This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

How to generate apigee access token for SAML without passcode or Automate the token generation process

Posted on 04-08-2021 07:59 AM
vinaypratapsr
New Member
Reply posted on --/--/---- --:-- AM

@Dino-at-Google @Miguel Mendoza

We have SAML placed in our organization, In order to get access token for management api calls we need get the passcode from login.apigee.com/passcode. Then we get the access token in exchange.

But to automate this process, i want to bypass the passcode thing.

After reading Apigee docs, i came accross two approaches:

1.

curl -H "Content-Type: application/x-www-form-urlencoded;charset=utf-8" \

  -H "accept: application/json;charset=utf-8" \
  -H "Authorization: Basic ZWRnZWNsaTplZGdlY2xpc2VjcmV0" -X POST \
  https://zoneName.login.apigee.com/oauth/token -s \
  -d 'grant_type=password&username=machineusername&password=machineuserpassword'
Reference - https://docs.apigee.com/api-platform/system-administration/automating-tasks#:~:text=from%20a%20brows....

But this is throwing me error - 
{
    "error": "unauthorized",
    "error_description": "Unable to find identity provider for origin:usergrid"
}

2. acurl call ( Acurl to me is totally new thing, also I'm a windows user)

USER=me@example.comPASS=not-that-secretTOKEN=$(get_token -u $USER:$PASS -m ''--force-basic-auth)curl -H "Authorization: Bearer $TOKEN"'https://api.enterprise.apigee.com/v1/organizations/...'
In order to try it out can anyone help me to convert this into normal CURL. so i can try this out.
Kindly assist with any approach where i can generate access tokens automatically( Without human interactions)
0 6 1,085
Topic Labels
0 Likes
6 REPLIES 6

Posted on --/--/---- --:-- AM
miguelmendoza
Staff
Reply posted on --/--/---- --:-- AM

I go through the automation process step bey step in this video starting at time code 2:15.

I've seen the error you are getting before when the zoneName in the URL (zoneName.login.apigee.com) does not match a valid zone name. Double check that your zoneName matches the zone name you have configured in apigee.com/sso

Posted on --/--/---- --:-- AM
vinaypratapsr
New Member
In response to miguelmendoza
Reply posted on --/--/---- --:-- AM

@Miguel , I tried the same zoneName with passcode it gives me token. but skipping passcode and giving username and password is throwing the error 

{"error":"unauthorized","error_description":"Unable to find identity provider for origin:usergrid"}

0 Likes

Posted on --/--/---- --:-- AM
asha
Bronze 1
Bronze 1
In response to vinaypratapsr
Reply posted on --/--/---- --:-- AM

@vinaypratapsr  & @miguelmendoza : Did you get any solution for the error 

{"error":"unauthorized","error_description":"Unable to find identity provider for origin:usergrid"}

. We are using the machine credentials to get the token however getting the same error as above. 

0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
In response to asha
Reply posted on --/--/---- --:-- AM

Please contact Apigee support for detailed assistance on this. 

0 Likes

Posted on --/--/---- --:-- AM
babuk0930
New Member
Reply posted on --/--/---- --:-- AM

In order to skip passcode you need to create machine id for that zone for automation tasks


please follow this

https://docs.apigee.com/api-platform/system-administration/automating-tasks#get-the-machine-users-oa...

0 Likes

Posted on --/--/---- --:-- AM
varuknr
New Member
Reply posted on --/--/---- --:-- AM

@vinay can you provide the curl commands used to generate token with passcode. I am facing similar error code with passcode as well.

0 Likes