Automatically refreshing API Keys when the web page is refreshed creates a lot of confusion for developers. There is no way of checking whether we are using the correct key in the build that is about to be released. Additionally, there is no way of deleting API keys once created and no way of deleting security profiles (even if they are not in use). I find the entire system of Security profiles and API keys needlessly confusing and cumbersome. I hope you guys can improve this area.