List runtime secrets
GET
/v1/servers/{serverId}/runtime/secretsList masked secrets from the secrets vault bound to this resource using runtime authorization. Plaintext values are not returned from this list endpoint.
How to call this endpoint
Every ACP API request uses bearer authentication. The examples here show the actual request path, auth header, and body shape that the platform expects.
Path, query, and header parameters
These parameters control which ACP object the endpoint acts on and how the request is processed.
Path parameters
| Name | Location | Type | Required | Description |
|---|---|---|---|---|
| serverId | path | string | Yes | Resource ID |
Query parameters
None.
Body schema
This endpoint does not require a request body.
None.
What the API returns
Each response code below includes the documented payload shape for the ACP API.
200Runtime secret listapplication/json
| Field | Type | Required | Description |
|---|---|---|---|
| serverId | string | No | Resource ID. |
| secretsServerId | string | No | — |
| object | string | No | — |
| data | object[] | No | — |
| data[].id | string | No | Unique identifier. |
| data[].name | string | No | Human-readable name. |
| data[].description | string | No | Human-readable description. |
| data[].maskedValue | string | No | — |
| data[].metadata | object | No | Free-form metadata object. |
| data[].createdAt | string | No | ISO 8601 timestamp. |
| data[].updatedAt | string | No | ISO 8601 timestamp. |
| data[].lastAccessedAt | string | No | — |
| secrets | object[] | No | — |
| secrets[].id | string | No | Unique identifier. |
| secrets[].name | string | No | Human-readable name. |
| secrets[].description | string | No | Human-readable description. |
| secrets[].maskedValue | string | No | — |
| secrets[].metadata | object | No | Free-form metadata object. |
| secrets[].createdAt | string | No | ISO 8601 timestamp. |
| secrets[].updatedAt | string | No | ISO 8601 timestamp. |
| secrets[].lastAccessedAt | string | No | — |