Autopilot requires your application to interact with the Autopilot API using a custom API key. This key is required to authenticate every request made to the Autopilot API. Without this key, all requests are automatically rejected.
Each custom API key:
is unique and tied to a single Autopilot account (aka Autopilot instance),
does not require or involve any user authentication, but in itself, the key should be treated as a private key,
which is configured as a data source, can be disconnected at any time through your Autopilot account’s user interface (UI), thereby preventing and rejecting any requests made to the Autopilot API until the custom API key is reconnected.
Therefore, create a separate custom API key for each application that will interact with your appropriate Autopilot account.