Service accounts enable services to securely authenticate themselves and obtain access to MIRACL Trust’s back-end APIs.
These accounts are similar to user accounts in terms of permissions. However, unlike user accounts, service accounts are non-interactive and do not require user input or login.
Each service account is linked to a specific project and can only access resources associated with that project. This ensures that service accounts are scoped appropriately and cannot access data or services outside their assigned project.
Each service account is assigned a token by MIRACL Trust. This token must be included in the Authorization header of API requests, using the standard Bearer token format:
Authorization: "Bearer <YOUR_SERVICE_ACCOUNT_TOKEN>"
If a service account is deactivated, its token is immediately invalidated and can no longer be used to authenticate requests.
To create a service account:
-
Go to your project in the MIRACL Trust Portal.
-
In the Configuration section, select Accounts.
-
Click Add Service Account.
-
Enter a name for the service account.
-
Assign permissions by selecting the appropriate checkboxes.
-
Select account status - Active Account or Inactive Account.
-
Click Save. The service account token is displayed.
-
Important: Copy and securely save the token now as it will not be shown again.
-
Click I have copied the token. The service account is now added to the list of accounts.
To change the permissions and/or status of an existing service account:
- Locate the service account in the Accounts list.
- Click Manage.
- Adjust the permissions and/or status as needed.
- Click Save.