Toggles the active state (enabled/disabled) of a payment key owned by the current user.

POST 
/paymentkeys/toggle

Validates ownership before toggling. Returns BadRequest if the user is invalid, the key is not found, or the key is not owned by the caller.

Request

Responses

200

OK

401

Unauthorized - missing or invalid credentials.

403

Forbidden - authenticated but missing required role or policy.