Identity REST APIs

You can use the Veracode Identity API to manage the administrative configuration for your organization that is in the Veracode Platform.

The API provides endpoints for managing users, teams, and business units, using the create, update, read, and delete actions on their respective objects. This capability includes managing API service accounts. You can use the API credentials endpoint to get information about Veracode API credentials expiration, revoke API credentials, or renew your API credentials.

Permissions and Authentication

Before you can use all endpoints of the Identity REST APIs, you must have one of these account types:

• An API service account with the Admin API role.
• A user account with the Administrator role.

All other API service account and user account roles can access these endpoints:

• /user/self
• /user/api_credentials

This API uses API ID/key credentials and HMAC authentication to provide improved security. Before you can send requests, you must complete these configurations:

• Veracode API credentials
• HMAC authentication

Ensure you access the APIs with the domain for your region.

Identity APIs Specification

The Identity APIs specification is available from SwaggerHub.