With your API Token you’ll need to use the CSP Identity and Access Management group of APIs and fetch an “access token” which will be passed as part of each subsequent VMware Cloud on AWS API request. See below for more details on refresh tokens and handling expiration. Here’s the API you’ll need:
This is required in order to use the authorization token to generate an access token. An access token is valid for 30 minutes.
URL
POST https://console.cloud.vmware.com/csp/gateway/am/api/auth/api-tokens/authorize
Path Variables
none
Key Headers
none
Example JSON Payload
| Key | Example Value | How do I find This |
|---|---|---|
| refresh_token | eyJhbGciOiJSUzI1XXXXXXXXXXXXXXXXXX XXXXXXXXeyJzdWIiOiJ2bXdhcmUuY29 | VMware Cloud API Authentication |
{
"refresh_token": "eyJhbGciOiJSUzI1XXXXXXXXXXXXXXXXXX
XXXXXXXXeyJzdWIiOiJ2bXdhcmUuY29"
}
Example Response Body
{
"id_token": null,
"token_type": "bearer",
"expires_in": 1799,
"scope": "external/ybUdoTC05kYFC9ZG560kpsn0I8M_/*",
"access_token": "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.rzqywN0IC8BZmA0PyQHy9X43gjX1Kq7ny1KAfzDKx-JhLJg3FquHs_qMm-jjWj4Mfum5-4V9k664fYL_E5DrtDSw6hWLGuaCGoc9HTKZScLzTpR10KLbfSgK95lSRNbmfxXXxy9W0C4J0Cm_6dh4q0cqZxTXY2Y7gJlDaLJd-ZQnQxh5jhVJcyyPy5k675S9_Rb1D2_Ypp2U2Se4daUIrJn4yUv3P-OC45WTmxdsLTADOoURqlvMiVwYFpkiAykZlZD8s5hegsAhiMfMcmGrR3UTk3Oyndg9HOVCzdbtddHIWmmSDVaOmfJQMhDm09fldcsCF7ORaeSA8mEDEN0_jg",
"refresh_token": "X3fG41qHO4jbeWVvVnhXXXXXXXXXXXXXXXXXXXXXX7"
}