Skip to main content
GET
/
v1
/
vault
/
access
/
{id}
Get Vault Access Status
curl --request GET \
  --url https://api.bkey.id/v1/vault/access/{id} \
  --header 'Authorization: Bearer <token>'
{
  "id": "<string>",
  "status": "<string>",
  "e2eeCiphertext": "<string>",
  "expiresAt": "2023-11-07T05:31:56Z"
}

Authorizations

Authorization
string
header
required

EdDSA-signed JWT obtained via OAuth 2.1 client_credentials or CIBA

Path Parameters

id
string<uuid>
required

Response

Default Response

id
string
required
status
string
required

One of: pending, approved, denied, expired, consumed

e2eeCiphertext
string | null
required

Base64-encoded encrypted payload. Present (non-null) only on the first poll after approval, when status transitions to "consumed". Null otherwise.

expiresAt
string<date-time>
required