Back to Documentation

API Keys

13 steps - 4 minutes

Learn how to generate and manage API keys for external access to Uru.

What are API Keys?

API keys allow external applications like Claude Desktop, Slack bots, or custom integrations to access your Uru workspace. Each key is workspace-scoped with granular permissions. Keys are prefixed with uru_ and should be treated like passwords - never share them publicly.

1

Navigate to Settings

From the sidebar, click on "Settings" to access your account settings.

2

Click "API Keys"

Select the API Keys tab to manage your API keys.

3

Click "Create API Key"

Click the "Create API Key" button to generate a new key.

4

Enter Key Name

Give your API key a descriptive name (e.g., "Claude Desktop", "Slack Bot", "Gmail Integration").

5

Select Workspace

Choose which workspace this API key should have access to. Keys are workspace-scoped.

6

Set Permissions

Select the permissions for this key: Read (view resources), Write (create/edit resources), Execute (run tools and automations).

Read

View resources

Write

Create and edit resources

Execute

Run tools and automations

7

Click "Generate"

Click the Generate button to create your API key.

8

Copy Your API Key

Copy the generated API key immediately. It will only be shown once for security reasons.

Your API Key:

uru_1a2b3c4d5e6f7g8h9i0j...

Save this key now - it will not be shown again

9

Store Securely

Store your API key in a secure location like a password manager. Never commit it to version control.

10

Use in Claude Desktop

To use with Claude Desktop, add the API key to your MCP server configuration file as shown in the Claude Desktop Setup guide.

11

Monitor Usage

View usage statistics for each API key to track how it is being used.

12

Rotate Keys

Regularly rotate API keys for security. Create a new key, update your integrations, then delete the old key.

13

Revoke Keys

If a key is compromised or no longer needed, click "Delete" to immediately revoke access.

Security Best Practices

  • Never commit API keys to version control or share them publicly
  • Use environment variables to store API keys in applications
  • Grant minimum necessary permissions for each key
  • Rotate keys regularly (every 90 days recommended)
  • Immediately revoke keys if compromised or no longer needed
  • Monitor usage to detect unauthorized access

Related Guides

See the Claude Desktop Setup guide for detailed instructions on using API keys with Claude.

Claude Desktop Setup