Skip to main content
GET
/
organizations
/
me
/
{org_id}
/
applications
/
{app_id}
cURL
curl "https://apx.didit.me/auth/v2/organizations/me/$ORG_ID/applications/$APP_ID/" \
  -H "Authorization: Bearer $ACCESS_TOKEN"
{
  "uuid": "b2c3d4e5-6789-01bc-defg-222222222222",
  "name": "My App",
  "client_id": "S9LIYGSoWNuGMLHsvEt9dQ",
  "api_key": "05mHcOWL8GathLZlz8oIDawYj9qFAcoSHtz-75PAkuo",
  "website_url": "https://example.com",
  "redirect_uris": [
    "https://example.com/callback"
  ],
  "terms_url": "https://example.com/terms",
  "privacy_url": "https://example.com/privacy",
  "description": "Production application",
  "created_at": "2025-06-01T10:00:00Z"
}

Documentation Index

Fetch the complete documentation index at: https://docs.didit.me/llms.txt

Use this file to discover all available pages before exploring further.

Authorizations

Authorization
string
header
required

RS256-signed JWT access_token returned by POST /programmatic/login/ or POST /programmatic/verify-email/. Send as Authorization: Bearer <access_token>. Default lifetime is 86400 seconds (24h). This token is only valid against the Account Management endpoints on apx.didit.me/auth/v2. The verification API (verification.didit.me/v3) uses the long-lived api_key as x-api-key instead.

Path Parameters

org_id
string<uuid>
required

UUID of the organization that owns the application.

Example:

"a1b2c3d4-5678-90ab-cdef-111111111111"

app_id
string<uuid>
required

UUID of the application whose credentials you want to read.

Example:

"b2c3d4e5-6789-01bc-defg-222222222222"

Response

Application record including its client_id and api_key.

Full application record. uuid, client_id, and api_key never change after creation.

uuid
string<uuid>

Application UUID. Use as {app_id} in subsequent calls.

Example:

"b2c3d4e5-6789-01bc-defg-222222222222"

name
string

Application display name shown in the Didit console.

Example:

"Acme Production App"

client_id
string

Public client identifier, safe to embed in OAuth-style flows.

Example:

"S9LIYGSoWNuGMLHsvEt9dQ"

api_key
string

Long-lived secret (also called client_secret). Use as the x-api-key header for every call to https://verification.didit.me/v3/... (sessions, workflows, AML, etc.). Treat as a credential; never expose client-side.

Example:

"05mHcOWL8GathLZlz8oIDawYj9qFAcoSHtz-75PAkuo"

website_url
string | null

Website or app URL associated with this application.

Example:

"https://acme.example"

redirect_uris
string[]

Allowed redirect URIs for OAuth-style and verification redirect flows.

Example:
["https://acme.example/callback"]
terms_url
string | null

Terms of service URL shown in the verification flow.

Example:

"https://acme.example/terms"

privacy_url
string | null

Privacy policy URL shown in the verification flow.

Example:

"https://acme.example/privacy"

description
string | null

Internal description for the application (not shown to end users).

created_at
string<date-time>
Example:

"2025-06-01T10:00:00Z"