retire the active key and mint a fresh one.
POST
Secret API key operationId: rotate/v1/applications/{id}/signing-keys/rotate Authorization
Server-to-server. Send a secret key as a Bearer token plus the x-application-id header.
Path parameters
idstring<uuid> requiredApplication id
Responses
200 Rotated; new active key returned
403 Wrong tenant
Request
curl -X POST "http://localhost:8080/v1/applications/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/signing-keys/rotate" \Try it
live requestPOST
http://localhost:8080/v1/applications/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/signing-keys/rotate