Hi Unfortunately based on our security policy I can't share more that I did it before, but now I show the full process.
Norbert [root@nagios-master ~]# curl -u root:XX -H 'Accept: application/json' -X POST 'http://IP:9000/api/users/root/tokens/monitor?pretty=true' -i HTTP/1.1 200 OK X-Graylog-Node-ID: 0ccf3479-4c38-401b-84a3-dbcfd4badcdb Content-Type: application/json Date: Mon, 09 Jan 2017 12:01:47 GMT Content-Length: 138 { "name" : "monitor", "token" : "1nju0tc889slbv1c86n798fdjdgrs4jl7dk3gnsk1uc807bcj64u", "last_access" : "1970-01-01T00:00:00.000Z" }[root@nagios-master ~]# [root@nagios-master ~]# curl http://IP:9000/api/system -u 1nju0tc889slbv1c86n798fdjdgrs4jl7dk3gnsk1uc807bcj64u:token -i HTTP/1.1 401 Unauthorized WWW-Authenticate: Basic realm="Graylog Server" X-Graylog-Node-ID: 0ccf3479-4c38-401b-84a3-dbcfd4badcdb X-Runtime-Microseconds: 364 Date: Mon, 09 Jan 2017 12:02:16 GMT Content-Length: 0 [root@nagios-master ~]# curl http://IP:9000/api/system -u root:XX -i HTTP/1.1 200 OK X-Graylog-Node-ID: 0ccf3479-4c38-401b-84a3-dbcfd4badcdb X-Runtime-Microseconds: 1115 Content-Type: application/json Date: Mon, 09 Jan 2017 12:02:33 GMT Content-Length: 402 {"facility":"graylog-server","codename":"Smuttynose","node_id":"0ccf3479-4c38-401b-84a3-dbcfd4badcdb","cluster_id":"c43b5005-0262-4ac5-8afe-6ead71f1ae00","version":"2.1.2+50e449a","started_at":"2017-01-05T09:40:58.192Z","hostname":"XX","lifecycle":"running","lb_status":"alive","timezone":"Europe/Budapest","operating_system":"Linux 3.10.0-514.2.2.el7.x86_64","is_processing":true}[root@nagios-master ~]# [root@nagios-master ~]# curl -u root:XX -H 'Accept: application/json' -X GET 'http://IP:9000/api/users/root/tokens/?pretty=true' -i HTTP/1.1 200 OK X-Graylog-Node-ID: 0ccf3479-4c38-401b-84a3-dbcfd4badcdb Content-Type: application/json Date: Mon, 09 Jan 2017 12:02:56 GMT Content-Length: 318 { "tokens" : [ { "name" : "XX", "token" : "XX", "last_access" : "1970-01-01T00:00:00.000Z" }, { "name" : "monitor", "token" : "1nju0tc889slbv1c86n798fdjdgrs4jl7dk3gnsk1uc807bcj64u", "last_access" : "1970-01-01T00:00:00.000Z" } ] }[root@nagios-master ~]# 2017. január 9., hétfő 12:39:42 UTC+1 időpontban Jochen Schalanda a következőt írta: > > Hi Norbert, > > see > http://docs.graylog.org/en/2.1/pages/configuration/rest_api.html#creating-and-using-access-token > > for instructions about using access tokens with the Graylog REST API. > > If, after reading the documentation carefully, you're still unable to make > the access token work, please post your complete curl commands and do not > obfuscate any data (except maybe the username and the password you're > creating the token with). > > Cheers, > Jochen > > On Monday, 9 January 2017 12:03:45 UTC+1, Norbert Kiss wrote: >> >> Hi >> >> What I did wrong? >> >> I create a token, and if I try to use the token to get an url under >> /api/system , I get Unauthorized back. >> >> Thanks, >> >> Norbert >> >> >> curl -u USER:PASS -H 'Accept: application/json' -X GET >> 'http://IP:9000/api/users/USER/tokens?pretty=true' >> { >> "tokens" : [ { >> "name" : "NAME", >> "token" : "TOKENID", >> "last_access" : "1970-01-01T00:00:00.000Z" >> } ] >> } >> >> curl http://IP:9000/api/system -u TOKENID:token -i >> HTTP/1.1 401 Unauthorized >> WWW-Authenticate: Basic realm="Graylog Server" >> X-Graylog-Node-ID: XX >> X-Runtime-Microseconds: 490 >> Date: Mon, 09 Jan 2017 10:58:23 GMT >> Content-Length: 0 >> >> >> curl http://IP:9000/api/system -u USER:PASS -i >> HTTP/1.1 200 OK >> X-Graylog-Node-ID: XX >> X-Runtime-Microseconds: 244491 >> Content-Type: application/json >> Date: Mon, 09 Jan 2017 10:58:40 GMT >> Content-Length: 402 >> >> >> -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/21b13aaf-bac4-469d-9704-6317ed1fb759%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
