# Regenerate cryptographic keys for a user

Regenerates the Ed25519 cryptographic keys for a specified user. This is used for federation security and ActivityPub signatures. Can identify the user by username or user ID. The old keys are invalidated and new keys are generated immediately. Remote servers will be notified of the key change through federation protocols.

RBAC: requires Users.Manage

Endpoint: POST /api/v1/admin/regenerate-keys
Version: 1.0
Security: 

## Query parameters:

  - `userId` (string,null)
    User ID whose cryptographic keys to regenerate. Must be a valid USER type ID. Either username or userId must be provided.
    Example: "us_01hxcvk1hjexere4pvtrj0ymqq"

  - `username` (string,null)
    Username of the user whose keys to regenerate. Case-insensitive. Either username or userId must be provided.

## Response 400 fields (application/json):

  - `errorCode` (string, required)
    Error code

  - `message` (string, required)
    Error message

  - `docUrl` (string)
    Link to documentation

## Response 403 fields (application/json):

  - `errorCode` (string, required)
    Error code

  - `message` (string, required)
    Error message

  - `docUrl` (string)
    Link to documentation

## Response 404 fields (application/json):

  - `errorCode` (string, required)
    Error code

  - `message` (string, required)
    Error message

  - `docUrl` (string)
    Link to documentation


## Response 200 fields