# Creates a new secret for a client

Endpoint: POST /v1/clients/{clientId}/secrets
Version: V1
Security: authorization_code_with_pkce, client_credentials

## Path parameters:

  - `clientId` (string, required)
    The client ID to add the secret to.

## Request fields (application/json):

  - `value` (string, required)
    The secret value. Must be between 8 and 32 characters.
    Example: "s3cr3tV@lue!"

  - `description` (string, required)
    An optional human-readable description of what this secret is used for.
    Example: "Production API access"

  - `expiration` (string,null)
    An optional expiration date for the secret. If not set then there is no expiry.


## Response 201 fields

## Response 400 fields

## Response 401 fields

## Response 403 fields