Integrations & Keys
Approve keys, domains, analytics, webhooks, and AI-agent handoffs safely.
Integrations & Keys
Use this page before sharing credentials, approving domains, enabling analytics, or asking an AI agent to work with the workspace.
Credential Ownership
| Item | Admin decision | Hand off only when |
|---|---|---|
| Publishable Key | which approved surfaces may read workspace data | CORS origins and owner are recorded |
| Secret Key | which trusted backend or vendor may perform privileged work | owner, rotation plan, and storage location are clear |
| personal access | whether user-scoped automation is allowed | scope and default workspace are understood |
| AI-agent handoff | what the agent may inspect or change | workspace owner approves task boundaries |
Domain And Analytics Checks
- Add browser origins before public browser calls depend on the workspace.
- Keep analytics allowed origins aligned with the sites you operate.
- Review dropped analytics events as an operations signal, not as customer support copy.
Webhook And Handoff Ownership
- Name who owns webhook delivery failures.
- Name who can rotate credentials after vendor offboarding.
- Keep AI-agent tasks bounded to the workspace and feature area under review.
- Send technical owners only the credentials and context they need.
Secret Key rotation is an admin responsibility. Rotate immediately after suspected exposure, vendor offboarding, or unclear ownership.
Next Actions
- Confirm access owners in Workspace Setup.
- Use Launch Readiness to check keys, CORS, webhooks, and analytics before launch.