Help Center> Document Database Service> API Reference (Kuala Lumpur Region)> Calling APIs> Authentication
Updated on 2022-12-07 GMT+08:00
View PDF

Authentication

DDS supports token authentication.

Token Authentication

The validity period of a token is 24 hours. If a token needs to be used, the system caches the token to avoid frequent calling.

A token specifies temporary permissions in a computer system. During API authentication using a token, the token is added to requests to get permissions for calling the API.

If you use a token for authentication, you must obtain the user's token and add X-Auth-Token to the request message header of the service API when making an API call.

When calling an API to obtain a user token, you must set auth.scope in the request body to project.

Obtain the token. For details, see section "Obtaining the User Token" in the Identity and Access Management API Reference.

{
    "auth": {
        "identity": {
            "methods": [
                "password"
            ],
            "password": {
                "user": {
                    "name": "username",
                    "password": "password",
                    "domain": {
                        "name": "domainname"
                    }
                }
            }
        },
        "scope": {
            "project": {
               "name": "xxxxxxxx"
             }
        }
    }
}

After a token is obtained, add the X-Auth-Token header field must be added to requests to specify the token when calling other APIs. For example, if the token is ABCDEFJ...., add X-Auth-Token: ABCDEFJ.... in a request as follows:

POST https://{{Endpoint}}/v3/auth/projects
Content-Type: application/json 
X-Auth-Token: ABCDEFJ....
Parent topic: Calling APIs