Manage API access

The API Access page lets you manage the tokens that your storefront, analytics, and developer integrations use to call the Layers APIs. From here you can create new tokens, rotate every token at once, and control which response fields are exposed to clients.

Create an API token

Go to Settings > API Access.
Create a token, give it a descriptive name, and select the permissions it needs.
Copy the token value and store it somewhere safe — you won’t be able to see it again.

Rotate API keys

Rotating keys regenerates the value of every API token on your store while keeping each token’s name, permissions, and default flag intact. Use it when a key may have been exposed, when an integration partner changes, or as part of a routine security review.

Existing API keys stop working immediately after rotation. Update every storefront, analytics, and developer integration with the new keys before rotating in production.

Go to Settings > API Access.
Select Rotate API keys in the page header.
Confirm the action in the dialog.
Copy the new token values from the tokens list and update each integration that uses them.

After rotation, event ingestion endpoints are resynced with the new keys before the old keys are revoked, so a correctly updated storefront keeps tracking without interruption.

Configure response options

The Expose variant inventory toggle controls whether per-variant inventory levels are returned in API responses. Turn it on if your storefront needs to show stock counts or hide sold-out variants, and turn it off to keep inventory data private. Changes save automatically.

Next steps

Navigate settings to explore other store configuration options.
Manage team members to control dashboard access.

Navigate settings Manage team members

⌘I

Documentation Index

​Create an API token

​Rotate API keys

​Configure response options

​Next steps

Create an API token

Rotate API keys

Configure response options

Next steps