Required Permissions
Your root key must have one of the following permissions:api.*.update_key(to update keys in any API)api.<api_id>.update_key(to update keys in a specific API)
Side Effects
Invalidates the key cache for immediate effect, and makes permissions available for verification within 30 seconds across all regions.Request
Specifies which key receives the additional permissions using the database identifier returned from
keys.createKey.Do not confuse this with the actual API key string that users include in requests.Pattern: ^[a-zA-Z0-9_]+$Example: key_2cGKbMxRyIzhCxo1Idjz8qGrants additional permissions to the key through direct assignment or automatic creation.Duplicate permissions are ignored automatically, making this operation idempotent.Adding permissions never removes existing permissions or role-based permissions.Any permissions that do not exist will be auto created if the root key has permissions, otherwise this operation will fail with a 403 error.Pattern:
^[a-zA-Z0-9_:\-\.\*]+$Min items: 1Max items: 1000Example: ["documents.read", "documents.write"]Response
Complete list of all permissions directly assigned to the key (including both newly added permissions and those that were already assigned).Important: This list does NOT include permissions granted through roles. For a complete permission picture, use
keys.getKey instead.An empty array indicates the key has no direct permissions assigned.