User Management Interface
Create User
Interface description
Create user
Request structure
POST /v1/user HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| name | String | RequestBody parameter | User name | Yes |
| description | String | RequestBody parameter | User description | No |
Response header
There are no other special headers except the public headers.
Response parameter
UserModel object
Request example
POST /v1/user HTTP/1.1
Host: iam.bj.baidubce.com
content-type: application/json
Content-Length: 20
Authorization: AuthorizationString
{"name":"test-user"}Response example
HTTP/1.1 201 Created
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"id": "f4225c39ba2247b692eec7b461835aa1",
"createTime": "2019-06-06T03:42:13Z",
"name": "test-user"
}Query User
Interface description
Query user
Request structure
GET /v1/user/{userName} HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
UserModel object
Request example
GET /v1/user/test-user HTTP/1.1
Host: iam.bj.baidubce.com
content-type: application/json
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"id": "f4225c39ba2247b692eec7b461835aa1",
"createTime": "2019-06-06T03:42:13Z",
"name": "test-user"
}Update User
Interface description
Update user
Request structure
PUT /v1/user/{userName} HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
| name | String | RequestBody parameter | Username updated | No |
| description | String | RequestBody parameter | User description | No |
Response header
There are no other special headers except the public headers.
Response parameter
UserModel object.
Request example
PUT /v1/user/test-user HTTP/1.1
Host: iam.bj.baidubce.com
content-type: application/json
Content-Length: 34
Authorization: AuthorizationString
{"description":"update user demo"}Response example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"id": "f4225c39ba2247b692eec7b461835aa1",
"createTime": "2019-06-06T03:42:13Z",
"name": "test-user"
}Delete User
Interface description
Delete user
Note: Before the IAM user is deleted, all the other objects associated with the IAM user need deleting, including: permission policy, user group, AccessKey.
Request structure
DELETE /v1/user/{userName} HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
None
Request example
DELETE /v1/user/test-user HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 204 No Content
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWSEnumerate User
Interface description
Enumerate user
Request structure
GET /v1/user HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
None Response header
There are no other special headers except the public headers.
Response parameter
| Name | Type | Description |
|---|---|---|
| users | List<UserModel> | List of user object |
Request example
GET /v1/user HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"users": [
{
"id": "f4225c39ba2247b692eec7b461835aa1",
"createTime": "2019-06-06T03:42:13Z",
"name": "test-user"
}
]
}Configure the Console Login of the User
Interface description
Configure the console login of the user, configure the login password, enable the login MFA, and configure the third-party account binding, etc.
Request structure
PUT /v1/user/{userName}/loginProfile HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
| loginProfile | LoginProfile | RequestBody parameter | Relevant configuration of console login | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
LoginProfile object.
Request example
PUT /v1/user/test-user/loginProfile HTTP/1.1
Host: iam.bj.baidubce.com
content-type: application/json
Content-Length: 76
Authorization: AuthorizationString
{"password":"Pa$$word4Demo", "enabledLoginMfa":true, "loginMfaType":"PHONE",
"thirdPartyType":"PASSPORT", "thirdPartyAccount":"test-passportAccount"}Response example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"enabledLoginMfa": true,
"loginMfaType": "PHONE",
"thirdPartyType":"PASSPORT",
"thirdPartyAccount":"test-passportAccount"
}Query the Configuration of Console Login
Interface description
Query the console login configuration of the user.
Request structure
GET /v1/user/{userName}/loginProfile HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
LoginProfile object.
Request example
GET /v1/user/test-user/loginProfile HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"enabledLoginMfa": true,
"loginMfaType": "PHONE",
"thirdPartyType":"PASSPORT",
"thirdPartyAccount":"test-passportAccount"
}Disable the Console Login Configuration
Interface description
To disable the console login configuration is to disable the console login of the user.
Request structure
DELETE /v1/user/{userName}/loginProfile HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
None
Request example
DELETE /v1/user/test-user/loginProfile HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS Create the User's AccessKey
Interface description
Create a group of AccessKey for the user.
Request structure
POST /v1/user/{userName}/accesskey HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
AccessKey object
Request example
POST /v1/user/test-user/accesskey HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 201 Created
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"secret": "0f005450fd4e4b329050edc5955da477",
"id": "e767c68b72194dba9ed71883c7b284b3",
"createTime": "2019-06-06T07:33:51Z"
}Disable the User's AccessKey
Interface description
Set the group of Accesskey specified by the user to the disabled state.
Request structure
PUT /user/{userName}/accesskey/{accessKeyId}?disable HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
| accessKeyId | String | URL parameter | Access key ID | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
AccessKey object
Request example
PUT /v1/user/test-user/accesskey/e767c68b72194dba9ed71883c7b284b3?disable HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"enabled": false,
"id": "e767c68b72194dba9ed71883c7b284b3",
"createTime": "2019-06-06T07:33:51Z"
}Enable the User's AccessKey
Interface description
Resume the group of Accesskey access key specified by the user to the enabled state.
Request structure
PUT /user/{userName}/accesskey/{accessKeyId}?enable HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
| accessKeyId | String | URL parameter | Access key ID | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
AccessKey object
Request example
PUT /v1/user/test-user/accesskey/e767c68b72194dba9ed71883c7b284b3?enable HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"enabled": true,
"id": "e767c68b72194dba9ed71883c7b284b3",
"createTime": "2019-06-06T07:33:51Z"
}Delete the user's AccessKey
Interface description
Delete a group of AccessKey specified by the user
Request structure
DELETE /user/{userName}/accesskey/{accessKeyId} HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
| accessKeyId | String | URL parameter | Access key ID | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
None
Request example
DELETE /v1/user/test-user/accesskey/e767c68b72194dba9ed71883c7b284b3 HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 204 No Content
Content-Type: application/json;charset=UTF-8
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS Enumerate the User's AccessKey
Interface description
Enumerate all the AccessKeys of the user.
Request structure
GET /v1/user/{userName}/accesskey HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: authorization stringRequest header
There are no other special headers except the public headers.
Request parameter
| Name | Type | Location | Description | Required or not |
|---|---|---|---|---|
| userName | String | URL parameter | User name | Yes |
Response header
There are no other special headers except the public headers.
Response parameter
| Name | Type | Description |
|---|---|---|
| accessKeys | List<AccessKey> | List of user's access key |
Request example
GET /v1/user/test-user/accesskey HTTP/1.1
Host: iam.bj.baidubce.com
Authorization: AuthorizationStringResponse example
HTTP/1.1 200 OK
X-Bce-Request-Id: 8d51a788-e79d-4ced-a9e0-0662ec85b7f7
Server: BWS
{
"accessKeys": [
{
"secret": "9894ce9b212447a495b63abdc2697fe3",
"id": "e0eedb7fc40c45a597c4c80516a918bd",
"createTime": "2019-06-06T07:37:21Z",
"lastUsedTime": "2021-10-14T07:37:21Z",
"enabled": true,
"description": "test"
}
]
}