Bindplane is excited to join Dynatrace!Learn more
Company News

Multiple API Keys Are Here — More Keys, Better Control, Stronger Security

One key per project, no expiration, no way to delete it. Those days are over.

Brian Gardner
Brian Gardner
Share:

Today we're rolling out a major upgrade to API Keys in Bindplane. You can now create up to 25 API keys per project, give each one a description, set an expiration date, and delete keys you no longer need. Under the hood, every key is now hashed with Argon2, the modern standard for credential storage.

If you've been working around the old single-key limit by sharing one key across CI jobs, scripts, and teammates, this release is for you.

What's New

  • Up to 25 keys per project. Issue a dedicated key for each pipeline, CI job, integration, or teammate instead of sharing one key across everything.
  • Descriptions on every key. Label keys so you actually know which one belongs to your GitHub Action, your Terraform run, or that script you wrote six months ago.
  • Optional expiration dates. Set keys to expire automatically. Great for short-lived automation, contractor access, or rotating credentials on a schedule.
  • Deletion. A key got leaked, a teammate left, an integration got retired — just delete it. No more regenerating the one key everything depends on.
  • Argon2 hashing. Keys are now stored using Argon2, providing significantly stronger protection against offline attacks compared to traditional hashing.
  • Audit logging. Every key creation and deletion is recorded in the project Audit Log, so you always know who did what and when.

Why It Matters

The old model worked, but it forced trade-offs. One key meant one blast radius — if a credential was exposed, the only fix was generating a new key and updating every system that used it. No expiration meant keys lived forever. No descriptions meant nobody remembered what the key was for.

With this release, API keys finally work the way you'd expect:

  • Scope per use case. A separate key for each pipeline, integration, or environment.
  • Rotate with confidence. Create the new key, cut over, delete the old one — no downtime.
  • Stay compliant. Expirations and audit logs make it easier to meet internal security and compliance requirements.

Stronger Security by Default

Every API key created in Bindplane is now hashed with Argon2, the password-hashing algorithm that is recommended by OWASP. New keys benefit automatically. There's nothing for you to configure.

What's Next

We're not done. Granular permission scoping is on the roadmap, so you'll soon be able to issue keys with only the access they need: read-only keys for dashboards, write-scoped keys for CI, and more. Stay tuned.

Try It Today

Head to Project Settings → API Keys to create a new key. Existing keys keep working — no migration required.

For full details, see the API Keys documentation.

Bindplane is a platform for building and deploying OpenTelemetry-based telemetry pipelines at scale. Learn more at bindplane.com.

Brian Gardner
Brian Gardner
Share:

Related posts

All posts

Get our latest content
in your inbox every week

By subscribing to our Newsletter, you agreed to our Privacy Notice

Community Engagement

Join the Community

Become a part of our thriving community, where you can connect with like-minded individuals, collaborate on projects, and grow together.

Ready to Get Started

Deploy in under 20 minutes with our one line installation script and start configuring your pipelines.

Try it now