Help Center/ Workspace/ API Reference/ Workspace Application Streaming APIs/ Application Repository Management/ Obtaining the Temporary AK/SK Uploaded to an OBS Bucket

Updated on 2026-05-21 GMT+08:00

Obtaining the Temporary AK/SK Uploaded to an OBS Bucket

Function

Obtains the temporary AK/SK uploaded to an OBS bucket.

Debugging

You can debug this API through automatic authentication in API Explorer or use the SDK sample code generated by API Explorer.

Authorization Information

Each account has all the permissions required to call all APIs, but IAM users must be assigned the required permissions.

If you are using role/policy-based authorization, see Permissions Policies and Supported Actions for details on the required permissions.

If you are using identity policy-based authorization, the following identity policy-based permissions are required.

Action	Access Level	Resource Type (*: required)	Condition Key	Alias	Dependencies
workspace:appWarehouse:authorizeObs	Write	-	-	-	obs:bucket:getBucketAcl obs:object:putObject obs:object:deleteObject

URI

POST /v1/{project_id}/app-warehouse/action/authorize

**Table 1** Path Parameters
Parameter	Mandatory	Type	Description
project_id	Yes	String	Project ID.

Request Parameters

**Table 2** Request header parameters
Parameter	Mandatory	Type	Description
X-Auth-Token	No	String	User token It can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token.

**Table 3** Request body parameters
Parameter	Mandatory	Type	Description
app_file_name	Yes	String	Application name. Requirements: The file name prefix consists of visible characters and spaces and cannot contain only spaces. Contains 1 to 255 characters. Ends with .msi, .exe, .zip, or .rar.

Response Parameters

Status code: 200

**Table 4** Response body parameters
Parameter	Type	Description
server_end_point	String	Accessed service endpoint.
bucket_name	String	Name of the stored bucket.
directory	String	Storage directory.
ak	String	Obtained AK.
sk	String	Obtained SK.
expires_at	String	Expiration time of the AK/SK and security token.
policy	Policy object	Access policy allowed by AK/SK.
security_token	String	Security verification token, which is a string encrypted using the obtained AK and SK.

**Table 5** Policy
Parameter	Type	Description
version	String	Version number.
statement	PolicyStatement object	OBS bucket storage policy content.

**Table 6** PolicyStatement
Parameter	Type	Description
effect	String	Policy operation type.
action	Array of strings	All granted permissions.
resource	Array of strings	Accessible resource.

Status code: 400

**Table 7** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 401

**Table 8** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 403

**Table 9** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 404

**Table 10** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 405

**Table 11** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 415

**Table 12** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 500

**Table 13** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Status code: 503

**Table 14** Response body parameters
Parameter	Type	Description
error_code	String	Error code, which is returned upon failure.
error_msg	String	Error message.

Example Requests

POST /v1/a4da8115c9d8464ead3a38309130523f/app-warehouse/action/authorize

{
  "app_file_name" : "Postman.exe"
}

Example Responses

Status code: 200

Response to a successful request.

{
  "server_end_point" : "https://obs.cn-nor***huaweicloud.com",
  "bucket_name" : "wks-app-test123456",
  "directory" : "file/Postman.exe",
  "ak" : "5BJ**********30",
  "sk" : "2yB**********5gt",
  "policy" : {
    "version" : "1.1",
    "statement" : {
      "effect" : "Allow",
      "action" : [ "obs:object:putObject", "obs:object:deleteObject" ],
      "resource" : [ "obs:*:*:object:wks-app-test123456/file/Postman.exe" ]
    }
  },
  "security_token" : "ggp**********iwi",
  "expires_at" : "2020-01-08T03:16:01:599000Z"
}

Status Codes

Status Code	Description
200	Response to a successful request.
400	The request cannot be understood by the server due to malformed syntax.
401	Authentication failed.
403	Permissions required.
404	No resources found.
405	The request method is not allowed.
415	The requested resource format is not supported.
500	An internal service error occurred. For details, see the error code description.
503	Service unavailable.

Error Codes

See Error Codes.

Parent topic: Application Repository Management

Previous topic: Modifying Specified Application Information in the Application Repository

Next topic: Uploading an Icon File to the Application Repository

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

For any further questions, feel free to contact us through the chatbot.

Chatbot