Within Eagle Eye CameraManager two categories of users exists:
By default, the Dealer Dashboard admin users cannot login as an End Users. Only the end user can do that with its own email and password which are generally unknown to the dealer.
Eagle Eye CameraManager is a Cloud Video Platform which can be used for by API partners, which have their own user database with own email and passwords. Those partners prefer not to use the the Eagle Eye CameraManager end user authentication mechanism.
The goal of this guide is to authenticate a user by generating an access token through Dealer Dashboard credentials. This can be used by logging in the user on our system after the Dealer Dashboard admin user has authenticated himself.
This guide assumes that the reader has basic knowledge of the following technologies/systems:
Authenticating as an 'end user' via a 'Dealer Dashboard 'admin user' with the following process:
You will get a different access_token.
1) Get your API key
Request your API key from https://dealer.cameramanager.com. The key will consist of 2 parts, an ID and a SECRET. For example, the ID can be "key" with the secret "qwertyuiopasdfghjklzxcvbnm12345".
At this moment we have to enable this key for provisioning purposes manually. Please contact our support with a request for this and supply the API key details.
2) Login
Add your API key to the authorization header with Basic Auth. Set header "Authorization" with the ID and SECRET in this format: "Basic <ID>:<SECRET>" with the "<ID>:<SECRET>" encoded in Base64.
For example: "Basic Y2FtZXJhbWFuYWdlci50ZXN0OnF3ZXJ0eXVpb3Bhc2RmZ2hqa2x6eGN2Ym5tMTIzNDU="
The response will include an access_token which can be used with the other API calls. In case the access_token expires, the refresh_token can be used to obtain a new access_token.
3) Search for a user via email address
If you want to search for a user via email address you can use the following:
You can replace the {0} with your email address.
4) Get new access_token via refresh token
In case your access_token is expired you can login again using the credentials (email and password). However, this requires your user to login very often which is not user friendly. You can locally store the credentials but this is not recommended for security reasons, in this case you can store the refresh_token and use this to get a new access_token. The access_token can be used again to use the API. The refresh_token will work until the user logs out.
5) Generate an access_token for the end user
Perform the token API call in order to generate an access token for the end user (see token generation API page for details). If you are a reseller, use the /resellers/self/ to search for all accounts. If you are a distributor with multiple resellers, use /resellers/all/ to search in multiple resellers.
This token can now be used to authenticate on behalf of the specified user. It is no longer needed to perform the login API call for the user.