
   lastUsed: Date | null;
 };
 
@@ -75,7 +68,22 @@ type ApiKeyCreateInput = {
   expiresAt?: Date | null;
 };
 
-type ApiKeyCreateResult = ApiKeyListRecord & { key: string };
+type ApiKeyCreateResult = {
+  id: string;
+  keyPrefix: string;
+  keySuffix: string;
+  name: string;
+  userId: string;
+  isActive: boolean;
+  rateLimit: number;
+  scopes: string[];
+  expiresAt: Date | null;
+  revokedAt: Date | null;
+  createdAt: Date;
+  updatedAt: Date;
+  lastUsed: Date | null;
+  key: string;
+};
 
 type ApiKeyRotateResult = ApiKeyCreateResult & { rotatedFromId: string };
 
@@ -303,16 +311,9 @@ export class ApiKeyService {
         select: {
           id: true,
           keyPrefix: true,
-          keySuffix: true,
           name: true,
-          userId: true,
           isActive: true,
-          rateLimit: true,
-          scopes: true,
-          expiresAt: true,
-          revokedAt: true,
           createdAt: true,
-          updatedAt: true,
           lastUsed: true,
         },
       }),
@@ -322,6 +323,27 @@ export class ApiKeyService {
     return { items: items satisfies ApiKeyListRecord[], total };
   }
 
+  static async getKey(userId: string, keyId: string) {
+    return prisma.apiKey.findFirst({
+      where: { id: keyId, userId },
+      select: {
+        id: true,
+        keyPrefix: true,
+        keySuffix: true,
+        name: true,
+        userId: true,
+        isActive: true,
+        rateLimit: true,
+        scopes: true,
+        expiresAt: true,
+        revokedAt: true,
+        createdAt: true,
+        updatedAt: true,
+        lastUsed: true,
+      },
+    });
+  }
+
   static async revokeKey(userId: string, keyId: string) {
     const existing = await prisma.apiKey.findFirst({
       where: { id: keyId, userId },
@@ -352,7 +374,7 @@ export class ApiKeyService {
     input: Partial<ApiKeyCreateInput> = {},
   ): Promise<ApiKeyRotateResult | null> {
     const current = await prisma.apiKey.findFirst({
-      where: { id: keyId, userId },
+      where: { id: keyId, userId, isActive: true, revokedAt: null },
       select: {
         id: true,
         keyHash: true,
diff --git a/apps/studio/app/(main)/(dashboard)/api-keys/[id]/page.tsx b/apps/studio/app/(main)/(dashboard)/api-keys/[id]/page.tsx
new file mode 100644
index 0000000..10932d8
--- /dev/null
+++ b/apps/studio/app/(main)/(dashboard)/api-keys/[id]/page.tsx
@@ -0,0 +1,52 @@
+import type { Metadata } from "next";
+
+import { headers } from "next/headers";
+import { notFound } from "next/navigation";
+
+import type { ApiKeyDetailRecord } from "@/features/api-keys/components/ApiKeyTypes";
+
+import { backendApiUrl } from "@/lib/constants";
+
+import ApiKeyDetailView from "@/features/api-keys/components/details/ApiKeyDetailView";
+
+export const metadata: Metadata = {
+  title: "API Key Details",
+  robots: { index: false, follow: false },
+};
+
+async function fetchKeyDetails(id: string): Promise<ApiKeyDetailRecord | null> {
+  try {
+    const requestHeaders = await headers();
+    const cookie = requestHeaders.get("cookie");
+
+    const response = await fetch(backendApiUrl(`/api-keys/${id}`), {
+      method: "GET",
+      cache: "no-store",
+      headers: {
+        "Content-Type": "application/json",
+        ...(cookie ? { cookie } : {}),
+      },
+    });
+
+    if (!response.ok) {
+      return null;
+    }
+
+    const json = await response.json();
+    return json.data as ApiKeyDetailRecord;
+  } catch {
+    return null;
+  }
+}
+
+export default async function ApiKeyPage({ params }: { params: Promise<{ id: string }> }) {
+  const { id } = await params;
+
+  const keyDetails = await fetchKeyDetails(id);
+
+  if (!keyDetails) {
+    notFound();
+  }
+
+  return <ApiKeyDetailView initialData={keyDetails} />;
+}
diff --git a/apps/studio/app/(main)/(dashboard)/api-keys/create/page.tsx b/apps/studio/app/(main)/(dashboard)/api-keys/create/page.tsx
new file mode 100644
index 0000000..8aa8b84
--- /dev/null
+++ b/apps/studio/app/(main)/(dashboard)/api-keys/create/page.tsx
@@ -0,0 +1,57 @@
+import type { Metadata } from "next";
+import type { LucideIcon } from "lucide-react";
+
+import Link from "next/link";
+import { ArrowLeft, Settings } from "lucide-react";
+
+import ApiKeyCreateClient from "@/features/api-keys/components/create/ApiKeyCreateClient";
+
+export const metadata: Metadata = {
+  title: "Create API Key",
+  description: "Create a scoped VeriWorkly API key.",
+  robots: { index: false, follow: false },
+};
+
+export default function CreateApiKeyPage() {
+  return (
+    <main className="space-y-6" aria-labelledby="create-api-key-title">
+      <section className="border-border bg-card overflow-hidden rounded-2xl border">
+        <div className="grid gap-0 lg:grid-cols-[minmax(0,1fr)_20rem]">
+          <div className="p-5 sm:p-6">
+            <p className="text-accent text-xs font-bold tracking-[0.2em] uppercase">API keys</p>
+
+            <h1
+              id="create-api-key-title"
+              className="mt-3 text-3xl font-black tracking-tight sm:text-4xl"
+            >
+              Create key
+            </h1>
+
+            <p className="text-muted mt-2 max-w-2xl text-base">
+              Pick exact scopes first, then generate one secret token.
+            </p>
+          </div>
+
+          <div className="border-border/70 grid gap-3 border-t p-5 lg:border-t-0 lg:border-l">
+            <QuickLink href="/api-keys" icon={ArrowLeft} label="Back to keys" />
+            <QuickLink href="/settings" icon={Settings} label="Settings" />
+          </div>
+        </div>
+      </section>
+
+      <ApiKeyCreateClient />
+    </main>
+  );
+}
+
+function QuickLink({ href, icon: Icon, label }: { href: string; icon: LucideIcon; label: string }) {
+  return (
+    <Link
+      href={href}
+      className="bg-background/70 hover:border-accent/40 flex items-center gap-3 rounded-xl border border-transparent p-3 text-sm font-bold transition"
+    >
+      <Icon className="text-accent h-4 w-4" />
+      {label}
+    </Link>
+  );
+}
diff --git a/apps/studio/app/(main)/(dashboard)/api-keys/page.tsx b/apps/studio/app/(main)/(dashboard)/api-keys/page.tsx
new file mode 100644
index 0000000..e99906e
--- /dev/null
+++ b/apps/studio/app/(main)/(dashboard)/api-keys/page.tsx
@@ -0,0 +1,102 @@
+import type { Metadata } from "next";
+import type { LucideIcon } from "lucide-react";
+
+import { headers } from "next/headers";
+import { KeyRound, ShieldCheck } from "lucide-react";
+
+import { backendApiUrl } from "@/lib/constants";
+
+import type {
+  ApiKeyRecord,
+  OffsetPaginationPayload,
+} from "@/features/api-keys/components/ApiKeyTypes";
+
+import ApiKeySection from "@/features/api-keys/components/ApiKeySection";
+
+export const metadata: Metadata = {
+  title: "API Keys",
+  description: "Create and manage API keys for VeriWorkly integrations.",
+  robots: { index: false, follow: false },
+};
+
+async function fetchInitialApiKeys() {
+  try {
+    const requestHeaders = await headers();
+    const cookie = requestHeaders.get("cookie");
+
+    const response = await fetch(backendApiUrl("/api-keys"), {
+      method: "GET",
+      cache: "no-store",
+      headers: {
+        "Content-Type": "application/json",
+        ...(cookie ? { cookie } : {}),
+      },
+    });
+
+    if (!response.ok) {
+      return { keys: [] as ApiKeyRecord[], pagination: null, loaded: false };
+    }
+
+    const payload = (await response.json()) as { data?: OffsetPaginationPayload<ApiKeyRecord> };
+
+    return {
+      keys: payload.data?.items ?? [],
+      pagination: payload.data ?? null,
+      loaded: true,
+    };
+  } catch {
+    return { keys: [] as ApiKeyRecord[], pagination: null, loaded: false };
+  }
+}
+
+function Metric({ icon: Icon, label, value }: { icon: LucideIcon; label: string; value: string }) {
+  return (
+    <div className="bg-background/70 rounded-xl p-4">
+      <div className="text-muted flex items-center gap-2 text-[11px] font-bold tracking-wider uppercase">
+        <Icon className="h-3.5 w-3.5" />
+        {label}
+      </div>
+      <p className="mt-2 text-2xl font-black">{value}</p>
+    </div>
+  );
+}
+
+const ApiKeysPage = async () => {
+  const initialApiKeys = await fetchInitialApiKeys();
+
+  const total = initialApiKeys.pagination?.total ?? initialApiKeys.keys.length;
+  const active = initialApiKeys.keys.filter((key) => key.isActive).length;
+
+  return (
+    <main className="space-y-6" aria-labelledby="api-keys-title">
+      <section className="border-border bg-card grid gap-0 overflow-hidden rounded-2xl border lg:grid-cols-[minmax(0,1fr)_24rem]">
+        <div className="p-5 sm:p-6">
+          <p className="text-accent text-xs font-bold tracking-[0.2em] uppercase">API keys</p>
+
+          <h1 id="api-keys-title" className="mt-3 text-3xl font-black tracking-tight sm:text-4xl">
+            Developer access
+          </h1>
+
+          <p className="text-muted mt-2 max-w-2xl text-base">
+            Review existing tokens before creating another. Rotate keys when access changes.
+          </p>
+        </div>
+
+        <div className="border-border/70 grid gap-3 border-t p-5 sm:grid-cols-2 lg:border-t-0 lg:border-l">
+          <Metric icon={KeyRound} label="Total keys" value={total.toString()} />
+          <Metric icon={ShieldCheck} label="Active keys" value={active.toString()} />
+        </div>
+      </section>
+
+      <section className="border-border bg-card rounded-2xl border p-5 sm:p-6">
+        <ApiKeySection
+          initialKeys={initialApiKeys.keys}
+          initialKeysLoaded={initialApiKeys.loaded}
+          initialPagination={initialApiKeys.pagination}
+        />
+      </section>
+    </main>
+  );
+};
+
+export default ApiKeysPage;
diff --git a/apps/studio/app/(main)/(dashboard)/dashboard/error.tsx b/apps/studio/app/(main)/(dashboard)/dashboard/error.tsx
deleted file mode 100644
index 73d2f49..0000000
--- a/apps/studio/app/(main)/(dashboard)/dashboard/error.tsx
+++ /dev/null
@@ -1,49 +0,0 @@
-"use client";
-
-import { Button } from "@veriworkly/ui";
-
-export default function DashboardPageError({
-  reset,
-}: {
-  error: Error & { digest?: string };
-  reset: () => void;
-}) {
-  return (
-    <div className="space-y-6 py-8">
-      <section className="border-border bg-card relative overflow-hidden rounded-3xl border p-6 sm:p-8">
-        <div className="bg-accent/10 absolute -top-14 right-0 h-44 w-44 rounded-full blur-2xl" />
-        <div className="relative">
-          <p className="text-accent text-xs font-semibold tracking-[0.2em] uppercase">
-            Resume Workspace
-          </p>
-
-          <h1 className="text-foreground mt-2 text-2xl font-semibold tracking-tight sm:text-3xl">
-            We could not load your resumes
-          </h1>
-
-          <p className="text-muted mt-2 max-w-xl text-sm leading-6">
-            Browser storage may be blocked or temporarily unavailable. Retry this view, or open
-            templates to start a fresh resume.
-          </p>
-
-          <div className="mt-6 flex flex-wrap items-center gap-3">
-            <Button onClick={() => reset()}>Retry</Button>
-
-            <Button variant="secondary" onClick={() => (window.location.href = "/templates")}>
-              Browse Templates
-            </Button>
-          </div>
-        </div>
-      </section>
-
-      <section className="grid gap-4 md:grid-cols-2 xl:grid-cols-3">
-        {Array.from({ length: 3 }).map((_, index) => (
-          <div
-            key={index}
-            className="border-border bg-card/70 h-40 rounded-3xl border border-dashed"
-          />
-        ))}
-      </section>
-    </div>
-  );
-}
diff --git a/apps/studio/app/(main)/editor/[id]/error.tsx b/apps/studio/app/(main)/editor/[id]/error.tsx
deleted file mode 100644
index 3f0bf70..0000000
--- a/apps/studio/app/(main)/editor/[id]/error.tsx
+++ /dev/null
@@ -1,42 +0,0 @@
-"use client";
-
-import { Button } from "@veriworkly/ui";
-
-export default function EditorByIdError({
-  reset,
-}: {
-  error: Error & { digest?: string };
-  reset: () => void;
-}) {
-  return (
-    <div className="space-y-4 py-2">
-      <div className="border-border bg-card rounded-3xl border p-4">
-        <p className="text-accent text-xs font-semibold tracking-[0.24em] uppercase">
-          Resume Editor
-        </p>
-
-        <h1 className="text-foreground mt-2 text-2xl font-semibold tracking-tight sm:text-3xl">
-          This resume could not be opened
-        </h1>
-
-        <p className="text-muted mt-2 max-w-2xl text-sm leading-6">
-          The draft may be unavailable in this browser session. Retry, or go back to dashboard to
-          choose another resume.
-        </p>
-
-        <div className="mt-5 flex flex-wrap items-center gap-3">
-          <Button onClick={() => reset()}>Retry</Button>
-
-          <Button variant="secondary" onClick={() => (window.location.href = "/")}>
-            Dashboard
-          </Button>
-        </div>
-      </div>
-
-      <div className="grid gap-4 xl:grid-cols-[minmax(0,420px)_minmax(0,1fr)]">
-        <div className="border-border bg-card/70 h-[68vh] rounded-3xl border border-dashed" />
-        <div className="border-border bg-card/70 h-[68vh] rounded-3xl border border-dashed" />
-      </div>
-    </div>
-  );
-}
diff --git a/apps/studio/app/(main)/editor/[id]/loading.tsx b/apps/studio/app/(main)/editor/[id]/loading.tsx
deleted file mode 100644
index 59a82ac..0000000
--- a/apps/studio/app/(main)/editor/[id]/loading.tsx
+++ /dev/null
@@ -1,12 +0,0 @@
-export default function EditorByIdLoading() {
-  return (
-    <div className="space-y-4 py-2">
-      <div className="border-border bg-card h-20 animate-pulse rounded-3xl border" />
-
-      <div className="grid gap-4 xl:grid-cols-[minmax(0,420px)_minmax(0,1fr)]">
-        <div className="border-border bg-card h-[68vh] animate-pulse rounded-3xl border" />
-        <div className="border-border bg-card h-[68vh] animate-pulse rounded-3xl border" />
-      </div>
-    </div>
-  );
-}
diff --git a/apps/studio/app/(main)/editor/[id]/not-found.tsx b/apps/studio/app/(main)/editor/[id]/not-found.tsx
deleted file mode 100644
index 73e56b3..0000000
--- a/apps/studio/app/(main)/editor/[id]/not-found.tsx
+++ /dev/null
@@ -1,38 +0,0 @@
-import Link from "next/link";
-
-import { Button } from "@veriworkly/ui";
-
-export default function EditorByIdNotFound() {
-  return (
-    <div className="space-y-4 py-2">
-      <div className="border-border bg-card rounded-3xl border p-4">
-        <p className="text-accent text-xs font-semibold tracking-[0.24em] uppercase">
-          Resume Editor
-        </p>
-
-        <h1 className="text-foreground mt-2 text-2xl font-semibold tracking-tight sm:text-3xl">
-          Resume not found
-        </h1>
-
-        <p className="text-muted mt-2 max-w-2xl text-sm leading-6">
-          This resume link is invalid or the draft is not available in the current browser storage.
-        </p>
-
-        <div className="mt-5 flex flex-wrap items-center gap-3">
-          <Button asChild variant="primary">
-            <Link href="/">Go to Dashboard</Link>
-          </Button>
-
-          <Button asChild variant="ghost">
-            <Link href="/templates">View Templates</Link>
-          </Button>
-        </div>
-      </div>
-
-      <div className="grid gap-4 xl:grid-cols-[minmax(0,420px)_minmax(0,1fr)]">
-        <div className="border-border bg-card/70 h-[68vh] rounded-3xl border border-dashed" />
-        <div className="border-border bg-card/70 h-[68vh] rounded-3xl border border-dashed" />
-      </div>
-    </div>
-  );
-}
diff --git a/apps/studio/app/(main)/editor/[id]/preview/error.tsx b/apps/studio/app/(main)/editor/[id]/preview/error.tsx
deleted file mode 100644
index ed7bd90..0000000
--- a/apps/studio/app/(main)/editor/[id]/preview/error.tsx
+++ /dev/null
@@ -1,40 +0,0 @@
-"use client";
-
-import { Button } from "@veriworkly/ui";
-
-export default function EditorPreviewError({
-  reset,
-}: {
-  error: Error & { digest?: string };
-  reset: () => void;
-}) {
-  return (
-    <div className="space-y-6 px-4 py-6 sm:px-6 lg:px-8">
-      <div className="border-border bg-card rounded-2xl border p-4">
-        <p className="text-accent text-xs font-semibold tracking-[0.24em] uppercase">
-          Resume Preview
-        </p>
-
-        <h1 className="text-foreground mt-2 text-2xl font-semibold tracking-tight sm:text-3xl">
-          We could not render this preview
-        </h1>
-
-        <p className="text-muted mt-2 max-w-2xl text-sm leading-6">
-          Try rendering the preview again or return to the editor route.
-        </p>
-
-        <div className="mt-5 flex flex-wrap items-center gap-3">
-          <Button onClick={() => reset()}>Try again</Button>
-
-          <Button variant="secondary" onClick={() => (window.location.href = "/")}>
-            Dashboard
-          </Button>
-        </div>
-      </div>
-
-      <div className="border-border bg-card rounded-3xl border p-4 md:p-6">
-        <div className="bg-border border-border h-[62vh] w-full rounded-2xl border border-dashed" />
-      </div>
-    </div>
-  );
-}
diff --git a/apps/studio/app/(main)/editor/[id]/preview/loading.tsx b/apps/studio/app/(main)/editor/[id]/preview/loading.tsx
deleted file mode 100644
index 3be1e6b..0000000
--- a/apps/studio/app/(main)/editor/[id]/preview/loading.tsx
+++ /dev/null
@@ -1,10 +0,0 @@
-export default function EditorPreviewLoading() {
-  return (
-    <div className="space-y-6 px-4 py-6 sm:px-6 lg:px-8">
-      <div className="border-border bg-card h-20 animate-pulse rounded-2xl border" />
-      <div className="border-border bg-card space-y-4 rounded-3xl border p-4 md:p-6">
-        <div className="bg-border h-[62vh] w-full animate-pulse rounded-2xl" />
-      </div>
-    </div>
-  );
-}
diff --git a/apps/studio/app/(main)/editor/[id]/preview/not-found.tsx b/apps/studio/app/(main)/editor/[id]/preview/not-found.tsx
deleted file mode 100644
index 7932427..0000000
--- a/apps/studio/app/(main)/editor/[id]/preview/not-found.tsx
+++ /dev/null
@@ -1,37 +0,0 @@
-import Link from "next/link";
-
-import { Button } from "@veriworkly/ui";
-
-export default function EditorPreviewNotFound() {
-  return (
-    <div className="space-y-6 px-4 py-6 sm:px-6 lg:px-8">
-      <div className="border-border bg-card rounded-2xl border p-4">
-        <p className="text-accent text-xs font-semibold tracking-[0.24em] uppercase">
-          Resume Preview
-        </p>
-
-        <h1 className="text-foreground mt-2 text-2xl font-semibold tracking-tight sm:text-3xl">
-          Preview not available
-        </h1>
-
-        <p className="text-muted mt-2 max-w-2xl text-sm leading-6">
-          This preview link is invalid or the resume is no longer available in local storage.
-        </p>
-
-        <div className="mt-5 flex flex-wrap items-center gap-3">
-          <Button asChild variant="primary">
-            <Link href="/">Go to Dashboard</Link>
-          </Button>
-
-          <Button asChild variant="ghost">
-            <Link href="/templates">View Templates</Link>
-          </Button>
-        </div>
-      </div>
-
-      <div className="border-border bg-card rounded-3xl border p-4 md:p-6">
-        <div className="bg-border border-border h-[62vh] w-full rounded-2xl border border-dashed" />
-      </div>
-    </div>
-  );
-}
diff --git a/apps/studio/features/api-keys/components/ApiKeyList.tsx b/apps/studio/features/api-keys/components/ApiKeyList.tsx
new file mode 100644
index 0000000..e34a62d
--- /dev/null
+++ b/apps/studio/features/api-keys/components/ApiKeyList.tsx
@@ -0,0 +1,227 @@
+"use client";
+
+import {
+  Eye,
+  Key,
+  Trash2,
+  Loader2,
+  KeyRound,
+  Calendar,
+  RefreshCw,
+  ShieldOff,
+  MoreHorizontal,
+} from "lucide-react";
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+
+import { Badge, Button, Card, Menu, MenuItem, MenuSeparator } from "@veriworkly/ui";
+
+import type { ApiKeyRecord } from "./ApiKeyTypes";
+
+type ApiKeyListProps = {
+  keys: ApiKeyRecord[];
+  page: number;
+  totalPages: number;
+  hasMore: boolean;
+  loading: boolean;
+  onPrevPage: () => void;
+  onNextPage: () => void;
+  onRotate: (key: ApiKeyRecord) => void;
+  onDelete: (key: ApiKeyRecord) => void;
+  onRevoke: (key: ApiKeyRecord) => void;
+};
+
+export default function ApiKeyList({
+  keys,
+  page,
+  totalPages,
+  hasMore,
+  loading,
+  onPrevPage,
+  onNextPage,
+  onRotate,
+  onDelete,
+  onRevoke,
+}: ApiKeyListProps) {
+  const router = useRouter();
+
+  return (
+    <div className="space-y-4">
+      {loading ? (
+        <div className="flex justify-center py-12">
+          <Loader2 className="text-accent/50 h-8 w-8 animate-spin" />
+        </div>
+      ) : keys.length === 0 ? (
+        <div className="border-accent/20 bg-accent/5 rounded-xl border border-dashed py-12 text-center">
+          <Key className="text-muted-foreground/30 mx-auto mb-3 h-12 w-12" />
+          <p className="text-muted-foreground">No API keys found. Generate one to get started.</p>
+        </div>
+      ) : (
+        <div className="grid gap-4 sm:grid-cols-2 xl:grid-cols-3">
+          {keys.map((key) => {
+            const href = `/api-keys/${key.id}`;
+            const statusClass = key.isActive
+              ? "bg-emerald-500/10 border-emerald-500/20 text-emerald-700 dark:text-emerald-300"
+              : "border-red-500/20 bg-red-500/10 text-red-700 dark:text-red-300";
+
+            return (
+              <Card
+                key={key.id}
+                className={`border-border/70 hover:border-accent/30 flex flex-col justify-between overflow-visible rounded-xl border p-3 transition hover:-translate-y-0.5 hover:shadow-md ${
+                  key.isActive
+                    ? "bg-card"
+                    : "border-red-500/20 bg-red-500/3 opacity-85 hover:border-red-500/30"
+                }`}
+              >
+                <div className="space-y-4">
+                  <div className="flex min-w-0 items-start justify-between gap-4">
+                    <div className="flex min-w-0 items-start gap-3">
+                      <div
+                        className={`flex h-10 w-10 shrink-0 items-center justify-center rounded-xl ${
+                          key.isActive
+                            ? "bg-accent/10 text-accent"
+                            : "bg-red-500/10 text-red-600 dark:text-red-300"
+                        }`}
+                      >
+                        <KeyRound className="h-5 w-5" />
+                      </div>
+
+                      <div className="min-w-0">
+                        <Link
+                          href={href}
+                          className="text-foreground hover:text-accent line-clamp-2 text-sm leading-5 font-bold"
+                        >
+                          {key.name}
+                        </Link>
+
+                        <p className="text-muted-foreground mt-1 font-mono text-xs">
+                          {key.keyPrefix} <span className="ml-1.5">...</span>
+                        </p>
+                      </div>
+                    </div>
+
+                    <Menu
+                      size="sm"
+                      panelClassName="z-50"
+                      trigger={({ open, toggle }) => (
+                        <Button
+                          size="sm"
+                          variant="ghost"
+                          onClick={toggle}
+                          aria-expanded={open}
+                          className="hover:bg-muted/5 h-8 w-8 shrink-0 p-0"
+                        >
+                          <span className="sr-only">Open actions for {key.name}</span>
+                          <MoreHorizontal className="h-4 w-4" />
+                        </Button>
+                      )}
+                    >
+                      {({ close }) => (
+                        <>
+                          <MenuItem
+                            onClick={() => {
+                              close();
+                              router.push(href);
+                            }}
+                          >
+                            <Eye className="h-4 w-4" /> View details
+                          </MenuItem>
+
+                          {key.isActive && (
+                            <>
+                              <MenuItem
+                                onClick={() => {
+                                  close();
+                                  onRotate(key);
+                                }}
+                              >
+                                <RefreshCw className="h-4 w-4" /> Rotate
+                              </MenuItem>
+                              <MenuItem
+                                onClick={() => {
+                                  close();
+                                  onRevoke(key);
+                                }}
+                              >
+                                <ShieldOff className="h-4 w-4" /> Revoke
+                              </MenuItem>
+                            </>
+                          )}
+
+                          <MenuSeparator />
+
+                          <MenuItem
+                            onClick={() => {
+                              close();
+                              onDelete(key);
+                            }}
+                            className="text-red-600 hover:bg-red-50 hover:text-red-700"
+                          >
+                            <Trash2 className="h-4 w-4" /> Delete
+                          </MenuItem>
+                        </>
+                      )}
+                    </Menu>
+                  </div>
+
+                  <div className="flex items-center justify-between gap-3 text-xs">
+                    <div className="text-muted-foreground flex items-center gap-1.5">
+                      <Calendar className="h-3.5 w-3.5" />
+                      Created {new Date(key.createdAt).toLocaleDateString()}
+                    </div>
+
+                    <div className="text-muted-foreground">
+                      {key.lastUsed
+                        ? `Last used ${new Date(key.lastUsed).toLocaleDateString()}`
+                        : "Never used"}
+                    </div>
+                  </div>
+                </div>
+
+                {!key.isActive && (
+                  <p className="mt-2 rounded-lg border border-red-500/15 bg-red-500/5 px-3 py-2 text-xs font-medium text-red-700 dark:text-red-300">
+                    Disabled. Cannot authenticate requests.
+                  </p>
+                )}
+
+                <div className="border-border/60 mt-3 flex items-center justify-between gap-3 border-t pt-2">
+                  <Badge className={`shrink-0 px-2 py-0 text-[10px] ${statusClass}`}>
+                    {key.isActive ? "Active" : "Revoked"}
+                  </Badge>
+
+                  <Button
+                    size="sm"
+                    variant="secondary"
+                    className="h-7 px-2 text-xs"
+                    onClick={() => router.push(href)}
+                  >
+                    <Eye className="mr-1 h-3.5 w-3.5" />
+                    Details
+                  </Button>
+                </div>
+              </Card>
+            );
+          })}
+        </div>
+      )}
+
+      {!loading && keys.length > 0 && (
+        <div className="border-border/40 mt-6 flex items-center justify-between border-t pt-4">
+          <span className="text-muted-foreground text-xs font-medium tracking-wider uppercase">
+            Page {page} of {totalPages}
+          </span>
+
+          <div className="flex items-center gap-2">
+            <Button size="sm" variant="ghost" disabled={page <= 1} onClick={onPrevPage}>
+              Previous
+            </Button>
+
+            <Button size="sm" variant="ghost" disabled={!hasMore} onClick={onNextPage}>
+              Next
+            </Button>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/ApiKeyRotateModal.tsx b/apps/studio/features/api-keys/components/ApiKeyRotateModal.tsx
new file mode 100644
index 0000000..f20bafe
--- /dev/null
+++ b/apps/studio/features/api-keys/components/ApiKeyRotateModal.tsx
@@ -0,0 +1,236 @@
+"use client";
+
+import { useEffect, useState } from "react";
+import { ArrowRightLeft, Calendar, Key, TrendingUp, UserPen, Loader2 } from "lucide-react";
+
+import type { ApiKeyRecord, ApiKeyDetailRecord } from "./ApiKeyTypes";
+
+import { Button, Input, Modal } from "@veriworkly/ui";
+import { fetchApiData, ApiRequestError } from "@/utils/fetchApiData";
+
+type ApiKeyRotateModalProps = {
+  open: boolean;
+  keyRecord: ApiKeyRecord | null;
+  submitting: boolean;
+  onCloseAction: () => void;
+  onSubmitAction: (values: {
+    name: string;
+    rateLimit: number;
+    expiresAt?: string;
+    scopes: string[];
+  }) => void;
+};
+
+function formatDateValue(dateValue: string | null) {
+  if (!dateValue) {
+    return "";
+  }
+  const parsed = new Date(dateValue);
+  if (Number.isNaN(parsed.getTime())) {
+    return "";
+  }
+  return parsed.toISOString().slice(0, 10);
+}
+
+export default function ApiKeyRotateModal({
+  open,
+  keyRecord,
+  submitting,
+  onCloseAction,
+  onSubmitAction,
+}: ApiKeyRotateModalProps) {
+  const [name, setName] = useState("");
+  const [rateLimit, setRateLimit] = useState(20);
+  const [expiresAt, setExpiresAt] = useState("");
+  const [selectedScopes, setSelectedScopes] = useState<string[]>([]);
+
+  const [loadingDetails, setLoadingDetails] = useState(false);
+  const [detailError, setDetailError] = useState("");
+
+  useEffect(() => {
+    if (!open || !keyRecord) return;
+
+    let cancelled = false;
+
+    queueMicrotask(() => {
+      if (cancelled) return;
+
+      setLoadingDetails(true);
+      setDetailError("");
+
+      fetchApiData<ApiKeyDetailRecord>(`/api-keys/${keyRecord.id}`, { method: "GET" })
+        .then((data) => {
+          if (cancelled) return;
+
+          setName(data.name);
+          setSelectedScopes(data.scopes);
+          setExpiresAt(formatDateValue(data.expiresAt));
+          setRateLimit(Math.min(20, Math.max(1, data.rateLimit || 20)));
+        })
+        .catch((err) => {
+          if (cancelled) return;
+
+          setDetailError(
+            err instanceof ApiRequestError ? err.message : "Failed to load key details",
+          );
+        })
+        .finally(() => {
+          if (!cancelled) setLoadingDetails(false);
+        });
+    });
+
+    return () => {
+      cancelled = true;
+    };
+  }, [open, keyRecord]);
+
+  const handleSubmit = (event: React.SyntheticEvent<HTMLFormElement>) => {
+    event.preventDefault();
+
+    if (!keyRecord) {
+      return;
+    }
+
+    onSubmitAction({
+      name: name.trim() || keyRecord.name,
+      rateLimit: Math.min(20, Math.max(1, rateLimit)),
+      expiresAt: expiresAt ? new Date(expiresAt).toISOString() : undefined,
+      scopes: selectedScopes,
+    });
+  };
+
+  const handleClose = () => {
+    if (!submitting) {
+      onCloseAction();
+    }
+  };
+
+  return (
+    <Modal open={open} onClose={handleClose}>
+      <Modal.Content className="w-full overflow-hidden p-0 sm:rounded-xl">
+        <div className="flex items-center gap-3 border-b px-4 pt-2 pb-4 md:bg-zinc-50/50 md:pt-4 dark:bg-zinc-900/50">
+          <div className="ring-offset-background bg-accent/10 ring-accent/10 flex h-9 w-9 shrink-0 items-center justify-center rounded-xl transition-all duration-300">
+            <ArrowRightLeft className="text-accent h-4.5 w-4.5" />
+          </div>
+
+          <div className="min-w-0">
+            <Modal.Title>Rotate API Key</Modal.Title>
+
+            {keyRecord ? (
+              <p className="text-muted-foreground text-xs font-medium">
+                Rotating{" "}
+                <span className="text-foreground font-mono">
+                  {keyRecord.keyPrefix}...
+                </span>
+              </p>
+            ) : null}
+          </div>
+        </div>
+
+        {loadingDetails ? (
+           <div className="flex justify-center py-12">
+             <Loader2 className="h-6 w-6 animate-spin text-muted-foreground" />
+           </div>
+        ) : detailError ? (
+           <div className="p-6 text-center text-red-500 text-sm">{detailError}</div>
+        ) : (
+          <form onSubmit={handleSubmit} className="space-y-5 pt-4">
+            <div className="grid gap-4 px-4 sm:grid-cols-1">
+              <div className="space-y-1.5">
+                <label
+                  htmlFor="rotate-api-key-name"
+                  className="text-muted-foreground flex items-center gap-1.5 text-xs font-medium"
+                >
+                  <UserPen className="h-3.5 w-3.5" /> Key name
+                </label>
+
+                <Input
+                  value={name}
+                  inputSize="sm"
+                  disabled={submitting}
+                  id="rotate-api-key-name"
+                  className="bg-background/50 h-9"
+                  placeholder="Documentation token"
+                  onChange={(event) => setName(event.target.value)}
+                />
+              </div>
+            </div>
+
+            <div className="grid gap-4 px-4 sm:grid-cols-2">
+              <div className="space-y-1.5">
+                <label
+                  htmlFor="rotate-api-key-rate-limit"
+                  className="text-muted-foreground flex items-center gap-1.5 text-xs font-medium"
+                >
+                  <TrendingUp className="h-3.5 w-3.5" /> Rate limit
+                </label>
+
+                <Input
+                  min={1}
+                  max={20}
+                  type="number"
+                  inputSize="sm"
+                  value={rateLimit}
+                  disabled={submitting}
+                  id="rotate-api-key-rate-limit"
+                  className="bg-background/50 h-9"
+                  onChange={(event) => {
+                    const nextValue = Number(event.target.value || 1);
+                    setRateLimit(Math.min(20, Math.max(1, nextValue)));
+                  }}
+                />
+              </div>
+
+              <div className="space-y-1.5">
+                <label
+                  htmlFor="rotate-api-key-expires-at"
+                  className="text-muted-foreground flex items-center gap-1.5 text-xs font-medium"
+                >
+                  <Calendar className="h-3.5 w-3.5" /> Expires at
+                </label>
+
+                <Input
+                  type="date"
+                  inputSize="sm"
+                  value={expiresAt}
+                  disabled={submitting}
+                  className="bg-background/50 h-9"
+                  id="rotate-api-key-expires-at"
+                  onChange={(event) => setExpiresAt(event.target.value)}
+                />
+              </div>
+            </div>
+
+            <div className="border-border/70 bg-muted/10 text-muted-foreground mx-4 rounded-xl border p-3 text-xs">
+              <div className="flex items-start gap-2">
+                <Key className="text-accent mt-0.5 h-4 w-4 shrink-0" />
+
+                <p>
+                  The old key is revoked as soon as this replacement is created. Share the new key
+                  only after copying it securely.
+                </p>
+              </div>
+            </div>
+
+            <Modal.Footer>
+              <Button
+                size="sm"
+                type="button"
+                variant="secondary"
+                onClick={handleClose}
+                disabled={submitting}
+                className="w-full sm:w-auto"
+              >
+                Cancel
+              </Button>
+
+              <Button size="sm" type="submit" loading={submitting} className="w-full sm:w-auto">
+                Generate Key
+              </Button>
+            </Modal.Footer>
+          </form>
+        )}
+      </Modal.Content>
+    </Modal>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/ApiKeyScopes.ts b/apps/studio/features/api-keys/components/ApiKeyScopes.ts
new file mode 100644
index 0000000..6c15845
--- /dev/null
+++ b/apps/studio/features/api-keys/components/ApiKeyScopes.ts
@@ -0,0 +1,103 @@
+export const AVAILABLE_API_KEY_SCOPES = [
+  "user:read",
+  "user:write",
+  "resume:read",
+  "resume:write",
+  "roadmap:read",
+  "github:read",
+] as const;
+
+export const API_KEY_SCOPE_OPTIONS = [
+  {
+    value: "user:read",
+    label: "Profile access",
+    description: "Read your account profile and identity details.",
+  },
+
+  {
+    value: "user:write",
+    label: "Profile updates",
+    description: "Update user-facing profile fields.",
+  },
+
+  {
+    value: "resume:read",
+    label: "Resume read",
+    description: "View resume content and metadata.",
+  },
+
+  {
+    value: "resume:write",
+    label: "Resume create/edit",
+    description: "Create, edit, delete, sync, and share resume-backed documents.",
+  },
+
+  {
+    value: "roadmap:read",
+    label: "Roadmap read",
+    description: "Inspect roadmap items and release planning data.",
+  },
+
+  {
+    value: "github:read",
+    label: "GitHub read",
+    description: "Read synced GitHub issue and stats data.",
+  },
+] as const;
+
+export const API_KEY_SCOPE_GROUPS = [
+  {
+    key: "profile",
+    label: "Profile",
+    description: "Account identity and display-name APIs.",
+    scopes: ["user:read", "user:write"],
+  },
+
+  {
+    key: "resume",
+    label: "Resume",
+    description: "Resume document access. Write covers create/edit/delete/share for now.",
+    scopes: ["resume:read", "resume:write"],
+  },
+
+  {
+    key: "roadmap",
+    label: "Roadmap",
+    description: "Public roadmap APIs are read-only.",
+    scopes: ["roadmap:read"],
+  },
+
+  {
+    key: "github",
+    label: "GitHub",
+    description: "Synced GitHub stats and issue APIs are read-only.",
+    scopes: ["github:read"],
+  },
+] as const;
+
+export type ApiKeyScopeSummary = {
+  label: string;
+  access: string;
+};
+
+const summarizeApiKeyScopes = (scopes: string[]): ApiKeyScopeSummary[] => {
+  const selected = new Set(scopes);
+
+  return API_KEY_SCOPE_GROUPS.flatMap((group) => {
+    const [readScope, writeScope] = group.scopes;
+
+    const hasRead = Boolean(readScope && selected.has(readScope));
+    const hasWrite = Boolean(writeScope && selected.has(writeScope));
+
+    if (!hasRead && !hasWrite) {
+      return [];
+    }
+
+    return {
+      label: group.label,
+      access: hasRead && hasWrite ? "Read / Write" : hasWrite ? "Write" : "Read",
+    };
+  });
+};
+
+export default summarizeApiKeyScopes;
diff --git a/apps/studio/features/api-keys/components/ApiKeySection.tsx b/apps/studio/features/api-keys/components/ApiKeySection.tsx
new file mode 100644
index 0000000..5f5f3ca
--- /dev/null
+++ b/apps/studio/features/api-keys/components/ApiKeySection.tsx
@@ -0,0 +1,107 @@
+"use client";
+
+import Link from "next/link";
+import { Plus } from "lucide-react";
+
+import type { ApiKeyRecord, OffsetPaginationPayload } from "./ApiKeyTypes";
+
+import { Button } from "@veriworkly/ui";
+
+import { useApiKeys } from "../hooks/useApiKeys";
+
+import ApiKeyList from "./ApiKeyList";
+import ApiKeyRotateModal from "./ApiKeyRotateModal";
+import GeneratedApiKeyCard from "./GeneratedApiKeyCard";
+
+import DestructiveModal from "@/components/modals/DestructiveModal";
+import ConfirmationModal from "@/components/modals/ConfirmationModal";
+
+type ApiKeySectionProps = {
+  initialKeys: ApiKeyRecord[];
+  initialPagination: OffsetPaginationPayload<ApiKeyRecord> | null;
+  initialKeysLoaded: boolean;
+};
+
+export default function ApiKeySection({
+  initialKeys,
+  initialPagination,
+  initialKeysLoaded,
+}: ApiKeySectionProps) {
+  const apiKeys = useApiKeys({ initialKeys, initialPagination, initialKeysLoaded });
+
+  return (
+    <section id="api-keys" className="space-y-6">
+      <div className="flex items-center justify-between">
+        <div className="space-y-1">
+          <h2 className="text-foreground text-2xl font-bold tracking-tight">Your keys</h2>
+
+          <p className="text-muted-foreground text-sm">
+            Review active tokens first. Create new keys from the dedicated create flow.
+          </p>
+        </div>
+
+        <Button asChild>
+          <Link href="/api-keys/create">
+            <Plus className="mr-1 h-4 w-4" />
+            Create API key
+          </Link>
+        </Button>
+      </div>
+
+      <div className="grid gap-6">
+        {apiKeys.generatedKey && (
+          <GeneratedApiKeyCard
+            generatedKey={apiKeys.generatedKey.key}
+            onDismiss={() => apiKeys.setGeneratedKey(null)}
+            copied={apiKeys.copiedId === apiKeys.generatedKey.id}
+            onCopy={() =>
+              void apiKeys.copyToClipboard(apiKeys.generatedKey!.key, apiKeys.generatedKey!.id)
+            }
+          />
+        )}
+
+        <ApiKeyList
+          keys={apiKeys.keys}
+          page={apiKeys.page}
+          hasMore={apiKeys.hasMore}
+          loading={apiKeys.loading}
+          totalPages={apiKeys.totalPages}
+          onNextPage={apiKeys.goToNextPage}
+          onRotate={apiKeys.setRotateTarget}
+          onDelete={apiKeys.setDeleteTarget}
+          onRevoke={apiKeys.setRevokeTarget}
+          onPrevPage={apiKeys.goToPreviousPage}
+        />
+
+        <ApiKeyRotateModal
+          keyRecord={apiKeys.rotateTarget}
+          onSubmitAction={apiKeys.rotateKey}
+          open={Boolean(apiKeys.rotateTarget)}
+          submitting={apiKeys.rotateSubmitting}
+          onCloseAction={() => apiKeys.setRotateTarget(null)}
+        />
+        <DestructiveModal
+          entityName="API key"
+          title="Delete API key?"
+          loading={apiKeys.deleteSubmitting}
+          onConfirmAction={apiKeys.deleteKey}
+          open={Boolean(apiKeys.deleteTarget)}
+          onCloseAction={() => apiKeys.setDeleteTarget(null)}
+          warningText="This action permanently deletes the key from the database."
+          description="Use this only when you no longer need the key at all. Permanent deletion cannot be undone."
+        />
+
+        <ConfirmationModal
+          title="Revoke API key?"
+          variant="warning"
+          confirmText="Revoke key"
+          loading={apiKeys.revokeSubmitting}
+          open={Boolean(apiKeys.revokeTarget)}
+          onConfirm={apiKeys.revokeKey}
+          onClose={() => apiKeys.setRevokeTarget(null)}
+          description="This disables the key immediately while keeping the record for audit and history."
+        />
+      </div>
+    </section>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/ApiKeyTypes.ts b/apps/studio/features/api-keys/components/ApiKeyTypes.ts
new file mode 100644
index 0000000..7947894
--- /dev/null
+++ b/apps/studio/features/api-keys/components/ApiKeyTypes.ts
@@ -0,0 +1,44 @@
+export interface ApiKeyListRecord {
+  id: string;
+  name: string;
+  keyPrefix: string;
+  isActive: boolean;
+  createdAt: string;
+  lastUsed: string | null;
+}
+
+export type ApiKeyRecord = ApiKeyListRecord;
+
+export interface ApiKeyDetailRecord {
+  id: string;
+  keyPrefix: string;
+  keySuffix: string;
+  name: string;
+  isActive: boolean;
+  rateLimit: number;
+  scopes: string[];
+  expiresAt: string | null;
+  revokedAt: string | null;
+  createdAt: string;
+  lastUsed: string | null;
+}
+
+export interface GeneratedApiKeyRecord extends ApiKeyDetailRecord {
+  key: string;
+}
+
+export interface OffsetPaginationPayload<T> {
+  items: T[];
+  total: number;
+  limit: number;
+  offset: number;
+  page: number;
+  pageSize: number;
+  totalPages: number;
+  hasMore: boolean;
+  pagination: {
+    mode: "offset";
+    nextOffset: number | null;
+    nextCursor: string | null;
+  };
+}
diff --git a/apps/studio/features/api-keys/components/GeneratedApiKeyCard.tsx b/apps/studio/features/api-keys/components/GeneratedApiKeyCard.tsx
new file mode 100644
index 0000000..eb8ea8d
--- /dev/null
+++ b/apps/studio/features/api-keys/components/GeneratedApiKeyCard.tsx
@@ -0,0 +1,44 @@
+import { AlertCircle, Check, Copy } from "lucide-react";
+
+import { Button, Card } from "@veriworkly/ui";
+
+type GeneratedApiKeyCardProps = {
+  generatedKey: string;
+  copied: boolean;
+  onCopy: () => void;
+  onDismiss: () => void;
+};
+
+export default function GeneratedApiKeyCard({
+  generatedKey,
+  copied,
+  onCopy,
+  onDismiss,
+}: GeneratedApiKeyCardProps) {
+  return (
+    <Card className="animate-in zoom-in-95 border-accent/20 bg-accent/5 p-6 duration-300">
+      <div className="space-y-4">
+        <div className="text-accent flex items-center gap-2">
+          <AlertCircle className="h-5 w-5" />
+          <h3 className="font-bold">Save your API Key</h3>
+        </div>
+
+        <p className="text-muted-foreground text-sm">
+          For security reasons, this key will only be shown once. Please copy it now.
+        </p>
+
+        <div className="group border-accent/20 bg-background/80 flex items-center justify-between gap-2 rounded-lg border p-3 font-mono text-sm break-all">
+          <span className="text-foreground">{generatedKey}</span>
+
+          <Button size="sm" variant="ghost" onClick={onCopy} className="shrink-0">
+            {copied ? <Check className="h-4 w-4 text-green-500" /> : <Copy className="h-4 w-4" />}
+          </Button>
+        </div>
+
+        <Button size="sm" onClick={onDismiss} className="w-full">
+          I have saved the key
+        </Button>
+      </div>
+    </Card>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/create/ApiKeyCreateClient.tsx b/apps/studio/features/api-keys/components/create/ApiKeyCreateClient.tsx
new file mode 100644
index 0000000..f22e2a8
--- /dev/null
+++ b/apps/studio/features/api-keys/components/create/ApiKeyCreateClient.tsx
@@ -0,0 +1,48 @@
+"use client";
+
+import { useApiKeyCreate } from "../../hooks/useApiKeyCreate";
+
+import { ApiKeyScopeRail } from "./ApiKeyScopeRail";
+import { ApiKeyDetailsForm } from "./ApiKeyDetailsForm";
+import { ApiKeySelectedScopes } from "./ApiKeySelectedScopes";
+
+export default function ApiKeyCreateClient() {
+  const create = useApiKeyCreate();
+
+  return (
+    <form
+      onSubmit={create.createKey}
+      className="grid items-stretch gap-5 lg:grid-cols-[minmax(0,1fr)_20rem]"
+    >
+      <div className="space-y-5">
+        <ApiKeyDetailsForm
+          name={create.name}
+          creating={create.creating}
+          rateLimit={create.rateLimit}
+          expiresAt={create.expiresAt}
+          onNameChange={create.setName}
+          onRateLimitChange={create.setRateLimit}
+          onExpiresAtChange={create.setExpiresAt}
+        />
+
+        <ApiKeySelectedScopes
+          copied={create.copied}
+          creating={create.creating}
+          canSubmit={create.canSubmit}
+          generatedKey={create.generatedKey}
+          selectedScopes={create.selectedScopes}
+          onCopyGeneratedKey={create.copyGeneratedKey}
+          selectedScopeDetails={create.selectedScopeDetails}
+          onDismissGeneratedKey={() => create.setGeneratedKey(null)}
+        />
+      </div>
+
+      <ApiKeyScopeRail
+        onReset={create.resetScopes}
+        onToggleScope={create.toggleScope}
+        onSelectAll={create.selectAllScopes}
+        selectedScopes={create.selectedScopes}
+      />
+    </form>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/create/ApiKeyDetailsForm.tsx b/apps/studio/features/api-keys/components/create/ApiKeyDetailsForm.tsx
new file mode 100644
index 0000000..164519c
--- /dev/null
+++ b/apps/studio/features/api-keys/components/create/ApiKeyDetailsForm.tsx
@@ -0,0 +1,84 @@
+"use client";
+
+import { KeyRound } from "lucide-react";
+
+import { Card, Input } from "@veriworkly/ui";
+
+type ApiKeyDetailsFormProps = {
+  creating: boolean;
+  name: string;
+  rateLimit: number;
+  expiresAt: string;
+  onNameChange: (value: string) => void;
+  onRateLimitChange: (value: number) => void;
+  onExpiresAtChange: (value: string) => void;
+};
+
+export function ApiKeyDetailsForm({
+  creating,
+  name,
+  rateLimit,
+  expiresAt,
+  onNameChange,
+  onRateLimitChange,
+  onExpiresAtChange,
+}: ApiKeyDetailsFormProps) {
+  return (
+    <Card className="space-y-5 rounded-2xl p-5 sm:p-6">
+      <div className="flex items-start gap-3">
+        <span className="bg-accent/10 text-accent flex h-10 w-10 shrink-0 items-center justify-center rounded-xl">
+          <KeyRound className="h-5 w-5" />
+        </span>
+
+        <div>
+          <h2 className="text-lg font-black">Key details</h2>
+          <p className="text-muted text-sm">Name keys by app, environment, or deployment target.</p>
+        </div>
+      </div>
+
+      <div className="grid gap-4 sm:grid-cols-2">
+        <label className="space-y-2 sm:col-span-2">
+          <span className="text-sm font-bold">Name</span>
+
+          <Input
+            value={name}
+            disabled={creating}
+            placeholder="Production docs integration"
+            onChange={(event) => onNameChange(event.target.value)}
+          />
+        </label>
+
+        <label className="space-y-2">
+          <span className="text-sm font-bold">Rate limit</span>
+
+          <Input
+            min={1}
+            max={20}
+            type="number"
+            value={rateLimit}
+            disabled={creating}
+            onChange={(event) => {
+              const nextValue = Number(event.target.value || 1);
+              onRateLimitChange(Math.min(20, Math.max(1, nextValue)));
+            }}
+          />
+
+          <span className="text-muted block text-xs">Max 20 requests per window.</span>
+        </label>
+
+        <label className="space-y-2">
+          <span className="text-sm font-bold">Expires at</span>
+
+          <Input
+            type="date"
+            value={expiresAt}
+            disabled={creating}
+            onChange={(event) => onExpiresAtChange(event.target.value)}
+          />
+
+          <span className="text-muted block text-xs">Empty uses default lifetime.</span>
+        </label>
+      </div>
+    </Card>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/create/ApiKeyScopeRail.tsx b/apps/studio/features/api-keys/components/create/ApiKeyScopeRail.tsx
new file mode 100644
index 0000000..ed7ec82
--- /dev/null
+++ b/apps/studio/features/api-keys/components/create/ApiKeyScopeRail.tsx
@@ -0,0 +1,106 @@
+"use client";
+
+import { ShieldCheck } from "lucide-react";
+
+import { Button, Card, Checkbox } from "@veriworkly/ui";
+
+import { API_KEY_SCOPE_GROUPS, API_KEY_SCOPE_OPTIONS } from "../ApiKeyScopes";
+
+import { cn } from "@/lib/utils";
+
+type ApiKeyScopeRailProps = {
+  selectedScopes: string[];
+  onToggleScope: (scope: string) => void;
+  onSelectAll: () => void;
+  onReset: () => void;
+};
+
+export function ApiKeyScopeRail({
+  selectedScopes,
+  onToggleScope,
+  onSelectAll,
+  onReset,
+}: ApiKeyScopeRailProps) {
+  return (
+    <aside className="lg:self-start">
+      <Card className="rounded-2xl p-4 lg:max-h-[calc(100dvh-11rem)] lg:overflow-hidden">
+        <div className="mb-3 flex items-center gap-2.5">
+          <span className="bg-accent/10 text-accent flex h-8 w-8 shrink-0 items-center justify-center rounded-lg">
+            <ShieldCheck className="h-4 w-4" />
+          </span>
+
+          <div>
+            <h2 className="text-base font-black">Scopes</h2>
+            <p className="text-muted text-xs">Grouped API permissions.</p>
+          </div>
+        </div>
+
+        <div className="mb-3 flex gap-2">
+          <Button
+            size="sm"
+            type="button"
+            variant="primary"
+            className="h-7 w-16"
+            onClick={onSelectAll}
+          >
+            All
+          </Button>
+
+          <Button
+            size="sm"
+            type="button"
+            variant="secondary"
+            className="h-7 w-16"
+            onClick={onReset}
+          >
+            Reset
+          </Button>
+        </div>
+
+        <div className="space-y-2 pb-4 lg:max-h-[calc(100dvh-18rem)] lg:overflow-y-auto lg:pr-1">
+          {API_KEY_SCOPE_GROUPS.map((group) => (
+            <section key={group.key} className="border-border/70 border-t p-2.5">
+              <div className="mb-2">
+                <h3 className="text-xs font-black">{group.label}</h3>
+                <p className="text-muted mt-0.5 text-[11px] leading-4">{group.description}</p>
+              </div>
+
+              <div className="space-y-1.5">
+                {group.scopes.map((scopeValue) => {
+                  const scope = API_KEY_SCOPE_OPTIONS.find((item) => item.value === scopeValue);
+
+                  if (!scope) return null;
+
+                  const selected = selectedScopes.includes(scope.value);
+
+                  return (
+                    <div
+                      key={scope.value}
+                      className={cn(
+                        "rounded-lg border px-2.5 py-2 transition",
+                        selected
+                          ? "border-accent bg-accent/10"
+                          : "border-border/70 hover:border-accent/50 hover:bg-muted/5",
+                      )}
+                    >
+                      <Checkbox
+                        checked={selected}
+                        label={scope.label}
+                        onCheckedChange={() => onToggleScope(scope.value)}
+                        className="w-full [&>span]:min-w-0 [&>span]:truncate [&>span]:text-xs [&>span]:font-bold"
+                      />
+
+                      <span className="text-muted block truncate pl-8 text-[11px]">
+                        {scope.value}
+                      </span>
+                    </div>
+                  );
+                })}
+              </div>
+            </section>
+          ))}
+        </div>
+      </Card>
+    </aside>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/create/ApiKeySelectedScopes.tsx b/apps/studio/features/api-keys/components/create/ApiKeySelectedScopes.tsx
new file mode 100644
index 0000000..0bca1c8
--- /dev/null
+++ b/apps/studio/features/api-keys/components/create/ApiKeySelectedScopes.tsx
@@ -0,0 +1,79 @@
+"use client";
+
+import Link from "next/link";
+import { ArrowLeft, Loader2, Plus } from "lucide-react";
+
+import type { GeneratedApiKeyRecord } from "../ApiKeyTypes";
+import type { API_KEY_SCOPE_OPTIONS } from "../ApiKeyScopes";
+
+import { Badge, Button, Card } from "@veriworkly/ui";
+
+import GeneratedApiKeyCard from "../GeneratedApiKeyCard";
+
+type ScopeOption = (typeof API_KEY_SCOPE_OPTIONS)[number];
+
+type ApiKeySelectedScopesProps = {
+  creating: boolean;
+  canSubmit: boolean;
+  copied: boolean;
+  selectedScopes: string[];
+  selectedScopeDetails: ScopeOption[];
+  generatedKey: GeneratedApiKeyRecord | null;
+  onCopyGeneratedKey: () => void;
+  onDismissGeneratedKey: () => void;
+};
+
+export function ApiKeySelectedScopes({
+  creating,
+  canSubmit,
+  copied,
+  selectedScopes,
+  selectedScopeDetails,
+  generatedKey,
+  onCopyGeneratedKey,
+  onDismissGeneratedKey,
+}: ApiKeySelectedScopesProps) {
+  return (
+    <Card className="space-y-4 rounded-2xl p-5 sm:p-6">
+      <div className="flex items-center justify-between gap-4">
+        <div>
+          <h2 className="text-lg font-black">Selected scopes</h2>
+          <p className="text-muted text-sm">Review before generating.</p>
+        </div>
+
+        <Badge className="shrink-0">{selectedScopes.length} selected</Badge>
+      </div>
+
+      <div className="border-border bg-muted/5 flex flex-wrap gap-2 rounded-xl border p-4">
+        {selectedScopeDetails.map((scope) => (
+          <Badge key={scope.value} className="rounded-full px-2.5 py-1 text-xs">
+            {scope.label}
+          </Badge>
+        ))}
+      </div>
+
+      {generatedKey ? (
+        <GeneratedApiKeyCard
+          copied={copied}
+          onCopy={onCopyGeneratedKey}
+          generatedKey={generatedKey.key}
+          onDismiss={onDismissGeneratedKey}
+        />
+      ) : null}
+
+      <div className="flex flex-col gap-3 sm:flex-row sm:justify-end">
+        <Button type="submit" size="sm" disabled={!canSubmit} className="gap-2">
+          {creating ? <Loader2 className="h-4 w-4 animate-spin" /> : <Plus className="h-4 w-4" />}
+          Create key
+        </Button>
+
+        <Button asChild size="sm" type="button" variant="secondary">
+          <Link href="/api-keys">
+            <ArrowLeft className="mr-2 h-4 w-4" />
+            Back to keys
+          </Link>
+        </Button>
+      </div>
+    </Card>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/details/ApiKeyDetailActions.tsx b/apps/studio/features/api-keys/components/details/ApiKeyDetailActions.tsx
new file mode 100644
index 0000000..b1743dc
--- /dev/null
+++ b/apps/studio/features/api-keys/components/details/ApiKeyDetailActions.tsx
@@ -0,0 +1,58 @@
+import { Ban, RotateCw, Trash2 } from "lucide-react";
+
+import { Button, Card } from "@veriworkly/ui";
+
+import type { ApiKeyDetailRecord } from "../ApiKeyTypes";
+
+type ApiKeyDetailActionsProps = {
+  data: ApiKeyDetailRecord;
+  onDelete: () => void;
+  onRevoke: () => void;
+  onRotate: () => void;
+};
+
+export function ApiKeyDetailActions({
+  data,
+  onDelete,
+  onRevoke,
+  onRotate,
+}: ApiKeyDetailActionsProps) {
+  return (
+    <Card className="rounded-xl p-5">
+      <div className="flex flex-wrap items-center justify-between gap-3">
+        <div>
+          <h2 className="text-lg font-bold">Actions</h2>
+          <p className="text-muted-foreground mt-1 text-sm">
+            Rotate credentials, revoke access, or remove this key.
+          </p>
+        </div>
+      </div>
+
+      <div className="mt-4 grid gap-3 sm:grid-cols-3">
+        {data.isActive && (
+          <>
+            <Button onClick={onRotate} className="w-full">
+              <RotateCw className="mr-2 h-4 w-4" /> Rotate
+            </Button>
+
+            <Button
+              variant="secondary"
+              className="w-full border border-amber-500/20 bg-amber-50/70 text-amber-700 hover:bg-amber-50 dark:bg-amber-500/10 dark:text-amber-300"
+              onClick={onRevoke}
+            >
+              <Ban className="mr-2 h-4 w-4" /> Revoke
+            </Button>
+          </>
+        )}
+
+        <Button
+          variant="secondary"
+          className="w-full border border-red-500/20 bg-red-50/70 text-red-700 hover:bg-red-50 dark:bg-red-500/10 dark:text-red-300"
+          onClick={onDelete}
+        >
+          <Trash2 className="mr-2 h-4 w-4" /> Delete
+        </Button>
+      </div>
+    </Card>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/details/ApiKeyDetailHeader.tsx b/apps/studio/features/api-keys/components/details/ApiKeyDetailHeader.tsx
new file mode 100644
index 0000000..e5db5fb
--- /dev/null
+++ b/apps/studio/features/api-keys/components/details/ApiKeyDetailHeader.tsx
@@ -0,0 +1,71 @@
+"use client";
+
+import Link from "next/link";
+import { ArrowLeft, KeyRound } from "lucide-react";
+
+import type { ApiKeyDetailRecord } from "../ApiKeyTypes";
+
+import { Badge } from "@veriworkly/ui";
+
+import { statusClass } from "./api-key-detail-utils";
+
+type ApiKeyDetailHeaderProps = {
+  data: ApiKeyDetailRecord;
+};
+
+export function ApiKeyDetailHeader({ data }: ApiKeyDetailHeaderProps) {
+  return (
+    <section className="border-border bg-card grid gap-0 overflow-hidden rounded-2xl border lg:grid-cols-[minmax(0,1fr)_22rem]">
+      <div className="p-5 sm:p-6">
+        <Link
+          href="/api-keys"
+          className="text-muted-foreground hover:text-foreground inline-flex items-center gap-2 text-sm font-bold transition"
+        >
+          <ArrowLeft className="h-4 w-4" />
+          Back to keys
+        </Link>
+
+        <div className="mt-5 flex flex-wrap items-start gap-3">
+          <div className="bg-accent/10 text-accent flex h-10 w-10 shrink-0 items-center justify-center rounded-xl">
+            <KeyRound className="h-5 w-5" />
+          </div>
+
+          <div className="min-w-0 flex-1">
+            <div className="flex flex-wrap items-center gap-2">
+              <h1
+                id="api-key-detail-title"
+                className="text-3xl font-black tracking-tight sm:text-4xl"
+              >
+                {data.name}
+              </h1>
+
+              <Badge className={statusClass(data.isActive)}>
+                {data.isActive ? "Active" : "Revoked"}
+              </Badge>
+            </div>
+
+            <p className="text-muted mt-2 font-mono text-sm">
+              {data.keyPrefix}........{data.keySuffix}
+            </p>
+          </div>
+        </div>
+      </div>
+
+      <div className="border-border/70 grid content-center gap-3 border-t p-5 lg:border-t-0 lg:border-l">
+        <div className="bg-background/70 rounded-xl p-4">
+          <p className="text-muted-foreground text-xs font-bold tracking-wider uppercase">
+            Rate limit
+          </p>
+
+          <p className="mt-2 text-2xl font-black">{data.rateLimit}/min</p>
+        </div>
+
+        {!data.isActive && (
+          <div className="rounded-xl border border-red-500/20 bg-red-500/5 p-4 text-sm font-medium text-red-700 dark:text-red-300">
+            This API key is disabled and cannot authenticate requests.
+          </div>
+        )}
+      </div>
+    </section>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/details/ApiKeyDetailOverview.tsx b/apps/studio/features/api-keys/components/details/ApiKeyDetailOverview.tsx
new file mode 100644
index 0000000..afa7a0e
--- /dev/null
+++ b/apps/studio/features/api-keys/components/details/ApiKeyDetailOverview.tsx
@@ -0,0 +1,48 @@
+import type { LucideIcon } from "lucide-react";
+import { Activity, Ban, Calendar, Clock3 } from "lucide-react";
+
+import type { ApiKeyDetailRecord } from "../ApiKeyTypes";
+
+import { Card } from "@veriworkly/ui";
+
+import { formatDateTime } from "./api-key-detail-utils";
+
+function DetailMetric({
+  icon: Icon,
+  label,
+  value,
+}: {
+  icon: LucideIcon;
+  label: string;
+  value: string;
+}) {
+  return (
+    <Card className="rounded-xl p-4">
+      <div className="text-muted-foreground flex items-center gap-2 text-xs font-bold tracking-wider uppercase">
+        <Icon className="h-4 w-4" />
+        {label}
+      </div>
+
+      <p className="mt-2 text-sm font-semibold">{value}</p>
+    </Card>
+  );
+}
+
+export function ApiKeyDetailOverview({ data }: { data: ApiKeyDetailRecord }) {
+  return (
+    <div className="grid gap-4 sm:grid-cols-2">
+      <DetailMetric icon={Calendar} label="Created" value={formatDateTime(data.createdAt)} />
+      <DetailMetric icon={Activity} label="Last used" value={formatDateTime(data.lastUsed)} />
+      <DetailMetric
+        icon={Clock3}
+        label="Expires"
+        value={data.expiresAt ? formatDateTime(data.expiresAt) : "No expiry"}
+      />
+      <DetailMetric
+        icon={Ban}
+        label="Revoked"
+        value={data.revokedAt ? formatDateTime(data.revokedAt) : "Not revoked"}
+      />
+    </div>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/details/ApiKeyDetailScopes.tsx b/apps/studio/features/api-keys/components/details/ApiKeyDetailScopes.tsx
new file mode 100644
index 0000000..2da04ac
--- /dev/null
+++ b/apps/studio/features/api-keys/components/details/ApiKeyDetailScopes.tsx
@@ -0,0 +1,65 @@
+import { Shield } from "lucide-react";
+
+import { Badge, Card } from "@veriworkly/ui";
+
+import type { ApiKeyScopeSummary } from "../ApiKeyScopes";
+
+import { scopeOptionMap } from "./api-key-detail-utils";
+
+type ApiKeyDetailScopesProps = {
+  scopes: string[];
+  scopeSummary: ApiKeyScopeSummary[];
+};
+
+export function ApiKeyDetailScopes({ scopes, scopeSummary }: ApiKeyDetailScopesProps) {
+  return (
+    <aside className="space-y-4">
+      <Card className="rounded-xl p-5">
+        <div className="flex items-center gap-2">
+          <Shield className="text-accent h-4 w-4" />
+          <h2 className="font-bold">Scopes</h2>
+        </div>
+
+        <div className="mt-4 space-y-3">
+          {scopes.map((scope) => {
+            const option = scopeOptionMap.get(scope);
+
+            return (
+              <div key={scope} className="border-border/70 rounded-xl border p-3">
+                <div className="flex items-center justify-between gap-3">
+                  <p className="text-sm font-bold">{option?.label ?? scope}</p>
+
+                  <Badge className="bg-accent/10 border-accent/20 text-accent px-2 py-0 text-[10px]">
+                    {scope}
+                  </Badge>
+                </div>
+
+                {option?.description && (
+                  <p className="text-muted-foreground mt-1 text-xs leading-relaxed">
+                    {option.description}
+                  </p>
+                )}
+              </div>
+            );
+          })}
+        </div>
+      </Card>
+
+      <Card className="rounded-xl p-5">
+        <h2 className="font-bold">Access summary</h2>
+
+        <div className="mt-4 grid gap-2">
+          {scopeSummary.map((scope) => (
+            <div
+              key={scope.label}
+              className="bg-background/70 flex items-center justify-between gap-3 rounded-lg px-3 py-2"
+            >
+              <span className="text-sm font-medium">{scope.label}</span>
+              <span className="text-muted-foreground text-xs font-bold">{scope.access}</span>
+            </div>
+          ))}
+        </div>
+      </Card>
+    </aside>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/details/ApiKeyDetailView.tsx b/apps/studio/features/api-keys/components/details/ApiKeyDetailView.tsx
new file mode 100644
index 0000000..55bbc95
--- /dev/null
+++ b/apps/studio/features/api-keys/components/details/ApiKeyDetailView.tsx
@@ -0,0 +1,182 @@
+"use client";
+
+import { toast } from "sonner";
+import { useMemo, useState } from "react";
+import { useRouter } from "next/navigation";
+
+import DestructiveModal from "@/components/modals/DestructiveModal";
+import ConfirmationModal from "@/components/modals/ConfirmationModal";
+
+import { fetchApiData, ApiRequestError } from "@/utils/fetchApiData";
+
+import type { ApiKeyDetailRecord } from "../ApiKeyTypes";
+
+import summarizeApiKeyScopes from "../ApiKeyScopes";
+import ApiKeyRotateModal from "../ApiKeyRotateModal";
+import GeneratedApiKeyCard from "../GeneratedApiKeyCard";
+
+import { ApiKeyDetailActions } from "./ApiKeyDetailActions";
+import { ApiKeyDetailHeader } from "./ApiKeyDetailHeader";
+import { ApiKeyDetailOverview } from "./ApiKeyDetailOverview";
+import { ApiKeyDetailScopes } from "./ApiKeyDetailScopes";
+
+export default function ApiKeyDetailView({ initialData }: { initialData: ApiKeyDetailRecord }) {
+  const router = useRouter();
+
+  const [copied, setCopied] = useState(false);
+  const [data, setData] = useState<ApiKeyDetailRecord>(initialData);
+  const [generatedKey, setGeneratedKey] = useState<{ id: string; key: string } | null>(null);
+
+  const [rotateSubmitting, setRotateSubmitting] = useState(false);
+  const [revokeSubmitting, setRevokeSubmitting] = useState(false);
+  const [deleteSubmitting, setDeleteSubmitting] = useState(false);
+
+  const [rotateTarget, setRotateTarget] = useState<ApiKeyDetailRecord | null>(null);
+  const [revokeTarget, setRevokeTarget] = useState<ApiKeyDetailRecord | null>(null);
+  const [deleteTarget, setDeleteTarget] = useState<ApiKeyDetailRecord | null>(null);
+
+  const scopeSummary = useMemo(() => summarizeApiKeyScopes(data.scopes), [data.scopes]);
+
+  const handleCopy = async () => {
+    if (!generatedKey) return;
+
+    try {
+      await navigator.clipboard.writeText(generatedKey.key);
+      setCopied(true);
+      toast.success("API key copied.");
+      setTimeout(() => setCopied(false), 2000);
+    } catch {
+      toast.error("Failed to copy API key.");
+    }
+  };
+
+  const handleRotate = async (values: {
+    name: string;
+    rateLimit: number;
+    expiresAt?: string;
+    scopes: string[];
+  }) => {
+    if (!rotateTarget) return;
+
+    setRotateSubmitting(true);
+
+    try {
+      const response = await fetchApiData<ApiKeyDetailRecord & { key: string }>(
+        `/api-keys/${rotateTarget.id}/rotate`,
+        { method: "POST", body: JSON.stringify(values) },
+      );
+
+      setData(response);
+      setGeneratedKey({ id: response.id, key: response.key });
+      setRotateTarget(null);
+
+      toast.success("API key rotated.");
+
+      router.refresh();
+    } catch (error) {
+      toast.error(error instanceof ApiRequestError ? error.message : "Failed to rotate API key.");
+    } finally {
+      setRotateSubmitting(false);
+    }
+  };
+
+  const handleRevoke = async () => {
+    if (!revokeTarget) return;
+
+    setRevokeSubmitting(true);
+
+    try {
+      await fetchApiData(`/api-keys/${revokeTarget.id}/revoke`, { method: "POST" });
+
+      setData((prev) => ({ ...prev, isActive: false, revokedAt: new Date().toISOString() }));
+      setRevokeTarget(null);
+
+      toast.success("API key revoked.");
+
+      router.refresh();
+    } catch (error) {
+      toast.error(error instanceof ApiRequestError ? error.message : "Failed to revoke API key.");
+    } finally {
+      setRevokeSubmitting(false);
+    }
+  };
+
+  const handleDelete = async () => {
+    if (!deleteTarget) return;
+
+    setDeleteSubmitting(true);
+
+    try {
+      await fetchApiData(`/api-keys/${deleteTarget.id}`, { method: "DELETE" });
+
+      setDeleteTarget(null);
+      toast.success("API key deleted.");
+      router.push("/api-keys");
+
+      router.refresh();
+    } catch (error) {
+      toast.error(error instanceof ApiRequestError ? error.message : "Failed to delete API key.");
+    } finally {
+      setDeleteSubmitting(false);
+    }
+  };
+
+  return (
+    <main className="space-y-6" aria-labelledby="api-key-detail-title">
+      <ApiKeyDetailHeader data={data} />
+
+      {generatedKey && (
+        <GeneratedApiKeyCard
+          generatedKey={generatedKey.key}
+          copied={copied}
+          onCopy={handleCopy}
+          onDismiss={() => setGeneratedKey(null)}
+        />
+      )}
+
+      <section className="grid gap-6 lg:grid-cols-[minmax(0,1fr)_22rem]">
+        <div className="space-y-4">
+          <ApiKeyDetailOverview data={data} />
+          <ApiKeyDetailActions
+            data={data}
+            onDelete={() => setDeleteTarget(data)}
+            onRevoke={() => setRevokeTarget(data)}
+            onRotate={() => setRotateTarget(data)}
+          />
+        </div>
+
+        <ApiKeyDetailScopes scopes={data.scopes} scopeSummary={scopeSummary} />
+      </section>
+
+      <ApiKeyRotateModal
+        keyRecord={rotateTarget}
+        open={Boolean(rotateTarget)}
+        submitting={rotateSubmitting}
+        onSubmitAction={handleRotate}
+        onCloseAction={() => setRotateTarget(null)}
+      />
+
+      <ConfirmationModal
+        variant="warning"
+        title="Revoke API key?"
+        confirmText="Revoke key"
+        onConfirm={handleRevoke}
+        loading={revokeSubmitting}
+        open={Boolean(revokeTarget)}
+        onClose={() => setRevokeTarget(null)}
+        description="This disables the key immediately while keeping the record for audit and history."
+      />
+
+      <DestructiveModal
+        entityName="API key"
+        title="Delete API key?"
+        loading={deleteSubmitting}
+        open={Boolean(deleteTarget)}
+        onConfirmAction={handleDelete}
+        onCloseAction={() => setDeleteTarget(null)}
+        warningText="This action permanently deletes the key from the database."
+        description="Use this only when you no longer need the key at all. Permanent deletion cannot be undone."
+      />
+    </main>
+  );
+}
diff --git a/apps/studio/features/api-keys/components/details/api-key-detail-utils.ts b/apps/studio/features/api-keys/components/details/api-key-detail-utils.ts
new file mode 100644
index 0000000..d669807
--- /dev/null
+++ b/apps/studio/features/api-keys/components/details/api-key-detail-utils.ts
@@ -0,0 +1,20 @@
+import { API_KEY_SCOPE_OPTIONS } from "../ApiKeyScopes";
+
+export const scopeOptionMap = new Map<string, (typeof API_KEY_SCOPE_OPTIONS)[number]>(
+  API_KEY_SCOPE_OPTIONS.map((scope) => [scope.value, scope]),
+);
+
+export function formatDateTime(value: string | null) {
+  if (!value) return "Never";
+
+  return new Intl.DateTimeFormat(undefined, {
+    dateStyle: "medium",
+    timeStyle: "short",
+  }).format(new Date(value));
+}
+
+export function statusClass(isActive: boolean) {
+  return isActive
+    ? "bg-emerald-500/10 border-emerald-500/20 text-emerald-700 dark:text-emerald-300"
+    : "border-red-500/20 bg-red-500/10 text-red-700 dark:text-red-300";
+}
diff --git a/apps/studio/features/api-keys/hooks/useApiKeyCreate.ts b/apps/studio/features/api-keys/hooks/useApiKeyCreate.ts
new file mode 100644
index 0000000..d507fce
--- /dev/null
+++ b/apps/studio/features/api-keys/hooks/useApiKeyCreate.ts
@@ -0,0 +1,109 @@
+"use client";
+
+import type { FormEvent } from "react";
+
+import { toast } from "sonner";
+import { useMemo, useState } from "react";
+
+import type { GeneratedApiKeyRecord } from "../components/ApiKeyTypes";
+
+import { API_KEY_SCOPE_OPTIONS, AVAILABLE_API_KEY_SCOPES } from "../components/ApiKeyScopes";
+
+import { ApiRequestError, fetchApiData } from "@/utils/fetchApiData";
+
+const DEFAULT_SELECTED_SCOPES = ["user:read"];
+
+function resolveErrorMessage(error: unknown) {
+  if (error instanceof ApiRequestError) return error.message;
+  return "Failed to create API key.";
+}
+
+export function useApiKeyCreate() {
+  const [name, setName] = useState("");
+  const [rateLimit, setRateLimit] = useState(20);
+
+  const [copied, setCopied] = useState(false);
+  const [expiresAt, setExpiresAt] = useState("");
+
+  const [creating, setCreating] = useState(false);
+
+  const [generatedKey, setGeneratedKey] = useState<GeneratedApiKeyRecord | null>(null);
+  const [selectedScopes, setSelectedScopes] = useState<string[]>(DEFAULT_SELECTED_SCOPES);
+
+  const selectedScopeDetails = useMemo(
+    () => API_KEY_SCOPE_OPTIONS.filter((scope) => selectedScopes.includes(scope.value)),
+    [selectedScopes],
+  );
+
+  const toggleScope = (scope: string) => {
+    setSelectedScopes((current) =>
+      current.includes(scope) ? current.filter((item) => item !== scope) : [...current, scope],
+    );
+  };
+
+  const resetScopes = () => setSelectedScopes(DEFAULT_SELECTED_SCOPES);
+  const selectAllScopes = () => setSelectedScopes([...AVAILABLE_API_KEY_SCOPES]);
+
+  const createKey = async (event: FormEvent) => {
+    event.preventDefault();
+
+    if (!name.trim() || selectedScopes.length === 0) return;
+
+    try {
+      setCreating(true);
+      const data = await fetchApiData<GeneratedApiKeyRecord>("/api-keys", {
+        method: "POST",
+        body: JSON.stringify({
+          name,
+          scopes: selectedScopes,
+          rateLimit,
+          expiresAt: expiresAt ? new Date(expiresAt).toISOString() : undefined,
+        }),
+      });
+
+      setGeneratedKey(data);
+
+      toast.success("API key created.");
+    } catch (error) {
+      toast.error(resolveErrorMessage(error));
+    } finally {
+      setCreating(false);
+    }
+  };
+
+  const copyGeneratedKey = async () => {
+    if (!generatedKey) return;
+
+    try {
+      await navigator.clipboard.writeText(generatedKey.key);
+
+      setCopied(true);
+
+      toast.success("Copied to clipboard.");
+      setTimeout(() => setCopied(false), 2000);
+    } catch {
+      toast.error("Failed to copy API key.");
+    }
+  };
+
+  return {
+    creating,
+    copied,
+    name,
+    rateLimit,
+    expiresAt,
+    selectedScopes,
+    selectedScopeDetails,
+    generatedKey,
+    canSubmit: Boolean(name.trim() && selectedScopes.length > 0 && !creating),
+    setName,
+    setRateLimit,
+    setExpiresAt,
+    setGeneratedKey,
+    toggleScope,
+    selectAllScopes,
+    resetScopes,
+    createKey,
+    copyGeneratedKey,
+  };
+}
diff --git a/apps/studio/features/api-keys/hooks/useApiKeys.ts b/apps/studio/features/api-keys/hooks/useApiKeys.ts
new file mode 100644
index 0000000..fc0d0d1
--- /dev/null
+++ b/apps/studio/features/api-keys/hooks/useApiKeys.ts
@@ -0,0 +1,201 @@
+"use client";
+
+import { toast } from "sonner";
+import { useCallback, useEffect, useState } from "react";
+
+import type {
+  ApiKeyRecord,
+  GeneratedApiKeyRecord,
+  OffsetPaginationPayload,
+} from "../components/ApiKeyTypes";
+
+import { ApiRequestError, fetchApiData } from "@/utils/fetchApiData";
+
+type UseApiKeysOptions = {
+  initialKeys: ApiKeyRecord[];
+  initialKeysLoaded: boolean;
+  initialPagination: OffsetPaginationPayload<ApiKeyRecord> | null;
+};
+
+function resolveErrorMessage(error: unknown, fallback: string) {
+  if (error instanceof ApiRequestError) return error.message;
+
+  return fallback;
+}
+
+export function useApiKeys({
+  initialKeys,
+  initialPagination,
+  initialKeysLoaded,
+}: UseApiKeysOptions) {
+  const [page, setPage] = useState(initialPagination?.page ?? 1);
+  const [pageSize] = useState(initialPagination?.pageSize ?? 20);
+  const [totalPages, setTotalPages] = useState(initialPagination?.totalPages ?? 1);
+
+  const [loading, setLoading] = useState(!initialKeysLoaded);
+  const [hasMore, setHasMore] = useState(initialPagination?.hasMore ?? false);
+
+  const [keys, setKeys] = useState<ApiKeyRecord[]>(initialKeys);
+  const [generatedKey, setGeneratedKey] = useState<GeneratedApiKeyRecord | null>(null);
+
+  const [copiedId, setCopiedId] = useState<string | null>(null);
+
+  const [deleteSubmitting, setDeleteSubmitting] = useState(false);
+  const [rotateSubmitting, setRotateSubmitting] = useState(false);
+  const [revokeSubmitting, setRevokeSubmitting] = useState(false);
+  const [deleteTarget, setDeleteTarget] = useState<ApiKeyRecord | null>(null);
+  const [rotateTarget, setRotateTarget] = useState<ApiKeyRecord | null>(null);
+  const [revokeTarget, setRevokeTarget] = useState<ApiKeyRecord | null>(null);
+
+  const applyPage = useCallback((data: OffsetPaginationPayload<ApiKeyRecord>) => {
+    setPage(data.page);
+    setKeys(data.items);
+    setHasMore(data.hasMore);
+    setTotalPages(data.totalPages);
+  }, []);
+
+  const fetchKeys = useCallback(
+    async (targetPage = 1) => {
+      try {
+        setLoading(true);
+
+        const data = await fetchApiData<OffsetPaginationPayload<ApiKeyRecord>>(
+          `/api-keys?page=${targetPage}&pageSize=${pageSize}`,
+          { method: "GET" },
+        );
+
+        applyPage(data);
+      } catch (error) {
+        toast.error(resolveErrorMessage(error, "Failed to fetch API keys."));
+      } finally {
+        setLoading(false);
+      }
+    },
+    [applyPage, pageSize],
+  );
+
+  useEffect(() => {
+    if (initialKeysLoaded && initialPagination) {
+      queueMicrotask(() => {
+        applyPage(initialPagination);
+        setLoading(false);
+      });
+
+      return;
+    }
+
+    queueMicrotask(() => {
+      void fetchKeys(1);
+    });
+  }, [applyPage, fetchKeys, initialKeysLoaded, initialPagination]);
+
+  const rotateKey = async (values: {
+    name: string;
+    rateLimit: number;
+    expiresAt?: string;
+    scopes: string[];
+  }) => {
+    if (!rotateTarget) return;
+
+    try {
+      setRotateSubmitting(true);
+
+      const data = await fetchApiData<GeneratedApiKeyRecord>(
+        `/api-keys/${rotateTarget.id}/rotate`,
+        {
+          method: "POST",
+          body: JSON.stringify(values),
+        },
+      );
+
+      setGeneratedKey(data);
+      setRotateTarget(null);
+
+      toast.success("API key rotated.");
+
+      void fetchKeys(1);
+    } catch (error) {
+      toast.error(resolveErrorMessage(error, "Failed to rotate API key."));
+    } finally {
+      setRotateSubmitting(false);
+    }
+  };
+
+  const deleteKey = async () => {
+    if (!deleteTarget) return;
+
+    try {
+      setDeleteSubmitting(true);
+
+      await fetchApiData<null>(`/api-keys/${deleteTarget.id}`, { method: "DELETE" });
+
+      setDeleteTarget(null);
+      toast.success("API key deleted.");
+      void fetchKeys(1);
+    } catch (error) {
+      toast.error(resolveErrorMessage(error, "Failed to delete API key."));
+    } finally {
+      setDeleteSubmitting(false);
+    }
+  };
+
+  const revokeKey = async () => {
+    if (!revokeTarget) return;
+
+    try {
+      setRevokeSubmitting(true);
+
+      await fetchApiData<null>(`/api-keys/${revokeTarget.id}/revoke`, { method: "POST" });
+
+      setRevokeTarget(null);
+      toast.success("API key revoked.");
+      void fetchKeys(1);
+    } catch (error) {
+      toast.error(resolveErrorMessage(error, "Failed to revoke API key."));
+    } finally {
+      setRevokeSubmitting(false);
+    }
+  };
+
+  const copyToClipboard = async (text: string, id: string) => {
+    try {
+      await navigator.clipboard.writeText(text);
+
+      setCopiedId(id);
+      toast.success("Copied to clipboard.");
+      setTimeout(() => setCopiedId(null), 2000);
+    } catch {
+      toast.error("Failed to copy API key.");
+    }
+  };
+
+  return {
+    generatedKey,
+    copiedId,
+    keys,
+    page,
+    totalPages,
+    hasMore,
+    loading,
+    rotateTarget,
+    rotateSubmitting,
+    deleteTarget,
+    deleteSubmitting,
+    revokeTarget,
+    revokeSubmitting,
+    copyToClipboard,
+    setGeneratedKey,
+    setRotateTarget,
+    setRevokeTarget,
+    setDeleteTarget,
+    rotateKey,
+    deleteKey,
+    revokeKey,
+    goToPreviousPage: () => {
+      if (page > 1 && !loading) void fetchKeys(page - 1);
+    },
+    goToNextPage: () => {
+      if (hasMore && !loading) void fetchKeys(page + 1);
+    },
+  };
+}
diff --git a/apps/studio/features/profile/components/advanced/AdvancedProfileClient.tsx b/apps/studio/features/profile/components/advanced/AdvancedProfileClient.tsx
index 2b2dd23..11d2a36 100644
--- a/apps/studio/features/profile/components/advanced/AdvancedProfileClient.tsx
+++ b/apps/studio/features/profile/components/advanced/AdvancedProfileClient.tsx
@@ -98,7 +98,12 @@ const AdvancedProfileClient = () => {
     <div className="space-y-6">
       <AdvancedProfileStatusBand updatedAt={updatedAt} />
 
-      <ProfileAdvanced key={updatedAt ?? "init"} isSaving={saving} profile={profile} onSave={handleSave} />
+      <ProfileAdvanced
+        isSaving={saving}
+        profile={profile}
+        onSave={handleSave}
+        key={updatedAt ?? "init"}
+      />
     </div>
   );
 };
diff --git a/apps/studio/features/profile/components/advanced/AdvancedProfilePanels.tsx b/apps/studio/features/profile/components/advanced/AdvancedProfilePanels.tsx
index 85c53e0..b6e822a 100644
--- a/apps/studio/features/profile/components/advanced/AdvancedProfilePanels.tsx
+++ b/apps/studio/features/profile/components/advanced/AdvancedProfilePanels.tsx
@@ -14,7 +14,7 @@ function StatusMetric({
   value: string;
 }) {
   return (
-    <div className="bg-muted/20 rounded-xl p-3">
+    <div className="bg-muted/10 rounded-xl p-3">
       <div className="text-muted flex items-center gap-2 text-[11px] font-bold tracking-wider uppercase">
         <Icon className="h-3.5 w-3.5" />
         {label}
@@ -27,7 +27,7 @@ function StatusMetric({
 
 const AdvancedProfileStatusBand = ({ updatedAt }: { updatedAt: string | null }) => {
   return (
-    <section className="border-border bg-card grid gap-4 rounded-2xl border p-4 sm:p-5 md:grid-cols-[16rem_minmax(0,1fr)] md:items-center">
+    <section className="border-border bg-card grid gap-4 rounded-2xl border p-4 sm:p-5 md:grid-cols-[16rem_minmax(0,1fr)] md:items-start">
       <div className="grid gap-3 sm:grid-cols-2 md:grid-cols-1">
         <StatusMetric
           icon={Database}
diff --git a/packages/ui/src/components/ui/Checkbox.tsx b/packages/ui/src/components/ui/Checkbox.tsx
index 3399ced..0f4239f 100644
--- a/packages/ui/src/components/ui/Checkbox.tsx
+++ b/packages/ui/src/components/ui/Checkbox.tsx
@@ -44,7 +44,6 @@ export const Checkbox = React.forwardRef<HTMLInputElement, CheckboxProps>(
     const internalRef = React.useRef<HTMLInputElement>(null);
     const [internalChecked, setInternalChecked] = React.useState(controlledChecked || false);
 
-    // Sync internal state with controlled state
     React.useEffect(() => {
       if (controlledChecked !== undefined) {
         setInternalChecked(controlledChecked);
@@ -53,10 +52,8 @@ export const Checkbox = React.forwardRef<HTMLInputElement, CheckboxProps>(
 
     const isChecked = controlledChecked !== undefined ? controlledChecked : internalChecked;
 
-    // Merge refs to allow external access while using it internally
     React.useImperativeHandle(ref, () => internalRef.current!);
 
-    // Sync indeterminate property with the native input element
     React.useEffect(() => {
       if (internalRef.current) {
         internalRef.current.indeterminate = !!indeterminate;
diff --git a/packages/ui/src/components/ui/Input.tsx b/packages/ui/src/components/ui/Input.tsx
index fa0562c..fc7c7eb 100644
--- a/packages/ui/src/components/ui/Input.tsx
+++ b/packages/ui/src/components/ui/Input.tsx
@@ -13,7 +13,7 @@ const inputVariants = {
 
 const inputSizes = {
   sm: "h-9 px-3 text-xs rounded-lg",
-  md: "h-11 px-4 text-sm rounded-2xl",
+  md: "h-11 px-4 text-sm rounded-xl",
   lg: "h-12 px-5 text-base rounded-2xl",
 } as const;