# /sys/wrapping/unwrap The `/sys/wrapping/unwrap` endpoint unwraps a wrapped response. ### Wrapping unwrap This endpoint returns the original response inside the given wrapping token. Unlike simply reading `cubbyhole/response` (which is deprecated), this endpoint provides additional validation checks on the token, returns the original value on the wire rather than a JSON string representation of it, and ensures that the response is properly audit-logged. This endpoint can be used by using a wrapping token as the client token in the API call, in which case the `token` parameter is not required; or, a different token with permissions to access this endpoint can make the call and pass in the wrapping token in the `token` parameter. Do *not* use the wrapping token in both locations; this will cause the wrapping token to be revoked but the value to be unable to be looked up, as it will basically be a double-use of the token! | Method | Path | | ------ | ---------------------- | | `POST` | `/sys/wrapping/unwrap` | #### Parameters * `token` `(string: "")` – Specifies the wrapping token ID. This is required if the client token is not the wrapping token. Do not use the wrapping token in both locations. #### Sample payload ```json { "token": "abcd1234..." } ``` #### Sample request ```shell-session $ curl \ --header "X-Vault-Token: ..." \ --request POST \ --data @payload.json \ http://127.0.0.1:8200/v1/sys/wrapping/unwrap ``` Or you can use token to unwrap without authentication in vault ```shell-session $ curl \ --header "X-Vault-Token: abcd1234..." \ --request POST \ http://127.0.0.1:8200/v1/sys/wrapping/unwrap ``` #### Sample response ```json { "request_id": "8e33c808-f86c-cff8-f30a-fbb3ac22c4a8", "lease_id": "", "lease_duration": 2592000, "renewable": false, "data": { "zip": "zap" }, "warnings": null } ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.enclaive.cloud/vault/api/system-backend/sys-wrapping-unwrap.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.