Auth-Server (API)
falseAn array of roleId of the roles the new user should have. (Must be roleId, not role name.)
falseCreated
Invalid request
The optional list to be matched against the usernames
The page number to fetch, starts at page 1
The number of records per page to return
If the auto generated roles should be excluded from the results
Object with array of users and pagination information
Bad Request
falseAn array of roleId of the roles the new user should have. (Must be roleId, not role name.)
falseCreated
Invalid request
Id of user
User
User not found
Id of user
An array of roleId of the roles the new user should have. (Must be roleId, not role name.)
Indicates that MFA for the given user should be disabled
Enforces the user to enroll MFA
OK
Invalid request
User not found
Id of user
List of user generated tokens
User not found
Id of user
Id of the Token to be deleted. All tokens for the user are deleted if not present.
Token(s) deleted
No content
Error ocurred when attempting to delete token(s)
No content
A comma separated list of MS Entra Id groups associated with this role
Created
Invalid request
Filter by equal to name
Array of roles
A comma separated list of MS Entra Id groups associated with this role
Authentication Error
Authorization Error
Filter by the given names
Set the page size of the yielded page
Set the current page to be retrieved
Filter by roles that are or not auto generated, defaults to any
Filter by roles that are or not shared, defaults to any
Object with array of roles and pagination information
Invalid args provided
Authentication Error
Authorization Error
Id of role
Role
A comma separated list of MS Entra Id groups associated with this role
Authentication Error
Authorization Error
Role not found
Id of role
A comma separated list of MS Entra Id groups associated with this role
OK
A comma separated list of MS Entra Id groups associated with this role
Invalid request
Role not found
Id of role
Array of permissions
The MQTT topic or REST URL path for which the permission is granted. Both may include MQTT-style wildcards.
Authentication Error
Authorization Error
Role not found
Id of role
Created
Invalid request
Conflict - permission already declared
No content
Id of role
Id of permission
Permission
The MQTT topic or REST URL path for which the permission is granted. Both may include MQTT-style wildcards.
Invalid request
User not found
Id of role
Id of permission
OK
No content
Invalid request
Permission not found
No content
OK
The MQTT topic or REST URL path for which the permission is granted. Both may include MQTT-style wildcards.
Unauthorized
Filter by the given permission ids
Set the page size of the yielded page
Set the current page to be retrieved
Object with array of permissions and pagination information
Invalid args provided
Unauthorized
The ids of all permissions aggregated by resource, operation and context
The permission's resource
The ids that have the same aformentioned resource, operation and context
Unauthorized
Username to be registered. The Auth Server will check this for uniqueness, so be sure to generate a reasonably namespaced username.
iot.device.0123456Secret password that should be set for the user. This will be stored in hashed form on the receiver side. Either this or a csr should be supplied.
secret-passwordBase 64 encoded certificate signing request in PEM format. Instead of a password, a client side certificate (x.509) can be used for authentication. If the CSR is supplied, the signed certificate will be returned once the authentication request is granted.
LS0tLS1CRUdJTiBDRVJUSUZJQ0FURSBSRVFVRVNULS0tLS0KTUlJQ3REQ0NBWndDQVFBd2J6RUxN QWtHQTFVRUJoTUNSRVV4RHpBTkJnTlZCQWdNQmtKbGNteHBiakVVTUJJRwpBMVVFQ2d3TFVtOWli M1J6SUVsdVl5NHhEREFLQmdOVkJBc01BMUltUkRFTk1Bc0dBMVVFQXd3RVVqSkVNakVjCk1Cb0dD U3FHU0liM0RRRUpBUllOY2pKa01rQmplV0oxY3k1cGJ6Q0NBU0l3RFFZSktvWklodmNOQVFFQkJR QUQKZ2dFUEFEQ0NBUW9DZ2dFQkFNSXlsQmk4azFIZDJseERXZHd5N1Z3WngvaUlrdWpTUUVtWmdk Y0JqNk4veTZTSQpiTGMwdFpmK2JGWUZZZ2p0OHRFUUJPRzhNeW94YmYwQSs4T0dHZFJvV3l2eHFt ci9TLzhNa1ZGUXJiS2duMDBaCmVrdWlZQVBUOFMvT0FZVnlGT21rWWtWSm0wdkRwMmRkcXRiTUZY bXZ1OGxnVnVPckFwMEQ4TjdBcVgwWlUwc0UKZzRmVkdpREtnS040cUFEcXR3aVZKb0dsR0JCYWpm ejAxSlhEWnhpUEVac3BYSGJyaVY0Z1JvV0VIVGNGcWc4cgo1WCtZRDlqTGVGdFdRb0g5SHA3ZEFP Y1lCRktVRVZjWTlGN20vRWZkVFBwNjNnbTdRdFR4S0EvelIyODRWQUVCCjZFbC8xU2FCME54YlVw bHgzVHp4T2ZKYjJpdEd0S1RzN1U2UnF3VUNBd0VBQWFBQU1BMEdDU3FHU0liM0RRRUIKQ3dVQUE0 SUJBUUIxejdKcGRIRERScTl2WE1BMmNBVVZBRmYvYkRXNzlkNmlMQ0pDVDZ5WlhOcHV0ZXA3N1pQ dQpIMSszb08vZmRJdDhaOThjV0J4ZVBNckVDM2krQ0lIdms4a202SVFMVW05cUZVdHRDN0VjUmpU UFYwT29vb2l0ClhXOHhzWVhGaEZPTStydTJnbEcrSUVMY3BydS9JamxyVHpwaUtNZVJGQ1FFemww WWtZRDZkSk82ME1CRVhjZUgKWHpFZTRtT2oxUDJKNFcycFI1bDFsQjZ5dXB4SWVuRjRhNm5EeFFE eFZkcmtBTHNJdDhGZUNTNDNvaHg4NVQ5SApHN2IwOFdmdEFrYzhKR3ZLb00rdE90MzlVZFFESE1S OU5QOG9RUUpMaldMcWZRdUtaRmZXNVJyR24zSzA2UGNICkRMN1FNc1hxNFBaMyswUXpCSjZJVGoz aUZubHp1VXBqCi0tLS0tRU5EIENFUlRJRklDQVRFIFJFUVVFU1QtLS0tLQo=Name of roles the user wants to be assigned to
Free text that helps the granting user understanding where this request comes from.
IoT Device Serial Number <0123456>Granted. The registration request has been confirmed, proceed to login
Pending. The registration request has been accepted but needs to be confirmed. Try again later.
Invalid Request.
Conflict. Might indicate that a conflicting registration is pending or a conflicting user is already existing.
Policy violation. A user name or a password doesn't fulfill some of the policy rules.
Locked. The registration endpoint is currently not open. Try again later.
OK
String with ISO 8601 timestamp of the last request update.
2022-03-25T17:25:21.379ZUsername that is requested to be granted access.
iot.device.0123456Free text that helps the granting user understanding where this request comes from.
IoT Device Serial Number <0123456>Unauthorized
This parameter defines how long the registration endpoint will be kept open (in milliseconds). Default if undefined: 30000 milliseconds
30000OK
Unauthorized
No content
Username to confirm. Must match a username that is currently in the pendingRequests list.
An array of roleId of the roles the new user should have. (Must be roleId, not role name.)
OK
Unauthorized
Corresponding username not found
Internal server error or invalid CSR
Id of certificate
Certificate content
Invalid request
Certificate not found
Error while attempting to delete Certificate
OK
The minimum number of characters a password must contain. Zero disables this rule.
The minimum number of lower-case letters a password must contain. Zero disables this rule.
The minimum number of upper-case letters a password must contain. Zero disables this rule.
The minimum number of digit numbers a password must contain. Zero disables this rule.
The minimum number of symbol or punctuation characters a password must contain. Zero disables this rule.
Could not reach server
OK
There is no backup archive file to provide
Locked. There is a database maintenance operation in the process. Try again later.
File does not exist or download of a backup file failed
The backup file
Accepted. The archive is uploaded, and the database restores process starts.
Locked. There is a database maintenance operation in the process. Try again later.
No content
ok
Invalid request
Invalid OTP
Too many failed login attempts
Internal error
See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referer. If given, will be used as the redirection in case of internal error during URL generation
In case of success or failure, redirects to the URL the client ought to be sent to
The feature is not enabled.
The access code provided by MS Entra ID that can be exchanged for Access and ID Tokens.
State is a security parameter used to verify that the response is initiated from CW, preventing CSRF attacks.
In case of success or failure, redirecting to Admin UI
Invalid request
The feature is not enabled.
Last updated
Was this helpful?