This is a proof of concept. Not ready for use outside of Core IAM team.
Description:
This API will return profiles as they are stored in the dynamodb table. Currently only two scopes for non interactive clients are supported. But more scopes and search features are planned for the future.
docker run --rm -ti \
-v ~/.aws:/root/.aws \
-v ~/workspace/person-api/:/workspace \
mozillaiam/docker-sls:latest \
/bin/bash
npm install serverless-domain-manager --save-dev
npm install serverless-python-requirements --save-dev
Highly subject to change.
Prod : https://person-api.sso.mozilla.com/v1/profile/ Dev : https://person-api.sso.allizom.org/v1/profile/
Scopes Supported:
- read:email
- read:profile
curl --request GET --url https://person-api.sso.allizom.org/v1/profile/ad%7CMozilla-LDAP-Dev%7Ckangtest --header 'authorization: Bearer YOURBEARERTOKENHERE'
- Get an access token from the OAuth authorizer (i.e. https://auth.mozilla.auth0.com/oauth/token) with the required scopes for your query. This token is valid 24h.
- Use the access token to retrieve data from the API as such:
curl --request GET --url https://295w5a6tu1.execute-api.us-west-2.amazonaws.com/dev/profile/ad%7CMozilla-LDAP-Dev%7Ckangtest --header 'authorization: Bearer YOURBEARERTOKENHERE'
Make sure you urlencode the authzero_id (
user.user_id).