> For the complete documentation index, see [llms.txt](https://docs.atomyx.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.atomyx.io/atomyx-submit/implementation/api-integration/getting-an-api-key.md). # Getting an API Key Submit API keys are issued and managed through [Atomyx Vault](/atomyx-vault/authentication-and-api-keys.md). ### What customers need To use the Submit API, your organisation needs: * access to Atomyx Vault * permission to use Atomyx Submit * an API key with Submit API access * the production API base URL * a secure place to store the API key ### Production API base URL ``` https://submit.atomyx.io/api ``` ### API key security API keys should be treated like passwords. Do not expose API keys in: * client-side JavaScript * public repositories * screenshots * shared logs * browser-based frontend code * support tickets unless specifically requested through a secure process * callback request payloads ### Recommended storage Store API keys in: * server-side environment variables * a secret manager * a secure CI/CD variable store * protected application configuration ### Rotating an API key When rotating an API key, update the key in your integration environment before removing the old key. Recommended rotation process: 1. Create or request the new API key. 2. Add the new key to your integration configuration. 3. Send a controlled test request. 4. Confirm the request succeeds. 5. Remove or revoke the old key. 6. Monitor the integration for failed authentication responses. ### Revoking an API key Revoke API keys immediately if they are exposed, copied into a public repository, shared with the wrong person, or no longer needed. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.atomyx.io/atomyx-submit/implementation/api-integration/getting-an-api-key.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.