Create unique API keys for different clients

Currently there is a single API key. It's best practice to issue separate API keys to each client so that we can disable one if it's compromised without affecting all users. An API key is a resource in terraform, so this might involve creating a Cloud Run function or something that creates API keys?