Service: zimbraAdmin

Command: DelegateAuth
Namespace: urn:zimbraAdmin
Description: Used to request a new auth token that is valid for the specified account. The id of the auth token will be the id of the target account, and the requesting admin's id will be stored in the auth token for auditing purposes.
Properties:
Authorization token required true
Admin Authorization token required true

DelegateAuthRequest

    <DelegateAuthRequest [duration="{lifetime-in-seconds} (long)"]> ## DelegateAuthRequest
        <account by="{acct-selector-by} (adminName | appAdminName | id | foreignPrincipal | name | krb5Principal)">{key}</account> ## AccountSelector
    </DelegateAuthRequest>

elements and attributes you can define within a <DelegateAuthRequest> element:

XPath Required / Optional Description
@duration Optional (0 or 1) Type: long
Lifetime in seconds of the newly-created authtoken. defaults to 1 hour. Can't be longer then zimbraAuthTokenLifetime.
/account Required (only 1) Type: {key}
Details of target account
Description for element text content:The key used to identify the account. Meaning determined by {acct-selector-by}
/account@by Required (only 1) Type: adminName | appAdminName | id | foreignPrincipal | name | krb5Principal
Select the meaning of {acct-selector-key}

DelegateAuthResponse

    <DelegateAuthResponse> ## DelegateAuthResponse
        <authToken>{authToken} (String)</authToken>
        <lifetime>{lifetime} (long)</lifetime>
    </DelegateAuthResponse>

elements and attributes you can define within a <DelegateAuthResponse> element:

XPath Required / Optional Description
/authToken Required (only 1) Type: {authToken} (String)
Auth Token
/lifetime Required (only 1) Type: {lifetime} (long)
Life time for the authorization
 
© Copyright , The Zextras Team. All rights reserved.