CODEWITHSUNDEEP
azureazure-api-management
Gaurav Radadiya
Gaurav Radadiya

Reputation: 231

How to get user list with password in azure api management service with REST API?

I have created a resource in Azure API Management Service, Also by using a developer console portal template, the user can sign in and sign up and test listed API from there.

By using Management API I am getting the list of users who signed up through the developer portal. enter image description here

Using management API as below,

GET https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ApiManagement/service/{serviceName}/users?api-version=2019-12-01

I am getting the user list without a password as below using Management API,

    {
    "value": [
        {
            "id": "/subscriptions/1xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/groupName/providers/Microsoft.ApiManagement/service/serviceName/users/5xxxxxxxxxxx",
            "type": "Microsoft.ApiManagement/service/users",
            "name": "5xxxxxxxxxxx",
            "properties": {
                "firstName": "string",
                "lastName": "string",
                "email": "[email protected]",
                "state": "active",
                "registrationDate": "2020-09-25T17:15:02.587Z",
                "note": null,
                "identities": [
                    {
                        "provider": "Basic",
                        "id": "[email protected]"
                    }
                ]
            }
        }
    ],
    "count": 1
}

I referred below documents,

https://learn.microsoft.com/en-us/rest/api/apimanagement/2019-12-01/user/listbyservice

https://learn.microsoft.com/en-us/azure/templates/microsoft.apimanagement/2019-01-01/service/users

Now, I want a password with this response object with users' data. Can anyone please help me to resolve this issue?

Also please check the below screen dump,

enter image description here

Above users signup using the developer portal template, If I can authenticate APIs using their user's credentials, Or in another way, I would say that only signed up can use API that I have published on API management service.

Thank a lot.

Upvotes: 0

Views: 827

Answers (1)

silent
silent

Reputation: 16138

I would expect that the API does not provide the password. And even if it did, it would almost certainly only be a hash. Why would you want to get a users password?? That would be a big security issue.

Upvotes: 1

Related Questions