Key System Overview
ZopToken uses Keys to manage device onboarding and system calls.
Currently, the main types include:
- Group Key
- SDK Key
Why Keys Are Needed
Keys address identity verification and access control challenges during the onboarding process.
The platform needs to know:
- Who is onboarding a device
- Which user, organization, or cluster the device belongs to
- Whether the device is permitted to onboard
- Whether a third-party system is allowed to call the API
- How to trace onboarding sources and call records
Differences Between Group Key and SDK Key
| Type | Primary Use | Target User |
|---|---|---|
| Group Key | Device onboarding, device group management, device binding | Device providers, service providers, data centers |
| SDK Key | API calls, third-party system integration | Developers, enterprise clients, service provider systems |
Usage Principles
- Group Key is for devices and should not be used as a public API credential.
- SDK Key is for system integration and should not be embedded in public clients.
- Keys should be kept secure to prevent leakage.
- If a leak or suspicious usage is detected, contact the platform side promptly.