Virtual Keys
Virtual Keys are API keys scoped to a specific user, application, or team. They replace the IG1 AI Master API Key for fine-grained access control.
Create a Virtual Key
- Go to Virtual Keys in the left sidebar.
- Click Create New Key.
- Configure Key Ownership:
- Owned By: Is the Key for
You,Service AccountorAnother User(In that case pick a user) - Team: assign to a team to inherit its limits and budget
- Owned By: Is the Key for
- Configure Key Details:
- Key Name: Name of the key (e.g.
app-backend-prod,john-doe-dev) - Models: Select models allowed for the Virtual Key.
- Key Type: AI APIs (by default) or Management Key to manage users through API.
- Key Name: Name of the key (e.g.
- Optional Settings
- Max Budget (USD) (optional — to set a maximum budget for the key)
- Reset Budget (optional - to set a periodic budget)
- Tokens per minute Limit (TPM) (optional - set a limit of token per minute usage)
- Requests per minute Limit (TPM) (optional - set a limit of token per minute usage)
- Key Lifecycle / Expire Key (optional): Set an expiration date for the key.
- Click Create Key.
Copy the key immediately — it will not be shown again.
Keep your key secret
- Never expose it in client-side code (browsers, mobile apps).
- Load it from an environment variable or a secrets manager on the server side.
Revoke a Key
- Go to Virtual Keys.
- Find the key and click on its Key ID.
- Click Delete Key
- Confirm.
warning
Revocation is immediate. Any request using that key will return 401 Unauthorized.
Audit Key Usage
- Go to Usage in the left sidebar.
- Select Key Activity tab.
- Select a time range for you audit (by default last 7 days).
- A dashboard with overall usage is displayed.
- For a specific key usage, pick a key and analyse usage.
Use this to identify unused keys and clean up regularly.