API Key - CI/CD Glossary Definition
An API key is a static secret string that identifies and authorizes a caller, usually passed in a header (X-API-Key) or query parameter. It identifies an application, not a specific user.
In CI
API keys for third-party services belong in encrypted repository or environment secrets. Because they are long-lived, prefer short-lived OIDC tokens where the provider supports them.
Related guides
Bearer Token - CI/CD Glossary DefinitionBearer Token: A bearer token is a credential sent in an `Authorization: Bearer <token>` header; whoever holds…
Rate Limit Header - CI/CD Glossary DefinitionRate Limit Header: A rate limit header is an HTTP response header that reports your quota usage, commonly `X-…
Mutual TLS - CI/CD Glossary DefinitionMutual TLS: Mutual TLS (mTLS) is TLS where both sides present certificates: the client authenticates the serv…