Add API key management docs#385
Conversation
|
Firetiger deploy monitoring skipped This PR didn't match the auto-monitor filter configured on your GitHub connection:
Reason: PR only modifies documentation files (guides, CLI reference, sidebar navigation) with no changes to API endpoints or Temporal workflows. To monitor this PR anyway, reply with |
|
Preview deployment for your docs. Learn more about Mintlify Previews.
💡 Tip: Enable Workflows to automatically generate PRs for you. |
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
ehfeng
left a comment
ehfeng
left a comment
There was a problem hiding this comment.
Should this belong in "Basics"? It feels more Intermediate, as most people won't need to read these docs in order to get Kernel working for them. This feels more "Kernel is deployed, here's how you managed keys"
| 4. Verify the workload can call Kernel. | ||
| 5. Delete the old API key. | ||
|
|
||
| This keeps downtime low because the old key continues working until the new key is active everywhere. |
juecd
left a comment
juecd
left a comment
There was a problem hiding this comment.
Thanks! Agree w/ Eric's changes, and I left a couple too.
|
|
||
| Use the CLI when you're creating a key from your terminal. Use the SDK or REST API when your backend needs to provision keys for environments, customers, or automation jobs. | ||
|
|
||
| ### CLI |
There was a problem hiding this comment.
IMO we don't need a dedicated CLI section, we don't do this for any other guides. Just remove this entirely and only describe the SDK methods
| ``` | ||
| </CodeGroup> | ||
|
|
||
| ### REST API |
There was a problem hiding this comment.
Remove the REST API section, only keep SDKs
|
|
||
| - Use `kernel login` for CLI-based creation. | ||
| - Use `KERNEL_API_KEY` for SDK or REST-based creation. | ||
| - Use `@onkernel/sdk>=0.58.0` or `kernel>=0.58.0` for SDK API key methods. |
There was a problem hiding this comment.
Remove this - we never mention specific versions in our guides.
Co-authored-by: Eric Feng <ehfeng@users.noreply.github.com>
There was a problem hiding this comment.
Risk assessment: Very Low
Evidence from the diff: this PR only adds/updates documentation pages and Mintlify navigation entries (docs.json, info/*.mdx, and reference/cli*.mdx). It doesn't modify executable code, auth/permission enforcement, infrastructure, schemas, or shared runtime behavior. I found no CODEOWNERS file in the repo and no existing approval on the PR, so approving under the Very Low risk rule.
Sent by Cursor Automation: Assign PR reviewers
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit 3eca23f. Configure here.
There was a problem hiding this comment.
Risk assessment: Very Low
Evidence from the current diff: changes are limited to documentation pages and Mintlify navigation entries (docs.json, info/api-keys.mdx, info/projects.mdx, reference/cli.mdx, reference/cli/api-keys.mdx, and reference/cli/auth.mdx). There are no executable code, schema, auth/permission enforcement, infrastructure, or shared runtime changes.
I also re-checked the update since the previous automation approval: it only moves the API keys page placement in navigation and trims/edits the new docs page, so the risk level has not increased. The PR already has an approval from this automation, so I’m leaving the existing approval in place and not re-approving.
Sent by Cursor Automation: Assign PR reviewers
i have put them under Guides -> Working with your browser -> Intermediate -> after the Auth subgroup, before File I/O |
There was a problem hiding this comment.
Risk assessment: Very Low
Evidence from the current diff: the PR only updates Mintlify navigation and MDX documentation pages (docs.json, info/api-keys.mdx, info/projects.mdx, reference/cli.mdx, reference/cli/api-keys.mdx, and reference/cli/auth.mdx). It doesn't modify executable code, auth or permission enforcement, infrastructure, schemas, or shared runtime behavior.
I re-checked the synchronize update after the prior automation approval and the effective PR diff remains documentation-only, so the risk level has not increased. I found no CODEOWNERS file in the repo. Because this PR already has an approval from this automation, I'm leaving that approval in place and not re-approving.
Sent by Cursor Automation: Assign PR reviewers
Thank you! |
3 participants
Summary
kernel api-keysValidation
python3 -m json.tool docs.jsongit diff --checkinfo/api-keys.mdxNote
Low Risk
Documentation-only changes with no runtime, auth, or API behavior modifications.
Overview
Adds API key management documentation across Guides and CLI reference, with navigation wired so discoverability matches Projects and auth flows.
A new Intermediate guide at
info/api-keys.mdxdocuments SDK workflows for creating, listing, updating, and deleting keys; org vs project scope viaproject_id; one-time plaintextkeyhandling; rotation steps; and a troubleshooting table. A newreference/cli/api-keys.mdxdocumentskernel api-keyscreate/list/get/update/delete, flags (including--project-idvs global--project), aliases, and JSON output.docs.jsonaddsinfo/api-keysunder Intermediate Guides andreference/cli/api-keyson the CLI tab.info/projects.mdxexpands how to create project-scoped keys (dashboard, CLI, SDK, guide).reference/cli.mdxadds an API Keys card;reference/cli/auth.mdxlinks to CLI api-keys and uses a concreteKERNEL_API_KEYexample.Reviewed by Cursor Bugbot for commit 6073fb7. Bugbot is set up for automated code reviews on this repo. Configure here.