Authentication
Authentication Methods
Densify supports only token-based authentication for securing API requests. Densify employs the JSON Web Token (JWT) standard. You need to obtain a signed token using an/authorize request, which can then be used for authenticating subsequent Densify API calls. See Authorize for details.
API-enabled User Credentials
To access the API, you need Densify API-enabled user credentials. An API-enabled user must have the SaaS_User role assigned.Configuration Settings
The following configuration settings can affect your API requests. Table: API and Report SettingsSetting | Description | Default Value |
Enables additional logging of API requests to the Densify web server log file, /var/opt/CRBAcat/logs/web-service.log. | OFF | |
The number of objects returned when performing a
| 100 | |
Specifies the number of days the Densify API key is rotated. | 30 | |
Specifies the JWT API token expiry time, in minutes. Configuring a short expiry time is recommended. | 5 | |
Enables the password policy and enforces password character, length and lockout policies. See Managing Configuration Settings> Password Policy (Help Topic ID 111250). If this setting is set to TRUE, Densify API user accounts are subjected to the Password policy rules on login attempts, expiry date, and inactivity lockout. Note: The Densify API does not enforce Character and Length Password policies during authentication. | FALSE |
Logging
You can view the requests and the owner who performed the requests in the web server log file (%CIRBA_HOME%\logs\cirba-webserver.log). The log file also includes POST request details such as creation and state changes. This information is logged independently of configuration setting, API Detailed Logging, below.
To enable detailed logging, specify the configuration setting API Detailed Logging to “ON”: