Cloud Console API clients (REST)
Cloud API management​
To interact with Camunda Cloud programmatically without using the Camunda Cloud UI, create Cloud API clients in the organization settings under the Cloud Management API tab.
Cloud API clients are created for an organization, and therefore can access all Camunda Cloud clusters of this organization.
A client can have one or multiple of the following permissions:
- Get clusters: Retrieve information of all clusters of the organization.
- Create clusters: Create a cluster for the organization.
- Delete clusters: Delete a cluster of the organization.
- Get Zeebe clients: Retrieve all Zeebe clients of the organization.
- Create Zeebe clients: Create a Zeebe client for a cluster of the organization.
- Delete Zeebe clients: Delete a Zeebe client of a cluster owned by the organization.
After a Cloud API client is created, the Client Secret
is only shown once. Save this Client Secret
somewhere safe.
To retrieve an access token for the Cloud API client:
curl --header "Content-Type: application/json" \
--request POST \
--data '{"grant_type":"client_credentials", "audience":"api.cloud.camunda.io", "client_id":"XXX", "client_secret":"YYY"}' \
https://login.cloud.camunda.io/oauth/token
Access tokens have a validity period found in the access token. After this time, a new access token must be requested.
Note that the auth service has built-in rate limiting. If too many token requests are executed in a short time, the client is blocked for a certain time. Since the access tokens have a certain validity period, they must be cached on the client side.
Console API (REST)​
For all requests, include the access token for Cloud API in the Authorization header: authorization:Bearer ${TOKEN}
. A detailed API description can be found here.