Self-revoke the calling API key

Revoke the API key in the Authorization header. Use this when an agent detects a credential compromise and must destroy its own authorization without waiting on a human. No rate limit — agents must be able to call this freely under attack. Does not touch any other key on the account.

Authentication

AuthorizationBearer

API key (lb_ prefix). Pass as: Authorization: Bearer lb_...

Response

Successful Response

idstring

Unique API key ID (lbk_ prefixed).

namestring

Human-friendly label for this key.

prefixstring

First 8 chars of the raw key (e.g. ‘lb_abcd12’) — safe to display.

created_atdatetime

Time at which the key was created.

object"api_key"

Object type identifier. Always api_key.

last_used_atdatetime or null

Last time this key was used to authenticate a request.

revoked_atdatetime or null

When the key was revoked. Null if still active.

Errors

401

Unauthorized Error

1	import requests
2
3	url = "https://api.listbee.so/v1/api-keys/self-revoke"
4
5	headers = {"Authorization": "Bearer <token>"}
6
7	response = requests.post(url, headers=headers)
8
9	print(response.json())

1	{
2	"id": "lbk_7kQ2xY9mN3pR5tW1vB8a",
3	"name": "prod-agent",
4	"prefix": "lb_abcd12",
5	"created_at": "2026-04-01T12:00:00Z",
6	"object": "api_key",
7	"last_used_at": "2026-04-10T09:00:00Z",
8	"revoked_at": "2024-01-15T09:30:00Z"
9	}