Login

cURL

curl --request POST \
  --url https://us.infisical.com/api/v1/auth/alicloud-auth/login \
  --header 'Content-Type: application/json' \
  --data '
{
  "identityId": "<string>",
  "Action": "GetCallerIdentity",
  "Format": "JSON",
  "Version": "<string>",
  "AccessKeyId": "<string>",
  "SignatureMethod": "HMAC-SHA1",
  "Timestamp": "2023-11-07T05:31:56Z",
  "SignatureVersion": "1.0",
  "SignatureNonce": "<string>",
  "Signature": "<string>",
  "subOrganizationName": "<string>"
}
'

{
  "accessToken": "<string>",
  "expiresIn": 123,
  "accessTokenMaxTTL": 123,
  "tokenType": "Bearer"
}

POST

api

auth

alicloud-auth

cURL

curl --request POST \
  --url https://us.infisical.com/api/v1/auth/alicloud-auth/login \
  --header 'Content-Type: application/json' \
  --data '
{
  "identityId": "<string>",
  "Action": "GetCallerIdentity",
  "Format": "JSON",
  "Version": "<string>",
  "AccessKeyId": "<string>",
  "SignatureMethod": "HMAC-SHA1",
  "Timestamp": "2023-11-07T05:31:56Z",
  "SignatureVersion": "1.0",
  "SignatureNonce": "<string>",
  "Signature": "<string>",
  "subOrganizationName": "<string>"
}
'

{
  "accessToken": "<string>",
  "expiresIn": 123,
  "accessTokenMaxTTL": 123,
  "tokenType": "Bearer"
}

Body

application/json

identityId

string

required

The ID of the machine identity to login.

Action

enum<string>

required

The Alibaba Cloud API action. For STS GetCallerIdentity, this should be 'GetCallerIdentity'.

Available options:

GetCallerIdentity

Format

enum<string>

required

The response format. For STS GetCallerIdentity, this should be 'JSON'.

Available options:

JSON

Version

string

required

The API version. This should be in 'YYYY-MM-DD' format (e.g., '2015-04-01').

AccessKeyId

string

required

The AccessKey ID of the RAM user or STS token.

SignatureMethod

enum<string>

required

The signature algorithm. For STS GetCallerIdentity, this should be 'HMAC-SHA1'.

Available options:

HMAC-SHA1

Timestamp

string<date-time>

required

The timestamp of the request in UTC, formatted as 'YYYY-MM-DDTHH:mm:ssZ'.

SignatureVersion

enum<string>

required

The signature version. For STS GetCallerIdentity, this should be '1.0'.

Available options:

1.0

SignatureNonce

string

required

A unique random string to prevent replay attacks.

Signature

string

required

The signature string calculated based on the request parameters and AccessKey Secret.

subOrganizationName

string

sub-organization name to scope the token to

Required string length: 1 - 64

Response

Default Response

accessToken

string

required

expiresIn

number

required

accessTokenMaxTTL

number

required

tokenType

enum<string>

required

Available options:

Bearer

Revoke Attach

Overview

Organization

Project

Shared

Identity Auth

Secrets Management

Infisical PKI

Secret Scanning

Infisical SSH

Infisical KMS

Other

Body

Response