# Create Session Key by Passing Statements

Use a whitelisted ApiKey to create an expiring session key to enable temporary SystemLink authentication.

## Import Python Modules

In [1]:
import os
import requests
import urllib3
urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)

## Define Web Service Command Syntax for Users Requests

In [2]:
class WebServices(object):

    def __init__(self, host_url="", session=None):
        self.host_url = host_url
        self.session = session if session != None else requests.Session()

    def set_api_key(self, api_key):
        self.headers = {'x-ni-api-key':api_key, 'Content-Type':'application/json'}
        self.auth = ""
    
    def post_route(self, url, post_json):
        print("POST " + self.host_url + url)
        response = self.session.post(self.host_url+url, json=post_json, verify=False, headers=self.headers, auth=self.auth)
        print(str(response))
        return response

## Define and Create Session Key

In [3]:
# Manually set the connection credentials for whitelisted routes
host_url = "http://localhost:12100/" # must bypass SystemLink Web Server (443), which refuses whitelisted requests
api_key = "7FEWVlmRpr-VhK_Pr237B1rDqp6HuaLsFIMd2NdSzn" # must use whitelisted ApiKey

# Return WebServiceRoutes object (set host_url)
webServices = WebServices(host_url)

# Define the connection credentials in the response header using the whitelisted ApiKey
webServices.set_api_key(api_key)

# Define the new Seesion Key
session_key_json = {
  "orgId": "891c595f-9121-45e1-8515-9d54783393f3",
  "userId": "b8482a4a-3ef6-4e37-8975-d6aad135dbb5",
  "policies": [
    {
      "statements": [
        {
          "actions": [
            "file:Query",
            "file:Download",
            "file:Upload",
            "file:Update"
          ],
          "description": "File Maintainer",
          "resource": ["*"],
          "workspace": "*"
        },
        {
          "actions": [
            "tag:QueryTagMetadata",
            "tag:QueryTagValue",
            "taghistory:Read",
            "tag:CreateTagMetadata",
            "taghistory:Create",
            "tag:UpdateTagValue",
            "tag:UpdateTagMetadata",
            "tag:DeleteTagMetadata"
          ],
          "description": "Tag Automated Agent",
          "resource": ["*"],
          "workspace": "*"
        }
      ]
    }
  ],
  "durationSeconds": 120,
  "properties": {"temp": "yes"}
}

# Run Web Service Route to create Session Key
response = webServices.post_route("niauth/v1/session-keys", session_key_json)
print(str(response.json()))

POST http://localhost:12100/niauth/v1/session-keys
<Response [200]>
{'created': '2023-03-31T20:52:54.278Z', 'defaultWorkspace': None, 'deleted': False, 'enabled': True, 'expiry': '2023-03-31T20:54:54.278Z', 'id': '1a04d28e-78c3-400e-bddb-381cb1432341', 'name': 'c705e029-8e3f-48f1-9c26-e378b6eec423', 'policies': [{'builtIn': False, 'created': '2023-03-31T20:52:54.276Z', 'deleted': False, 'id': 'a0ceadab-680b-4b81-84d1-be3a44674647', 'name': '7cef5587-93df-43e5-9614-ff01250a63e4', 'properties': None, 'statements': [{'actions': ['file:Query', 'file:Download', 'file:Upload', 'file:Update'], 'description': 'File Maintainer', 'resource': ['*'], 'workspace': '*'}, {'actions': ['tag:QueryTagMetadata', 'tag:QueryTagValue', 'taghistory:Read', 'tag:CreateTagMetadata', 'taghistory:Create', 'tag:UpdateTagValue', 'tag:UpdateTagMetadata', 'tag:DeleteTagMetadata'], 'description': 'Tag Automated Agent', 'resource': ['*'], 'workspace': '*'}], 'type': 'internal', 'updated': '2023-03-31T20:52:54.276Z', 'u