A command line tool (CLI) for admin of clients and keys in Maskinporten.
NOTE: This project is no longer maintained.
Teams in Oslo Origo is encouraged to use okdata-cli instead for accessing public registers.
- A virksomhetssertifikat to authenticate with Maskinporten. Can be acquired from Buypass or Commfides.
- A Maskinporten admin client issued by Digdir: https://docs.digdir.no/maskinporten_sjolvbetjening_api.html#tilgang-administrasjon-av-api
The Maskinporten CLI is built using Gradle:
./gradlew buildBefore using the Maskinporten CLI, you need to configure it using environment variables, as shown below:
Example configuration:
# Run application
export MASKINPORTEN_ENV=dev # 'prod' or 'dev'. Optional, defaults to dev environment ('ver2' for Maskinporten)
export MASKINPORTEN_ADMIN_CLIENT_ID=someclient # Admin client ID received from Maskinporten
export MASKINPORTEN_CONSUMER_ORG=123456789 # Your organization number in Enhetsregisteret
export MASKINPORTEN_KEYSTORE_PATH=/path/to/my-cert.p12 # Path to the keystore containing your 'virksomhetssertifikat'
export MASKINPORTEN_KEYSTORE_PASSWORD=my_keystore_password # Password for your 'virksomhetssertifikat' keystore
export MASKINPORTEN_KEY_ALIAS=my_key_alias # Alias of key in keystore
export MASKINPORTEN_KEY_PASSWORD=my_key_password # Password for your 'virksomhetssertifikat'You can also use command line arguments to set or override these values. The command line arguments use similar names but without the maskinporten prefix, e.g. --keystore-password.
The key password may be the same as your keystore password. To find the key aliases in your keystore file, you can use the keytool command:
keytool -v -list -keystore /path/to/my_cert.p12You can show documentation of the available commands and options using the --help (or -h) argument:
$ ./maskinporten -h
Usage: maskinporten [OPTIONS] COMMAND [ARGS]...
Options:
-h, --help Show this message and exit
Commands:
create Creates a client or keys in Maskinporten
list List client keys from Maskinporten
token Generate a token in MaskinportenAn example of creating a client and key:
# Commands:
./maskinporten create client --name myclient --description "Test client" --scopes scope1,scope2
./maskinporten create key --client-id my_client_id
./maskinporten list keys --client-id my_client_id
# Or, setup Intellij run configuration doing the sameGenerating a Maskinporten token for a client with its own client key (from create key above):
# You need the same config options as above, but replace the keystore,
# key alias and passwords environment variables with the values from
# the "create key" command.
./maskinporten token --scope scope1 --client-id my_client_id --key-id my_key_id- DigDir - how does Maskinporten work?
- Folkeregisteret - Get stated with Maskinporten
- Maskinporten guide for API consumers
- Maskinporten self-service API
- OAuth well-known endpoints for IdPorten and Maskinporten
- Admin-API for OIDC integrations, i.e. how establish and modify clients.