API: Apigee Consumer Credential Management
Overview
Revised: 06 Apr 2025 - 00:25
This service provides the access to manage client credentials on the Apigee platform. It offers APIs to check expiry of existing credentials, rotate expiring credentials before the expiration and revoke compromised credentials. All the APIs are OAuth2.0 protected and require valid client credentials to generate bearer token for a secure access.
Available endpoints
Additional Information
Service Overview
Service offers Apigee client credentials management operations as described below,
- Check existing client credentials expiry.
- Rotate expiring client credentials.
- Revoke compromised client credentials.
How do I access the APIs?
Access is enabled by an OAuth2.0 Token generated in exchange for your client Id and secret. You need to pass a mandatory request header Authorization: Bearer {Token}.
Please follow the below link for API specification of Token generation service.
https://developer.fil.com/catalogue/Identity#/Tokens/Creates a New Token
Note - The generated token is valid for 10 minutes.
For any issues, reach out to our API Security Team - FIL-APISecurity@FILPROD.onmicrosoft.com
Credentials Rotation API
Some important details of this API -
- It can only rotate active credentials.
- Rate limiting is applied on credentials rotation API to avoid the API abuse. Any unique Apigee App credentials can be rotated maximum up to 5 times a day or 30 times a month.
- Default expiry of new credentials is 30 days if specific duration is not requested.
- The maximum expiry of new credentials can be of 2 years.
- For rotating already expired credentials, please reach out to API Security Team via service now or email.
Service Now: fil-gcis-apisecurity-admin
Email : FIL-APISecurity@FILPROD.onmicrosoft.com