DocumentationRelease Notes
Log In
Documentation

Appendix

Suggest Edits

Migration from v1 or v2

Any script or application written for v1 or v2 of the API needs some minor modifications to work with v3, namely the Authorization header and URL endpoints.

Authorization header

In v1 and v2, the authorization header was used solely for the API application key. Now it is used to communicate the API application key as well as the RunAs username.

Example

C#

HttpClient client = new HttpClient();

client.DefaultRequestHeaders.Add("Authorization", "PS-Auth key=C9AB26FB-B322- ED97-A34C-215CA4D9630C; runas=doe-main\johndoe;");

Example

Powershell

$headers = @{ Authorization="PS-Auth key=C9AB26FB-B322-ED97-A34C-215CA4D9630C; runas=doe-main\johndoe;"; };

Endpoint comparison

Note the use of https/SSL and removal of PasswordSafe segment in v3:

  • v1 base endpoint: http://the-server/BeyondTrust/api/public/v1/PasswordSafe
  • v2 base endpoint: http://the-server/BeyondTrust/api/public/v2/PasswordSafe
  • v3 base endpoint: https://the-server/BeyondTrust/api/public/v3

Endpoint mapping

Migration from v1

V1V3
MethodEndpointMethodEndpoint
GET/v1/PasswordSafe/GetPublicKey
GET/v1/PasswordSafe/SignIn
GET/v1/PasswordSafe/SignoutPOST/v3/Auth/Signout
GET/v1/PasswordSafe/SignAppInPOST/v3/Auth/SignAppin
GET/v1/PasswordSafe/SecureSignAppIn
GET/v1/PasswordSafe/GetManagedAccountsListGET/v3/ManagedAccounts
POST/v1/PasswordSafe/ImmediatePasswordRequestPOST/v3/Requests
GET/v1/PasswordSafe/GetPendingRequestsGET/v3/Requests?status=pending
GET/v1/PasswordSafe/GetActiveRequestsGET/v3/Requests?status=active
POST/v1/PasswordSafe/RetrievePasswordGET/v3/Credentials/{requestId}
POST/v1/PasswordSafe/RetrieveSecurePassword
POST/v1/PasswordSafe/ReleasePasswordPUT/v3/Requests/{requestId}/Checkin

Migration from v2

v2v3
MethodEndpointMethodEndpoint
GET/v2/PasswordSafe/GetPublicKey
GET/v2/PasswordSafe/SignIn
POST/v2/PasswordSafe/SignoutPOST/v3/Auth/Signout
POST/v2/PasswordSafe/SignAppInPOST/v3/Auth/SignAppin
POST/v2/PasswordSafe/SecureSignAppIn
GET/v2/PasswordSafe/GetManagedAccountsListGET/v3/ManagedAccounts
POST/v2/PasswordSafe/ImmediatePasswordRequestPOST/v3/Requests
GET/v2/PasswordSafe/GetPendingRequestsGET/v3/Requests?status=pending
GET/v2/PasswordSafe/GetActiveRequestsGET/v3/Requests?status=active
POST/v2/PasswordSafe/RetrievePasswordGET/v3/Credentials/{requestId}
POST/v2/PasswordSafe/RetrieveSecurePassword
POST/v2/PasswordSafe/ReleasePasswordPUT/v3/Requests/{requestId}/Checkin
GET/v2/PasswordSafe/GetWorkgroupsGET/v3/Workgroups
POST/v2/PasswordSafe/QueueImportPOST/v3/Imports

Updated 5 days ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.