LimaCharlie Cloud has a concept of API keys. Those are secret keys that can be created and named which can then in turn be used to retrieve a JWT that can be used with the LC REST Api at https://api.limacharlie.io.
This allows you to build headless applications that securely acquire time-restricted REST authentication tokens that it can then use.
The API Keys are managed through the organization view of the https://limacharlie.io web interface.
Getting a JWT¶
Simply issue an HTTP GET or HTTP POST (recommended) like:
oid parameter is the organization id as found through the web interface and the
secret parameter is the API
key to use.
The return value is a simple JSON response with a
jwt component which is the JWT token. This token is only valid for one
hour to limit the possible damage of a leak and make the deletion of the API keys easier.
A simple Python API is also provided that simplifies usage of the REST API by taking care of the API Key -> JWT exchange as necessary and wraps the functionality into nicer objects.
API Keys have several on-off privileges available.
To see a full list, see the "REST API" section of your organization.
Making a REST call will fail with a
401 if your API Key / token is missing
some privileges and the missing privilege will be specified in the error.