Authorization keys allow the party that controls the key to execute actions on wallets and policies by signing requests to the Privy API. Examples of authorization keys include a key controlled by your app’s server or a passkey controlled by a user.

You can create authorization keys for your application via the Privy Dashboard or via the REST API.

To create a new authorization key in the Dashboard, visit the Authorization keys page of the Wallets section for your app.

Click the New key button and copy and save the generated Private key. Privy does not save this key and cannot help you recover it later. You can also set a human-readable Key name.

In this process, Privy generates a keypair for your app directly on your device, and shows you the private key.

  • The private key (e.g. the key you copy) is generated on your device, and is only ever known to your app. Neither Privy nor the secure enclave ever sees the private key, and cannot sign payloads with it. Make sure you save this key.
  • The public key is registered with the secure enclave that secures your wallets, and is used to verify signatures produced by your app.

Privy does not store the private key and cannot help you retrieve it.