Endpoints
CRUD Operations
- List Credentials - Get all credentials for a project
- Create Credential - Create a new credential
- Update Credential - Update an existing credential
- Change Credential Password - Change credential password
- Delete Credential - Delete a credential
Access Management
- Get Granted Access List - Get list of API Proxies/Groups granted to credential
- Grant Access - Grant access to API Proxy or API Proxy Group
- Revoke Access - Revoke access from API Proxy or API Proxy Group
Secrets Management
- Secrets Management - Manage secret keys, certificates, keys, keystores, and truststores for credentials
JWK Settings
- JWK Settings - Manage JWK settings for validation, signing, decryption, and encryption
Token Settings
- Token Settings - Configure token expiration, refresh tokens, grant types, and JWT signature algorithms
Authentication
All endpoints require authentication using a Personal API Access Token.Permissions
GET Operations (List Credentials, Get Granted Access List)
- User must have
IDENTITY+VIEWpermission in the project - If the asset category does not exist, user must have at least one permission in the project
POST/PUT/DELETE Operations (Create/Update/Delete Credential, Grant/Revoke Access)
- User must have
IDENTITY+MANAGEpermission in the project - For deployment operations (when granting/revoking access with deploy), user must also have
IDENTITY+DEPLOY_UNDEPLOYpermission
Permission Requirements
| Operation | Required Permission |
|---|---|
| List Credentials, Get Granted Access List | IDENTITY + VIEW (or any permission if category doesn’t exist) |
| Create/Update/Delete Credential | IDENTITY + MANAGE |
| Grant/Revoke Access (with deploy) | IDENTITY + DEPLOY_UNDEPLOY |
Related Documentation
- Authentication Guide - How to obtain and use API tokens
- Error Handling - Error response formats