Secret Subresource
You can provide secret data for specific Microvisor-empowered IoT devices using the Secret subresource. Secrets are intended as a way to upload data such as PKI keys and other confidential items to the Twilio cloud so they need not be baked into application code. Instead, the application code running on the device retrieves the Secret when it needs the information.
Unlike Device Configs, Device Secrets' values cannot be accessed via the API once they have been created. The retrieval actions listed below will return Secrets' metadata, not their values.
Each Secret is a key:value pair which your application code can access using Microvisor System Calls.
Keys are text identifiers of up to 100 characters in length. They must be unique for a given device. For example, devices A and B can both have Secret with the key wifi_password
, but each device can have only one Secret with that key.
Values must also be supplied as text, of up to 4096 characters in length. If you wish to make binary data available to your devices, you will need to encode it as text before creating the Secret. For example, you might used base64 encoding. Your application must decode the value back to binary after acquiring it from the Twilio cloud.
Secret subresources are accessed at these endpoints:
_10https://microvisor.twilio.com/v1/Devices/{sid}/Secrets
_10https://microvisor.twilio.com/v1/Devices/{UniqueName}/Secrets
Device Secrets are accessible only by the specified device. For Secrets that are made available to all devices associated with a given account, please see Account-level Secrets.
Warning
Secrets can't yet be updated. If you need to change a Secret's value, delete it, and then create a new Secret with the same key.
Property nameTypePIIDescription
A 34-character string that uniquely identifies the parent Device.
Pattern: ^UV[0-9a-fA-F]{32}$
Min length: 34
Max length: 34
The secret key; up to 100 characters.
date_rotatedstring<date-time>
The absolute URL of the Secret.
POST https://microvisor.twilio.com/v1/Devices/{DeviceSid}/Secrets
Property nameTypeRequiredPIIDescription
A 34-character string that uniquely identifies the Device.
Property nameTypeRequiredPIIDescription
The secret key; up to 100 characters.
The secret value; up to 4096 characters.
_21// Download the helper library from https://www.twilio.com/docs/node/install
_21const twilio = require("twilio"); // Or, for ESM: import twilio from "twilio";
_21// Find your Account SID and Auth Token at twilio.com/console
_21// and set the environment variables. See http://twil.io/secure
_21const accountSid = process.env.TWILIO_ACCOUNT_SID;
_21const authToken = process.env.TWILIO_AUTH_TOKEN;
_21const client = twilio(accountSid, authToken);
_21async function createDeviceSecret() {
_21 const deviceSecret = await client.microvisor.v1
_21 .devices("UVxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx")
_21 .deviceSecrets.create({
_21 console.log(deviceSecret.deviceSid);
_10 "device_sid": "UVxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
_10 "date_rotated": "2021-01-01T12:34:56Z",
_10 "url": "https://microvisor.twilio.com/v1/Devices/UVaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/Secrets/first"
Property nameTypeRequiredPIIDescription
A 34-character string that uniquely identifies the Device.
The secret key; up to 100 characters.
_19// Download the helper library from https://www.twilio.com/docs/node/install
_19const twilio = require("twilio"); // Or, for ESM: import twilio from "twilio";
_19// Find your Account SID and Auth Token at twilio.com/console
_19// and set the environment variables. See http://twil.io/secure
_19const accountSid = process.env.TWILIO_ACCOUNT_SID;
_19const authToken = process.env.TWILIO_AUTH_TOKEN;
_19const client = twilio(accountSid, authToken);
_19async function fetchDeviceSecret() {
_19 const deviceSecret = await client.microvisor.v1
_19 .devices("UVxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx")
_19 .deviceSecrets("key_name")
_19 console.log(deviceSecret.deviceSid);
_10 "device_sid": "UVxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
_10 "date_rotated": "2021-01-01T12:34:57Z",
_10 "url": "https://microvisor.twilio.com/v1/Devices/UVaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/Secrets/first"
GET https://microvisor.twilio.com/v1/Devices/{DeviceSid}/Secrets
Property nameTypeRequiredPIIDescription
A 34-character string that uniquely identifies the Device.
Property nameTypeRequiredPIIDescription
How many resources to return in each list page. The default is 50, and the maximum is 1000.
Minimum: 1
Maximum: 1000
The page index. This value is simply for client state.
Minimum: 0
The page token. This is provided by the API.
_18// Download the helper library from https://www.twilio.com/docs/node/install
_18const twilio = require("twilio"); // Or, for ESM: import twilio from "twilio";
_18// Find your Account SID and Auth Token at twilio.com/console
_18// and set the environment variables. See http://twil.io/secure
_18const accountSid = process.env.TWILIO_ACCOUNT_SID;
_18const authToken = process.env.TWILIO_AUTH_TOKEN;
_18const client = twilio(accountSid, authToken);
_18async function listDeviceSecret() {
_18 const deviceSecrets = await client.microvisor.v1
_18 .devices("UVxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx")
_18 .deviceSecrets.list({ limit: 20 });
_18 deviceSecrets.forEach((d) => console.log(d.deviceSid));
_12 "first_page_url": "https://microvisor.twilio.com/v1/Devices/UVaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/Secrets?PageSize=50&Page=0",
_12 "previous_page_url": null,
_12 "url": "https://microvisor.twilio.com/v1/Devices/UVaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/Secrets?PageSize=50&Page=0",
_12 "next_page_url": null,
DELETE https://microvisor.twilio.com/v1/Devices/{DeviceSid}/Secrets/{Key}
Property nameTypeRequiredPIIDescription
A 34-character string that uniquely identifies the Device.
The secret key; up to 100 characters.
_17// Download the helper library from https://www.twilio.com/docs/node/install
_17const twilio = require("twilio"); // Or, for ESM: import twilio from "twilio";
_17// Find your Account SID and Auth Token at twilio.com/console
_17// and set the environment variables. See http://twil.io/secure
_17const accountSid = process.env.TWILIO_ACCOUNT_SID;
_17const authToken = process.env.TWILIO_AUTH_TOKEN;
_17const client = twilio(accountSid, authToken);
_17async function deleteDeviceSecret() {
_17 await client.microvisor.v1
_17 .devices("UVxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx")
_17 .deviceSecrets("key_name")