| title | description | keywords | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
How to use the Amazon API for accessing {{ postbox-name }} |
In this article, you will learn how to get started with the {{ postbox-name }} API and what an API request looks like. |
|
-
Assign the required roles to the service account.
You can select the appropriate role from the Access management section. For example, to get configuration info, the
postbox.viewerrole is enough. To send emails, the service account needs thepostbox.senderrole. -
It is required for authorization when submitting requests to the Amazon API. To store the key safely, use {{ lockbox-full-name }}.
<HTTP_method> <endpoint> HTTP/2
Host: {{ postbox-host }}
{Authorization|X-YaCloud-SubjectToken}: <authentication_credentials>
X-Amz-Date: <time_in_ISO_8601_format>
<request_body>
For a list of endpoints and relevant HTTP methods, see the API reference. For a list of available headers, see {#T}.
A request must include one of the authentication headers:
-
X-YaCloud-SubjectToken: Contains a service account IAM token. Learn more about authentication with an IAM token here. -
Authorization: Contains a static access key and request signature. The signature is required when accessing the API directly without the AWS CLI or apps. {{ postbox-name }} supports Amazon Signature Version 4. For more information, see theAuthorizationheader description.You can test the signature generation process using the AWS CLI in debug mode. For this, add the
--debugflag to theawscommand. For more information, see this debug example.To avoid generating the signature manually, use the cURL utility: it automatically signs requests to the Amazon API. For more information, see this API use case.