1. Overview
These services verify if a specific user or user group can access a type or an attribute, and if the user or user group has global or catalog-specific permissions.
3. Resources
3.1. Permissions
Get permissions for principal
3.1.1. Get Attributes Permissions
GET /v1/permissions/principals/{principalUid}/attributes
Description
Endpoint to retrieve attributes permissions for a principal. This will look in the principal hierarchy
Parameters
| Type | Name | Description | Schema | Default |
|---|---|---|---|---|
Path |
principalUid |
Principal identifier |
string |
|
Query |
attributes |
Attribute names separated by comma. Attribute name format : ItemTypeName.AttributeName (e.g. User.name) |
string |
|
Query |
fields |
Response configuration |
string |
|
Query |
permissionNames |
Permission names separated by comma |
string |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
OK |
|
400 |
Bad Request e.g. incorrect parameter value |
No Content |
401 |
Unauthorized |
No Content |
403 |
Forbidden. Have no access to this endpoint or no access to principal’s permissions |
No Content |
3.1.2. Get Catalog Permissions
GET /v1/permissions/principals/{principalUid}/catalogs
Description
Endpoint to retrieve catalog permissions for a principal. This will look in the principal hierarchy.
Parameters
| Type | Name | Description | Schema | Default |
|---|---|---|---|---|
Path |
principalUid |
Principal identifier |
string |
|
Query |
catalogId |
Catalog identifiers separated by comma |
string |
|
Query |
catalogVersion |
Catalog version identifiers separated by comma |
string |
|
Query |
fields |
Response configuration |
string |
|
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
OK |
|
400 |
Bad Request e.g. incorrect parameter value |
No Content |
401 |
Unauthorized |
No Content |
403 |
Forbidden. Have no access to this endpoint or no access to principal’s permissions |
No Content |
3.1.3. Get Global Permissions
GET /v1/permissions/principals/{principalUid}/global
Description
Endpoint to retrieve global permissions for a principal. This will look in the principal hierarchy
Parameters
| Type | Name | Description | Schema | Default |
|---|---|---|---|---|
Path |
principalUid |
Principal identifier |
string |
|
Query |
fields |
Response configuration |
string |
|
Query |
permissionNames |
Permission names separated by comma |
string |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
OK |
|
400 |
Bad Request e.g. incorrect parameter value |
No Content |
401 |
Unauthorized |
No Content |
403 |
Forbidden. Have no access to this endpoint or no access to principal’s permissions |
No Content |
3.1.4. Get Types Permissions
GET /v1/permissions/principals/{principalUid}/types
Description
Endpoint to retrieve types permissions for a principal. This will look in the principal hierarchy
Parameters
| Type | Name | Description | Schema | Default |
|---|---|---|---|---|
Path |
principalUid |
Principal identifier |
string |
|
Query |
fields |
Response configuration |
string |
|
Query |
permissionNames |
Permission names separated by comma |
string |
|
Query |
types |
Type names separated by comma |
string |
Responses
| HTTP Code | Description | Schema |
|---|---|---|
200 |
OK |
|
400 |
Bad Request e.g. incorrect parameter value |
No Content |
401 |
Unauthorized |
No Content |
403 |
Forbidden. Have no access to this endpoint or no access to principal’s permissions |
No Content |
4. Definitions
4.1. CatalogPermissions
Permissions for catalog
| Name | Description | Schema |
|---|---|---|
catalogId |
Catalog identifier |
string |
catalogVersion |
Catalog version identifier |
string |
permissions |
Permissions map |
< string, string > map |
syncPermissions |
Sync Permissions list |
< SyncPermissions > array |
4.2. CatalogPermissionsList
Catalog permissions list
| Name | Schema |
|---|---|
permissionsList |
< CatalogPermissions > array |