Locai IAM Service Docs

For using IAM in a multi-tenant environment, we need to create a machine user which acts as a bridge between IAM and the application. You need to make sure to register a machine user using super admin token as mentioned here. After creating a machine user for your app. You can use below endpoint to request an access token:

curl --request POST \
  --url https://dev-iam.razi.ai/v1/authentication/machine-users/access-token \
  --header 'Content-Type: application/json' \
  --header 'X-App-Name: ' \
  --data '{
  "clientId": "example-client-id",
  "clientSecret": "zNUTk6frtcdrpEbRiOYx3lGjZpou1oRGVxt40SUj2qkBzUVh8gybTmOObmFvDPKw"
}'

The above will return an access token which can be used to make requests to the API and also for authorizing service to service communication using jwks.

{
  "token": "<JWT TOKEN>",
  "expiresInSeconds": 43199
}

Link to Playground

The sequence diagram for the machine user flow is as follows:

Permission Introspection Get All Organizations

⌘I

API Tutorials

Machine User Flow