Build

API Keys

Manage API keys for authenticating with the Lev External API v2.

Updated March 2026

Overview

API keys are managed via the Lev web app or the /build/api-keys REST endpoints. Keys are tied to the authenticated user's account and inherit their permissions.

  • Keys are prefixed with lev_sk_ for identification
  • The full key value is only shown once at creation — store it immediately
  • Revoked keys take effect immediately
  • Each account has a maximum number of allowed keys (visible via GET /me)

Creating Keys via the Lev Web App

The fastest way to create an API key is through the Lev settings page at app.lev.com.

Requirements

You must be a workspace admin to manage API keys. The feature must be enabled for your account.

To create a key:

  1. Sign in to app.lev.com
  2. Click your name at the bottom of the sidebar, then click Settings
  3. Select the API Keys tab
  4. Click the Create key button
  5. Enter a descriptive label (e.g., "Production Sync" or "CI Pipeline") and click Create
  6. Copy your key immediately — click the copy icon next to the key. It will only be shown once
  7. Click Done
Store your key securely

The full API key is only displayed once at creation time. If you lose it, you'll need to revoke the key and create a new one.

To revoke a key:

  1. Go to Settings → API Keys (same navigation as above)
  2. Find the key in the list and click the trash icon
  3. Confirm by clicking Revoke key — access is revoked immediately

Create Key (API)

POST/api/external/v2/build/api-keys

Create a new API key for the authenticated user

Response (201):

{
  "request_id": "...",
  "timestamp": "2026-03-20T15:30:45Z",
  "data": {
    "id": 42,
    "label": "CI Pipeline Key",
    "key_prefix": "lev_sk_abc1",
    "api_key": "lev_sk_abc123def456ghi789...",
    "created_at": "2026-03-20T15:30:45Z"
  }
}

Warning: The api_key field is only included in the creation response. Store it securely.

List Keys (API)

GET/api/external/v2/build/api-keys

List all API keys for the authenticated user

Response (200):

{
  "request_id": "...",
  "timestamp": "2026-03-20T15:30:45Z",
  "data": [
    {
      "id": 42,
      "label": "CI Pipeline Key",
      "key_prefix": "lev_sk_abc1",
      "created_at": "2026-03-20T15:30:45Z",
      "last_used_at": "2026-03-19T12:00:00Z"
    }
  ],
  "pagination": {
    "total": 3,
    "limit": 50,
    "offset": 0,
    "has_more": false
  }
}

Note: The full key value is never returned in list responses — only the key_prefix.

Revoke Key (API)

DELETE/api/external/v2/api-keys/{key_id}

Permanently revoke an API key

Response (200):

{
  "request_id": "...",
  "timestamp": "2026-03-20T15:30:45Z",
  "data": {
    "deleted": true
  }
}

Revoked keys are immediately invalidated. Any request using a revoked key will receive a 401 Unauthorized response.

More in this section
Account & Team
Access account details, team members, and user profile in the Lev External API v2.
Agent Workflows
Use these patterns to structure agent prompts, tool sequencing, and human review loops for Lev-backed workflows.
Lev API Documentation
Build integrations with the Lev commercial real estate platform using REST APIs, machine-readable docs, and AI-friendly reference surfaces.
Authentication
Learn how to authenticate with the Lev External API v2 using API keys or JWT tokens.