Skip to content

Revoke a signing key (org owner only)

DELETE
/api/signing-keys/{key_id}

Mark the signing key as revoked.

Sets is_active=False and revoked_at=now(). This is irreversible. Returns 204 No Content on success, 404 if the key does not exist or does not belong to the requesting organisation.

Authorizations

Parameters

Path Parameters

key_id
required
string format: uuid

Query Parameters

organization_id
required
string format: uuid

Responses

204

Successful Response

422

Validation Error

object
detail
Array<object>
object
loc
required
Array
msg
required
string
type
required
string