Reference / Settings

retire the active key and mint a fresh one.

POST /v1/applications/{id}/signing-keys/rotate
Secret API key operationId: rotate

Authorization

Server-to-server. Send a secret key as a Bearer token plus the x-application-id header.

Path parameters

  • id string<uuid> required

    Application id

Responses

200 Rotated; new active key returned
403 Wrong tenant

Request

curl -X POST "http://localhost:8080/v1/applications/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/signing-keys/rotate" \

Try it

live request
POST http://localhost:8080/v1/applications/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/signing-keys/rotate

Path parameters