GET List Identity Sources

List your connected identity sources (e.g. 1Password vaults), optionally filtered by provider or status

GEThttps://api.anakin.io/v1/wire/identity-sources

Returns the authenticated user's connected identity sources. An identity source is an external credential provider (e.g. a 1Password vault) that Wire reads secrets from when running authenticated actions.

The encrypted access token is never returned. Each source carries a status of pending, active, revoked, or expired.

To see which identities source their credentials from a connection, use GET /v1/wire/identity-sources/{id}/identities.


Query Parameters

Both parameters are optional and may be combined.

ParameterTypeDescription
providerstringFilter by provider name, e.g. 1password
statusstringFilter by status — one of pending, active, revoked, expired

Response

200 OK
{
  "status": "ok",
  "identity_sources": [
    {
      "id": "f1e2d3c4-0000-0000-0000-000000000000",
      "user_id": "8a7b6c5d-0000-0000-0000-000000000000",
      "provider": "1password",
      "display_name": "Engineering vault",
      "config": {},
      "scope_metadata": { "vaults": [ { "id": "abcd1234", "name": "Engineering" } ] },
      "status": "active",
      "last_verified_at": "2026-06-08T10:00:00Z",
      "created_at": "2026-06-01T09:00:00Z",
      "updated_at": "2026-06-08T10:00:00Z"
    }
  ]
}

If you have no connected sources (or none match the filters), identity_sources is an empty array.

FieldTypeDescription
identity_sources[].idstring (UUID)Identity source ID
identity_sources[].user_idstring (UUID)Owner of the connection
identity_sources[].providerstringProvider name, e.g. 1password
identity_sources[].display_namestringUser-given label for the connection
identity_sources[].configobjectProvider-specific configuration (defaults to {})
identity_sources[].scope_metadataobjectProvider-specific scope detail (e.g. the vaults this source can read)
identity_sources[].statusstringOne of pending, active, revoked, expired
identity_sources[].last_verified_atstring | nullRFC3339 UTC — when the connection was last verified
identity_sources[].credentials_expires_atstring | nullRFC3339 UTC — when the stored token expires, or null if it does not
identity_sources[].created_atstringRFC3339 UTC — when the source was connected
identity_sources[].updated_atstringRFC3339 UTC — last modification

The encrypted access token is never returned in the response.

Optional fields (last_verified_at, credentials_expires_at, scope_metadata) are omitted when not set, rather than returned as null.


Code Examples

curl "https://api.anakin.io/v1/wire/identity-sources?provider=1password&status=active" \
  -H "X-API-Key: your_api_key"

Rate limit

60 requests per minute per user.