Overview
Zilla APIs can be accessed programmatically using the Zilla Service Account credentials.
The zilla customers should contact Zilla Customer Support to provide the Zilla Service Account credentials for their tenant. The Zilla customer support person will create a Service Account with the “Read Only Admin” permission the customer’s tenant. And the he/she will provide the client_credentials to the customer.
Once customer have the service account credentials, customer can use the credentials to get the access-token for this service account and use this access-token to make the GET API calls to Zilla server.
The Zilla Service Account will be visible in the Zilla App as below.
...
Guidelines for the customers to use the credentials
Customer should use the client_credentials (clientId, clientSecret), to get the Access Token. Then they can use Access Token to make the Zilla API calls.
API to get the Access Token (It is standard OAuth2 Client Credentials token API)
| Code Block |
|---|
curl -X POST 'https://app.zillasecurity.com/api/oauth2/token?domain=<tenant_domain>' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode 'client_id=<client_id>' \
--data-urlencode 'client_secret=<client_secret>' |
Replace the <tenant_domain>, <client_id>, <client_secret> with the respective values.
The Response will be -
| Code Block |
|---|
{
"access_token": "<access_token>",
"token_type": "Bearer"
} |
⚠️ The <access_token> is having the expiry of 1 hour. To get the new Access Token, customer should make the above API call again.
The Zilla API calls should be made by using Authorization header as Bearer <access_token> .
For example-
| Code Block |
|---|
curl -X GET 'https://app.zillasecurity.com/api/reviews/campaigns/6671507df3d1161c3caf1054/changes' \
--header 'Authorization: Bearer <access_token>' |
Coming Soon