Constraints¶
All APIs of IAM can be called using the global region endpoint. Some APIs can be called using endpoints of both the global region and other regions (see Table 1), and other APIs can be called using only the global region endpoint.
Note
Tokens or temporary AKs/SKs obtained using domain names of all regions except the global region can only be used to access services in the same region.
Category | API URI | Link |
---|---|---|
Token Management | POST /v3/auth/tokens | |
GET /v3/auth/tokens | ||
Access Key Management | POST /v3.0/OS-CREDENTIAL/securitytokens | |
Services and Endpoints | GET /v3/services{?type} | |
GET /v3/endpoints{? interface, service_id} | ||
Version Information Management | GET / | |
GET /v3 | ||
Project Management | GET /v3/auth/projects | |
Tenant Management | GET /v3/auth/domains | |
Federated Identity Authentication Management | GET /v3/OS-FEDERATION/identity_providers/{idp_id}/protocols/{protocol_id}/auth | |
POST /v3.0/OS-FEDERATION/tokens | ||
GET /v3/OS-FEDERATION/projects | ||
GET /v3/OS-FEDERATION/domains | ||
GET /v3-ext/auth/OS-FEDERATION/SSO/metadata |