while-basic
diff --git a/‎apps/backend/scripts/generate-openapi.ts‎
Lines changed: 1 addition & 1 deletion b/‎apps/backend/scripts/generate-openapi.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎apps/backend/src/app/api/latest/(api-keys)/handlers.tsx‎
Lines changed: 10 additions & 1 deletion b/‎apps/backend/src/app/api/latest/(api-keys)/handlers.tsx‎
Lines changed: 10 additions & 1 deletion
diff --git a/‎docs/fern/docs-template.yml‎
Lines changed: 13 additions & 1 deletion b/‎docs/fern/docs-template.yml‎
Lines changed: 13 additions & 1 deletion
diff --git a/‎docs/fern/docs/pages-template/concepts/api-keys.mdx‎
Lines changed: 216 additions & 0 deletions b/‎docs/fern/docs/pages-template/concepts/api-keys.mdx‎
Lines changed: 216 additions & 0 deletions
@@ -24,7 +24,7 @@ async function main() {
         const suffix = filePath.slice(filePathPrefix.length);
         const midfix = suffix.slice(0, suffix.lastIndexOf("/route."));
         const importPath = `${importPathPrefix}${suffix}`;
-        const urlPath = midfix.replaceAll("[", "{").replaceAll("]", "}");
+        const urlPath = midfix.replaceAll("[", "{").replaceAll("]", "}").replaceAll(/\/\(.*\)/g, "");
         const myModule = require(importPath);
         const handlersByMethod = new Map(
           typedKeys(HTTP_METHODS).map(method => [method, myModule[method]] as const)
 
@@ -150,7 +150,10 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
   return {
     create: createSmartRouteHandler({
       metadata: {
-        hidden: true,
+        hidden: false,
+        description: "Create a new API key for a user or team",
+        summary: "Create API key",
+        tags: ["API Keys"],
       },
       request: yupObject({
         auth: yupObject({
@@ -218,6 +221,12 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
       },
     }),
     check: createSmartRouteHandler({
+      metadata: {
+        hidden: false,
+        description: `Validate a ${type} API key`,
+        summary: `Check ${type} API key validity`,
+        tags: ["API Keys"],
+      },
       request: yupObject({
         auth: yupObject({
           type: serverOrHigherAuthTypeSchema,
 
@@ -1,4 +1,3 @@
-
 tabs:
   documentation:
     display-name: Documentation
@@ -78,6 +77,9 @@ navigation:
           - page: Permissions & RBAC
             icon: fa-regular fa-user-lock
             path: ./docs/pages-{platform}/concepts/permissions.mdx
+          - page: API Keys
+            icon: fa-regular fa-key
+            path: ./docs/pages-{platform}/concepts/api-keys.mdx
           - page: Webhooks
             icon: fa-regular fa-webhook
             path: ./docs/pages-{platform}/concepts/webhooks.mdx
@@ -202,6 +204,16 @@ navigation:
               - link: ServerContactChannel
                 icon: fa-duotone fa-square-t
                 href: /sdk/types/contact-channel#servercontactchannel
+          - section: API Key
+            icon: fa-duotone fa-square-t
+            path: ./docs/pages-{platform}/sdk/types/api-key.mdx
+            contents:
+              - link: UserApiKey
+                icon: fa-duotone fa-square-t
+                href: /sdk/types/api-key#userapikey
+              - link: TeamApiKey
+                icon: fa-duotone fa-square-t
+                href: /sdk/types/api-key#teamapikey
           - page: Project
             icon: fa-duotone fa-square-t
             path: ./docs/pages-{platform}/sdk/types/project.mdx
 
@@ -0,0 +1,216 @@
+---
+slug: concepts/api-keys
+subtitle: Create and manage API keys for users and teams
+---
+
+API keys provide a secure way for your users to authenticate with your application's backend. 
+They enable programmatic access to your API services, allowing developers to associate requests with specific users or teams.
+Stack Auth provides prebuilt UI components for the users and teams to manage their own API keys.
+
+## Overview
+
+API keys allow your users to access your backend services programmatically. 
+
+```mermaid
+flowchart LR
+    User[User/Client] --> |API key request with API key| YourServer[Your application server]
+    YourServer --> |Validate| StackAuth[Stack Auth Service]
+    StackAuth --> |Return authenticated User object| YourServer
+    YourServer --> |Process request & respond| User
+```
+
+Stack Auth provides two types of API keys:
+
+### User API keys
+
+User API keys are associated with individual users and allow them to authenticate with your API.
+
+<Tabs>
+  <Tab title="Client">
+    ```typescript
+    const user = await stackApp.getUser();
+    
+    const apiKey = await user.createApiKey({
+      description: "My client application",
+      expiresAt: new Date(Date.now() + (90 * 24 * 60 * 60 * 1000)), // 90 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+  <Tab title="Server">
+    ```typescript
+    const user = await stackServerApp.getServerUserById("user-id-here");
+    
+    const apiKey = await user.createApiKey({
+      description: "Admin-provisioned API key",
+      expiresAt: new Date(Date.now() + (30 * 24 * 60 * 60 * 1000)), // 30 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+</Tabs>
+
+### Team API keys
+
+Team API keys are associated with teams and can be used to provide access to team resources over your API.
+
+<Tabs>
+  <Tab title="Client">
+    ```typescript
+    const user = await stackApp.getUser();
+    const team = await user.getTeam("team-id-here");
+    
+    const teamApiKey = await team.createApiKey({
+      description: "Team integration service",
+      expiresAt: new Date(Date.now() + (60 * 24 * 60 * 60 * 1000)), // 60 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+  <Tab title="Server">
+    ```typescript
+    const team = await stackServerApp.getTeam("team-id-here");
+    
+    const teamApiKey = await team.createApiKey({
+      description: "Admin-provisioned team API key",
+      expiresAt: new Date(Date.now() + (30 * 24 * 60 * 60 * 1000)), // 30 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+</Tabs>
+
+## Setting Up API Keys in Stack Auth
+
+To use API keys in your application, you need to enable them in your project settings. Navigate to the Stack Auth dashboard, select your project, and enable User API Keys and/or Team API Keys in the project settings.
+
+## Working with API Keys
+
+### Creating User API Keys
+
+<Tabs>
+  <Tab title="Client">
+    ```typescript
+    const apiKey = await user.createApiKey({
+      description: "Development environment key",
+      expiresAt: new Date(Date.now() + (90 * 24 * 60 * 60 * 1000)), // 90 days from now
+      isPublic: false,
+    });
+    ```
+  </Tab>
+  <Tab title="Server">
+    ```typescript
+    const userId = "user-id-here";
+    const user = await stackServerApp.getServerUserById(userId);
+    
+    const apiKey = await user.createApiKey({
+      description: "API key created by server",
+      expiresAt: new Date(Date.now() + (90 * 24 * 60 * 60 * 1000)), // 90 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+</Tabs>
+
+### Creating Team API Keys
+
+<Tabs>
+  <Tab title="Client">
+    ```typescript
+    const team = await user.getTeam("team-id-here");
+    
+    const teamApiKey = await team.createApiKey({
+      description: "Team service integration",
+      expiresAt: new Date(Date.now() + (60 * 24 * 60 * 60 * 1000)), // 60 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+  <Tab title="Server">
+    ```typescript
+    const team = await stackServerApp.getTeam("team-id-here");
+    
+    const teamApiKey = await team.createApiKey({
+      description: "Server-created team API key",
+      expiresAt: new Date(Date.now() + (60 * 24 * 60 * 60 * 1000)), // 60 days
+      isPublic: false,
+    });
+    ```
+  </Tab>
+</Tabs>
+
+### Listing API Keys
+
+<Tabs>
+  <Tab title="Client">
+    ```typescript
+    // List user's API keys
+    const userApiKeys = await user.listApiKeys();
+    
+    // List a team's API keys
+    const team = await user.getTeam("team-id-here");
+    const teamApiKeys = await team.listApiKeys();
+    
+    // Using hooks in React components
+    const apiKeys = user.useApiKeys();
+    const teamApiKeys = team.useApiKeys();
+    ```
+  </Tab>
+  <Tab title="Server">
+    ```typescript
+    // List a specific user's API keys
+    const user = await stackServerApp.getServerUserById("user-id-here");
+    const userApiKeys = await user.listApiKeys();
+    
+    // List a team's API keys
+    const team = await stackServerApp.getTeam("team-id-here");
+    const teamApiKeys = await team.listApiKeys();
+    ```
+  </Tab>
+</Tabs>
+
+### Revoking API Keys
+
+API keys can be revoked when they are no longer needed or if they have been compromised.
+
+<Tabs>
+  <Tab title="Client">
+    ```typescript
+    const apiKeys = await user.listApiKeys();
+    const apiKeyToRevoke = apiKeys.find(key => key.id === "api-key-id-here");
+    
+    if (apiKeyToRevoke) {
+      await apiKeyToRevoke.revoke();
+    }
+    ```
+  </Tab>
+  <Tab title="Server">
+    ```typescript
+    const user = await stackServerApp.getServerUserById("user-id-here");
+    const apiKeys = await user.listApiKeys();
+    
+    const apiKeyToRevoke = apiKeys.find(key => key.id === "api-key-id-here");
+    
+    if (apiKeyToRevoke) {
+      await apiKeyToRevoke.revoke();
+    }
+    ```
+  </Tab>
+</Tabs>
+
+### Checking API Key Validity
+
+You can check if an API key is still valid:
+
+```typescript
+const apiKeys = await user.listApiKeys();
+const apiKey = apiKeys.find(key => key.id === "api-key-id-here");
+
+if (apiKey && apiKey.isValid()) {
+  // API key is valid
+} else {
+  // API key is invalid (expired or revoked)
+  const reason = apiKey ? apiKey.whyInvalid() : "not found";
+  console.log(`API key is invalid: ${reason}`);
+}
+```