From 5d824ac69c382e77bc73107ed41753b464e0420e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Mikael=20West=C3=B6=C3=B6?= <mikaelwestoo@gmail.com>
Date: Sat, 24 Jan 2026 22:28:45 +0100
Subject: [PATCH] Update script to receive API key from verification endpoint
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The API key is now generated during email verification, not registration.

Changes:
- Extract api_key from verification response
- Save the API key to config after successful verification
- Display confirmation message when API key is received

This works with the new security flow where API keys are only issued to verified users.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
---
 deploy-to-apps.example.sh | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/deploy-to-apps.example.sh b/deploy-to-apps.example.sh
index aa737e8..23f32ff 100644
--- a/deploy-to-apps.example.sh
+++ b/deploy-to-apps.example.sh
@@ -375,6 +375,15 @@ else
     if echo "$VERIFY_RESPONSE" | grep -q '"verified":true'; then
         echo "✅ Email verified successfully!"
         echo ""
+
+        # Extract API key from verification response
+        VERIFIED_API_KEY=$(echo "$VERIFY_RESPONSE" | jq -r '.api_key // ""')
+        if [ -n "$VERIFIED_API_KEY" ] && [ "$VERIFIED_API_KEY" != "null" ]; then
+            SAAC_API_KEY="$VERIFIED_API_KEY"
+            echo "🔑 API key received and saved"
+            echo ""
+        fi
+
         VERIFIED=true
         save_config
         echo ""