ServiceAccount

A non-human identity for programmatic API access.

Service accounts let you integrate CI/CD pipelines, scripts, and external tools with the Massdriver API. They authenticate using HTTP Basic auth with the format organization_slug:secret.

Permissions — Service accounts have no inherent permissions. Add them to groups to grant access, using the same role model as human users. A service account in the Admins group has the same access as a human admin.

Lifecycle:

Create the service account and immediately store the secret — it is only shown once.
Add the service account to one or more groups to grant access.
Optionally create scoped access tokens for finer-grained, time-limited credentials.
Delete the service account when it is no longer needed. This immediately revokes all access.

type ServiceAccount {
  id: ID!
  name: String!
  description: String
  createdAt: DateTime!
  updatedAt: DateTime!
}

Fields

`ServiceAccount.id` ● `ID!` non-null scalar {#id}

Unique identifier for this service account.

`ServiceAccount.name` ● `String!` non-null scalar {#name}

Human-readable name displayed in the UI, logs, and audit trail.

`ServiceAccount.description` ● `String` scalar {#description}

Optional text explaining what this service account is used for.

`ServiceAccount.createdAt` ● `DateTime!` non-null scalar {#created-at}

When this service account was created (UTC).

`ServiceAccount.updatedAt` ● `DateTime!` non-null scalar {#updated-at}

When this service account was last modified (UTC).

Member Of

ServiceAccountGroupPayload object ● ServiceAccountPayload object

Fields​

ServiceAccount.id ● ID! non-null scalar {#id}​

ServiceAccount.name ● String! non-null scalar {#name}​

ServiceAccount.description ● String scalar {#description}​

ServiceAccount.createdAt ● DateTime! non-null scalar {#created-at}​

ServiceAccount.updatedAt ● DateTime! non-null scalar {#updated-at}​

Member Of​