Tines

Aqua Security is the largest pure-play cloud-native security company, allowing customers to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure, and secure running workloads wherever they are deployed.

To create an Aqua credential, you will need your Aqua: 

<code>userid</code> - Ensure that your <code>userid</code> has sufficient privileges to access the relevant API endpoints

- <code>userid</code> - Ensure that your <code>userid</code> has sufficient privileges to access the relevant API endpoints
- <code>password</code>

Create an Aqua resource and credentials in Tines

Navigate to the team that will be using the API and click "Resource"

- Name: "aqua_userid"
- Description: Optional
- Builder: Your userid

- Access: What other teams can also use the resource

1. Login to your Tines tenant
2. Navigate to the team that will be using the API and click "Resource"
3. Click "+ New Resource"
4. Input the values for the Aqua resource
 - Name: "aqua_userid"
 - Description: Optional
 - Builder: Your userid
5. Optional
 - Access: What other teams can also use the resource
6. Click "Save resource"

- One Text type: "aqua_password"
- One HTTP request type: "aqua_api"

Navigate to the team that will be using the API and click "Credentials"

Click "+ New Credential" and select "Text"

1. Name: "aqua_password"
2. Description: Optional
3. Value: Your password

1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains.
2. Access: What other teams can also use the API

1. Navigate to the team that will be using the API and click "Credentials"
2. Click "+ New Credential" and select "Text"
3. Input the values for the Aqua credential
 1. Name: "aqua_password"
 2. Description: Optional
 3. Value: Your password
4. Optional
 1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains.
 2. Access: What other teams can also use the API
5. Click "Save"

Click "+ New Credential" and select "HTTP Request"

1. Name: "aqua_api"
2. Description: Optional
3. URL: The URL for your <a href="https://support.aquasec.com/support/solutions/articles/16000127855-how-to-authenticate-to-the-enterprise-api-in-the-cspm-platform" target="_blank" rel="nofollow noopener noreferrer">region</a>, e.g. <code>https://eu-1.api.cloudsploit.com/v2/signin</code>
4. Content Type: JSON
5. Method: post
6. Payload: Copy the below object and paste it into the "Plain code" section: ​ 
 { "email": "&lt;&lt;RESOURCE.aqua_userid&gt;&gt;", "password": "&lt;&lt;CREDENTIAL.aqua_password&gt;&gt;" }
 
7. Click "Run options", navigate to the <code>token</code> key and double-click on the key
8. Location of token from response: Paste the path to the token in the value pill, i.e. <code>&lt;&lt;aqua_api.body.data.token&gt;&gt;</code>

1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains
2. Access: What other teams can also use the API

1. Click "+ New Credential" and select "HTTP Request"
2. Input the values for the Aqua credential
 1. Name: "aqua_api"
 2. Description: Optional
 3. URL: The URL for your <a href="https://support.aquasec.com/support/solutions/articles/16000127855-how-to-authenticate-to-the-enterprise-api-in-the-cspm-platform" target="_blank" rel="nofollow noopener noreferrer">region</a>, e.g. <code>https://eu-1.api.cloudsploit.com/v2/signin</code>
 4. Content Type: JSON
 5. Method: post
 6. Payload: Copy the below object and paste it into the "Plain code" section: ​ 
 { "email": "&lt;&lt;RESOURCE.aqua_userid&gt;&gt;", "password": "&lt;&lt;CREDENTIAL.aqua_password&gt;&gt;" }
 
 7. Click "Run options", navigate to the <code>token</code> key and double-click on the key
 8. Location of token from response: Paste the path to the token in the value pill, i.e. <code>&lt;&lt;aqua_api.body.data.token&gt;&gt;</code>
3. Optional
 1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains
 2. Access: What other teams can also use the API
4. Click "Save"

Your credential should look like the following:

More on creating credentials in Tines <a href="https://explained.tines.com/en/articles/6877578-what-are-credentials-in-tines">here</a>.

You can also find a selection of Aqua stories in the <a href="https://www.tines.com/library?view=all&amp;s=aqua" target="_blank" rel="nofollow noopener noreferrer">story library</a>.