Not sure if this is the right place, a lot of clay users are integrating with my platform (10M+ requests a month) and there is still no formal integration scheduled. Right now I'm seeing a considerable elevation of requests - 60k+/hour - that are failing auth and they are coming from Clay but i have no way of tracing who/what account or how to stop it. Looking for help in finding a short and longterm solution.
For authentication failures from Clay users, the issue typically stems from incorrect or expired API keys. Clay users manage their API keys through Settings > Your Profile > API Key section, where they can regenerate keys if needed. Users experiencing "invalid credentials" issues should verify their API key configuration under Settings > Connections. Our Terms of Service require users to maintain account security and notify us of unauthorized access, but we don't have built-in mechanisms for external platforms to trace specific Clay accounts generating failed requests. For immediate relief, you might consider implementing rate limiting on your end for failed authentication attempts. Long-term, a formal integration would provide better request management and user identification. What specific authentication method or API structure are you currently using that Clay users are integrating with?
Source: Clay: Terms of Service
Hey there! Thanks for reaching out - We've opened up a form on our site that you can fill out so we can have our team evaluate a request to be a data partner. We've gotten a lot of requests for integrations so at this point, we don't currently have a timeline on when or if we'll want to move forward, but we'll be sure to reach out when we know more!
Hi, i already am in touch with Stefan on your team
This isn't a request for becoming a data partner
i am getting a lot of unauthorized requests from your platform and because i am not a partner, I have no way of triaging/solving it without reaching out to you this way
Hey there! Understood - thanks for clearing that up. I'll go ahead and escalate this to our team and we'll be in touch soon :)
Okay thanks, also can they reach out to me at an eamil i DM you? This type of conversation shouldn't be in a public channel in case we need to discuss matters of security
I just sent you. DM can you confirm receipt
hello?