Learn how to authenticate with Infisical for services on Azure
/api/v1/auth/azure-auth/login
endpoint. If successful,
then Infisical returns a short-lived access token that can be used to make authenticated requests to the Infisical API.
To be more specific:
Creating an identity
aud
claim of the access token JWT later used in the login operation against Infisical. See the resource parameter for how the audience is set when requesting a JWT access token from the Azure Instance Metadata Service (IMDS) endpoint. In most cases, this value should be https://management.azure.com/
which is the default.2592000
equivalent to 30 days): The lifetime for an acccess token in seconds. This value will be referenced at renewal time.2592000
equivalent to 30 days): The maximum lifetime for an acccess token in seconds. This value will be referenced at renewal time.0
): The maximum number of times that an access token can be used; a value of 0
implies infinite number of uses.0.0.0.0/0
, allowing usage from any network address.Adding an identity to a project
Accessing the Infisical API with the identity
/api/v1/auth/azure-auth/login
endpoint in exchange for a separate access token to access the Infisical API.We provide a few code examples below of how you can authenticate with Infisical to access the Infisical API.Sample code for generating the access token
access_token
field above) to authenticate with Infisical and obtain a separate access token.<identityId>
with the ID of the identity you created in step 1.7200
seconds which can be adjusted.
If an identity access token expires, it can no longer authenticate with the Infisical API. In this case,
a new access token should be obtained by performing another login operation.