App Store Connect API Key Guide: Create, Manage & Revoking
The API key in App Store Connect is essential for secure app management and ASO optimization, allowing automated access to your app’s metadata, analytics, and more.
Here’s a quick guide to maximizing its benefits:
- Expiration: API keys are permanent and do not expire.
- Change API key: Once created, keys cannot be modified to add access to more services.
- Revocation: API keys can be revoked at any time in App Store Connect, but once revoked, they cannot be reactivated.
- Limitations: A maximum of 50 active keys is allowed per account.
Release a new API key on App Store Connect
On App Store Connect, create a new App Store Connect API key under Users and Access → Integrations → App Store Connect API:
We recommend creating a unique key for each application group.
The newly created key needs to have at least the access level App Manager:
Core information about API key
Download the generated key. You will receive a .p8 key file.
Also take note of the Issuer ID (shown above the “Active” table).
The Issuer ID is a unique identifier provided by Apple for each App Store Connect account.
It is used to authenticate requests made through the API key and links the key back to the specific Apple Developer account.
This ID, along with the Key ID and private key file (.p8 file), is required to securely access and manage app data on App Store Connect.
When setting up API-based integrations (like in ASO.dev), you’ll need to input the Issuer ID, Key ID, and private key for the API key to authorize actions, such as editing metadata or viewing reviews.
Revoke an API key on App Store Connect
On App Store Connect, revoke an App Store Connect API key under Users and Access → Integrations → App Store Connect API:
Revoking the key immediately disables access, ensuring enhanced security if a key is compromised or no longer needed.
Revoked API keys are permanently deleted and cannot be reactivated.
To restore access, you must create a new API key.