This topic describes how you can retrieve access tokens for Supply Chain Security Tools (SCST) - Store.
When you install Tanzu Application Platform, the SCST - Store deployment automatically includes a read-write service account. This service account is bound to the metadata-store-read-write
role.
There are two types of SCST - Store service accounts:
POST
and GET
API requestsGET
API requestsThis topic shows how to retrieve the access token for these service accounts.
To retrieve the read-write access token, run:
kubectl get secrets metadata-store-read-write-client -n metadata-store -o jsonpath="{.data.token}" | base64 -d
To retrieve the read-only access token, you must first create read-only service account.
To retrieve the read-only access token, run:
kubectl get secrets metadata-store-read-client -n metadata-store -o jsonpath="{.data.token}" | base64 -d
The access token is a Bearer token used in the HTTP request header Authorization
. For example, Authorization: Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6IjhMV0...
.