Skip to content
Submit a Support Ticket
  • There are no suggestions because the search field is empty.

Recovering API Keys

Understanding API key security and recovery policies

Understanding API key security and recovery policies

API keys are displayed only once when they are first created. For security reasons, we do not store the actual key value in our database - only a secure hash of the key is retained.

Why Keys Cannot Be Recovered

  • We follow security best practices by never storing raw API key values

  • Only a cryptographic hash of the key is stored in our database

  • This ensures that even if our database is compromised, actual key values remain secure

  • No one, including Sophiie staff, can recover or view previously generated keys

What To Do If You Lose Your Key

If you lose access to your API key, you will need to:

  1. Generate a new API key through the dashboard

  2. Update your integrations with the new key

  3. Delete the old key to prevent any unauthorized access

Security Recommendations

  • Save your API key in a secure location immediately after generation

  • Use environment variables or secure secret management systems to store keys

  • Never commit API keys to version control or share them in plain text

  • Rotate keys regularly as a security best practice