Getting your API keys
Accessing API keys in the console. Actual keys have been redacted from this image.
To retrieve the API keys for a Privy app, select your desired app in the console's sidebar, and then click 'API Keys'.
This will take you the selected app's API Keys page, where you can retrieve the following values:
Your app ID is used to identify your Privy app, and is necessary to initialize the
PrivyProvider in your frontend and the
PrivyClient in your backend. This value is automatically generated when your app is created and is immutable.
Your app ID is a public value, and is thus safe to expose on your frontend.
App Public Key
Your app public key is used to verify auth tokens that were signed by Privy for your app. You may use this as part of your authorization workflows, e.g. verifying that requests to your backend were made by an authenticated user. See our docs for our best practices around authorization.
Your app's public key is a public value, and is thus safe to expose on your frontend.
Your app secret is necessary to authenticate API requests to Privy from your backend. You can make requests to Privy's API to get your users' data, delete users from your app, verify auth tokens issued by Privy, and more.
Privy does not store your app secret. If you do not know your current app secret, or your current app secret has been compromised, you may reset it through the developer console. Upon resetting your app secret, please be sure to save it somewhere safe, as you will not be able to see it again after leaving the page.
Your app secret is a sensitive value that gives you permission to manage Privy from your backend. Please do not expose it outside of your backend server.