Security Update: Transition to API Key Authentication

Home » Security Update: Transition to API Key Authentication

Your security is our priority.

We are pleased to announce a major update to our professional service turboSMTP, designed to enhance your account security and offer you even greater control over your access.

We are introducing a new, more modern and secure authentication system: from now on, to connect to our SMTP service or use our APIs, you will no longer use your account password, but dedicated API Keys.

What’s changing and why.

Until today.

You used the same email and password both to access your Dashboard (customer area) and to authenticate for sending emails via SMTP and using the APIs.

From now on.

Access to the SMTP service and APIs will no longer accept your main password. Instead, you will use unique and dedicated credentials, consisting of a pair of API Keys (Consumer Key / Consumer Secret), which you can generate and manage directly from your Dashboard.

The benefits for you.

This update is not just a technical change, but a major step forward in terms of security and flexibility:

  • Enhanced security
    Using dedicated credentials significantly reduces the risk in case a single key is compromised.
  • Independent credentials
    You can change your Dashboard password at any time without having to reconfigure SMTP clients or the services sending emails.
  • Greater control and flexibility
    You can create multiple pairs of API Keys for different devices, software, or scripts. If you wish to revoke access for a single device, you just delete the relevant key—without affecting other connected services.

What existing clients need to do.

To ensure a seamless transition, we have arranged a solution that maintains service continuity.

Temporarily generated key.

We have created a temporary API Key for you which replicates your old credentials. In this way, your SMTP service will continue to operate normally, with no immediate action required on your part.

Our recommendation.

To further improve your account security, we recommend you to follow these steps as soon as possible:

  1. Create a new pair of dedicated API Keys from the “Settings > API Keys” section of your Dashboard (see the tutorial for creating API Keys).
  2. Update the settings of your SMTP client (or your software/script API) using the new key.
  3. After verifying that sending works correctly, delete the automatically generated temporary API Key.

You can find all information and manage your keys in: Dashboard > Settings > API Keys.

Thank you for your cooperation!

This important update will make your account even more secure.
For any questions or needs, our support team is always at your disposal!