Skip to main content

Revoke Access Keys

Revoke existing Access Keys

This guide shows how to revoke access keys in Cloud Console and with the Object Storage API.

Revoke keys in Cloud Console

If you have admin access, the Keys section allows you create and revoke keys, see the principal assigned to the key, and view the expiration date of temporary keys.

Use the Search function to find keys by name or principal.

The More menu on the right allows you to revoke a key.

Revoke keys with the Object Storage API

The Object Storage API provides endpoints to revoke individual Access Keys, or all keys associated with a principal.

Revoke an individual access key

To revoke an access key, first create a JSON object that specifies the key ID, such as the example data.json.

data.json
{
"accessKey": "CWABCDEFGHIJKLMN"
}

Then, submit the request to the /revoke-access-key/access-key endpoint with the JSON object in the body. Replace {API_ACCESS_TOKEN} with your API access token.

Example request
$
curl -X POST https://api.coreweave.com/v1/cwobject/revoke-access-key/access-key \
-H "Content-Type: application/json" \
-H "Authorization: Bearer {API_ACCESS_TOKEN}" \
-d @data.json

A successful response returns an empty object and the key is revoked.

Response status code 200
{}

Revoke all Access Keys for a principal

To revoke all Access Keys for a principal, create a JSON object that specifies the principal name.

data.json
{
"principalName": "coreweave/[email protected]"
}

Then, submit the request to the /revoke-access-key/principal endpoint with the JSON object in the body. Replace {API_ACCESS_TOKEN} with your API access token.

Example request
$
curl -X POST https://api.coreweave.com/v1/cwobject/revoke-access-key/principal \
-H "Content-Type: application/json" \
-H "Authorization: Bearer {API_ACCESS_TOKEN}" \
-d @data.json

A successful response returns an empty object and all keys for the principal are revoked.

Response status code 200
{}