miketheautomater Posted January 17 Share Posted January 17 Folders can only be created via the system wide API key, same goes for adding Password Lists from a Template to the folder. We need a way via API to add folders, add password lists from template, add/modify/remove password list permissions and have the API user NOT be able to read/change any passwords in existing password lists. We tried the Windows Integrated Auth API, unfortunately to be able to see if the folder already had a password list required us to give that API user View permissions on the Password List Template or Password List which also allows them to view any password records in that list. As a large organization, we try our best to follow the least privilege model including API users. Mordecai 1 Link to comment Share on other sites More sharing options...
Mordecai Posted March 7 Share Posted March 7 +1 i have a similar request for password lists creation without system wide api key: Link to comment Share on other sites More sharing options...
Goossens Posted March 19 Share Posted March 19 +1 In general, I prefer to use the Windows Integrated API instead of API keys. But the use case would be similar. Also: ability to move password lists from one folder to another using the API Link to comment Share on other sites More sharing options...
Moiz V Posted March 23 Share Posted March 23 +1 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now