VMware Developer Documentation
API Reference PowerCLI Reference
[{"label":"Latest (v1.0)","version":"latest"}]
csp
CSP API Identity and Access Management - Cloud Services Platform Organization Managed OAuth Apps (Clients)

Set New Client Secret via Owner Client Rotation By Organization ID And Application ID

Description

Once a ’newClientSecret’ is set, both the old and the new secret can be used.
Important:
1.The old client secret will be expired after 48 hours.
2.Changing the client secret via the client management APIs will reset existing secret rotation (meaning, the provided secret in the management APIs will be the only valid secret).

Access Policy

Role User Accounts Service Accounts (Client Credentials Applications)
Organization Admin ✔️ ✔️
Organization Owner ✔️ ✔️
Developer ✔️ ✔️

Request

Request

URL

URL

post
https://{api_host}/csp/gateway/am/api/orgs/{orgId}/oauth-apps/{oauthAppId}/secret
Copy
Path Parameters

Path Parameters

string
orgId Required

Unique identifier (GUID) of the organization.

Parameter Serialization Style: SIMPLE Explode:false
string
oauthAppId Required

The unique identifier of the OAuth Application (client).

Parameter Serialization Style: SIMPLE Explode:false

Request Body

Request Body

ClientSecretOwnerRotationRequest of mimetype application/json Required 
{
	"newClientSecret": "string"
}
string as (?=.{8,})(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9])(?=.*[!@#$%^&*()_+=\[\]-{|}',./:;<>?`~]).*
newClientSecret Required

The new secret of the organization OAuth Application.
integer as int32
secretRotationExpirationInSeconds Optional

The secret rotation expiration in seconds. The old OAuth Application secret will expire after it. If not specified, the default expiration time is 48 hours.
allowEmptyValue: true
Authentication

Authentication

This operation uses the following authentication methods.

Bearer

Response

Response

200 OK

OK

Errors

Errors

CspErrorResponse
400

Invalid request body
CspErrorResponse
401

The user is not authorized to use the API
CspErrorResponse
403

The user is forbidden to use the API
CspErrorResponse
404

The requested resource could not be found
CspErrorResponse
409

The request could not be processed due to a conflict
CspErrorResponse
429

The user has sent too many requests
CspErrorResponse
500

An unexpected error has occurred while processing the request
Code Samples

Code Samples

cURL Command

curl -X POST -H "Content-Type: application/json" -d '{"newClientSecret":"string","secretRotationExpirationInSeconds":0}' https://{api_host}/csp/gateway/am/api/orgs/{orgId}/oauth-apps/{oauthAppId}/secret

Generated on: 01 Jun 23 10:48 UTC
[{"label":"Latest (v1.0)","version":"latest"}]
csp
On This Page
Organization Managed OAuth Apps (Clients) Operations
post
Create Organization OAuth Application By Organization ID
delete
Delete Old Client Secret via Owner Client Rotation By Organization ID And OAuth App ID
delete
Delete Organization OAuth Application By Organization ID
get
Get All Organization OAuth Applications By Orgainzation ID
get
Get Organization OAuth Application By Organization ID And Application ID
post
Search Organization Clients By Role Names
post
Set New Client Secret via Owner Client Rotation By Organization ID And Application ID
patch
Update Organization OAuth Application By Organization ID And Application ID
put
Update Organization OAuth Application Secret By Orgnization ID And Application ID
Feedback

Was this page helpful?

© 2023 VMware Inc. Terms of Use Privacy Your California Privacy Rights Accessibility Trademarks Glossary Help Contact Us