Overview | Service | Command |
Used to request a new auth token that is valid for the specified account. The id of the auth token will be the id of the target account, and the requesting admin's id will be stored in the auth token for auditing purposes.
Authorization token required | true |
Admin Authorization token required | true |
<DelegateAuthRequest [duration="{lifetime-in-seconds} (long)"]> ## DelegateAuthRequest
<account by="{acct-selector-by} (adminName|appAdminName|id|foreignPrincipal|name|krb5Principal)">{key}</account> ## AccountSelector
</DelegateAuthRequest>
The following table describes elements and attributes you can define within a
<DelegateAuthRequest>
element:
XPath | Required / Optional | Description |
@duration | Optional (0 or 1) | Type:long Lifetime in seconds of the newly-created authtoken. defaults to 1 hour. Can't be longer then zimbraAuthTokenLifetime. |
/account | Required (only 1) | Type:{key} Details of target account Description for element text content:The key used to identify the account. Meaning determined by {acct-selector-by} |
/account@by | Required (only 1) | Type:adminName|appAdminName|id|foreignPrincipal|name|krb5Principal Select the meaning of {acct-selector-key} |
<DelegateAuthResponse> ## DelegateAuthResponse
<authToken>{authToken} (String)</authToken>
<lifetime>{lifetime} (long)</lifetime>
</DelegateAuthResponse>
The following table describes elements and attributes you can define within a
<DelegateAuthResponse>
element:
XPath | Required / Optional | Description |
/authToken | Required (only 1) | Type:{authToken} (String) Auth Token |
/lifetime | Required (only 1) | Type:{lifetime} (long) Life time for the authorization |