API Key Scopes and IP Allow List

SafeBase API keys can now be assigned specific permission scopes and restricted to approved IP ranges, giving customers tighter control over API key security.

The Solution

• Scopes: Assign each API key a specific set of permissions (e.g., read-only, KB-only) to limit what each key can do.

• IP Allow List: Restrict each API key to specific IP ranges. Requests from outside the allow list are rejected.

• Configured in Settings → API Keys.

Notes

• This change is backward-compatible. Existing API keys default to full scope with no IP allow list applied — no action required for existing integrations.