2 releases
| 0.1.1 | Dec 16, 2021 |
|---|---|
| 0.1.0 | Dec 4, 2021 |
#18 in #iam
23KB
353 lines
IAM Token Manager
The IAM Token Manager manages IAM access tokens and refreshes them before they expire. Currently only IBM IAM tokens are supported.
Prerequisites
Install the current stable release of Rust by using rustup. On Linux & OS X this can be done by running:
curl https://sh.rustup.rs -sSf | sh
IBM
Compile the ibmtest example binary by executing the following in the repo root:
cargo build --example ibmtest
The compiled binary ibmtest can be found in target/debug/examples/.
The binary has the following command line flags
--ibm: pass in an API key forcloud.ibm.com(can be passed multiple times)--ibm-test: pass in an API key fortest.cloud.ibm.com(can be passed multiple times)--web.listen-port: port for web server (optional)--token-refresh-seconds: how frequently a new access token for each API key is requested (optional, default=1800)
At least one of --ibm or --ibm-test needs to be specified. If web.listen-port is specified, a web server is
started that exposes the following routes:
- GET
/v1/tokens: list of all current access tokens mapped by BSS account. Sample response:
{
tokens": [
{
"id": "274a00...",
"access_token": "eyJraW...",
"refresh_token": "eyJraW..."
}
]
}
- GET
/v1/tokens/<id>: access token for account with ID<id>. Sample response:
{
"id": "247a00...",
"access_token": "eyJraW...",
"refresh_token": "eyJraW..."
}
Example (replace with real API keys):
The environment variable RUST_LOG controls the logging output detail. Not setting this environment variable means that
only errors will be logged:
RUST_LOG=info ./target/debug/examples/ibmtest --ibm <key1> --ibm <key2> --ibm-test <key3> --web.listen.port=5050
Dependencies
~20–36MB
~672K SLoC