Authentication
The ByCloud API supports two authentication methods: OAuth tokens for console users and API keys for service accounts.
Bearer Token (OAuth)
For console users, authenticate using an OAuth access token obtained from the platform. Include it in the Authorization header:
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...API Key (Service Accounts)
For programmatic access, create a service account and generate an API key. Include it in the X-Api-Key header:
X-Api-Key: your-access-key-id:your-secret-access-keyCreating a Service Account
To create a service account and generate API keys:
1. Go to the ByCloud Console
2. Navigate to IAM → Service Accounts
3. Click "Create Service Account"
4. Assign the appropriate roles
5. Generate an API key pair
Security Best Practices
• Never share your API keys or include them in client-side code
• Rotate API keys regularly
• Use the principle of least privilege when assigning roles
• Monitor API usage for suspicious activity