[API] Per Zone API key (per zone purge)


#1

For security reasons, it would be great if there would be a second API access level, only for purging a certain zone.

A few CMS packages and scripts currently use the API key to purge “their” zone when needed. However, this is a security risk, as the API key used to purge 1 zone, can be used to change a lot of stuff related to that zone. This means that if the security of 1 particular site is ever compromised, the other zones are at risk as well.

It would be nice to have a separate API key per zone, that only allows the purge of that specific zone.


#2

+1, including subusers with roles (read-only / manage) for different zones