# Create a new Signing Key for the account making the request **POST /v1/Keys** Create a new Signing Key for the account making the request. API keys ## Servers - https://iam.twilio.com: https://iam.twilio.com () ## Authentication methods - Account sid auth token ## Parameters ### Body: application/x-www-form-urlencoded (object) - **AccountSid** (string) The SID of the [Account](https://www.twilio.com/docs/iam/api/account) that created the Payments resource. - **FriendlyName** (string) A descriptive string that you create to describe the resource. It can be up to 64 characters long. - **KeyType** (string) The \`KeyType\` form parameter is used to specify the type of key you want to create. **Default Behavior**: If \`KeyType\` is not specified, the API will generate a standard key. **Restricted Key**: If \`KeyType\` is set to \`restricted\`, the API will create a new restricted key. In this case, a policy object is required to define the permissions. - **Policy** () The \`Policy\` object is a collection that specifies the allowed Twilio permissions for the restricted key. For more information on the permissions available with restricted API keys, refer to the [Twilio documentation](https://www.twilio.com/docs/iam/api-keys/restricted-api-keys#permissions-available-with-restricted-api-keys). ## Responses ### 201 Created #### Headers - **Access-Control-Allow-Origin** (string) Specify the origin(s) allowed to access the resource - **Access-Control-Allow-Methods** (string) Specify the HTTP methods allowed when accessing the resource - **Access-Control-Allow-Headers** (string) Specify the headers allowed when accessing the resource - **Access-Control-Allow-Credentials** (boolean) Indicates whether the browser should include credentials - **Access-Control-Expose-Headers** (string) Headers exposed to the client #### Body: application/json (object) - **sid** (string | null) The unique string that that we created to identify the NewKey resource. You will use this as the basic-auth `user` when authenticating to the API. - **friendly_name** (string | null) The string that you assigned to describe the resource. - **date_created** (string(date-time-rfc-2822) | null) The date and time in GMT that the API Key was created specified in [RFC 2822](https://www.ietf.org/rfc/rfc2822.txt) format. - **date_updated** (string(date-time-rfc-2822) | null) The date and time in GMT that the new API Key was last updated specified in [RFC 2822](https://www.ietf.org/rfc/rfc2822.txt) format. - **secret** (string | null) The secret your application uses to sign Access Tokens and to authenticate to the REST API (you will use this as the basic-auth `password`). **Note that for security reasons, this field is ONLY returned when the API Key is first created.** - **policy** (object | null) Collection of allow assertions. [Powered by Bump.sh](https://bump.sh)