---
title: Use the Authorization Server API
slug: '158'
canonical_url: https://docs.coveo.com/en/158/
collection: manage-an-organization
source_format: adoc
---
# Use the Authorization Server API
The Authorization Server API exposes services which let you create and manage the SAML [security identity provider](https://docs.coveo.com/en/242/), [groups](https://docs.coveo.com/en/202/), [users](https://docs.coveo.com/en/250/), and API keys in a [Coveo organization](https://docs.coveo.com/en/185/).
You can also use it to retrieve the list of [privileges](https://docs.coveo.com/en/228/) of a valid access token.

In the [Coveo Administration Console](https://docs.coveo.com/en/183/), the [**Groups**](https://platform.cloud.coveo.com/admin/#/orgid/organization/groups/) ([platform-ca](https://platform-ca.cloud.coveo.com/admin/#/orgid/organization/groups/) | [platform-eu](https://platform-eu.cloud.coveo.com/admin/#/orgid/organization/groups/) | [platform-au](https://platform-au.cloud.coveo.com/admin/#/orgid/organization/groups/)), [**Members**](https://platform.cloud.coveo.com/admin/#/orgid/organization/members/) ([platform-ca](https://platform-ca.cloud.coveo.com/admin/#/orgid/organization/members/) | [platform-eu](https://platform-eu.cloud.coveo.com/admin/#/orgid/organization/members/) | [platform-au](https://platform-au.cloud.coveo.com/admin/#/orgid/organization/members/)), and [**API Keys**](https://platform.cloud.coveo.com/admin/#/orgid/organization/api-access/) ([platform-ca](https://platform-ca.cloud.coveo.com/admin/#/orgid/organization/api-access/) | [platform-eu](https://platform-eu.cloud.coveo.com/admin/#/orgid/organization/api-access/) | [platform-au](https://platform-au.cloud.coveo.com/admin/#/orgid/organization/api-access/)) pages use the Authorization Server API extensively.
It's also possible to configure a single sign-on (SSO) identity provider through the [**Settings**](https://platform.cloud.coveo.com/admin/#/orgid/settings/license) ([platform-ca](https://platform-ca.cloud.coveo.com/admin/#/orgid/settings/license) | [platform-eu](https://platform-eu.cloud.coveo.com/admin/#/orgid/settings/license) | [platform-au](https://platform-au.cloud.coveo.com/admin/#/orgid/settings/license)) page.

> **Note**
>
> All REST API string fields are case-sensitive unless otherwise specified.
> For example, [search queries aren't case-sensitive](https://docs.coveo.com/en/3074/).
> 
> To keep behavior consistent across the [Coveo Platform](https://docs.coveo.com/en/186/), the same value passed to different REST APIs must always be passed using the same case.
> For example, if the [unique product identifier](https://docs.coveo.com/en/n73f0502#define-a-unique-product-identifier), such as `ec_product_id`, is passed to the Commerce API in lowercase, then it should also be passed to the Usage Analytics Write API in lowercase.

The articles in this section cover various Authorization Server API use cases:

* [Get the privileges you can assign to an API key](https://docs.coveo.com/en/60/)

* [Manage API keys programmatically](https://docs.coveo.com/en/82/)

* [Get the `apiKeyId`](https://docs.coveo.com/en/38/)

* [Delete an API key](https://docs.coveo.com/en/80/)

* [Get the privileges of an access token](https://docs.coveo.com/en/109/)

* [Assign multiple organizations to a SAML authentication provider](https://docs.coveo.com/en/154/)

Interactive generated reference documentation is also available through the [Swagger UI](https://platform.cloud.coveo.com/docs?urls.primaryName=AuthorizationServer).