Home > Software engineering >  IBM Cloud: API function to find account ID for existing IAM access token?
IBM Cloud: API function to find account ID for existing IAM access token?

Time:07-29

In my script I have an IBM Cloud IAM bearer token (access token). Some API functions require to pass in the account ID. Which API functions would allow me to retrieve the related account ID? I know that I could base64 decode the access token, but...

CodePudding user response:

docs: https://cloud.ibm.com/apidocs/iam-identity-token-api?code=python#get-api-keys-details-permissions

Python:

iam_identity_service.get_api_keys_details( iam_api_key=apikey ).get_result()

CodePudding user response:

There is an API function to retrieve the list of accounts and only needs a bearer token:

curl -X GET "https://accounts.cloud.ibm.com/v1/accounts" 
-H "Authorization: $IBMCLOUD_TOKEN" -H 'Content-Type: application/json'

The API can be seen in use with trace enabled during login using the CLI. The service is described as Account Management Service in the CLI docs.

I resorted to just decoding the bearer token:

# use split and base64 to get to the content of the IAM token
def extractAccount(iam_token):
    data = iam_token.split('.')
    padded = data[1]   "="*divmod(len(data[1]),4)[1]
    jsondata = json.loads(base64.urlsafe_b64decode(padded))
    return jsondata

The account ID can then be retrieved by accessing the related field in the token payload:

token_data=extractAccount(iam_token)
account_id=token_data["account"]["bss"]

Page link:https//www.codepudding.com/Softwareengineering/492814.html

Prev:How to upload copy of sent with smtp email
Next:How to select all the column values corresponding to duplicate values in different column of a table
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding