{
"service_account": {
"name": "<string>",
"created_at": "2023-11-07T05:31:56Z",
"email": "<string>",
"metrics_restriction": {
"permission": "READ",
"labels": {}
},
"slug": "<string>",
"token": "<string>",
"unrestricted": true,
"updated_at": "2023-11-07T05:31:56Z"
}
}CreateServiceAccount
{
"service_account": {
"name": "<string>",
"created_at": "2023-11-07T05:31:56Z",
"email": "<string>",
"metrics_restriction": {
"permission": "READ",
"labels": {}
},
"slug": "<string>",
"token": "<string>",
"unrestricted": true,
"updated_at": "2023-11-07T05:31:56Z"
}
}Authorizations
Chronosphere API token
Body
If true, validates the specified configuration without creating the ServiceAccount. If the specified configuration is valid, the endpoint returns a partial response without the ServiceAccount. If the specified configuration is invalid, the endpoint returns an error.
The ServiceAccount to create.
Show child attributes
Show child attributes
The name of the ServiceAccount. You can modify this value after the ServiceAccount is created.
If set, restricts access of the service account to only metric data.
Only one of unrestricted or metrics_restriction must be set.
Show child attributes
Show child attributes
Permission that defines the access level of the service account to only metric data:
READgrants read-only access.WRITEgrants write-only access.READ_WRITEgrants read and write access.
READ, WRITE, READ_WRITE The unique identifier of the ServiceAccount. If a slug isn't provided, one is generated based on the name field. You can't modify this field after the ServiceAccount is created.
If set, grants the service account access to all Chronosphere APIs, including resource configuration and metric data within the access controls defined by the service account's team membership.
Only one of unrestricted or metrics_restriction must be set.
Response
A successful response containing the created ServiceAccount.
Show child attributes
Show child attributes
The name of the ServiceAccount. You can modify this value after the ServiceAccount is created.
Timestamp of when the ServiceAccount was created. Cannot be set by clients.
The unique email user for this service account. Cannot be set by clients.
If set, restricts access of the service account to only metric data.
Only one of unrestricted or metrics_restriction must be set.
Show child attributes
Show child attributes
Permission that defines the access level of the service account to only metric data:
READgrants read-only access.WRITEgrants write-only access.READ_WRITEgrants read and write access.
READ, WRITE, READ_WRITE The unique identifier of the ServiceAccount. If a slug isn't provided, one is generated based on the name field. You can't modify this field after the ServiceAccount is created.
Generated API token of the service account. Cannot be set by clients.
The token is set only once by the server in the CreateServiceAccount response.
The ReadServiceAccount response always returns an empty token. Therefore, when
creating a service account, ensure you securely store the response token.
If you lose the token, you must delete and recreate the service account to
generate a new token.
If set, grants the service account access to all Chronosphere APIs, including resource configuration and metric data within the access controls defined by the service account's team membership.
Only one of unrestricted or metrics_restriction must be set.
Timestamp of when the ServiceAccount was last updated. Cannot be set by clients.