Generates an authorization code that contains user identity and permissions. You can use this code to launch a cloud application in an integration scenario.
Try it now
Test
RAM authorization
|
Action |
Access level |
Resource type |
Condition key |
Dependent action |
|
ecd:GetAuthCode |
*All Resource
|
None | None |
Request parameters
|
Parameter |
Type |
Required |
Description |
Example |
| ExternalUserId |
string |
No |
The external user ID. This ID is defined by you and must be unique within an Alibaba Cloud account. You must specify either |
alice |
| EndUserId |
string |
No |
The username of the convenience account. The username must be unique within an Alibaba Cloud account. You must specify either |
alice |
| Policy |
string |
No |
An access policy that restricts the permissions granted by the authorization code. If you omit this parameter, the code grants unrestricted access. Syntax:
Valid values for <resource type>:
|
{ "Version": "1", "Resource": { "Type": "AppInstanceGroup", "Id": "aig-9ciijz60n4xsv****" } } |
| AutoCreateUser |
boolean |
No |
Specifies whether to automatically create a convenience account if no user exists with the specified Valid values:
|
false |
Response elements
|
Element |
Type |
Description |
Example |
|
object |
The response object. |
||
| RequestId |
string |
The request ID. |
1CBAFFAB-B697-4049-A9B1-67E1FC5F**** |
| AuthModel |
object |
Details about the authorization code. |
|
| AuthCode |
string |
The authorization code. This code is valid for 3 minutes and can be used only once, regardless of verification results. When multiple codes are generated for a user, only the most recent one is valid. |
acv2ZEq2TNSqOlX+DvyetHGRT08iPhbWg/os1W4HojpBxkMQZkAnbKSfz/wNvS0E149IQZ5TogvBUE8ghCSVV+QBnv48Y+sn4z9fY5ywZA1peI5s4TplQI0TADBhPZXEIzMOdmbNsDGGlGcKOAq8ixd1Epzdu9XfvRzdLOO6o3zQwTZxXsjOgGBW8JTcgCP9W9iYiIjHIdZ2VCAnmMzuyVkyED8gymEevH10QoclyH/O3s8Yq6VF34gMXihDQeiI8PyiAZrW0JWXSWpdy3n4yGtAqMAgv46FzTA+XJ6C******** |
| EndUserId |
string |
The username of the convenience account. |
alice |
| ExpireTime |
string |
The expiration time of the authorization code, in UTC and ISO 8601 format. |
2015-01-23T12:33:18Z |
Examples
Success response
JSON format
{
"RequestId": "1CBAFFAB-B697-4049-A9B1-67E1FC5F****",
"AuthModel": {
"AuthCode": "acv2ZEq2TNSqOlX+DvyetHGRT08iPhbWg/os1W4HojpBxkMQZkAnbKSfz/wNvS0E149IQZ5TogvBUE8ghCSVV+QBnv48Y+sn4z9fY5ywZA1peI5s4TplQI0TADBhPZXEIzMOdmbNsDGGlGcKOAq8ixd1Epzdu9XfvRzdLOO6o3zQwTZxXsjOgGBW8JTcgCP9W9iYiIjHIdZ2VCAnmMzuyVkyED8gymEevH10QoclyH/O3s8Yq6VF34gMXihDQeiI8PyiAZrW0JWXSWpdy3n4yGtAqMAgv46FzTA+XJ6C********",
"EndUserId": "alice",
"ExpireTime": "2015-01-23T12:33:18Z"
}
}
Error codes
See Error Codes for a complete list.
Release notes
See Release Notes for a complete list.