Overview

Thena provides flexible API key options for developers and teams to securely interact with our platform.

Personal API key

🔐 Every Thena user has access to a personal API key.

  • Your API key is unique to your account and tied to your user-level permissions.
  • You can view and regenerate your key by heading to Settings → Security & access.
  • After regenerating, your old key will be deactivated immediately.

Keep your API key secure. Treat it like a password—don’t expose it in client-side code or version control.

App-based API key

🧱 If you prefer not to use your personal key—or want to build integrations that aren’t tied to a specific user—you can create an app in Thena:

  1. Go to Settings → Apps and click Create app.
  2. Each app comes with its own API key and can be scoped with specific permissions.

This is recommended for long-term integrations, third-party services, or production environments.

Best practices

🛠 Follow these guidelines to keep your API keys secure:

  • Use environment variables to store and reference API keys in your code.
  • Rotate your keys periodically for security.
  • Create separate apps for staging, dev, and production environments to isolate access.
  • Audit access regularly through the Thena dashboard.