Granular API access?

I made a passive firewall using PHP + API. But it requires Global API key to create new rules.

Something similar to this:

This Global API key can also change DNS and other things on your account and there is no way to secure it.

It would be nice to have granular access to API.

Let say - API key only for Firewall Rules (create / delete / edit) and only for specific domain name.

Looks like this is possible to do with API tokens:

I see you guys at Cloudflare have been busy since V2.

Thanks! This one can be closed off now!

1 Like