Managing your API Key permissions in Promptitude gives you precise control over which prompts and flows can access your integrations. This granular approach helps you maintain better security, track performance more effectively, and organize your workflow management with confidence.
π What Is an API Key?
Think of your API Key as a special digital key that connects your Promptitude prompts and flows to external applications and services. Just like a physical key opens specific doors, your API Key acts as a secure bridge that allows your prompts to work with other tools in your business ecosystem.
Your API Key carries unique permissions that determine what it can access and how it can be used, ensuring your prompts and workflows operate safely and efficiently.
π How API Key Permissions Work
Promptitude's permission system is designed to give you granular control over your API Key usage. Here's how it works:
Setting Up Permissions
Navigate to your API Key settings using the three-dot menu next to your API Key
Select "Manage Permissions" to open the configuration panel
Choose specific permissions that align with your security and usage requirements
Designate which prompts or flows can access that particular API Key
This approach means you can have different API Keys for different purposes, each with their own customized access levels.
π Note: The default setting is broad permissions for the entire organization.
β Benefits of Specific Permissions
Enhanced security: Only authorized prompts and flows can use specific API Keys
Better organization: Keep different projects and workflows separated
Improved tracking: Monitor performance and usage more effectively
Flexible management: Adjust permissions as your needs change
π§ͺ How to Test and Verify Your Permissions
Verification Within Promptitude
The easiest way to check if your permissions are working correctly is directly within Promptitude:
Open any prompt you want to test
Navigate to the "Integrate" tab within that prompt
Check the available API Keys in the displayed list
You'll notice that API Keys without the proper permissions won't appear in the list
This filtering system ensures you can only see and use API Keys that have been specifically configured for that prompt or flow.
External Verification Using Testing Tools
For a more thorough verification, you can use helper applications like Postman:
Set up your API call structure based on your specific prompt or flow
Make the API request using your configured API Key
Review the response to confirm whether access was granted or denied
This external testing method gives you confidence that your permissions are working correctly before deploying your integrations in production environments.
e.g. Prompts
e.g. Flows
Next Steps
With granular API Key permissions, you now have complete control over how your prompts and flows interact with external systems. Start by reviewing your current API Keys and consider how specific permissions could improve your workflow security and organization.
Remember, you can always adjust permissions as your business needs evolve, making this feature both powerful and flexible for your ongoing prompt management strategy.