Employee
List Employee
https://api.entro.security/v1/employeesAuthorizations
AuthorizationstringRequiredQuery parameters
limitintegerOptionalThe maximum number of employees to return in the response. Can't be over 10000
skipintegerOptionalThe number of employees to skip before selecting data.
statusstringOptionalEmployee status
divisionstringOptionalEmployee division
organizationstringOptionalEmployee organization
employeeTypestring · enumOptionalEmployee type
azureEmployeeTypestringOptionalEmployee Azure type
Responses
/v1/employeesGET /v1/employees HTTP/1.1 Host: api.entro.security Authorization: YOUR_API_KEY Accept: */*
curl -L \ --url 'https://api.entro.security/v1/employees' \ --header 'Authorization: YOUR_API_KEY' \ --header 'Accept: */*'
const response = await fetch('https://api.entro.security/v1/employees', {
method: 'GET',
headers: {
"Authorization": "YOUR_API_KEY",
"Accept": "*/*"
},
});
const data = await response.json();import requests
response = requests.get(
"https://api.entro.security/v1/employees",
headers={"Authorization":"YOUR_API_KEY","Accept":"*/*"},
)
data = response.json(){
"employees": [
{
"fullName": "Adam Cheriki",
"status": "ACTIVE",
"division": "CTO",
"organization": "Entro",
"manager": null,
"phone": null,
"aliases": [
"adam@entro.security"
],
"ownerUid": "3213ea55-a05d-48b9-8330-ad684b0a6692",
"email": "adam.cheriki@entro.security",
"accounts": "[\"120798482511\",\"adam-testing-3\"]",
"title": "Co-founder and Chief Technology Officer",
"creationDate": "2023-06-07T07:51:20.000Z",
"lastLogin": null,
"idpSources": [
"OKTA"
],
"employeeType": "HUMAN",
"azureEmployeeType": "Member"
}
]
}Get NHIs by Employee
https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/nhisAuthorizations
AuthorizationstringRequiredPath parameters
EMPLOYEE_EMAILstringRequiredThe employee email or alias.
Query parameters
skipintegerOptionalThe number of NHIs to skip before selecting data.
limitintegerOptionalThe maximum number of NHIs to return in the response. Can't be over 100
accountstringOptionalFilter for NHIs from specified account id
statusstringOptionalFilter for NHIs with specified status
identityTypestringOptionalFilter for NHIs with specified identity type
Responses
/v1/employee/{EMPLOYEE_EMAIL}/nhisGET /v1/employee/{EMPLOYEE_EMAIL}/nhis HTTP/1.1
Host: api.entro.security
Authorization: YOUR_API_KEY
Accept: */*curl -L \
--url 'https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/nhis' \
--header 'Authorization: YOUR_API_KEY' \
--header 'Accept: */*'const response = await fetch('https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/nhis', {
method: 'GET',
headers: {
"Authorization": "YOUR_API_KEY",
"Accept": "*/*"
},
});
const data = await response.json();import requests
response = requests.get(
"https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/nhis",
headers={"Authorization":"YOUR_API_KEY","Accept":"*/*"},
)
data = response.json(){
"employeeEmail": "employee@acme.com",
"employeeAliases": [
"employee@acme.co.uk"
],
"employeeName": "Employee McEmployee",
"isFormerEmployee": true,
"nhis": [
{
"tokenId": "ABC123DEF456",
"accountId": "github account id",
"status": "Active",
"accessedDate": "2024-01-01T16:12:42Z",
"rotationDate": "2023-12-01T16:12:42Z",
"identity": "DevUser",
"identityType": "AWS Role"
}
]
}Get Exposed Secrets by Employee
https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/exposedSecretsAuthorizations
AuthorizationstringRequiredPath parameters
EMPLOYEE_EMAILstringRequiredThe employee email or alias.
Query parameters
skipintegerOptionalThe number of Exposed Secrets to skip before selecting data.
limitintegerOptionalThe maximum number of Exposed Secrets to return in the response. Can't be over 100
accountstringOptionalFilter for Exposed Secrets from specified account id
statusstring · enumOptionalFilter for Exposed Secrets with specified status
severitystring · enumOptionalFilter for Exposed Secrets with specified risk severity
exposedAtstring · enumOptionalFilter for Exposed Secrets with specified exposed at location.
Responses
/v1/employee/{EMPLOYEE_EMAIL}/exposedSecretsGET /v1/employee/{EMPLOYEE_EMAIL}/exposedSecrets HTTP/1.1
Host: api.entro.security
Authorization: YOUR_API_KEY
Accept: */*curl -L \
--url 'https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/exposedSecrets' \
--header 'Authorization: YOUR_API_KEY' \
--header 'Accept: */*'const response = await fetch('https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/exposedSecrets', {
method: 'GET',
headers: {
"Authorization": "YOUR_API_KEY",
"Accept": "*/*"
},
});
const data = await response.json();import requests
response = requests.get(
"https://api.entro.security/v1/employee/{EMPLOYEE_EMAIL}/exposedSecrets",
headers={"Authorization":"YOUR_API_KEY","Accept":"*/*"},
)
data = response.json(){
"employeeEmail": "employee@acme.com",
"employeeAliases": [
"employee@acme.co.uk"
],
"employeeName": "Employee McEmployee",
"isFormerEmployee": true,
"exposedSecrets": [
{
"exposedType": "GITHUB_TOKEN",
"exposedAt": "GITHUB_PULL_REQUEST",
"accountId": "github account id",
"status": "ENABLED",
"severity": "LOW",
"exposurePath": "config/app.yml",
"secretSnippet": "Password=1"
}
]
}