API keys

Placeholder — PR-Docs2 fills this in with mint/list/revoke flow in curl + Node + Python.