API keys

{#if !mintOpen && !reveal} {/if}

{#if reveal}

Save this token now — it will never be shown again.

Paste it into your CLI config or external integration. PiCloud only ever stores a hash; if you lose it, mint a new one.

{reveal.raw_token}

I've saved this token somewhere safe.

{/if} {#if mintOpen}

Name 1–{NAME_MAX} chars. Only you see it. Binding Pick an app to scope this key, or leave instance-wide. Expires Leave blank for no expiry.

Scopes

{#each ALL_SCOPES as scope (scope)} {@const instanceScope = scopeIsInstance(scope)} {@const disabled = boundToApp && instanceScope} toggleScope(scope)} /> {scope} {/each}

{mintForm.scopes.size === 0 ? 'Pick at least one scope.' : `${mintForm.scopes.size} scope${mintForm.scopes.size === 1 ? '' : 's'} selected.`}

{#if mintError}

{mintError}

{/if}

{/if} {#if loadError}

{loadError}

{:else if keys.length === 0 && !reveal && !mintOpen}

No API keys yet. Mint one to authenticate the CLI or external integrations.

{:else if keys.length > 0}

Name

Prefix

Scopes

Binding

Created

Last used

Expires

{#each keys as key (key.id)}

{key.name}

pic_{key.prefix}…

{#each key.scopes as s (s)} {s} {/each}

{appLabel(key.app_id)}

{shortDate(key.created_at)}

{relative(key.last_used_at)}

{key.expires_at ? shortDate(key.expires_at) : 'Never'}

{/each}

{/if}

{me.username}

Save this token now — it will never be shown again.