I would like to use the API to do a Git deploy on select applications. I would write a script and put the script on a server. As that would be the only job that API key would do, I would like to limit it by that permission/function and also to what server and applications it could do a git pull on.

So I see two ways to do this, one would be attach the API key the the current user. And what that user has permissions to in the UI would be what that key would have.

Another would be to create the key and then select what permissions that key has and what servers & applications that key can access. It would also be nice to share the API management with select/trusted team members.