Skip to main content
An API key authenticates requests. A permission group controls which vaults and operations the keys in it can use. Move-money setup is mostly a matter of putting the right permissions on the right group, then activating a key against it.

Permission levels

  • Global permissions apply across all your vaults (for example, Initiate withdrawals).
  • Vault-level permissions apply only to the selected vault or its wallets (for example, Transfer funds).

Move-money permissions

Activation and segregation

  • Keys with external transfer or withdrawal permissions require quorum approval before they can be used.
  • Keep internal and external transfer permissions in separate permission groups and API keys. Do not combine them.
  • An optional daily transfer limit can be set per permission group, applied across all keys in the group over a rolling 24-hour window. Limits apply per permission group only. Per-account limits spanning multiple endpoints aren’t available yet.
Permission groups are created and configured by your organization admin in the web dashboard. See API keys for creating and using keys.