Authorities or Scopes Required for Time Series

When you create a new OAuth2 client, the client is assigned default scopes and authorities. You must add additional authorities or scopes that are specific to each service. To enable applications to access the Time Series service, your JSON Web Token (JWT) must contain the following Predix zone token scopes:
  • For ingestion requests:
    • timeseries.zones.<Predix-Zone-Id>.user
    • timeseries.zones.<Predix-Zone-Id>.ingest
  • For query requests:
    • timeseries.zones.<Predix-Zone-Id>.user
    • timeseries.zones.<Predix-Zone-Id>.query
  • For delete requests:
    Note: The hard delete feature is currently available only in select environments. Contact Support to determine if this feature is enabled in your environment.
    • timeseries.zones.<Predix-Zone-Id>.user
    • timeseries.zones.<Predix-Zone-Id>.delete

The OAuth2 client uses an authorization grant to request an access token. OAuth2 defines four grant types. Based on the type of authorization grant that you use, you must update your OAuth2 client to generate the required JWT. For more information on how the OAuth2 client is created, see t_creating_an_oauth_client.html#task_79a81b74-552e-4f74-abfc-bd37e6adac87.