Sets the player's secret if it is not already set. Player secrets are used to sign API requests. To reset a player's secret use the Admin or Server API method SetPlayerSecret.

Request Details

APIs that require signatures require that the player have a configured Player Secret Key that is used to sign all requests. Players that don't have a secret will be blocked from making API calls until it is configured. To create a signature header add a SHA256 hashed string containing UTF8 encoded JSON body as it will be sent to the server, the current time in UTC formatted to ISO 8601, and the players secret formatted as ''. Place the resulting hash into the header X-PlayFab-Signature, along with a header X-PlayFab-Timestamp of the same UTC timestamp used in the signature.

Request Properties
PlayerSecret (required) String

Player secret that is used to verify API request signatures (Enterprise Only).

PlayFabId (required) String

Unique PlayFab assigned ID of the user on whom the operation will be performed.

POST https://{{TitleID}}
    Content-Type: application/json
    X-SecretKey: <developer_secret_key>
  "PlayerSecret": "secretkeyforthisplayer",
  "PlayFabId": "ABCD1234"

Response Details

Result Properties

Sample Response

HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8



Possible Error Codes

Name Code
PlayerSecretAlreadyConfigured 1294