Within a Project’s API tab, you will find your project’s unique API Key. This key allows you to invoke calls using the ZBD API.

This is a server-side API key. It must remain secure. Therefore, do not include this key in any client-side applications. If your API key ever becomes compromised, navigate to your Project’s API tab to generate a new one.

ZBD Dev Dashboard | API Tab


Regenerating an API Key

Regenerating an API Key will disable the previous API Key for the Project. Click to regenerate and confirm the prompt.

ZBD Dev Dashboard | Regenerate API Key


ZBD Dev Dashboard | Regenerate API Key


IP Allowlisting

Within the API Tab of the ZBD Dev Dashboard, you can specify which IP addresses can access the ZBD API using your API key(s). API calls originating from IP addresses not explicitly listed here will be rejected. This is a great step to increase your integration’s security with ZBD.

ZBD Dev Dashboard | Allowed IPs


If you ever suspect that your API Key is compromised, regenerate it immediately.