API key basics for spreadsheet-backed APIs

Keep private Automapic projects safe with bearer tokens, scoped storage, and regular rotation.

Automapic Team·May 8, 2026·3 min read

API keys protect private projects from accidental public access. Treat each key like a password for your data.

Use environment variables

Store keys in server-side environment variables and never commit them to source control.

Create a new key before revoking an old one so production apps can switch without downtime.

If a project is public, confirm the data is safe to expose before sharing the URL.