IAM2 API
IAM2 API
IAM2 API จะช่วยให้ผู้ใช้งานสามารถจัดการทรัพยากรข้อมูลได้อย่างปลอดภัย ซึ่งนั่นรวมถึงการระบุตัวตนและสิทธิ์การเข้าใช้งาน นอกจากนี้แล้วยังช่วยรวมการทำงานของส่วนต่างๆภายใน ONEWEB ซึ่ง IAM2 นั้นจะเป็นผู้ให้บริการทางด้านข้อมูลประจำตัว โดยซึ่งใช้ OAuth2 service ที่จะบริการ API ในด้านการให้สิทธิ์ ซึ่งจะช่วยสนับสนุน multi token grant type ที่ช่วยให้คุณสามารถเชื่อมต่อลูกค้าเข้ากับบริการได้อย่างปลอดภัย
API OAuth
URL
Description
HTTP Method
/oauth/authorize
Process request access token
GET, POST
/oauth/token
Process request access token
GET, POST
/oauth/check_token
Check access token expire
GET
/oauth/confirm_access
Confirm call api authentication code
GET
/oauth/token_key]
Get api public key server
GET
/oauth/logout
Logout from IAM2
POST
/oauth/logout/idp
Logout from google, facebook
POST
IAM API version 1
สำหรับ IAM2 version 1 เราจะใช้การรับรองความถูกต้องโดยใช้ IAMtoken สำหรับการเข้าถึง token
URL
Description
HTTP Method
/v1/login
Login IAM2 System
POST
/v1/perms/{accesstoken}
Get permission user by token
GET
/v1/getSystemProperty/{contextPath}]
Get detail system
GET
/v1/logout/{accesstoken}
Logout IAM2
GET
/v1/removesession/{session_id}
Remove session and invole acess token
GET
/v1/userinfo/{accesstoken}
Get users by token
GET
/v1/userinfo/{accesstoken}/{username}
Get specific user by token
GET
/v1/storesession/{session_id}
Get acess token by sesssion id
GET
/v1/logoutSSO/{username}/{sessionId}
Logout api version1
GET
/v1/perms/{accesstoken}/{objectpath}
Get specific permission
GET
/v1/checksession/{auth_session_id}
Check session
GET
/v1/checksessionByAccessToken/{accessToken}
Check session by access token
GET
/v1/objects
Create objects, Get objects by login access
POST, GET
/v1/objects/{object_id}
Update objects, Delete objects
PUT, DELETE
/v1/objects/{object_id}/access
Get access in object by object id, Add access to object
GET, PUT
/v1/objects/{object_id}/access/{access_id}
Delete access in object
DELETE
/v1/objectTypes
Get object type, Create object type
GET, POST
/v1/objectTypes/{object_type_id}
Get specific object type, Update object type
GET, PATCH, PUT
/v1/objectTypes/{object_type_ids}
Delete object type
DELETE
v1/orgs
Create organization, Get organizations
POST, GET
/v1/orgs/{org_id}
Update organization
PATCH, PUT
/v1/orgs/{org_ids}
Delete organizations
DELETE
/v1/orgs/{org_id}/users
Get users in organization, Add users to organization
GET, PUT
/v1/orgs/{org_id}/users/{user_ids}
Remove users in organization
DELETE
/v1/users/validationEmail
Send validation email
POST
/v1/users/validationPassword
Send validation password
POST
/v1/users/forgotEmail
Send message forgot email
POST
/v1/users/updatePasswordUser
Send update password
POST
/v1/users/resetPasswordByAdmin
Send reset password by admin
POST
/v1/users/updatePasswordAdmin
Send update password admin
POST
/v1/permissions
Get permissions, Create permission, Update permissions
GET, POST, PUT
/v1/permissions/{permission_id}
Get specific permission, Delete permission
GET, DELETE
/v1/permissions/{permission_id}/objects
Get objects in permissions,
Add objects to permission
GET, PUT
/v1/permissions/{permission_id}/objects/{object_ids}
Delete objects in permission
DELETE
/v1/permissions/{permission_id}/users
Get users in specific permission
GET
/v1/permissions/{permission_id}/objects/{object_id}/access
Get access object in permission, Create access object in permission
POST, GET
/v1/permissions/{permission_id}/objects/{object_id}/access/{access_type_ids}
Delete access object in permission
DELETE
/v1/roles
Get roles, Create role
GET, POST
/v1/roles/{role_id}
Update role, Delete roles
PATCH, PUT, DELETE
/v1/roles/{role_id}/users
Add user to role, Get users in role
PUT, GET
/v1/roles/{role_id}/users/{userIds}
Remove user in role
DELETE
/v1/roles/{role_id}/objects
Get objects in role, Add object to role
GET, PUT
/v1/roles/{role_id}/objects/{object_ids}
Delete objects in role
DELETE
/v1/roles/{role_id}/permissions
Get permissions in role, Add permission to role
GET, PUT
/v1/roles/{role_id}/permissions/{permission_ids}
Delete permissions in role
DELETE
/v1/systems
Get systems, Create system
GET, POST
/v1/systems/{system_id}
Get specific system, Update system
GET, PATCH, PUT
/v1/systems/{system_ids}
Delete systems
DELETE
/v1/systems/{system_id}/admins
Add admin to system, Get admin in system
PUT, GET
/v1/systems/{system_id}/admins/{user_ids}
Remove admin in system
DELETE
/v1/systems/{system_id}/properties
Get properties in system, Add properties to system
GET, PUT
/v1/systems/{system_id}/properties/{system_property_id}
Get specific propertie in system, Update propertie in system
GET, PATCH
/v1/users
Get users, Create user
GET, POST
/v1/users/email
Get user by email
POST
/v1/users/{user_id}
Get specific user, Update user
GET, PUT, PATCH
/v1/user/{user_id}/objects
Get objects in user
GET
/v1/users/{user_id}/objects
Add object to user
PUT
/v1/users/{user_id}/objects/{object_ids}
Remove objects in user
DELETE
/v1/users/{user_id}/roles
Add roles to user
PUT
/v1/users/{user_id}/roles/{role_ids}
Remove roles in user
DELETE
/v1/user/{user_id}/systems
Get systems in user
GET
/v1/sendResetPasswordEmail
Send email reset password
POST
/v1/users/firstlogin/{user_id}
Force user change password
PUT
/v1/users/delete/{user_id}
Delete user
DELETE
/v1/users/webhook
Call back api remove account from facebook
POST
/v1/users/{user_id}/permissions
Add permissions to user
PUT
/v1/users/{user_id}/permissions/{permission_Ids}
Remove permission in user
DELETE
/v1/getUserPermission/{system_id}
Get user permission in system
GET
/v1/getUserPermission/{system_id}/{user_id}
Get specific user permission in sytem
GET
/v1/policy
Get policy
GET
IAM API version 2
สำหรับ IAM2 version 2 เราจะใช้การรับรองความถูกต้องโดยใช้ OAuth
URL
Description
HTTP Method
/facebook_user_status
Confirm remove account facebook in IAM2
GET
/v2/access
Get access, Create access
GET, POST
/v2/access/{access_id}
Get specific access, Update access
GET, PUT, PATCH
/v2/access/{access_ids}
Delete access
DELETE
/v2/objects
Create object, Get objects
POST, GET
/v2/objects/{object_id}
Update object, Delete objects
PUT, DELETE
/v2/objects/{object_id}/access
Get access in object by object id, Add access to object
PUT, GET
/v2/objects/{objectId}/access/{accessId}
Delete access in object
DELETE
/v2/objectsAndAccess
Create object acess
POST
/v2/objectTypes
Get object type, Create object type
GET, POST
/v2/objectTypes/{object_type_id}
Get specific object type, Update object type
GET, PATCH, PUT
/v2/objectTypes/{object_type_ids}
Delete object type
DELETE
/v2/orgs
Create organization, Get organizations
POST, GET
/v2/orgs/{org_id}
Update organization
PATCH, PUT
/v2/orgs/{org_ids}
Delete organizations
DELETE
/v2/orgs/{org_id}/users
Get users in organization, Add users to organization
GET, PUT
/v2/orgs/{org_id}/users/{user_ids}
Remove users in organization
DELETE
/v2/permissions
Get permissions, Create permission, Update permissions
GET, POST, PUT
/v2/permissions/{permission_id}
Get specific permission, Delete permission
GET, DELETE
/v2/permissions/{permission_id}/objects
Get objects in permissions,
Add objects to permission
GET, PUT
/v2/permissions/{permission_id}/objects/{object_ids}
Delete objects in permission
DELETE
/v2/permissions/{permission_id}/users
Get users in specific permission
GET
/v2/permissions/{permission_id}/objects/{object_id}/access
Get access object in permission, Create access object in permission
POST, GET
/v2/permissions/{permission_id}/objects/{object_id}/access/{access_type_ids}
Delete access object in permission
DELETE
/v2/roles
Get roles, Create role
GET, POST
/v2/roles/{role_id}
Update role, Delete roles
PATCH, PUT, DELETE
/v2/roles/{role_id}/users
Add user to role, Get users in role
PUT, GET
/v2/roles/{role_id}/users/{userIds}
Remove user in role
DELETE
/v2/roles/{role_id}/objects
Get objects in role, Add object to role
GET, PUT
/v2/roles/{role_id}/objects/{object_ids}
Delete objects in role
DELETE
/v2/roles/{role_id}/permissions
Get permissions in role, Add permission to role
GET, PUT
/v2/roles/{role_id}/permissions/{permission_ids}
Delete permissions in role
DELETE
/v2/aspsystems
API create applicaiton in app space
POST
/v2/systems
Get systems, Create system
GET, POST
/v2/systems/{system_id}
Get specific system, Update system
GET, PATCH, PUT
/v2/systems/{system_ids}
Delete systems
DELETE
/v2/systems/{system_id}/admins
Add admin to system, Get admin in system
PUT, GET
/v2/systems/{system_id}/admins/{user_ids}
Remove admin in system
DELETE
/v2/systems/{system_id}/properties
Get properties in system, Add properties to system
GET, PUT
/v2/systems/{system_id}/properties/{system_property_id}
Get specific propertie in system, Update propertie in system
GET, PATCH
/v2/userinfo
Get user info
GET
/v2/userinfo/{user_id}
Get specific user info
GET
/v2/users
Get users, Create user
GET, POST
/v2/user/pic
Get picture user
GET
/v2/users/{user_id}
Get specific user, Update user
GET, PATCH, PUT
/v2/users/email
Get user by email
POST
/v2/user/facebook
Get user by facebook
GET
/v2/user/{user_id}/objects
Get object in user
GET
/v2/user/{user_id}/systems
Get systems in user
GET
/v2/users/{user_id}/objects]
Add object to user
PUT
/v2/users/{user_id}/objects/{object_ids}
Remove objects in user
DELETE
/v2/users/{user_id}/roles
Add roles to user
PUT
/v2/users/{user_id}/roles/{role_ids}
Remove roles in user
DELETE
/v2/users/firstlogin/{user_id}
Force user change password
PUT
/v2/users/validationEmail
Send validation email
POST
/v2/users/forgotEmail
Send message forgot email
POST
/v2/users/validationPassword
Send validation password
POST
/v2/users/resetUpdatePassword
Send update password
POST
/v2/users/changepassword
Change password
GET
/v2/users/fogotUpdatePassword
Send update password in case forgot password
POST
/v2/users/requestForgotPassword
Send request forgot password for recive token
POST
/v2/users/resetUpdatePasswordWithToken
Send token for reset password
POST
/v2/users/delete/{user_id}
Delete user
DELETE
/v2/users/{user_id}/permissions
Add permissions to user
PUT
/v2/users/{user_id}/permissions/{permission_ids}
Remove permission in user
DELETE
/v2/getUserPermission/{system_id}
Get user permission in system
GET
/v2/getUserPermission/{system_id}/{user_id}
Get specific user permission in sytem
GET
/v2/perms
Get permission
GET
/v2/perms/{objectpath}
Get permission by object
GET
/v2/permDetail/{system_id}
Get permission detail by system
GET
/v2/repository
Get repository
GET
/v2/cert
Get certificate
GET
/v2/clients
Get clients
GET
/v2/logout
Logout iam2
GET
Last updated