# Create SAML application secret

**POST /api/saml-applications/{id}/secrets**

Create a new signing certificate for the SAML application.


## Servers
- Logto endpoint address.: https://[tenant_id].logto.app (Logto endpoint address.)


## Authentication methods
- O auth2


## Parameters

#### Path parameters
- **id** (string)
  The unique identifier of the saml application.


## Body parameters
Content-type: application/json

- **lifeSpanInYears** (integer)
  The lifetime of the certificate in years (minimum 1 year).

## Responses
### 201: The signing certificate was created successfully.

#### Body Parameters: application/json (object)
- **id** (string)
  
- **certificate** (string)
  
- **createdAt** (number)
  
- **expiresAt** (number)
  
- **active** (boolean)
  
- **fingerprints** (object)
  

### 400: Invalid request body.

### 401: Unauthorized

### 403: Forbidden

### 404: The SAML application was not found.


[Powered by Bump.sh](https://bump.sh)