[February 2020] Part of an ongoing effort to optimize network security, NS1 users can enable a feature that will automatically "hide" API keys—such that they are no longer viewable after they are created. When creating an API key, users must toggle the show/hide icon to view the API key secret they just created, and record the API key in a secure password manager or key vault for future reference. (For users creating an API key programmatically, the API key will only appear in the response message and will not otherwise be accessible.) This helps to prevent tokens from being leaked and used for anything other than their originally intended purpose.
Immediately after creating the API key, be sure to record the API key secret by toggling the show/hide icon.
As of February 10, 2020, all new Managed DNS and Dedicated DNS accounts will have the new API key security feature enabled by default.* On April 10, the API security feature will be enabled on all accounts by default unless an account administrator contacts the NS1 support team to opt-out. NS1 recommends all users take advantage of the new API security feature.
*Existing accounts can opt-in to enable the feature ahead of April 10 by submitting a ticket.