Skip to content

Scoped Credentials

Estimated time to read: 1 minute

Scoped credentials allow you to create API tokens and SMTP credentials that are restricted to specific domains, and for API tokens specifically Allow or Deny access to any of our Endpoints.

By default, all credentials have a "Global" scope, meaning they can be used to send emails from any verified domain in your account. With scoped credentials, you can create more secure, limited-access credentials for specific use cases.

Modifying Settings for Sending Credentials

Sending Credentials can be scoped for specific domains and can run in sandbox or production mode. From the Credentials Tab, click on any Sending Credential to modify the domains it is scoped for and the mode it runs in.

Advanced API permissions

Every APIv2 token can be scoped for specific domains and to Allow or Deny access to any of our Endpoints. Access the advanced settings through your user menu:

  1. Click your name in the top right corner
  2. Select API Keys from the dropdown menu
  3. Locate and select your specific API key

Here you can allow or deny access to any of our Endpoints, giving you precise control over what operations your API key can perform.