Security
User accounts
Our system doesn’t store any user passwords. All your user-login information (such as passwords) is handled by Auth0 or through your third party login (such at google accounts). The only piece of personal information we store is your email address which is needed in order to trigger a password reset should it be required. We don’t share your account or sell your account information with any third parties.
Access the API
Access to the API is determined by an API key that is assigned to your user-account. This key is placed in the header of all requests sent to the API and requests are authenticated on this basis. We don’t store your key anywhere in our system, only the hash fingerprint of the key. This means that we cannot recover your key if you lose it. No problem though, you can simply rotate or disable lost keys in the Key Management section of the icepack portal.
Service Management
Each API key has a set of allowable services which it is authorised to use. You can control these services through the Team Management section of the icepack portal. Most free services have a limit on the maximum usage which may be used, you can upgrade to a paid plan if you hit these maximum limits. Paid for accounts support multiple keys.
Usage Summary
You’ll find recent requests and usage on the main dashboard page by API key.