Hello there @simon.laver and welcome to the community!
Your use case makes total sense to me - Unfortunately, Auth0 does not currently support API Keys outside of the context of client credentials grants/exchanges so the limitations you’ve mentioned do apply. I recommend upvoting the feedback request in the following FAQ: