This idea has been merged into another idea. To comment or vote on this idea, please visit DO-I-966 Fine grained API tokens.
Currently the api key is either read or write.
A more granular approach would be good which allows you to specify for each feature (snapshots/droplets/images/block storage etc) whether you have read/create/delete privilege.
So for instance you could then create an api key with access to read/create and delete snapshots but nothing else.