Read-Only API Key

Ken · ‎Jun 20, 2015

Is there a read-only API key available, or this is this part of the “Granular Access” that is coming soon?

Andrew · ‎Jun 23, 2015

Hey Ken,

We don’t have a read-only API key just yet, but this is something we’ll likely do. CC’ing @Alexander_Sorokin, who is the engineer behind the Airtable API.

Alexander_Sorok · ‎Jun 23, 2015

Hi Ken,

For now, you can create a separate “API user” and share the base with them as read-only. That user’s API key will only have read access to the base.

Alex

Ken · ‎Jun 23, 2015

Thanks, Andrew and Alexander!
We’ll give it a try.

BTW, are there resources/examples/tutorials on use of API besides the auto-generated API doc?

Guillermo_Estra · ‎Jan 29, 2019

I’m also very interested in this to be able to use Airtable from the browser without sharing credentials. There is a way to “SHARE” a Read-only link to the Full database! Is there a way to do exactly the same via the API?

Marc_Vilella · ‎May 02, 2019

IMHO creating a new user just to have read permissions to the API is quite overkilling

David_Fong1 · ‎Mar 07, 2020

Creating a separate user with ‘read-only’ permissions to access the API works, but that user needs an API_KEY, a key which is potentially exposed to our read-only ‘guest’.

Although our ‘API user’ might have read-only access to the database being shared, the user with the API-KEY potentially has write access to other features of the guest account.

Is there any precautions we should take to make sure the possessor of the ‘read-only’ account API-KEY doesn’t do something awful with the ‘read-only guest’ account?