Attach - Infisical

Overview

Endpoints

Identities
Token Auth
Universal Auth
- POST
  Login
- POST
  Attach
- GET
  Retrieve
- PATCH
  Update
- DEL
  Revoke
- POST
  Create Client Secret
- GET
  List Client Secrets
- POST
  Revoke Client Secret
- GET
  Get Client Secret By ID
- POST
  Renew Access Token
- POST
  Revoke Access Token
GCP Auth
AWS Auth
Azure Auth
Kubernetes Auth
OIDC Auth
JWT Auth
Groups
Organizations
Projects
Project Users
Project Groups
Project Identities
Project Roles
Project Templates
Environments
Folders
Secret Tags
Secrets
Dynamic Secrets
Secret Imports
Identity Specific Privilege
App Connections
Secret Syncs
Integrations
Service Tokens
Audit Logs

Infisical PKI

Certificate Authorities
Certificates
Certificate Templates
Certificate Collections
PKI Alerting

Infisical SSH

Certificates
Certificate Authorities
Certificate Templates

Infisical KMS

Keys

POST

api

auth

universal-auth

identities

{identityId}

curl --request POST \
  --url https://us.infisical.com/api/v1/auth/universal-auth/identities/{identityId} \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "clientSecretTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTTL": 2592000,
  "accessTokenMaxTTL": 2592000,
  "accessTokenNumUsesLimit": 0
}'

{
  "identityUniversalAuth": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "clientId": "<string>",
    "accessTokenTTL": 7200,
    "accessTokenMaxTTL": 7200,
    "accessTokenNumUsesLimit": 0,
    "clientSecretTrustedIps": "<any>",
    "accessTokenTrustedIps": "<any>",
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z",
    "identityId": "3c90c3cc-0d44-4b50-8888-8dd25736052a"
  }
}

Authorizations

Authorization

string

header

required

An access token in Infisical

Path Parameters

identityId

string

required

The ID of the identity to attach the configuration onto.

Body

application/json

clientSecretTrustedIps

object[]

A list of IPs or CIDR ranges that the Client Secret can be used from together with the Client ID to get back an access token. You can use 0.0.0.0/0, to allow usage from any network address.

accessTokenTrustedIps

object[]

A list of IPs or CIDR ranges that access tokens can be used from. You can use 0.0.0.0/0, to allow usage from any network address.

accessTokenTTL

integer

default:

2592000

The lifetime for an access token in seconds. This value will be referenced at renewal time.

Required range: 0 < x < 315360000

accessTokenMaxTTL

integer

default:

2592000

The maximum lifetime for an access token in seconds. This value will be referenced at renewal time.

Required range: 0 < x < 315360000

accessTokenNumUsesLimit

integer

default:

The maximum number of times that an access token can be used; a value of 0 implies infinite number of uses.

Required range: x > 0

Response

200

application/json

Default Response

identityUniversalAuth

object

required

Was this page helpful?

Suggest edits Raise issue

curl --request POST \
  --url https://us.infisical.com/api/v1/auth/universal-auth/identities/{identityId} \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "clientSecretTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTrustedIps": [
    {
      "ipAddress": "0.0.0.0/0"
    },
    {
      "ipAddress": "::/0"
    }
  ],
  "accessTokenTTL": 2592000,
  "accessTokenMaxTTL": 2592000,
  "accessTokenNumUsesLimit": 0
}'

{
  "identityUniversalAuth": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "clientId": "<string>",
    "accessTokenTTL": 7200,
    "accessTokenMaxTTL": 7200,
    "accessTokenNumUsesLimit": 0,
    "clientSecretTrustedIps": "<any>",
    "accessTokenTrustedIps": "<any>",
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z",
    "identityId": "3c90c3cc-0d44-4b50-8888-8dd25736052a"
  }
}