NOTE: Trivore ID Documentation has moved to https://trivoreid.com
The content on this site IS OUT OF DATE!
This space has been archived!
Please go ahead to the new site!
Private User Token Store ACLs
- Kari Mattsson
- Anssi Kivinen (Deactivated)
Owned by Kari Mattsson
It is possible to define ACLs for private user tokens. These ACLs are not required tokens private to the Management API Client because those tokens are.. completely private to the Management API Client.
The user token API is documented in the normal path at "/apidoc".
Each token may have the following ACLs defined:
- owner like this (PUT /api/rest/v1/user/{userId}/token):
"owner": { "id": "string", "type": "USER" }
- read-write (POST /api/rest/v1/user/{userId}/token/{key}/rw) in an array
[ { "id": "string", "type": "USER" } ]
- read-only (POST /api/rest/v1/user/{userId}/token/{key}/ro) in an array
[ { "id": "string", "type": "USER" } ]
This arrangement allows for controlled sharing of user data between external applications.