> ## Documentation Index > Fetch the complete documentation index at: https://docs.luxxon.dev/llms.txt > Use this file to discover all available pages before exploring further. # List API keys > All API keys in this workspace (including revoked). Plaintext is never returned here — only the prefix. ## OpenAPI ````yaml /openapi.json get /api/v1/workspaces/{workspaceId}/api-keys openapi: 3.0.0 info: title: Luxxon API description: Programmable vision — on-demand live video feeds version: 0.1.0 contact: {} servers: - url: https://api.luxxon.dev/api/v1 security: [] tags: - name: Authentication description: SIWE wallet sign-in. Used by the dashboard; API-key callers skip this. - name: Me description: Identity self-introspection — wallet or API key. - name: Workspaces description: Tenant root. Coverage area, availability, members. - name: API keys description: Per-workspace scoped credentials (lxxn_*). - name: Pricing description: Live rate + optional pre-quoted rate lock. - name: Sessions description: 'Visual session lifecycle: request → dispatch → authorize → start → end.' - name: Wallet description: On-chain wallet state and event log for a workspace. - name: Settlements description: On-chain settlement view per session. - name: Health description: Proof-of-life. No auth. - name: Webhooks description: Inbound video events from Cloudflare Stream. Internal. paths: /api/v1/workspaces/{workspaceId}/api-keys: get: tags: - API keys summary: List API keys description: >- All API keys in this workspace (including revoked). Plaintext is never returned here — only the prefix. operationId: LxApiKeysController_list parameters: - name: workspaceId required: true in: path schema: type: string example: 8c3a5b6f-1d2e-4f7a-9b8c-d1e2f3a4b5c6 - name: x-lx-consistency-token required: true in: header schema: type: string responses: '200': description: Request successful content: application/json: schema: allOf: - $ref: '#/components/schemas/LxSuccessResponseDto' - properties: data: type: array items: $ref: '#/components/schemas/LxApiKeyDto' '401': description: NOT_AUTHENTICATED content: application/json: schema: $ref: '#/components/schemas/LxErrorResponseDto' examples: NOT_AUTHENTICATED: summary: NOT_AUTHENTICATED — Session expired or missing value: statusCode: 401 code: NOT_AUTHENTICATED message: Session expired or missing detail: not_authenticated:example timestamp: '2026-05-13T12:00:00.000Z' '403': description: NOT_AUTHORIZED content: application/json: schema: $ref: '#/components/schemas/LxErrorResponseDto' examples: NOT_AUTHORIZED: summary: NOT_AUTHORIZED — Not authorized for this operation value: statusCode: 403 code: NOT_AUTHORIZED message: Not authorized for this operation detail: not_authorized:example timestamp: '2026-05-13T12:00:00.000Z' '503': description: AUTHZ_ERROR content: application/json: schema: $ref: '#/components/schemas/LxErrorResponseDto' examples: AUTHZ_ERROR: summary: AUTHZ_ERROR — Authorization service unavailable value: statusCode: 503 code: AUTHZ_ERROR message: Authorization service unavailable detail: authz_error:example timestamp: '2026-05-13T12:00:00.000Z' security: - access-token: [] components: schemas: LxSuccessResponseDto: type: object properties: statusCode: type: number example: 200 message: type: string example: Request successful data: type: object description: Endpoint-specific payload. See the per-endpoint schema. timestamp: type: string example: '2026-05-13T12:00:00.000Z' required: - statusCode - message - data - timestamp LxApiKeyDto: type: object properties: id: type: string example: 3b1a9f0c-2d4e-5f6a-7b8c-9d0e1f2a3b4c workspaceId: type: string example: 8c3a5b6f-1d2e-4f7a-9b8c-d1e2f3a4b5c6 prefix: type: string example: lxxn_live_8c3a5b6f_ description: First 20 chars of the plaintext key. Safe for UI display. label: type: string example: Production server-to-server key environment: type: string enum: - LIVE - TEST example: LIVE scopes: example: - sessions:create - sessions:read - pricing:read type: array items: type: string lastUsedAt: type: string nullable: true example: '2026-05-12T08:30:00.000Z' revokedAt: type: string nullable: true example: null gracePeriodEnd: type: string nullable: true example: null createdAt: type: string example: '2026-05-13T11:30:00.000Z' createdByWallet: type: string example: '0xAbC0000000000000000000000000000000000001' required: - id - workspaceId - prefix - label - environment - scopes - lastUsedAt - revokedAt - gracePeriodEnd - createdAt - createdByWallet LxErrorResponseDto: type: object properties: statusCode: type: number example: 400 code: type: string example: INVALID_INPUT description: Machine-readable error code — see ErrorCodes. message: type: string example: Invalid request payload detail: type: string example: session:workspaceMismatch description: Short, safe-to-expose label scoping the failure site. timestamp: type: string example: '2026-05-13T12:00:00.000Z' required: - statusCode - code - message - timestamp securitySchemes: access-token: scheme: bearer bearerFormat: JWT or lxxn_* type: http ````