Functions

Create function secret

Create a secret for this function. Secrets are injected as environment variables when your function executes.

Use secrets to store sensitive data without hardcoding in function code:

API keys (Stripe, OpenAI, Twilio, etc.)
External service connection strings
OAuth credentials
Service account tokens

Requirements:

Function must be in ‘deployed’ status (422 if not)
Secret name must be uppercase alphanumeric with underscores (e.g., STRIPE_API_KEY)
Secret name must be unique within the function

Secret types are automatically detected:

String values → text type
Object/array values → json type

Important: The secret value is only returned in the creation response. It cannot be retrieved later. Store the value securely after creation if needed.

After creating a secret, it’s immediately available in your function as an environment variable with the specified name.

POST

functions

{function_id}

secrets

curl --request POST \
  --url https://api.kapso.ai/platform/v1/functions/{function_id}/secrets \
  --header 'Content-Type: application/json' \
  --header 'X-API-Key: <api-key>' \
  --data '
{
  "secret": {
    "name": "STRIPE_API_KEY",
    "value": "sk_test_abc123xyz"
  }
}
'

{
  "message": "Secret created successfully"
}

Authorizations

X-API-Key

string

header

required

Path Parameters

function_id

string<uuid>

required

Function identifier

Body

application/json

Request to create a function secret. Secrets are injected as environment variables when your function executes. Use this to store API keys, credentials, or configuration without hardcoding them in your function code.

secret

object

required

Show child attributes

Response

Secret created successfully

Simple message response for operations that don't return resource data

message

string

required

Success or confirmation message

Delete function secretPermanently delete a secret from this function. The secret will be removed from the runtime environment and will no longer be available as an environment variable. Requirements: - Function must be in 'deployed' status (422 if not) - Secret must exist (404 if not found) After deletion: - Secret is immediately removed from function runtime environment - Function can no longer access the secret value - Any function invocations referencing the deleted secret will fail This operation cannot be undone. Make sure the secret is no longer needed before deletion. If the function code still references the deleted secret, invocations may fail with undefined variable errors.

curl --request POST \
  --url https://api.kapso.ai/platform/v1/functions/{function_id}/secrets \
  --header 'Content-Type: application/json' \
  --header 'X-API-Key: <api-key>' \
  --data '
{
  "secret": {
    "name": "STRIPE_API_KEY",
    "value": "sk_test_abc123xyz"
  }
}
'

{
  "message": "Secret created successfully"
}