The page has been translated by Gen AI.

Open API guides

SingleID Open API Guides

To use the Samsung Cloud Platform SingleID Open API, the system must first be registered in Applications. You must obtain a JWT token with the registered system information and include the JWT token in the HTTP header when calling the Samsung Cloud Platform SingleID Open API.

API Call Method

  1. Call with the token (JWT Token) value included in the HTTP header
  2. Set the access token header name to Authorization, and set the access token type value to Bearer - set the JWT Token value after the Bearer string.
  3. Test environment information
    • domain :
      • Internal: stg-scloud.iam.samsung.net
      • External: stg2-cloud.singleid.samsung.net
    • tenant-name : test-tenant
  4. Test Swagger UI URL

API List

ModuleAPIURIMethodDescription
Portal Commonget MFA Tokenhttps://{domain}/{tenant-name}/common-api/open/v1.1/asis/{tenant-name}/user/mfa/token/authenticationGETMFA token issuance
Portal CommonOTP Sendhttps://{domain}/{tenant-name}/common-api/open/v1.1/asis/otp/sendPOSTGenerate OTP based on the authentication type (email, sms, msg)
Portal CommonOTP Validationhttps://{domain}/{tenant-name}/common-api/open/v1.1/asis/otp/validatePOSTOTP verification
Portal CommonMFA Consumer Requesthttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/requestGETMFA request
Portal CommonMFA Consumer Requesthttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/requestPOSTMFA request
Tenant Admin PortalSend Email about Anomaly Detectionhttps://{domain}/{tenant-name}/admin-api/open/v1.1/emails/anomalyDetectionPOSTSend email to the user when abnormal authentication activity is detected
Tenant Admin PortalSend Email about New Sign-in Environmenthttps://{domain}/{tenant-name}/admin-api/open/v1.1/emails/newSignInEnvironmentPOSTSend user verification email upon logging into a new environment
User PortalGet Userhttps://{domain}/{tenant-name}/user-api/open/v1.1/users/{username}GETUser name, email, preferred language, timezone lookup
User PortalGet User Profile Imagehttps://{domain}/{tenant-name}/user-api/open/v1.1/users/image/{username}GETRetrieve user profile image
User PortalCreate account assignment listhttps://{domain}/{tenant-name}/user-api/1.0/scp-auth/createPOSTCreate user SCP permission
User PortalDelete account assignment listhttps://{domain}/{tenant-name}/user-api/1.0/scp-auth/deletePOSTDelete user SCP permission
User PortalGet account assignment listhttps://{domain}/{tenant-name}/user-api/1.0/scp-auth/listGETUser SCP permission lookup
User PortalSearch Userhttps://{domain}/{tenant-name}/user-api/1.0/scp-user/listGETSearch SCP target user
Portal CommonMFA Consumer Requesthttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/request/mfaPOSTMFA request (including device)
Portal CommonMFA Consumer Verificationhttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/verification/mfaPOSTMFA verification (including equipment)
Table. API list

API Specification - get MFA Token(Portal Common)

ModuleAPIURIMethodDescription
Portal Commonget MFA Tokenhttps://{domain}/{tenant-name}/common-api/open/v1.1/asis/{tenant-name}/user/mfa/token/authenticationGETMFA Token issuance
Table. get MFA Token(Portal Common)

Request Parameters

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
Tenant nametenant-nameYPathStringtest-tenant
usernameuserNameYqueryStringmkdir.kim
ProtocolprotocolYqueryStringuma-uaf
sessionDataKeysessionDataKeyNqueryStringsessionDataKey1
redirectUrlredirectUrlNqueryStringredirectUrl1
errorRedirectUrlerrorRedirectUrlNqueryStringerrorRedirectUrl1
paramsparamsNqueryStringparams1
languagelanguageNqueryStringko
Table. Request Parameters

Response Parameters

Properties (Result)AttributeData TypeSample DataNote
ResultresultStringSUCCESS
Result valuevalueObject{
"token": "eyJpc3MiOiJodHRwczov...",
"serviceUri": "/ua/MPHTOCHW5I/de6f67d0-8bec-46ac-bf53-16ef00eb2066/dgauth/mfa"
}
Table. Response Parameters

Sample

RequestResponse
curl -X POST "https://stg-scloud.singleid.samsung.net:443/stg4/user-api/1.0/scp-auth/delete" -H "accept: application/json"-H "apiKey: {apiKey}" INPUT JSON{     "instanceId": "instnace-01",     "permissionSetId":   "PERMISSION-SET-Ablxc5__qEaIYmWGyMeqlf",     "principalId": "singleid.test001",     "principalType": "USER",     "targetId": "PROJECT-ka2tfhLHsweVwm4BrR1rae",     "targetType": "PROJECT"   }{   "instanceId": "instnace-01",   "permissionSetId": "PERMISSION-SET-Ablxc5__qEaIYmWGyMeqlf",   "principalId": "singleid.test001",   "principalType": "USER",   "targetId": "PROJECT-ka2tfhLHsweVwm4BrR1rae",   "targetType": "PROJECT"   "status": "SUCCESS",   "createdDate": "2024-04-03T01:58:46.538Z",   "failureReason": "" }
Table. Sample

Error Code

HTTP Response CodeError CodeError MessageAction Required
400N/AN/AuserName verification required
Table. Error Code

API Specification - OTP Send(Portal Common)

ModuleAPIURIMethodDescription
Portal CommonOTP Sendhttps://{domain}/{tenant-name}/common-api/open/v1.1/asis/otp/sendPOSTGenerate OTP based on authentication type (email, sms, msg)
Table. OTP Send (Portal Common)

Request Parameters

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
localelocaleYbodyStringko
Authentication typetypeYbodyStringemail, sms, msg
userNameuserNameYbodyStringgildong.hong
Table. Request Parameters

Response Parameters

PropertiesAttributeData TypeSample DataNote
otpStringotpStringString0000000c5bb286c166530ac928d0bdf1f0894ed3a6d891eb3ab7ec89fc9faef7817b9f2f02f8c89ae91558cdc9afec94d6bede93a91d9825f4fe14dc2a282f6456d09f823d194570bc91b353830826e69d5f818172c12dbdb7b524
Table. Response Parameters

Sample

RequestResponse
ccurl -X POST "https://localhost:7443/open/v1.1/asis/otp/send" -H "accept: */*" -H "Content-Type: application/json" -d "{\"locale\":\"ko\",\"type\":\"email\",\"userName\":\"gildong.hong\"}"{   "otpString": 0000000c5bb286c166530ac928d0bdf1f0894ed3a6d891eb3ab7ec89fc9faef7817b9f2f02f8c89ae91558cdc9afec94d6bede93a91d9825f4fe14dc2a282f6456d09f823d194570bc91b353830826e69d5f818172c12dbdb7b524}
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
404N/AN/AWhen the user does not exist
429N/AN/ADuplicate call within 60 seconds
500N/AN/AServer error, check the error message and contact the administrator
Table. Error Code

API Specification - OTP Validation(Portal Common)

ModuleAPIURIMethodDescription
Portal CommonOTP Validationhttps://{domain}/{tenant-name}/common-api/open/v1.1/asis/otp/validatePOSTValidate the OTP.
Table. OTP Validation(Portal Common)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
userNameuserNameYBodyStringgildong.hong
otp(6 digits)otpYBodyString121215
checkValuecheckValueYBodyString0000000c5bb286c166530ac928d0bdf1f0894ed3a6d891eb3ab7ec89fc9faef7817b9f2f02f8c89ae91558cdc9afec94d6bede93a91d9825f4fe14dc2a282f6456d09f823d194570bc91b353830826e69d5f818172c12dbdb7b524The otpString value received in the response from sendOtp
Authentication typetypeYBodyStringemailemail, sms, msg
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
ResultresultStringSUCCESS
Table. Response Parameters

Sample

RequestResponse
curl -X POST “https://localhost:7443/open/v1.1/asis/otp/validate” -H “accept: /” -H “Content-Type: application/json” -d “{"checkValue":"0000000c5bb286c166530ac928d0bdf1f0894ed3a6d891eb3ab7ec89fc9faef7817b9f2f02f8c89ae91558cdc9afec94d6bede93a91d9825f4fe14dc2a282f6456d09f823d194570bc91b353830826e69d5f818172c12dbdb7b524","otp":"791462","type":"email","userName":"gildong.hong"}”{ “result”: “success” }
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
400N/AN/AWhen the OTP is entered incorrectly
404N/AN/AWhen the user does not exist
410N/AN/AWhen the OTP expires
429N/AN/AWhen API failure calls exceed 10 times
500N/AN/AServer error, check the error message and contact the administrator
Table. Error Code

API Specification - MFA Consumer Reques(Portal Common)

ModuleAPIURIMethodDescription
Portal CommonMFA Consumer Requesthttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/requestGETRequest MFA.
Table. MFA Consumer Reques(Portal Common)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
JWT TokenjwtTokenRequestYqueryStringeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1aWQiOiJqaW5vbmUua2ltIiwiZGlzcGxheVVpZCI6Imppbm9uZS5raW1Ac2Ftc3VuZy5jb20iLCJlbWFpbCI6ImxUL3p4WngxNk81REo2SU91Z2VnRW9wVGk2eDh5bkxXY3NHLzRaWFE2TVlDSzNQV05oTS9hQUFnQmpkSEJMN1hkcFA2Y25jNCIsIm1vYmlsZSI6InlkVU54ZVl6YkNOY0xEYnFqN01rL2ZCdFcvaHZoRE1Bbm9lNzhRVTRvQTAzZUlwN2NsOVFpSGFoIiwicnRuIjoiaHR0cHM6Ly9zdGcxLWNsb3VkLnNpbmdsZWlkLnNhbXN1bmcubmV0L21vY2svcW1zL21mYS1jb25zdW1lci9yZXN1bHQiLCJyZXEiOiI3NjFlZmQ1Mi05N2QwLTQ1MWYtOWNmOS1jZjg2NzQwZTdjYTMiLCJzeXMiOiI4MDE0ODYyMS04MjZmLTQ5YmUtOGM5ZS0zMTE1ZTUzMDFlMWIiLCJuYmYiOjE3MTIwMjkxNDIsImV4cCI6MTcxNDYyMTE0MiwiaWF0IjoxNzEyMDI5MTQyfQ.-FWTK4IJsu8AonfJTTq7_OA1qAh-9FU89iC1JZcRg_cToken original data sample
{ "sys":"test-system", "req":"761efd52-97d0-451f-9cf9-cf86740e7ca3", "uid":"gildong.hong", "rtn":"https://test.com/mfa/response","email":"gildong.hong@samsung.com","mobile":"+82-1012345678", "nbf": 1698232068, "exp": 1698239268, "iat": 1698232068, "displayUid": "gildong.hong@samsung.com" }
Table. Request Parameters

Response

Redirects to the MFA authentication page. By default, the response token is transmitted using POST, but to transmit it using GET (query), add the following parameter to the request token.

  • returnMethod: get

Sample

RequestResponse
curl -X GET "https://stg2-cloud.singleid.samsung.net/test-tenant/common-api/open/v1.1/mfa/request?jwtTokenRequest=eyJhbGciOiJIUzI1NiJ9.eyJzeXMiOiJ0ZXN0LXN5c3RlbSIsInJlcSI6Ijc2MWVmZDUyLTk3ZDAtNDUxZi05Y2Y5LWNmODY3NDBlN2NhMyIsInVpZCI6Imppbm9uZS5raW0iLCJydG4iOiJodHRwczovL3Rlc3QuY29tL21mYS9yZXNwb25zZSIsIm5iZiI6MTY5ODIzMjA2OCwiZXhwIjoxNjk4MjM5MjY4LCJpYXQiOjE2OTgyMzIwNjh9.cDgKMHIINaHhBiyAd_OIlVvQwmUs0QaXH_RfJ8B_KdY"Page navigation
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
400N/AN/ACheck token data.
Table. Error Code

API Specification - MFA Consumer Reques(Portal Common)

ModuleAPIURIMethodDescription
Portal CommonMFA Consumer Requesthttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/requestPOSTRequest MFA.
Table. MFA Consumer Reques(Portal Common)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
JWT TokenjwtTokenRequestYqueryStringeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.-FWTK4IJsu8AonfJTTq7_OA1qAh-9FU89iC1JZcRg_cToken original data sample
{ "sys":"test-system", "req":"761efd52-97d0-451f-9cf9-cf86740e7ca3", "uid":"gildong.hong", "rtn":"https://test.com/mfa/response","email":"gildong.hong@samsung.com","mobile":"+82-1012345678", "nbf": 1698232068, "exp": 1698239268, "iat": 1698232068, "displayUid": "gildong.hong@samsung.com" }
MFA Consumer Home move statusregisterFlagYqueryBooleantrueDetermines whether to navigate to the MFA Consumer Home. If true, it navigates to the MFA Consumer Home.
Table. Request Parameters

Response

  • When registerFlag = true: Redirect to MFA Consumer Home.
  • When registerFlag = false: Redirect to the MFA authentication page.

Sample

RequestResponse
curl -X POST "https://stg2-cloud.singleid.samsung.net/test-tenant/common-api/open/v1.1/mfa/request?jwtTokenRequest=eyJhbGciOiJIUzI1NiJ9.eyJzeXMiOiJ0ZXN0LXN5c2t5bSIsInJlcSI6Ijc2MWVmZDUyLTk3ZDAtNDUxZi05Y2Y5LWNmODY3NDBlN2NhMyIsInVpZCI6Imppbm9uZS5raW0iLCJydG4iOiJodHRwczovL3Rlc3QuY29tL21mYS9yZXNwb25zZSIsIm5iZiI6MTY5ODIzMjA2OCwiZXhwIjoxNjk4MjM5MjY4LCJpYXQiOjE2OTgyMzIwNjh9.cDgKMHIINaHhBiyAd_OIlVvQwmUs0QaXH_RfJ8B_KdY&registerFlag=true"Page navigation
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
400N/AN/AChecking token data.
Table. Error Code

API Specification - Send Email about Anomaly Detection(Tenant Admin Portal)

ModuleAPIURIMethodDescription
Tenant Admin PortalSend Email about Anomaly Detectionhttps://{domain}/{tenant-name}/admin-api/open/v1.1/emails/anomalyDetectionPOSTAn email is sent when a user is detected engaging in abnormal authentication behavior.
Table. Send Email about Anomaly Detection (Tenant Admin Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
User IPaccessIPYBodyString10.0.0.0
Registration timedetectionTimeYBodyString2023-09-10 23:01:01
emailemailYBodyStringgildong.hong@samsung.com
User environmentenvironmentYBodyStringPC / Window / Chrome
LanguagelanguageYBodyStringko
Network environment (internal/external)locationYBodyStringInternal
Detection rule numberruleYBodyStringP001
User accountusernameYBodyStringgildong.hong
Authentication unique valueenvGuidYBodyStringd8b09752-405a-4d52-8605-bff9aa3f4741
Table. Request Parameters

Response Parameter

PropertiesData TypeSample DataNote
Resultbooleantruetrue when mail sending succeeds / false when it fails
Table. Response Parameters

Sample

RequestResponse
curl -X POST "https://stg1-cloud.singleid.samsung.net:443/test-tenant/admin-api/open/v1.1/emails/anomalyDetection" -H "accept: application/json" -H "Content-Type: application/json" -d "{\"accessIP\":\"10.0.0.0\",\"detectionTime\":\"2023-09-10 23:01:01\",\"email\":\"gildong.hong@samsung.com\",\"environment\":\"PC / Window / Chrome\",\"language\":\"ko\",\"location\":\"Internal\",\"rule\":\"P001\",\"username\":\"gildong.hong\",\"envGuid\":\"d8b09752-405a-4d52-8605-bff9aa3f4741\"}"true
Table. Sample

Error code

Http Response CodeError CodeError MessageAction Plan
400N/AN/ABad Request
403N/AN/AForbidden
500N/AN/AInternal Server Error
Table. Error Code

API Specification - Send Email about New Sign-in Environment(Tenant Admin Portal)

ModuleAPIURIMethodDescription
Tenant Admin PortalSend Email about New Sign-in Environmenthttps://{domain}/{tenant-name}/admin-api/open/v1.1/emails/newSignInEnvironmentPOSTWhen a user logs in to a new environment, a notification is sent to the user and an email is dispatched to confirm the environment registration.
Table. Send Email about New Sign-in Environment (Tenant Admin Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
User IPaccessIPYBodyString10.0.0.0
Registration timedetectionTimeYBodyString2023-09-10 23:01:01
emailemailYBodyStringgildong.hong@samsung.com
User environmentenvironmentYBodyStringPC / Window / Chrome
languagelanguageYBodyStringko
Network environment (internal/external)locationYBodyStringInternal
Detection rule numberruleYBodyStringP001
User accountusernameYBodyStringgildong.hong
Authentication unique valueenvGuidYBodyStringd8b09752-405a-4d52-8605-bff9aa3f4741
Table. Request Parameters

Response Parameter

PropertiesData TypeSample DataNote
Resultbooleantruetrue when mail sending succeeds / false when it fails
Table. Response Parameters

Sample

RequestResponse
curl -X POST “https://stg1-cloud.singleid.samsung.net:443/test-tenant/admin-api/open/v1.1/emails/anomalyDetection" -H “accept: application/json” -H “Content-Type: application/json” -d “{"accessIP":"10.0.0.0","detectionTime":"2023-09-10 23:01:01","email":"gildong.hong@samsung.com","environment":"PC / Window / Chrome","language":"ko","location":"Internal","rule":"P001","username":"gildong.hong","envGuid":"d8b09752-405a-4d52-8605-bff9aa3f4741"}”true
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction plan
400N/AN/ABad Request
403N/AN/AForbidden
500N/AN/AInternal Server Error
Table. Error Code

API Specification - Get User(User Portal)

ModuleAPIURIMethodDescription
User PortalGet Userhttps://{domain}/{tenant-name}/user-api/open/v1.1/users/{username}GETRetrieves the user’s name, email, preferred language, and timezone data.
Table. Get User(User Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
User IDusernameYPathStringgildong.hong
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
User IDusernameStringgildong.hong
EmailemailStringgildong.hong@stage.samsung.com
NameformattedNameStringDongho Kim
NamegivenNameStringDongho
SurnamefamilyNameStringKim
English Full NameenFormattedNameStringDongho Kim
English nameenGivenNameStringDongho
English surnameenFamilyNameStringKim
Preferred languagepreferredLanguageStringko1) en : English 2) ko : Korean
Time zonetimeZoneStringAsia/Seoul
Table. Response Parameters

Sample

RequestResponse
curl -X GET "https://stg2-cloud.singleid.samsung.net/test-tenant/user-api/open/v1.1/users/gildong.hong" -H "accept: application/json" -H "Authorization: Bearer {JWT_TOKEN}"{ “username”: “gildong.hong”, “email”: “gildong.hong@stage.samsung.com”, “formattedName”: “Kim Dongho”, “givenName”: “Dongho”, “familyName”: “Kim”, “enFormattedName”: “Dongho Kim”, “enGivenName”: “Dongho”, “enFamilyName”: “Kim”, “preferredLanguage”: “ko”, “timeZone”: “Asia/Seoul” }
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
401N/AN/AWe need to verify whether the JWT Token is valid.
Table. Error Code

API Specification - Get User Profile Image(User Portal)

ModuleAPIURIMethodDescription
User PortalGet User Profile Imagehttps://{domain}/{tenant-name}/user-api/open/v1.1/users/image/{username}GETRetrieves the user’s profile image data.
Table. Get User Profile Image(User Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
User IDusernameYPathStringgildong. hong
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
usernameusernameStringnull
2) File URL : ![image]({URL})–>
Table. Response Parameters

Sample

RequestResponse
curl -X GET "https://stg2-cloud.singleid.samsung.net:443/test-tenant/user-api/open/v1.1/users/image/gildong.hong" -H "accept: application/json" -H "Authorization: Bearer {JWT_TOKEN}"File data { "username": null, "image": "![default-profile.png](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAEAAAABACAMAAACdt4HsAAAAM1BMVEUyMjIxMTEyMjIrKysyMjIwMDANDQ1HcEAAAABJRU5ErkJggg==)" } File URL `{ “username”: “gildong.hong”, “image”: “
image
” }
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
401N/AN/AWe need to verify whether the JWT Token is valid.
Table. Error Code

API Specification - Create account assignment list(User Portal)

ModuleAPIURIMethodDescription
User PortalCreate account assignment listhttps://{domain}/{tenant-name}/user-api/1.0/scp-auth/createPOSTCreate SCP permissions for the user.
Table. Create account assignment list (User Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
instance idinstanceIdYJSONStringSCP provision
permission set idpermissionSetIdYJSONStringPERMISSION-SET-Ablxc5__qEaIYmWGyMeqlfSCP provision
principal idprincipalIdYJSONStringgildong.honguser’s username
principal typeprincipalTypeYJSONStringUSEROnly the current USER is allowed
target idtargetIdYJSONString“PROJECT-ka2tfhLHsweVwm4BrR1rae”PROJECT ID, SCP provided
target typetargetTypeYJSONStringPROJECTOnly the current PROJECT functions
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
instance idinstanceIdJSONReturn stored value
permission set idpermissionSetIdJSONPERMISSION-SET-Ablxc5__qEaIYmWGyMeqlfsaved value
principal idprincipalIdJSONgildong.hongsaved value
principal typeprincipalTypeJSONUSERReturn stored value
target idtargetIdJSON“PROJECT-ka2tfhLHsweVwm4BrR1rae”Return stored value
target typetargetTypeJSONPROJECTReturn stored value
statusstatusJSON“SUCCESS”Success or failure
failure reasonfailureReasonJSONReason for failure
created datecreatedDateJSONCreation Date/Time
Table. Response Parameters

Sample

RequestResponse
curl -X POST "https://stg-scloud.singleid.samsung.net:443/stg4/user-api/1.0/scp-auth/create" -H "accept: application/json"-H "apiKey: {apiKey}" INPUT JSON{     "instanceId": "instnace-01",     "permissionSetId":   "PERMISSION-SET-Ablxc5__qEaIYmWGyMeqlf",     "principalId": "singleid.test001",     "principalType": "USER",     "targetId": "PROJECT-ka2tfhLHsweVwm4BrR1rae",     "targetType": "PROJECT"   }{   "instanceId": "instnace-01",   "permissionSetId": "PERMISSION-SET-Ablxc5__qEaIYmWGyMeqlf",   "principalId": "singleid.test001",   "principalType": "USER",   "targetId": "PROJECT-ka2tfhLHsweVwm4BrR1rae",   "targetType": "PROJECT"   "status": "SUCCESS",   "createdDate": "2024-04-03T01:58:46.538Z",   "failureReason": "" }
Table. Sample

API Specification - Delete account assignment list(User Portal)

ModuleAPIURIMethodDescription
User PortalDelete account assignment listhttps://{domain}/{tenant-name}/user-api/1.0/scp-auth/create](https://{domain}/{tenant-name}/user-api/1.0/scp-auth/delete)POSTDelete the SCP permission for the user.
Table. Delete account assignment list (User Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
instance idinstanceIdYJSONStringSCP provision
permission set idpermissionSetIdYJSONStringPERMISSION-SET-Ablxc5__qEaIYmWGyMeqlfSCP provision
principal idprincipalIdYJSONStringgildong.honguser’s username
principal typeprincipalTypeYJSONStringUSEROnly the current USER is allowed.
target idtargetIdYJSONString“PROJECT-ka2tfhLHsweVwm4BrR1rae”PROJECT ID, SCP provided
target typetargetTypeYJSONStringPROJECTOnly the current PROJECT functions
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
instance idinstanceIdJSONReturn deleted value
permission set idpermissionSetIdJSONPERMISSION-SET-Ablxc5__qEaIYmWGyMeqlfReturn deleted value
principal idprincipalIdJSONgildong.hongReturn deleted value
principal typeprincipalTypeJSONUSERReturn deleted value
target idtargetIdJSON“PROJECT-ka2tfhLHsweVwm4BrR1rae”Return deleted value
target typetargetTypeJSONPROJECTReturn deleted value
statusstatusJSON“SUCCESS”Success or failure
failure reasonfailureReasonJSONReason for failure
created datecreatedDateJSONDeletion time
Table. Response Parameters

Sample

RequestResponse
curl -X GET "https://stg1-cloud.singleid.samsung.net/test-tenant/common-api/open/v1.1/asis/test-tenant/user/mfa/token/authentication?userName=mkdir.kim&protocol=uma-uaf&sessionDataKey=sessionDataKey111&redirectUrl=redirectUrl1111&errorRedirectUrl=errorRedirectUrl1111&params=params111&language=ko"{    "result": "SUCCESS",    "value": {        "token": "eyJpc3MiOiJodHRwczovL3N0ZzItY2xvdWQuaWFtLnNhbXN1bmcubmV0Iiwic3ViIjoibWtkaXIua2ltIiwiYXVkIjoiaHR0cHM6Ly9zdGcyLWNsb3VkLmlhbS5zYW1zdW5nLm5ldCIsImV4cCI6MTY5ODEyOTM2OSwiaWF0IjoxNjk4MTI5MTg5LCJqdGkiOiJkNWZmZGE5Ny1mMzZkLTRjZDktYWJmZi1mMzY4ZTkxYWVkNTUiLCJhbXIiOltdLCJ6b25laW5mbyI6IkFzaWEvU2VvdWwiLCJsb2NhbGUiOiJlbl9VUyIsInByb3RvY29sIjoidW1hLXVhZiIsInJlZGlyZWN0X3VybCI6InJlZGlyZWN0VXJsMSIsImVycm9yX3JlZGlyZWN0X3VybCI6ImVycm9yUmVkaXJlY3RVcmwxIiwicGFyYW1zIjoicGFyYW1zMSIsInVzZXJJZCI6Im1rZGlyLmtpbSJ9:MEUCIHqWV_UcgKHsMlDI7Ks31fw1QPpCYnKorMpnr2L653LwAiEAz30ShMmACEi6H-IuF1YMV2bKT1WIFmAdJ6OCsmEzscA",        "serviceUri": "/ua/MPHTOCHW5I/de6f67d0-8bec-46ac-bf53-16ef00eb2066/dgauth/mfa",        "appId": null    },    "message": "succeeded to get nexsign token.",    "statusCode": null,    "statusCodeValue": "0",    "data": null}
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
400N/AN/AYou need to verify the userName.
Table. Error Code

API Specification - Get account assignment list(User Portal)

ModuleAPIURIMethodDescription
User PortalGet account assignment listhttps://{domain}/{tenant-name}/user-api/1.0/scp-auth/listPOSTRetrieves the SCP permissions for a user.
Table. Get account assignment list(User Portal)

Request Parameter

No.PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
1principal typeprincipalTypeYqueryStringUSEROnly the current USER is allowed
2principal idprincipalIdYqueryStringgildong.hongusername of the user to query
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
instance idinstanceIdJSON
permission set idpermissionSetIdJSONPERMISSION-SET-Ablxc5__qEaIYmWGyMeqlf
principal idprincipalIdJSONgildong.hong
principal typeprincipalTypeJSONUSER
target idtargetIdJSON“PROJECT-ka2tfhLHsweVwm4BrR1rae”
target typetargetTypeJSONPROJECT
Table. Response Parameters

Sample

RequestResponse
curl -X GET "https://stg-scloud.singleid.samsung.net:443/stg4/user-api/1.0/scp-auth/list?principalType=USER&principalId=singleid.test001" -H "accept: application/json" -H "apiKey: {apiKey}"[ { "instanceId": "instnace-01", "permissionSetId": "PERMISSION-SET-Ablxc5__qEaIYmWGyMeqlf", "principalId": "singleid.test001", "principalType": "USER", "targetId": "PROJECT-ka2tfhLHsweVwm4BrR1rae", "targetType": "PROJECT" }, { "instanceId": "instnace-01", "permissionSetId": "PERMISSION-SET-Ablxc5__qEaIYmWGyMe121", "principalId": "singleid.test001", "principalType": "USER", "targetId": "PROJECT-ka2tfhLHsweVwm4BrR1rae", "targetType": "PROJECT" } ]
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
401N/AN/AIt is necessary to verify that the API key is valid.
Table. Error Code

API Specification - Search User(User Portal)

ModuleAPIURIMethodDescription
User PortalSearch Userhttps://{domain}/{tenant-name}/user-api/1.0/scp-user/listPOSTSearch for the SCP target user.
Table. Search User (User Portal)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
pagepageNqueryInteger0Page to fetch
sizesizeNqueryInteger10Page size
usernameusernameNqueryStringgildong.hongUser ID to query
group namegroupNameNqueryStringADGroupGroup to query
create Date(from)creationDateGeNqueryDateTime“2024-04-03T07:49:23.845Z”
create Date(to)creationDateLeNqueryDateTime“2024-04-03T07:49:23.845Z”
last change date(from)lastChangeDateGeNqueryDateTime“2024-04-03T07:49:23.845Z”
last change date(to)lastChangeDateLeNqueryDateTime“2024-04-03T07:49:23.845Z”
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
keykeyString“01890501-74fa-7785-91e0-67bd71217a2e”
usernameusernameStringgildong.hong
administratoradministratorBooleanfalse
formatted nameformattedNameStringGil-dong Hong
formatted Name(en)enFormattedNameString“gildong hong”
emailemailStringgildong.hong@samsung.com
mobilemobileString+02-01011112222
preferred languagepreferredLanguageStringko
time zonetimeZoneString“Asia/Seoul”
managed bymanagedByStringSINGLEID
creatorcreatorString“admin001”
creation datecreationDateDateTime“2024-04-03T07:49:23.845Z”
last modifierlastModifierString“admin001”
last change datelastChangeDateDateTime“2024-04-03T07:49:23.845Z”
Table. Response Parameters

Sample

RequestResponse
curl -X POST "https://stg-scloud.singleid.samsung.net:443/stg4/user-api/1.0/scp-user/list" -H "accept: application/json" -H "apiKey: {apiKey}"[ { “key”: “01890501-74fa-7785-91e0-67bd71217a2e”, “administrator”: false, “username”: “gildong.hong”, “enFormattedName”: “gildong hong”, “formattedName”: “Gildong Hong”, “email”: “gildong.hong@samsung.com”, “mobile”: “+02-01011112222”, “preferredLanguage”: “ko”, “timeZone”: “Asia/Seoul”, “managedBy”: “SINGLEID”, “creator”: “admin001”, “creationDate”: “2024-04-03T07:49:23.845Z”, “lastModifier”: “admin001”, “lastChangeDate”: “2024-04-03T07:49:23.845Z” }, { “key”: “01890501-74fa-7785-91e0-67bd71217a2e”, “administrator”: false, “username”: “gildong.hong”, “enFormattedName”: “gildong hong”, “formattedName”: “Gildong Hong”, “email”: “gildong.hong@samsung.com”, “mobile”: “+02-01011112222”, “preferredLanguage”: “ko”, “timeZone”: “Asia/Seoul”, “managedBy”: “SINGLEID”, “creator”: “admin001”, “creationDate”: “2024-04-03T07:49:23.845Z”, “lastModifier”: “admin001”, “lastChangeDate”: “2024-04-03T07:49:23.845Z” } ]
Table. Sample

Error Code

Http Response CodeError CodeError MessageAction Plan
401N/AN/AIt is necessary to verify that the API key is valid.
Table. Error Code

API Specification - MFA Consumer Request(Portal Common)

ModuleAPIURIMethodDescription
Portal CommonMFA Consumer Requesthttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/request/mfaPOSTRequest MFA.
Table. MFA Consumer Request(Portal Common)

Request Parameter

No.PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
1usernameusernameYBodyStringmkdir.kim
2Authentication typetypeNBodyStringemailOne of email, sms, msg, uaApp, uaMOTP. If unspecified, follow the default setting or the user’s preferred method.
3serviceProviderIdserviceProviderIdYBodyStringd8b09752-405a-4d52-8605-bff9aa3f4741UUID. Device-specific ID generated after registration in the SingleID Admin Portal.
Table. Request Parameters

Response Parameter

PropertiesAttributeData TypeSample DataNote
requestIdrequestIdString01890501-74fa-7785-91e0-67bd71217a2eUUID. Used as a request parameter during MFA verification.
Authentication typetypeStringsmsemail, sms, msg, uaApp, or uaMOTP. The verification logic may vary depending on the MFA type.
otpotpString123456A 6-digit or 8-digit number. Issued only when the type is uaMOTP (6 digits) or uaApp (8 digits).
Table. Response Parameters

Sample

RequestResponse
curl -X POST "https://stg1-cloud.singleid.samsung.net:443/test/common-api/open/v1.1/mfa/request/mfa" -H "accept: application/json" -H "Content-Type: application/json" -d "{\"username\":\"mkdir.kim\",\"type\":\"sms\",\"serviceProviderId\":\"dceef541-1f22-479d-96ac-c402ab0789e9\"}{ “otp”: “123456”, “requestId”: “d8b09752-405a-4d52-8605-bff9aa3f4741”, “serviceProviderId”: “”, “type”: “sms”, “username”: "" }
Table. Sample

Error Codes and Responses

Http Response CodeError CodeError MessageAction Plan
400N/Acommon.error.requiredValueA required value is missing. Please check.
400N/Auser.error.notFoundUser not found. Please verify the user ID.
400N/AserviceProvider.error.notFoundService provider not found. Please contact the administrator.
400N/Aauthenticator.error.notFoundAuthentication method not found. Please contact the administrator.
400N/Acommon.error.disallowedValueInvalid type. Please contact the administrator.
400N/Auser.error.locked + remainYour account is locked. Please try again after {remain} minutes.
400N/Aotp.error.tooManyAttemptsGo to the security warning screen (your account has been locked due to multiple authentication failures)
Table. Error Code

API Specification - MFA Consumer Verification(Portal Common)

ModuleAPIURIMethodDescription
Portal CommonMFA Consumer Verificationhttps://{domain}/{tenant-name}/common-api/open/v1.1/mfa/verification/mfaPOSTVerifying MFA.
Table. MFA Consumer Verification(Portal Common)

Request Parameter

PropertiesAttributeMandatoryParameter TypeData TypeSample DataNote
requestIdrequestIdYBodyStringd8b09752-405a-4d52-8605-bff9aa3f4741UUID
otpotpNBodyString1234566-digit number / not required for uaApp, uaMOTP
Table. Request Parameters

Response Parameter

Http Status Codestatus
200Authentication complete
202Authentication pending (occurs only when type is uaMOTP or uaApp. Periodically poll and verify the result until it is delivered with 200)
OtherError
Table. Response Parameters

Sample

RequestResponse
curl -X POST "https://stg1-cloud.singleid.samsung.net:443/test/common-api/open/v1.1/mfa/verification/mfa" -H "accept: application/json" -H "Content-Type: application/json" -d "{\"otp\":\"000000\",\"requestId\":\"095db652-877f-42e5-b87f-e404fb07048b\"}"{ “statusCode”: “ACCEPTED”, }
Table. Sample

Error Codes

Http Response CodeError CodeError MessageAction Plan
400N/Acommon.error.requiredValueA required value is missing. Please check.
400N/Acommon.error.invalidRequestThe request could not be found. Please contact the administrator.
400N/Arequest.error.invalidStatusThe request status is incorrect. Please contact the administrator.
400N/Aotp.error.notMatchInvalid OTP. Please check the OTP.
400N/Aotp.error.tooManyAttemptsGo to the security warning screen (your account has been locked due to multiple authentication failures)
Table. Error Code
Open Source Licence(ISO)
ADFS Adapter Guide