SlateoAPI Reference

Account Settings

Manage your personal account, profile information, connected accounts, and API keys to customize your Slateo experience.

Overview

Your account settings control your personal information, authentication methods, and access credentials. These settings are specific to you and separate from your organization's workspace settings.

Access your account settings by clicking your profile picture in the navigation bar and selecting Account.

Managing your profile

Your profile information is displayed throughout Slateo and helps your team identify you in queries, comments, and activity logs.

Update profile information

  1. Click your profile picture in the navigation bar
  2. Select Account
  3. Update your profile information:
    • Profile photo: Upload a custom image or use your connected account avatar
    • Full name: Your display name shown to team members
    • Username: A unique identifier for mentions and references
    • Email: Your primary email address for notifications and login

Changes to your profile are saved automatically and reflected immediately across the workspace.

Profile visibility

Your profile information is visible to all members of your organization. This includes:

  • Full name and username
  • Profile photo
  • Email address
  • Connected accounts
  • Last active timestamp

Email and password

Slateo uses Clerk for secure authentication. You can manage your email address, password, and multi-factor authentication through your account settings.

Change email address

  1. Open your Account settings
  2. Navigate to the Email addresses section
  3. Click Add email address to add a new email
  4. Verify the new email address via the confirmation link
  5. Set the new email as primary
  6. Optionally remove the old email address

You can have multiple email addresses associated with your account. Only the primary email receives notifications.

Update password

  1. Open your Account settings
  2. Navigate to the Password section
  3. Click Change password
  4. Enter your current password
  5. Enter and confirm your new password
  6. Click Update password

Password requirements:

  • Minimum 8 characters
  • At least one uppercase letter
  • At least one lowercase letter
  • At least one number
  • At least one special character

Multi-factor authentication

Enable two-factor authentication (2FA) to add an extra layer of security to your account:

  1. Open your Account settings
  2. Navigate to the Multi-factor section
  3. Click Add two-factor method
  4. Choose your preferred method:
    • Authenticator app: Use apps like Google Authenticator or Authy
    • SMS: Receive codes via text message
    • Backup codes: Generate one-time use codes for emergency access
  5. Follow the setup instructions for your chosen method

We strongly recommend enabling 2FA for all accounts, especially those with administrative privileges.

Connected accounts

Connect external accounts to streamline authentication and enable integrations with your favorite tools.

Available connections

Google

  • Sign in with Google
  • Access Google Drive files in Slateo
  • Sync calendar and contacts

GitHub

  • Sign in with GitHub
  • Link pull requests to queries
  • Browse repository files

Microsoft

  • Sign in with Microsoft
  • Access OneDrive files
  • Integrate with Microsoft Teams

Connect an account

  1. Open your Account settings
  2. Navigate to the Connected accounts section
  3. Click Connect next to the service you want to link
  4. Authorize Slateo to access your account
  5. Grant the requested permissions

Once connected, you can use these accounts to sign in to Slateo and access integration features.

Manage connected accounts

To disconnect an account:

  1. Open your Account settings
  2. Navigate to the Connected accounts section
  3. Find the account you want to disconnect
  4. Click Disconnect
  5. Confirm the action

Disconnecting an account will not delete your Slateo account, but you will lose access to integration features that depend on that connection.

Personal vs. workspace integrations

Some integrations are personal (connected to your account only), while others are workspace-level (configured by administrators):

Personal integrations:

  • Google Drive (your personal files)
  • Connected accounts for authentication

Workspace integrations:

  • Slack (organization-wide)
  • GitHub (organization repositories)
  • Notion (shared workspaces)
  • Data warehouse connections

Workspace integrations are managed in Settings > Integrations and require administrator permissions.

API keys

API keys provide programmatic access to the Slateo API. Each key is associated with your user account and inherits your permissions within the organization.

Create an API key

  1. Navigate to Settings > API Keys in the main navigation
  2. Click Create API Key
  3. Enter a descriptive name for the key (e.g., "Production App", "CI/CD Pipeline")
  4. Click Create
  5. Copy the generated key immediately

The full API key is shown only once during creation. Store it securely in a password manager or environment variable. If you lose the key, you must generate a new one.

API key format

Slateo API keys follow a structured format for easy identification:

sk_live_R7NQLmbcFP3X9keTzA5H2vBj4mK8pL2nW6xQ3sT9
└──┬──┘ └───────────────────┬──────────────────┘
 prefix                   secret
  • Prefix: sk_live_ for production keys
  • Secret: High-entropy random string for secure authentication

Use an API key

Include your API key in the Authorization header as a Bearer token:

cURL

curl https://api.slateo.ai/api/queries \
  -H "Authorization: Bearer sk_live_R7NQLmbcFP3X9keTzA5H2vBj..."

JavaScript

const response = await fetch('https://api.slateo.ai/api/queries', {
  headers: {
    'Authorization': 'Bearer ' + process.env.SLATEO_API_KEY,
    'Content-Type': 'application/json'
  }
});

Manage API keys

View all your API keys in Settings > API Keys. Each key displays:

  • Name: The descriptive name you provided
  • Key prefix: The first few characters for identification
  • Created: When the key was generated
  • Last used: Most recent API request timestamp

To revoke an API key:

  1. Navigate to Settings > API Keys
  2. Find the key you want to revoke
  3. Click the Delete button
  4. Confirm the action

Revoked keys are immediately invalidated and cannot be recovered. Any applications using the revoked key will receive authentication errors.

Best practices

  • Keep keys secure: Never commit API keys to version control or share them in public channels
  • Use environment variables: Store keys in .env files or secure vaults like AWS Secrets Manager
  • Rotate regularly: Generate new keys periodically (every 90 days recommended) and revoke old ones
  • Monitor usage: Check the "Last Used" timestamp to detect anomalies or unused keys
  • Limit scope: Create separate keys for different applications or environments (development, staging, production)
  • Name descriptively: Use clear names that indicate the key's purpose and location

Security

Audit log

Your account activity is logged for security and compliance purposes. Audit logs include:

  • Login attempts and locations
  • API key usage and creation
  • Profile changes
  • Connected account modifications
  • Password changes

Organization administrators can view audit logs in Settings > Organization > Security.

Session management

Active sessions are managed automatically by Clerk. You can view and revoke active sessions:

  1. Open your Account settings
  2. Navigate to the Sessions section
  3. View all active sessions with device and location information
  4. Click Sign out on any session to revoke access

Security recommendations

  • Enable two-factor authentication on your account
  • Use a strong, unique password
  • Review connected accounts regularly
  • Monitor API key usage for suspicious activity
  • Keep your email address up to date for security notifications
  • Use a password manager to generate and store credentials
  • Sign out of shared or public devices after use

Was this page helpful?

Was this page helpful?