worldcoin · 0x1 · Feb 11, 2026 · Feb 11, 2026 · Feb 11, 2026 · Feb 11, 2026
@@ -79,13 +79,6 @@ type Mutation {
   ): ResetAPIOutput
 }
 
-type Mutation {
-  reset_client_secret(
-    app_id: String!
-    team_id: String!
-  ): ResetClientOutput
-}
-
 type Mutation {
   rotate_signer_key(
     app_id: String!
@@ -233,10 +226,6 @@ input ChangeAppReportStatusInput {
   updates: [ChangeAppReportStatusUpdate!]!
 }
 
-type ResetClientOutput {
-  client_secret: String!
-}
-
 type ResetAPIOutput {
   api_key: String!
 }

@@ -148,17 +148,6 @@ actions:
     permissions:
       - role: user
     comment: Reset the given API key for the developer portal
-  - name: reset_client_secret
-    definition:
-      kind: synchronous
-      handler: '{{NEXT_API_URL}}/hasura/reset-client-secret'
-      headers:
-        - name: Authorization
-          value_from_env: INTERNAL_ENDPOINTS_SECRET
-    permissions:
-      - role: api_key
-      - role: user
-    comment: Reset the client secret for a Sign in with World ID application
   - name: rotate_signer_key
     definition:
       kind: synchronous
@@ -360,7 +349,6 @@ custom_types:
     - name: ChangeAppReportStatusUpdate
     - name: ChangeAppReportStatusInput
   objects:
-    - name: ResetClientOutput
     - name: ResetAPIOutput
     - name: InviteTeamMembersOutput
     - name: PresignedPost

@@ -26,20 +26,6 @@
     - name: Authorization
       value_from_env: INTERNAL_ENDPOINTS_SECRET
   comment: ""
-- name: Delete expired jwks
-  webhook: '{{NEXT_API_URL}}/_delete-jwks'
-  schedule: 0 * * * *
-  include_in_metadata: true
-  payload: {}
-  retry_conf:
-    num_retries: 1
-    retry_interval_seconds: 10
-    timeout_seconds: 60
-    tolerance_seconds: 21600
-  headers:
-    - name: Authorization
-      value_from_env: INTERNAL_ENDPOINTS_SECRET
-  comment: Schedules all expired JWKS for deletion by KMS
 - name: Rollup app stats
   webhook: '{{NEXT_API_URL}}/_rollup-app-stats'
   schedule: 0 * * * *

@@ -47,27 +47,6 @@ describe("Auxiliary API Endpoints", () => {
     });
   });
 
-  describe("POST /api/_delete-jwks", () => {
-    it("Delete Expired JWKs With Authorization", async () => {
-      const response = await axios.post(
-        `${INTERNAL_API_URL}/api/_delete-jwks`,
-        {},
-        {
-          headers: {
-            Authorization: `Bearer ${token}`,
-            "Content-Type": "application/json",
-          },
-        },
-      );
-
-      expect(
-        response.status,
-        `Delete expired JWKs request resolved with a wrong code:\n${JSON.stringify(response.data, null, 2)}`,
-      ).toBe(204); // This endpoint returns 204 No Content
-      expect(response.data).toBe(""); // Empty response body
-    });
-  });
-
   describe("POST /api/_gen-external-nullifier", () => {
     let testTeamId: string | undefined;
     let testAppId: string | undefined;

@@ -40,9 +40,6 @@ SENDGRID_API_KEY=your_sendgrid_api_key
 SENDGRID_EMAIL_FROM=your_email@example.com
 SENDGRID_TEAM_INVITE_TEMPLATE_ID=d-5cbc349e16344604813f74c1f8b0bbdc
 
-# Sign in with World ID
-SIGN_IN_WITH_WORLD_ID_APP_ID=
-
 # Ironclad
 IRONCLAD_ACCESS_ID=your_ironclad_access_id
 IRONCLAD_GROUP_KEY=your_ironclad_group_key