api_key.revoked
The API key JWT jti claim is on the platform deny-list and has been revoked.
api_key.revoked is returned when the jti (JWT ID) claim of the presented key appears on the platform's revocation deny-list. Revoked keys are blocked immediately and permanently, independent of their exp claim.
The key was explicitly revoked via DELETE /v1/api-keys/{id} or the key management UI. This may be intentional (security rotation) or an accident.
Mint a new API key and distribute it to all services using the revoked key. Revocation is irreversible.
{
"error": {
"code": "api_key.revoked",
"message": "API key has been revoked",
"request_id": "req_01900000abc"
}
}