Developer Blog - API Updates in Preservica 7.3

Preservica 7.3 is a Cloud-only release and is not a Long Term Support (LTS) release. These API changes will be made available to non-cloud environments with our next LTS release, currently planned to be around the middle of 2024.

Deprecation of Basic Auth

Using Basic Auth to access these endpoints is now deprecated as we explained at Preservica 7.1. If you are using automation (e.g. scripts) to access these APIs, please change them over to using access token based authentication.

Auth - Certificates API

API to manage certificates used during authentication.

New API endpoints since 7.3 (all require authentication):

• GET /auth/certificates retrieves the certificates stored for authentication purposes. The response will tell you whether you have a private key, but the key itself won't be retrieved.
• POST /auth/certificates adds information about a single certificate stored for authentication purposes. The private key won't be retrievable, so you should ensure you have a securely stored copy outside Preservica if you need it. Requires TenantManager permission, via a role: ROLE_SDB_ADMIN_USER, ROLE_SDB_MANAGER_USER.
• GET /auth/certificates/{id} retrieves information about a single certificate stored for authentication purposes. The response will tell you whether you have a private key, but the key itself won't be retrieved.
• PUT /auth/certificates/{id} updates information about a single certificate stored for authentication purposes. The private key won't be retrievable, so you should ensure you have a securely stored copy outside Preservica if you need it. Requires TenantManager permission, via a role: ROLE_SDB_ADMIN_USER, ROLE_SDB_MANAGER_USER.
• DELETE /auth/certificates/{id} removes information about a single certificate.Requires TenantManager permission, via a role: ROLE_SDB_ADMIN_USER, ROLE_SDB_MANAGER_USER.

Auth - Trusted Urls API

API to manage trusted urls.

New API endpoints since 7.3 (all require authentication):

• GET /auth/trusted-urls retrieves the list of urls that the auth service will trust for a tenant. Requires TenantManager permission, via a role: ROLE_SDB_ADMIN_USER, ROLE_SDB_MANAGER_USER.
• POST /auth/trusted-urls add a list of urls that the auth service will trust for a tenant. This will add to any existing urls and will not replace any existing trusted urls. Requires TenantManager permission, via a role: ROLE_SDB_ADMIN_USER, ROLE_SDB_MANAGER_USER.
• DELETE /auth/trusted-urls deletes a list of trusted urls. Requires TenantManager permission, via a role: ROLE_SDB_ADMIN_USER, ROLE_SDB_MANAGER_USER.