Getting your API keys
Accessing API keys in the console. Actual keys have been redacted from this image.
To retrieve the API keys for a Privy app, select your desired app in the console's App Dropdown, and then click the 'API Keys' link in the navigation bar.
This will take you the selected app's API Keys page, where you can retrieve the following values:
Your app ID is used to identify your Privy app, and is necessary to initialize the
PrivyProvider in your frontend and the
PrivyClient in your backend. This value is automatically generated when your app is created and is immutable.
Your app ID is a public value, and is thus safe to expose on your frontend.
App Public Key
Your app public key is used to verify auth tokens that were signed by Privy for your app. To verify auth tokens in your backend, we recommend using Privy's
server-auth library instead of using this public key directly. However, depending on your setup, you may choose to use a third-party library that requires this key.
Your app's public key is a public value, and is thus safe to expose on your frontend.
Your app secret is necessary to initialize the
PrivyClient in your backend, which can be used to get your users' data, delete users from your app, verify auth tokens issued by Privy, and more.
Privy does not store your app secret. If you do not know your current app secret, or your current app secret has been compromised, you may reset it through the developer console. Upon resetting your app secret, please be sure to save it somewhere safe, as you will not be able to see it again after leaving the page.
Your app secret is a sensitive value that gives you permission to manage Privy from your backend. Please do not expose it outside of your backend server.