API Authentication

There are two access options available to establish communication with the Nexus API solution.

Below see a brief explanation on each option. For detailed setup instructions, refer to the Start developing - API Authentication section.

API Client

An API client is created in the Nexus Identity portal under the API Clients tab. It is comprised of a client ID and a client secret. Multiple client secrets can be created per API client, and both the API Client and/or its client secrets can be deleted at any time in order to remove access.

This option allows access to all the different Nexus APIs available.

Service Account

A Service Account is a special type of account created in the Nexus Identity portal under the Accounts tab, designed for automated or programmatic access to Nexus APIs. Each Service Account can have multiple API keys, each with its own configurable expiration date. API keys can be revoked at any time to immediately remove access if needed.

Service Accounts support granular access control through assignable roles and permissions, just like User Accounts. This enables you to precisely restrict which Nexus APIs a Service Account can access, such as limiting it to read-only operations or granting access to specific API endpoints. Service Accounts are ideal for backend services, integrations, and automation scenarios where secure, auditable, and controlled API access is required.