API URL (HTTPS only)
The base URL for all DSPM API endpoints is https://api3.normalyze.io/
The DSPM API is only available over HTTPS. Accessing over HTTP will yield a 404 for all requests.
Authentication
To use the DSPM API, you must first get a JWT token from DSPM. To do this, get your API Credentials from the DSPM Web UI. See API Keys for further details.
Next, generate a JWT token. POST an API call to the DSPM API /config/api/token endpoint with the following JSON body:
{
"apiKey": "your API key here",
"apiSecret": "your API secret here"
}When using the API directly, provide the API token in an Authorization header, preceded by Bearer:
authorization: Bearer <your JWT here>Offset and Limit
By default, the amount of records returned on an API call is 100, with a maximum of 1000 records. You can use the offset and limit filter options to retrieve records past the default 100.
Example: To get a specific list of risks above the first 100 records, you could use the offset and limit filter options.
https://api3.normalyze.io/risk/api/riskitems?offset=101&limit=200