Client Secret Rotation

POST /apps-srv/clients/:client_id/clientsecret

This API call allows you to rotate the client secret. It ensures that instead of switching immediately to the new client secret, two client_secrets are maintained at the same time and are usable in parallel. This supports rotating client secrets for client_credentials and authorization_code grant types.

Note: The expiration times (old_client_secret_expires_at and new_client_secret_expires_at) must be provided as timestamps in milliseconds (Unix timestamp in milliseconds). The old_client_secret_expires_at cannot be more than 3 months from the current time and must be less than new_client_secret_expires_at.

Request

Responses

Created

Client Secret Rotation

/apps-srv/clients/:client_id/clientsecret

Request​

Responses​

Request

Responses