List secrets
GET
/v1/servers/{serverId}/secretsList masked secret documents in a secrets vault. Secret plaintext is never returned from this control-plane endpoint.
How to call this endpoint
Every ACP API request uses bearer authentication. The examples here show the actual request path, auth header, and body shape that the platform expects.
Path, query, and header parameters
These parameters control which ACP object the endpoint acts on and how the request is processed.
Path parameters
| Name | Location | Type | Required | Description |
|---|---|---|---|---|
| serverId | path | string | Yes | Resource ID |
Query parameters
None.
Body schema
This endpoint does not require a request body.
None.
What the API returns
Each response code below includes the documented payload shape for the ACP API.
200Secrets listapplication/json
| Field | Type | Required | Description |
|---|---|---|---|
| serverId | string | No | Resource ID. |
| object | string | No | — |
| data | object[] | No | — |
| data[].id | string | No | Unique identifier. |
| data[].name | string | No | Human-readable name. |
| data[].description | string | No | Human-readable description. |
| data[].maskedValue | string | No | — |
| data[].metadata | object | No | Free-form metadata object. |
| data[].createdAt | string | No | ISO 8601 timestamp. |
| data[].updatedAt | string | No | ISO 8601 timestamp. |
| data[].lastAccessedAt | string | No | — |
| secrets | object[] | No | — |
| secrets[].id | string | No | Unique identifier. |
| secrets[].name | string | No | Human-readable name. |
| secrets[].description | string | No | Human-readable description. |
| secrets[].maskedValue | string | No | — |
| secrets[].metadata | object | No | Free-form metadata object. |
| secrets[].createdAt | string | No | ISO 8601 timestamp. |
| secrets[].updatedAt | string | No | ISO 8601 timestamp. |
| secrets[].lastAccessedAt | string | No | — |