Sprinto Dashboard

Developer API

Learn how to use Sprinto’s Developer API to automate compliance tasks by securely transmitting security data from source applications in real time.

The Developer API in Sprinto allows you to automate compliance tasks by sending security data from various source applications to Sprinto in real time. By generating and using an API key, you can authenticate and integrate Sprinto’s Developer APIs into your existing workflows, ensuring secure and efficient data exchange.

The Developer API is particularly useful for:

  • Automating the ingestion of compliance-related data from integrated systems.

  • Reducing manual data entry for security and compliance tasks.

  • Enabling seamless communication between your systems and Sprinto’s platform.

You can view detailed technical documentation for all supported endpoints and authentication methods here: Sprinto Developer API Documentation.

How Developer API Works

  1. Generate your Developer API key

    • Navigate to Settings > Developer API in the Sprinto dashboard.

    • Click Generate API key to create a new API key.

    • You need a valid Developer API key to access Sprinto’s APIs.

  2. Use Developer API key to access Developer APIs

    • Use the generated API key to authenticate your requests to Sprinto’s Developer APIs.

    • API keys are required in the request header for secure communication.

  3. Use Developer APIs to automate compliance tasks

    • Integrate the APIs into your systems to automatically send compliance-related data to Sprinto in real time from supported source applications.

Dashboard Actions

Generate a Developer API Key

  1. Go to Settings > Developer API.

  2. Click Generate API key.

  3. The key will be displayed in the Developer API Key section, along with its creation date and access scope.

View All Your Keys

  1. Under Developer API Key, click View all your keys.

  2. This will open a list of all API keys you have generated, showing:

    • API key (partially masked for security)

    • Updated on date/time

    • Access scope (e.g., All APIs)

  3. You can disable any active key from this screen.

View Keys Generated by Other Admins

  1. Under API keys generated by other admins, click View keys.

  2. This displays a masked list of API keys created by other admins, along with the owner, update date, and scope.

Disable a Key

  • From the View all your keys section, click Disable key for the API key you wish to deactivate.

Best Practices

  • Keep API keys secure and avoid sharing them in public repositories or unsecured communication channels.

  • Rotate API keys periodically to maintain security hygiene.

  • Immediately disable any compromised API key.

  • Restrict the scope of the API key if possible, to limit access to only required endpoints.

PreviousZones_for_Azure_DevopsNextSprinto AI

Last updated