> ## Documentation Index > Fetch the complete documentation index at: https://conductorone-docs-mcp-bridge-private-server.mintlify.site/llms.txt > Use this file to discover all available pages before exploring further. # List Credentials > ListCredentials lists client credentials for a service principal. ## OpenAPI ````yaml https://spec.speakeasy.com/conductor-one/conductorone/my-source-with-code-samples get /api/v1/service_principals/{service_principal_id}/credentials openapi: 3.1.0 info: description: The C1 API is a HTTP API for managing C1 resources. title: C1 API version: 0.1.0-alpha servers: - description: The C1 API server for the current tenant. url: https://{tenantDomain}.conductor.one variables: tenantDomain: default: example description: The domain of the tenant to use for this request. security: - bearerAuth: [] oauth: [] paths: /api/v1/service_principals/{service_principal_id}/credentials: get: tags: - Service Principal summary: List Credentials description: ListCredentials lists client credentials for a service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.ListCredentials parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID to list credentials for. type: string responses: '200': content: application/json: schema: $ref: >- #/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceListCredentialsResponse description: Successful response x-codeSamples: - lang: go label: ListCredentials source: "package main\n\nimport(\n\t\"context\"\n\t\"github.com/conductorone/conductorone-sdk-go/pkg/models/shared\"\n\tconductoronesdkgo \"github.com/conductorone/conductorone-sdk-go\"\n\t\"github.com/conductorone/conductorone-sdk-go/pkg/models/operations\"\n\t\"log\"\n)\n\nfunc main() {\n ctx := context.Background()\n\n s := conductoronesdkgo.New(\n conductoronesdkgo.WithSecurity(shared.Security{\n BearerAuth: \"\",\n Oauth: \"\",\n }),\n )\n\n res, err := s.Principal.ListCredentials(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceListCredentialsRequest{\n ServicePrincipalID: \"\",\n })\n if err != nil {\n log.Fatal(err)\n }\n if res.ServicePrincipalServiceListCredentialsResponse != nil {\n // handle response\n }\n}" - lang: typescript label: Typescript (SDK) source: >- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.listCredentials({ servicePrincipalId: "", }); console.log(result); } run(); components: schemas: c1.api.service_principal.v1.ServicePrincipalServiceListCredentialsResponse: description: The ServicePrincipalServiceListCredentialsResponse message. properties: list: description: The list field. items: $ref: >- #/components/schemas/c1.api.service_principal.v1.ServicePrincipalCredential type: - array - 'null' nextPageToken: description: The nextPageToken field. type: - string - 'null' title: Service Principal Service List Credentials Response type: object x-speakeasy-name-override: ServicePrincipalServiceListCredentialsResponse c1.api.service_principal.v1.ServicePrincipalCredential: description: >- ServicePrincipalCredential represents a client credential for a service principal. properties: allowSourceCidrs: description: CIDR restrictions for this credential. items: type: string readOnly: true type: - array - 'null' clientId: description: >- The full client ID in format: ${cutename}@${tenant}.${installation}/spc readOnly: true type: - string - 'null' createdAt: format: date-time readOnly: true type: - string - 'null' displayName: description: The display name of the credential. type: - string - 'null' expiresAt: format: date-time readOnly: true type: - string - 'null' id: description: The unique ID of the credential (cutename format). readOnly: true type: - string - 'null' lastUsedAt: format: date-time readOnly: true type: - string - 'null' requireDpop: description: Whether DPoP proof-of-possession is required for this credential. readOnly: true type: - boolean - 'null' scopedRoleIds: description: >- Scoped role IDs for this credential (intersection with SP roles at token issuance). items: type: string readOnly: true type: - array - 'null' servicePrincipalId: description: The service principal user ID this credential belongs to. readOnly: true type: - string - 'null' title: Service Principal Credential type: object x-speakeasy-name-override: ServicePrincipalCredential securitySchemes: bearerAuth: scheme: bearer type: http oauth: description: >- This API uses OAuth2 with the Client Credential flow. Client Credentials must be sent in the BODY, not the headers. For an example of how to implement this, refer to the [c1TokenSource.Token()](https://github.com/ConductorOne/conductorone-sdk-go/blob/3375fe7c0126d17e7ec4e711693dee7b791023aa/token_source.go#L101-L187) function. flows: clientCredentials: scopes: {} tokenUrl: /auth/v1/token type: oauth2 ````