Attach

POST

api

auth

universal-auth

identities

{identityId}

curl --request POST \
  --url https://app.infisical.com/api/v1/auth/universal-auth/identities/{identityId} \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "clientSecretTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTTL": 2592000,
  "accessTokenMaxTTL": 2592000,
  "accessTokenNumUsesLimit": 0
}'

{
  "identityUniversalAuth": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "clientId": "<string>",
    "accessTokenTTL": 7200,
    "accessTokenMaxTTL": 7200,
    "accessTokenNumUsesLimit": 0,
    "clientSecretTrustedIps": "<any>",
    "accessTokenTrustedIps": "<any>",
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z",
    "identityId": "3c90c3cc-0d44-4b50-8888-8dd25736052a"
  }
}

Authorizations

Authorization

string

header

required

An access token in Infisical

Path Parameters

identityId

string

required

The ID of the identity to attach the configuration onto.

Body

application/json

clientSecretTrustedIps

object[]

A list of IPs or CIDR ranges that the Client Secret can be used from together with the Client ID to get back an access token. You can use 0.0.0.0/0, to allow usage from any network address.

accessTokenTrustedIps

object[]

A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address.

accessTokenTTL

integer

default:

2592000

The lifetime for an access token in seconds. This value will be referenced at renewal time.

Required range: x > 1

accessTokenMaxTTL

integer

default:

2592000

The maximum lifetime for an access token in seconds. This value will be referenced at renewal time.

accessTokenNumUsesLimit

integer

default:

The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses.

Required range: x > 0

Response

200 - application/json

Default Response

identityUniversalAuth

object

required

Was this page helpful?

Suggest edits Raise issue

curl --request POST \
  --url https://app.infisical.com/api/v1/auth/universal-auth/identities/{identityId} \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "clientSecretTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTTL": 2592000,
  "accessTokenMaxTTL": 2592000,
  "accessTokenNumUsesLimit": 0
}'

{
  "identityUniversalAuth": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "clientId": "<string>",
    "accessTokenTTL": 7200,
    "accessTokenMaxTTL": 7200,
    "accessTokenNumUsesLimit": 0,
    "clientSecretTrustedIps": "<any>",
    "accessTokenTrustedIps": "<any>",
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z",
    "identityId": "3c90c3cc-0d44-4b50-8888-8dd25736052a"
  }
}

Overview

Endpoints

Authorizations

Path Parameters

Body

Response