Chapter 2. Admin REST API
Red Hat Single Sign-On comes with a fully functional Admin REST API with all features provided by the Admin Console.
To invoke the API you need to obtain an access token with the appropriate permissions. The required permissions are described in Server Administration Guide.
A token can be obtained by enabling authenticating to your application with Red Hat Single Sign-On; see the Securing Applications and Services Guide. You can also use direct access grant to obtain an access token.
For complete documentation see API Documentation.
2.1. Example using CURL
Obtain access token for user in the realm master
with username admin
and password password
:
curl \ -d "client_id=admin-cli" \ -d "username=admin" \ -d "password=password" \ -d "grant_type=password" \ "http://localhost:8080/auth/realms/master/protocol/openid-connect/token"
By default this token expires in 1 minute
The result will be a JSON document. To invoke the API you need to extract the value of the access_token
property. You can then invoke the API by including the value in the Authorization
header of requests to the API.
The following example shows how to get the details of the master realm:
curl \ -H "Authorization: bearer eyJhbGciOiJSUz..." \ "http://localhost:8080/auth/admin/realms/master"