Skip to main content
Developer API Keys are managed in the Medera Console under Settings → Developer API Keys.
1

Open the Console

2

Pick an environment

Sandbox keys can only touch synthetic data. Staging and production keys require an active BAA.
3

Pick a project

Projects scope a key to a specific use case (intake pipeline, scribe service, PA batch, etc.). Per-project usage and quota are tracked in the developer_usage_daily table.
4

Pick scopes

Combine the smallest scopes that cover the use case. PHI scopes require a BAA on file.
5

Copy the secret

The key is shown once. Store it in your secret manager (AWS Secrets Manager, GCP Secret Manager, HashiCorp Vault) and reference it from environment variables in your runtime.

Key rotation

Default rotation reminder: 90 days. Revoke retired keys; do not just remove them from code. Every call made with a Developer API Key is logged to developer_api_logs with the request ID, scopes used, and outcome — visible in the Console.