Get Application Key By ID

Returns an application key. Keys are used for authorizing API Applications.

Path Parameters

projectId string required
appId string required
keyId string required

Header Parameters

x-zitadel-orgid string

The default is always the organization of the requesting user. If you like to change/get objects of another organization include the header. Make sure the requesting user has permission to access the requested data.

Responses

• 200
• default

---

A successful response.

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

key object

id string

details object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to

type string

Possible values: [KEY_TYPE_UNSPECIFIED, KEY_TYPE_JSON]

Default value: KEY_TYPE_UNSPECIFIED

the file type of the key

expirationDate date-time

the date a key will expire

{
  "key": {
    "id": "69629023906488334",
    "details": {
      "sequence": "2",
      "creationDate": "2024-03-27T06:43:21.459Z",
      "changeDate": "2024-03-27T06:43:21.459Z",
      "resourceOwner": "69629023906488334"
    },
    "type": "KEY_TYPE_JSON",
    "expirationDate": "3019-04-01T08:45:00.000000Z"
  }
}

Schema

Example (from schema)

---

Schema

key object

id string

details object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to

type string

Possible values: [KEY_TYPE_UNSPECIFIED, KEY_TYPE_JSON]

Default value: KEY_TYPE_UNSPECIFIED

the file type of the key

expirationDate date-time

the date a key will expire

{
  "key": {
    "id": "69629023906488334",
    "details": {
      "sequence": "2",
      "creationDate": "2024-03-27T06:43:21.459Z",
      "changeDate": "2024-03-27T06:43:21.459Z",
      "resourceOwner": "69629023906488334"
    },
    "type": "KEY_TYPE_JSON",
    "expirationDate": "3019-04-01T08:45:00.000000Z"
  }
}

Schema

Example (from schema)

---

Schema

key object

id string

details object

sequence uint64

on read: the sequence of the last event reduced by the projection

on manipulation: the timestamp of the event(s) added by the manipulation

creationDate date-time

on read: the timestamp of the first event of the object

on create: the timestamp of the event(s) added by the manipulation

changeDate date-time

on read: the timestamp of the last event reduced by the projection

on manipulation: the

resourceOwner resource_owner is the organization an object belongs to

type string

Possible values: [KEY_TYPE_UNSPECIFIED, KEY_TYPE_JSON]

Default value: KEY_TYPE_UNSPECIFIED

the file type of the key

expirationDate date-time

the date a key will expire

{
  "key": {
    "id": "69629023906488334",
    "details": {
      "sequence": "2",
      "creationDate": "2024-03-27T06:43:21.460Z",
      "changeDate": "2024-03-27T06:43:21.460Z",
      "resourceOwner": "69629023906488334"
    },
    "type": "KEY_TYPE_JSON",
    "expirationDate": "3019-04-01T08:45:00.000000Z"
  }
}

An unexpected error response.

application/json

application/grpc

application/grpc-web+proto

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

Schema

Example (from schema)

---

Schema

code int32
message string
details object[]
Array [
@type string
]

{
  "code": 0,
  "message": "string",
  "details": [
    {
      "@type": "string"
    }
  ]
}

GET /projects/:projectId/apps/:appId/keys/:keyId

Authorization

name: OAuth2type: oauth2scopes: openid,urn:zitadel:iam:org:project:id:zitadel:audflows: {
  "authorizationCode": {
    "authorizationUrl": "$CUSTOM-DOMAIN/oauth/v2/authorize",
    "tokenUrl": "$CUSTOM-DOMAIN/oauth/v2/token",
    "scopes": {
      "openid": "openid",
      "urn:zitadel:iam:org:project:id:zitadel:aud": "urn:zitadel:iam:org:project:id:zitadel:aud"
    }
  }
}

Request

Base URL

https://$CUSTOM-DOMAIN/management/v1

Bearer Token

projectId — path required

appId — path required

keyId — path required

x-zitadel-orgid — header

Accept

application/jsonapplication/grpcapplication/grpc-web+proto

curl / cURL

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

python / requests

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

go / native

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

nodejs / axios

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

ruby / Net::HTTP

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

csharp / RestSharp

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

php / cURL

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

java / OkHttp

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'

powershell / RestMethod

curl -L -X GET 'https://$CUSTOM-DOMAIN/management/v1/projects/:projectId/apps/:appId/keys/:keyId' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer <TOKEN>'