Required Permissions
Your root key must have one of the following permissions:api.*.update_key(to update keys in any API)api.<api_id>.update_key(to update keys in a specific API)
Side Effects
Invalidates the key cache for immediate effect, and makes role changes available for verification within 30 seconds across all regions.Request
Specifies which key gets the complete role replacement using the database identifier returned from createKey.Do not confuse this with the actual API key string that users include in requests.This is a wholesale replacement operation that removes all existing roles not included in the request.Role changes take effect immediately but may take up to 30 seconds to propagate across all regions.Pattern:
^[a-zA-Z0-9_]+$Example: key_2cGKbMxRyIzhCxo1Idjz8qReplaces all existing role assignments with this complete list of roles.This is a wholesale replacement operation, not an incremental update like add/remove operations.Providing an empty array removes all direct role assignments from the key.All roles must already exist in the workspace - roles cannot be created automatically.Invalid role references cause the entire operation to fail atomically, ensuring consistent state.Pattern:
^[a-zA-Z0-9_:\-\.\*]+$Max items: 100Example: ["editor", "viewer"]Response
Complete list of all roles currently assigned to the key.This only shows direct role assignments, not inherited or nested roles.