# Create SAML application secret

**POST /api/saml-applications/{id}/secrets**

Create a new signing certificate for the SAML application.


## Servers
- Logto endpoint address.: https://[tenant_id].logto.app (Logto endpoint address.)


## Authentication methods
- O auth2


## Parameters

### Path parameters
- **id** (string)
  The unique identifier of the saml application.


### Body: application/json (object)

- **lifeSpanInYears** (integer)
  The lifetime of the certificate in years (minimum 1 year).


## Responses
### 201
The signing certificate was created successfully.

#### Body: application/json (object)
- **id** (string)

- **certificate** (string)

- **createdAt** (number)

- **expiresAt** (number)

- **active** (boolean)

- **fingerprints** (object)


### 400
Invalid request body.

### 401
Unauthorized

### 403
Forbidden

### 404
The SAML application was not found.


[Powered by Bump.sh](https://bump.sh)