Known devices and sessions

List of known devices

Method

GET https://login.company.com/blitz/api/v3/users/{subjectId}/uas

Getting a list of the user’s devices.

Required permissions: blitz_api_uapps or blitz_api_sys_uapps.

Returns

JSON containing a list of the user’s devices.

Example

Request

GET /blitz/api/v3/users/af583e70-fe39-407d-a87e-06cd0ec1830c/uas HTTP/1.1
Authorization: Bearer cNwIXatB0wk5ZHO0xG5kxuuLubesWcb_yPPqLOFWDuwzMDc0Nz
Cache-Control: no-cache

Response

[
    {
        "name": "Chrome 96",
        "lastUsed": 1637249978,
        "tp": "Browser",
        "os": "macOS 10.15.7",
        "newlyCreated": false,
        "deviceType": "pc",
        "latestIp": "172.25.0.1",
        "subjectId": "af583e70-fe39-407d-a87e-06cd0ec1830c",
        "id": "SHA256_Z0x284K3qv313WViRuPfV5rglhDuYqSn4ztdxVKMBec",
        "trusted": false,
        "cls": true,
        "deviceId": "738f5ce91f912ddd4a0cc5fefa9e8c63",
        "device": "PC"
    }
]

Deleting a device from the list

Method

DELETE https://login.company.com/blitz/api/v3/users/{subjectId}/uas/{id}

Deleting a device from the list of stored ones. As the id, you need to pass received device ID.

Required permissions: blitz_api_uapps_chg or blitz_api_sys_uapps_chg.

Headers

In user mode, headers with the user’s IP address and User-Agent must be passed.

Example

Request

DELETE /blitz/api/v3/users/d2580c98‑e584‑4aad‑a591‑97a8cf45cd2a/uas/SHA256_Z0x284K3qv313WViRuPfV5rglhDuYqSn4ztdxVKMBec HTTP/1.1
Authorization: Bearer cNwIXatB0wk5ZHO0xG5kxuuLubesWcb_yPPqLOFWDuwzMDc0Nz
X-Forwarded-For: 200.200.100.100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_5)

Resetting user sessions

Method

POST https://login.company.com/blitz/api/v3/users/{subjectId}/sessions/reset

Resetting user sessions.

Required permissions: blitz_api_usec_chg or blitz_api_sys_usec_chg.

Headers

• In user mode, headers with the user’s IP address and User-Agent must be passed.

• If the user’s logout from the current device/browser is undesirable, you need to transfer the IB-CI-UA-ID header from the application with the identifier of the current device in order to save the session on it.

  Tip

  The ID of the user’s current device can be obtained from маркера идентификации.

Returns

If the call is successful, the code is HTTP 204 No Content.

Attention

Resetting sessions will invalidate previously received access tokens and refresh tokens of the current user.

Request examples

User mode

POST /blitz/api/v3/users/c574a512-3704-4576-bc3a-3fe28b636e85/sessions/reset HTTP/1.1
Content-Type: application/json
X-Forwarded-For: 200.200.100.100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_5)…
Authorization: Bearer wzb…Tw
IB-CI-UA-ID: {SHA256}rVWFmwgRKWeW_flH4CA4yuW7OhKZ32Da94m0kzwWsVs

System service call mode

POST /blitz/api/v3/users/c574a512-3704-4576-bc3a-3fe28b636e85/sessions/reset HTTP/1.1
Content-Type: application/json
Authorization: Bearer qwa…Ez