导入跨站点授权 meta¶

POST /api/v1/workspace_data/cross_site_grant/meta/import

概述¶

Body 请求参数¶

参数名	类型	必选	说明
meta	json		授权方生成的完整跨站点授权 meta JSON 允许为空: False

参数补充说明¶

被授权方导入授权方生成的跨站点授权 meta。导入后由被授权方主动访问授权方站点完成认证和同步，授权方不主动访问被授权方。

导入成功后，本地会生成 mirror 授权记录；该记录进入 active 后才能被工作空间选择器、授权校验和 DQL 查询使用。
重复导入同一个有效 meta 会返回已有授权或重复授权错误，具体以接口响应为准。
后续业务修改和撤销仍使用 /wksp_share/<uuid>/modify 与 /wksp_share/delete。

请求例子¶

curl 'https://openapi.guance.com/api/v1/workspace_data/cross_site_grant/meta/import' \
-H 'Content-Type: application/json' \
-H 'DF-API-KEY: <DF-API-KEY>' \
--data-raw '{"meta":{"version":"2026-05-27","metaUUID":"meta_1","sourceWorkspace":{"workspaceUUID":"wksp_source","workspaceName":"授权方工作空间"},"targetWorkspaceUUID":"wksp_target","sourceSite":{"regionCode":"testing","publicKeys":[{"kid":"kid_1","publicKey":"-----BEGIN PUBLIC KEY-----..."}]},"grantScope":{"type":["logging"],"indexes":["*"],"conditions":{}},"auth":{"tempAuthCode":"temp_code_xxx","tempAuthCodeExpireAt":1770000000},"security":{"signAlg":"RS256","kid":"kid_1"},"signature":"<JWS>"}}' \
--compressed

响应¶

{
    "code": 200,
    "content": {
        "grantUUID": "grant_mirror_1",
        "status": "active",
        "recordRole": "mirror",
        "duplicated": false,
        "sourceWorkspaceUUID": "wksp_source",
        "targetWorkspaceUUID": "wksp_target",
        "sourceWorkspaceName": "授权方工作空间",
        "targetWorkspaceName": "被授权方工作空间",
        "regionCode": "testing",
        "toRegionCode": "us1",
        "siteRelationType": "same_org_cross_site"
    },
    "errorCode": "",
    "message": "",
    "success": true,
    "traceId": "TRACE-EXAMPLE"
}