Jump to content

Search the Community

Showing results for tags 'api'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Essentials
    • Announcements
  • Passwordstate 9.x
    • General Support
    • General Hints and Tips
    • Known Issues
    • Installing Passwordstate
    • Feature Requests
    • Feature Requests - Completed
    • 3rd Party Hardware/Software Knowledge Forum
  • Knowledge Base
    • General FAQs
    • Password Resets
    • Remote Session Launcher
    • App Server
    • Passwordstate API
    • Browser Extensions
    • Password Reset Portal
  • Passwordstate 8.x
    • General Support
    • Feature Requests - Completed

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Google Plus Account


Location


Interests


Biography


Location


Interests


Occupation

Found 16 results

  1. I can't find properties for a password in Windows API where you can set "Require check out" and the time for automatic check in.
  2. Hello With the web interface, it's possible to copy, copy and link or move a password to another password list. It should be useful to have the same function with API. Moreover, perform these operation with the web interface is only possible one by one. Not practical if you have 50 or 100 passwords to move. May be the checkbox to perform bulk deletion can be also use to select password several password to move. regards, MB
  3. Hi there, It would be really benificial to us to be able to retive OTP codes Via the api/winapi. Everyewhere is pushing 2FA (and rightly so) and it would be greate to be able to store our OTP codes in PWS too. Many thanks Colm
  4. This should be very simple, but we can't figure it out. We have been using PasswordState APIs Anonymously until or Information Security group discovered that there wasn't very good auditing because it was all, well, Anonymous. So we disabled it, but now we can't figure out how to use credentials with our API calls. None of the documentation makes reference to it. It's as if everyone uses Anonymous API calls. This documented process no longer works for any of our scripts: # PowerShell Request $PasswordstateUrl = 'https://passwordstate/api/passwords/<PasswordID>' Invoke-Restmethod -Method GET -Uri $PasswordstateUrl -Header @{ "APIKey" = "<apikey>" } It returns with this error: Invoke-Restmethod : [{"errors":[{"message":"Forbidden"},{"phrase":"Making calls to the Anonymous API is not allowed. Please refer to your Passwordstate Security Administrators for more information."}]}] Which is obvious, because we were forced to disable it. But how can we make it not anonymous?
  5. Hi, i am currently trying to set, update or delete folder permissions through the api and winapi. The connection is working properly and if i forget to add any Apply* property or the folder is not manually managed i am getting the appropriate error message from the api. But if all properties are given and correct i only get the default error page as response from the api. I have tested all ApplyPermissionsFor* with no success. My user has admin permissions to the folder, manually adding Administrator permissions for group/user is working. The ErrorConsole does not show up any new errors. Can someone/support please test that behavior? Is the folderpermissions api method working? Example Test Code from the official API Documentation (Change: FolderID, PasswordStateURL and ApplyPermissionsForSecurityGroupName): $PasswordStateURL = 'https://passwordstate/winapi' $jsonData = ' { "FolderID":"253", "Permission":"A", "ApplyPermissionsForSecurityGroupName":"LG_PasswordState_Security_Admins" } ' $result = Invoke-Restmethod -Method Post -Uri $PasswordstateURL'/folderpermissions' -ContentType "application/json" -Body $jsonData -UseDefaultCredentials Verbose: VERBOSE: POST https://passwordstate/winapi/folderpermissions with 127-byte payload VERBOSE: received 19365-byte response of content type text/html VERBOSE: Content encoding: utf-8 ErrorPage Response: generalerror.aspx?aspxerrorpath=/winapi/folderpermissions Thanks, René
  6. Hello There is no API which allow to restore a password. Basically, provide the passwordID and the destination passwordlistID for the restoration should be useful Another API feature should be to empty the recycle bin by a simple api request by providing the passwordlistID regards MB
  7. Hi, i am developing extended powershell functions for communicating with the api. I try to stick to your API documentation for the properties here. It just seems to me that the API documentation is not up to date or does not contain all options of the individual methods, is that possible? My primary question: Is the API documentation up-to-date or, due to the fact that i want to integrate all current possible options, should I also test all options that are not documented? Furthermore I have already found some bugs in the API documentation. I would send you a list here as soon as I am done with it. An example based on the passwordlists api method: For example, the option Guide that is missing in your documentation, is working. Other options that also not available in your documentation like the following are not working: PasswordStrengthPolicyID PasswordGeneratorID PreventBadPasswordUse PasswordResetEnabled AllowExport Example query: You can see that the above mentioned options are not working (Compare Query <-> Response) body: { "PasswordList": "TestPublicList", "Description": "Test public password list", "CopySettingsFromPasswordListID": "", "CopySettingsFromTemplateID": "", "CopyPermissionsFromPasswordListID": "", "CopyPermissionsFromTemplateID": "", "NestUnderFolderID": 45, "LinkToTemplate": "", "SiteID": 0, "ApplyPermissionsForUserID": "domain\\user", "ApplyPermissionsForSecurityGroupID": "", "ApplyPermissionsForSecurityGroupName": "", "ImageFileName": "protect.png", "PasswordGeneratorID": 10, "PasswordStrengthPolicyID": 4, "PreventBadPasswordUse": false, "AllowExport": false, "PasswordResetEnabled": true, "Permission": "A", "Guide": "testguide" } Response: PasswordListID : 219 PasswordList : TestPublicList Description : Test public password list ImageFileName : protect.png Guide : testguide AllowExport : True PrivatePasswordList : False TimeBasedAccessRequired : False NoApprovers : 1 DisableNotifications : False PasswordStrengthPolicyID : 1 PasswordGeneratorID : 0 CodePage : Using Passwordstate Default Code Page PreventPasswordReuse : 5 AuthenticationType : None Required AuthenticationPerSession : False PreventExpiryDateModification : False SetExpiryDate : 0 ResetExpiryDate : 0 PreventDragDrop : True PreventBadPasswordUse : True ProvideAccessReason : False TreePath : \Services\Domain\Test TotalPasswords : 0 GeneratorName : Using user's personal Password Generator Options PolicyName : Default Policy PasswordResetEnabled : False ForcePasswordGenerator : False HidePasswords : False ShowGuide : False EnablePasswordResetSchedule : False PasswordResetSchedule : 00:00 AddDaysToExpiryDate : 90 SiteID : 0 SiteLocation : Internal OneTimePasswords : False EDIT: As workaround you can add the option "CopySettingsFromTemplateID": 1 to your json, so the settings will be copied from the specified TemplateID. Thanks, René
  8. Hi, It would be great if the API had a method to create, delete and edit templates (incl. custom fields content and values). We would like to automate most of the work in PasswordState as much as possible and reasonable. We have some special template settings and we use all generic fields, so if we want to change the contents of the generic fields or the password list settings, we would like to change this via the API/WinAPI and our CI/CD pipelines. For example, we have a "Customers" field that contains all customer names. This list is edited from time to time and must be changed in all password lists. This is not so nice to do manually with a lot of lists and the error rate (typos). Please vote for this feature request and stay healthy. Thanks, René
  9. Hello We notice that the system wide api key cannot overwrite rights set on a password list. Basically, if the box "Return blank Password value instead of actual Password" is ticked, even the system API key cannot retrieve the password with REST API function I think that the system API key should be able to retrieve everything in any password list And this right should be only apply to the api key generated specifically for a password list. regards MB
  10. I found inconsistency in REST API. Response after creating folder contains folder ID fore newly created folder, and TreePath that points to parent folder. Searching for folder return object, where both FolderId and TreePath point to found folder. Now when I want to search for Password lists in specific folder, I can refer folder by TreePath, but I can't refer folder by Folder ID. Is it intended that I will need to search for newly created folder just to get correct FolderPath reference (so that I can use it in further searches)? Or would it be possible, that creating folder response will have correct TreePath pointing to just created folder, not to parent folder? My PasswordState version is 8706. I'm unable to find API documentation on public website to check for changes in documentation after my build number.
  11. Another thing that was unexpected. When searching folders by name, it turns out that folder name string is used for substring search. For example, when using next URL for search: https://passwordstate/winapi/folders/?FolderName=Folder1&TreePath=\Test then results include folders with following names (and treepaths): Folder1 (\Test\Folder1) Folder10 (\Test\Folder10) Subfolder1 (\Test\Folder*\Subfolder1 - serveral folders) Subfolder10 (\Test\Folder*\Subfolder10 - serveral folders) How can I perform search with exact match? Without that i have to construct desired TreePath and then compare all returned results to that, if I want to get only folder I'm searching for... My PasswordState build number is 8706.
  12. Hi! We are trying to automate processes more and more and I wonder if it would be possible for you to create an API for the Global address book? (Our need is primary a way of adding new users, but I guess also removing and updating entries would be useful for us and other customers) And to make it all the way... an api for the self destruct message portal would be nice to have. That would allow us to have our user creation process completely automated. Right now the only manual action we have to do is to go in manually and send the self destruct message. Kind regards, Jasper Metselaar
  13. Hello, Seeking advise on what I am trying to accomplish. Thankful for the recent addition of HIBP and the value it provides moving forward but I am looking at: Running a report to list all accounts that have a "bad" password and is already stored in the DB Searching all accounts by password. For example, if we found out that Password123 is "weak"...how do I search for all accounts with the password "Password123" so they can be addressed? Thanks!
  14. Hello. This feature request is more focused on functionality via the REST API, but as I understand it, would require some changes to the current designed behavior of the password reset dependencies. In its current state, it is not possible to make a modification to a password reset dependency once it has been linked to a password record, and therefore, requires you to make a new dependency as the modified version, and to remove the previously linked one. If possible, I am asking if we could make it so that you are able to modify an existing password reset dependency so that additional APIs such as the following could be achieved: A new REST API for retrieving all existing password reset dependencies for a given password record A new REST API for modifying an existing password reset dependency for a given password record A new REST API for removing an existing password reset dependency for a given password record Thank you.
  15. Hi and a happy new year, we use Royal TS (Connection Management Tool) from https://www.royalapplications.com/ and want to link it dynamically to Passwordstate. Royal TS has an abstraction for hostnames/usernames and the credentials (one script can call the "hostlist" an other the "credentialslist" and only the ones he's allowed to see)... so a user can see all hostnames when he starts the tool, but only when he connects to one of it the credentials will be queried. That is normally perfect ... then we see in the Passwordstate also an audit entry for this connection try. But we can't find an API call for query only the entries without the passwords, in the RoyalTS Frontend we can filter this, but an nosier user (developers are childs sometimes ;)) can simply catch all Passwordstate Passwords when he looks into the script ... can you add an specific API Call (with maybe an own API key for this) query the details without the passwords only? Thank you!
  16. As one of my programmatic secondary backup plan I wanted to use the API to dump the passwords periodically for save keeping. I'm reading up on the api call to do the export all and it's pretty easy to get the data using a simple powershell command as described in the documentation. Then you can just export that into a CSV by piping it into "Export-CSV". Easy enough, but I really like the in UI where I can export as KeePass encrypted zip. Before I try and write this myself, is this already available as a sample or API parameter?
×
×
  • Create New...