Autonomous Identity 2021.3.1

Config

The following are Autonomous Identity configuration endpoints:

PUT RevokeCertifyAccessConf

Sets the schema definition for the matching database table (revoke_certify_access_request), which is stored in Consul. This endpoint allows the configuration to be changed on the fly.

Endpoint

/config/RevokeCertifyAccessConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "RevokeCertifyAccess",
  "modelDefinition": {
    "fields": {
      "is_processed": "boolean",
      "entitlement": "text",
      "user": "text",
      "manager": "text",
      "manager_decision": "int",
      "manager_date_created": "timestamp",
      "role_owner": "text",
      "role_owner_decision": "int",
      "role_owner_date_created": "timestamp",
      "date_created": "timestamp"
   },
   "key": [
      "is_processed"
   ],
   "table_name": "revoke_certify_access_request"
  }
}

Example Request

curl --location --request PUT '/config/RevokeCertifyAccessConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name"	: "RevokeCertifyAccess",
  "modelDefinition": {
    "fields": {
      "is_processed": "boolean",
      "entitlement": "text",
      "user": "text",
      "manager": "text",
      "manager_decision": "int",
      "manager_date_created": "timestamp",
      "role_owner": "text",
      "role_owner_decision": "int",
      "role_owner_date_created": "timestamp",
      "date_created": "timestamp"
   },
   "key": [
      "is_processed"
   ],
   "table_name": "revoke_certify_access_request"
  }
}'
PUT CompanyViewOverviewConf

Sets the schema definition for the related database table {{company_view_overview}}.

Endpoint

/config/CompanyViewOverviewConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "CompanyViewOverview",
  "modelDefinition": {
    "fields": {
      "key": "text",
      "total_employees": "int",
      "employees_wo_manager": "int",
      "employees_w_manager": "int",
      "entitlements_without_roleowners": "int",
      "entitlements_with_roleowners": "int",
      "total_entitlements": "int",
      "entitlements_covered_by_model": "int",
      "entitlements_not_covered": "int",
      "entitlements_w_no_users": "int",
      "entitlements_w_one_user": "int",
      "entitlements_w_zero_to_five_users": "int",
      "entitlements_w_five_to_ten_users": "int",
      "entitlements_w_ten_to_hundred_users": "int",
      "entitlements_w_hundred_to_onek_user": "int",
      "entitlements_w_onek_to_tenk_users": "int",
      "entitlements_w_tenk_users": "int",
      "entitlements_w_hundredk_users": "int"
    },
    "key": [
      "key"
    ],
    "table_name": "company_view_overview"
  }
}

Example Request

curl --location --request PUT '/config/CompanyViewOverviewConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name": "CompanyViewOverview",
  "modelDefinition": {
    "fields": {
      "key": "text",
      "total_employees": "int",
      "employees_wo_manager": "int",
      "employees_w_manager": "int",
      "entitlements_without_roleowners": "int",
      "entitlements_with_roleowners": "int",
      "total_entitlements": "int",
      "entitlements_covered_by_model": "int",
      "entitlements_not_covered": "int",
      "entitlements_w_no_users": "int",
      "entitlements_w_one_user": "int",
      "entitlements_w_zero_to_five_users": "int",
      "entitlements_w_five_to_ten_users": "int",
      "entitlements_w_ten_to_hundred_users": "int",
      "entitlements_w_hundred_to_onek_user": "int",
      "entitlements_w_onek_to_tenk_users": "int",
      "entitlements_w_tenk_users": "int",
      "entitlements_w_hundredk_users": "int"
    },
    "key": [
      "key"
    ],
    "table_name": "company_view_overview"
  }
}'
PUT CompanyViewEmployeeTypeConf

>Sets the schema definition for the related database table {{company_view_employeetype}}.

Endpoint

/config/CompanyViewEmployeeTypeConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "CompanyViewEmployeeType",
  "modelDefinition": {
    "fields": {
      "type": "text",
      "high": "int",
      "medium": "int",
      "low": "int",
      "null_conf": "int",
      "total": "int"
    },
    "key": [
      "type"
    ],
    "table_name": "company_view_employee_type"
  }
}

Example Request

curl --location --request PUT '/config/CompanyViewEmployeeTypeConf' \
--header 'Content-Type: application/json' \
--data-raw '{
  "name": "CompanyViewEmployeeType",
  "modelDefinition": {
    "fields": {
      "type": "text",
      "high": "int",
      "medium": "int",
      "low": "int",
      "null_conf": "int",
      "total": "int"
    },
    "key": [
      "type"
    ],
    "table_name": "company_view_employee_type"
  }
}'
PUT EntitlementAverageConfScoreConf

Sets the schema definition for the related database table {{entitlement_average_conf_score}}.

Endpoint

/config/EntitlementAverageConfScoreConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "EntitlementAverageConfScore",
	"modelDefinition": {
	   "fields": {
	      "org": "text",
	      "avg_score": "float",
	      "entitlement": "text"
	   },
	   "key": [
	      "org"
	   ],
	   "table_name": "entitlement_average_conf_score"
	}
}

Example Request

curl --location --request PUT '/config/EntitlementAverageConfScoreConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name": "EntitlementAverageConfScore",
	"modelDefinition": {
	   "fields": {
	      "org": "text",
	      "avg_score": "float",
	      "entitlement": "text"
	   },
	   "key": [
	      "org"
	   ],
	   "table_name": "entitlement_average_conf_score"
	}
}'
PUT EntitlementUserScoresConf

Sets the schema definition for the related database table {{entitlement_user_scores}}.

Endpoint

/config/EntitlementUserScoresConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "name": "EntitlementUserScores",
    "modelDefinition": {
      "fields": {
        "entitlement": "text",
        "entitlement_name": "text",
        "user": "text",
        "user_name": "text",
        "score": "float",
        "justification": {
          "type": "list",
          "typeDef": "<text>"
        },
        "app_id": "text",
        "app_name": "text"
      },
      "key": ["entitlement"],
      "table_name": "entitlement_user_scores"
    }
}

Example Request

curl --location --request PUT '/config/EntitlementUserScoresConf' \
--header 'Content-Type: application/json' \
--data-raw '{
    "name": "EntitlementUserScores",
    "modelDefinition": {
      "fields": {
        "entitlement": "text",
        "entitlement_name": "text",
        "user": "text",
        "user_name": "text",
        "score": "float",
        "justification": {
          "type": "list",
          "typeDef": "<text>"
        },
        "app_id": "text",
        "app_name": "text"
      },
      "key": ["entitlement"],
      "table_name": "entitlement_user_scores"
    }
  }'
PUT GraphByRoleConf

Sets the schema definition for the related database table {{graph_by_role}}.

Endpoint

/config/GraphByRoleConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "name": "GraphByRole",
    "modelDefinition": {
      "fields": {
        "role": "text",
        "entitlement": "text",
        "entitlement_name": "text",
        "app_id": "text",
        "app_name": "text",
        "high_risk": "text"
      },
      "key": ["role"],
      "table_name": "graph_by_role"
    }
}

Example Request

curl --location --request PUT '/config/GraphByRoleConf' \
--header 'Content-Type: application/json' \
--data-raw '{
    "name": "GraphByRole",
    "modelDefinition": {
      "fields": {
        "role": "text",
        "entitlement": "text",
        "entitlement_name": "text",
        "app_id": "text",
        "app_name": "text",
        "high_risk": "text"
      },
      "key": ["role"],
      "table_name": "graph_by_role"
    }
  }'
PUT GraphConf

Sets the schema definition for the related database table {{graph}}.

Endpoint

/config/GraphConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "name": "Graph",
    "modelDefinition": {
      "fields": {
        "manager": "text",
        "user": "text",
        "manager_name": "text",
        "user_name": "text"
      },
      "key": ["manager"],
      "table_name": "graph_by_manager"
    }
  }

Example Request

curl --location --request PUT '/config/GraphConf' \
--header 'Content-Type: application/json' \
--data-raw '{
    "name": "Graph",
    "modelDefinition": {
      "fields": {
        "manager": "text",
        "user": "text",
        "manager_name": "text",
        "user_name": "text"
      },
      "key": ["manager"],
      "table_name": "graph_by_manager"
    }
  }'
PUT ManagerConf

Set manager data.

Endpoint

/config/ManagerConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "Manager",
  "modelDefinition": {
    "fields": {
      "org": "text",
      "manager": "int"
    },
    "key": [
      "manager"
   ],
    "table_name": "managers_by_org"
  }
}

Example Request

curl --location --request PUT '/config/ManagerConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name": "Manager",
  "modelDefinition": {
    "fields": {
      "org": "text",
      "manager": "int"
    },
    "key": [
      "manager"
    ],
    "table_name": "managers_by_org"
  }
}'
PUT RoleOwnerConf

Sets the schema definition for the related database table {{role_owner}}.

Endpoint

/config/RoleOwnerConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "name": "RoleOwner",
    "modelDefinition": {
      "fields": {
        "role": "text",
        "role_name": "text",
        "entitlement": "text",
        "entitlement_name": "text",
        "user": "text",
        "user_name": "text",
        "score": "float",
        "justification": {
          "type": "list",
          "typeDef": "<text>"
        },
        "app_id": "text",
        "app_name": "text",
        "high_risk": "text"
      },
      "key": ["role"],
      "table_name": "usr_scores_by_role"
    }
}

Example Request

curl --location --request PUT '/config/RoleOwnerConf' \
--header 'Content-Type: application/json' \
--data-raw '{
    "name": "RoleOwner",
    "modelDefinition": {
      "fields": {
        "role": "text",
        "role_name": "text",
        "entitlement": "text",
        "entitlement_name": "text",
        "user": "text",
        "user_name": "text",
        "score": "float",
        "justification": {
          "type": "list",
          "typeDef": "<text>"
        },
        "app_id": "text",
        "app_name": "text",
        "high_risk": "text"
      },
      "key": ["role"],
      "table_name": "usr_scores_by_role"
    }
  }'
PUT RoleOwnerWithAppConf

Set role owner with application.

Endpoint

/config/RoleOwnerWithAppConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "RoleOwnerWithApp",
  "modelDefinition": {
    "fields": {
      "role": "text",
      "role_name": "text",
      "entitlement": "text",
      "entitlement_name": "text",
      "user": "text",
      "user_name": "text",
      "score": "float",
      "justification": {
         "type": "list",
         "typeDef": "<text>"
      },
      "app_id": "text",
      "app_name": "text"
    },
    "key": [
      "role"
    ],
    "table_name": "usr_scores_by_role_with_app"
  }
}

Example Request

curl --location --request PUT '/config/RoleOwnerWithAppConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name": "RoleOwnerWithApp",
  "modelDefinition": {
    "fields": {
      "role": "text",
      "role_name": "text",
      "entitlement": "text",
      "entitlement_name": "text",
      "user": "text",
      "user_name": "text",
      "score": "float",
      "justification": {
         "type": "list",
         "typeDef": "<text>"
      },
      "app_id": "text",
      "app_name": "text"
    },
    "key": [
      "role"
    ],
    "table_name": "usr_scores_by_role_with_app"
  }
}'
PUT UserConf

Sets the schema definition for the related database table {{user}}.

Endpoint

/config/UserConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "name": "User",
    "modelDefinition": {
      "fields": {
        "user": "text",
        "manager": "text",
        "department": "text",
        "empType": "text",
        "udfChief": "text",
        "udfCostCenter": "text",
        "jobCode": "text",
        "buildingCode": "text",
        "lob": "text",
        "lobSubgroup": "text",
        "userName": "text",
        "managerName": "text",
        "departmentDescription": "text",
        "jobDescription": "text"
      },
      "key": ["user"],
      "table_name": "user"
    }
}

Example Request

curl --location --request PUT '/config/UserConf' \
--header 'Content-Type: application/json' \
--data-raw '{
    "name": "User",
    "modelDefinition": {
      "fields": {
        "user": "text",
        "manager": "text",
        "department": "text",
        "empType": "text",
        "udfChief": "text",
        "udfCostCenter": "text",
        "jobCode": "text",
        "buildingCode": "text",
        "lob": "text",
        "lobSubgroup": "text",
        "userName": "text",
        "managerName": "text",
        "departmentDescription": "text",
        "jobDescription": "text"
      },
      "key": ["user"],
      "table_name": "user"
    }
}'
PUT UserScoreConf

Sets the schema definition for the related database table {{user_score}}.

Endpoint

/config/UserScoreConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "name": "UserScore",
    "modelDefinition": {
      "fields": {
        "manager": "text",
        "user": "text",
        "manager_name": "text",
        "user_name": "text",
        "score": "float",
        "entitlement": "text",
        "entitlement_name": "text",
        "justification": {
          "type": "list",
          "typeDef": "<text>"
        },
        "app_id": "text",
        "app_name": "text",
        "high_risk": "text"
      },
      "key": ["manager"],
      "table_name": "usr_scores_by_manager"
    }
}

Example Request

curl --location --request PUT '/config/UserScoreConf' \
--header 'Content-Type: application/json' \
--data-raw '{
    "name": "UserScore",
    "modelDefinition": {
      "fields": {
        "manager": "text",
        "user": "text",
        "manager_name": "text",
        "user_name": "text",
        "score": "float",
        "entitlement": "text",
        "entitlement_name": "text",
        "justification": {
          "type": "list",
          "typeDef": "<text>"
        },
        "app_id": "text",
        "app_name": "text",
        "high_risk": "text"
      },
      "key": ["manager"],
      "table_name": "usr_scores_by_manager"
    }
  }'
PUT FilteringOptionsModelConf

Sets the schema definition for the related database table {{filtering_options_model}}.

Endpoint

/config/FilteringOptionsModelConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "FilteringOptions",
	"modelDefinition": {
	    "fields":{
	        "type": "int",
	        "owner_id"    : "text",
	        "group" : "text",
	        "id" : "text",
	        "name"     : "text",
	        "user_ids": {
		         "type": "list",
		         "typeDef": "<text>"
		      }
	      },
	      "key": ["type"],
	      "table_name": "filtering_options"
	}
}

Example Request

curl --location --request PUT '/config/FilteringOptionsModelConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name": "FilteringOptions",
	"modelDefinition": {
	    "fields":{
	        "type": "int",
	        "owner_id"    : "text",
	        "group" : "text",
	        "id" : "text",
	        "name"     : "text",
	        "user_ids": {
		         "type": "list",
		         "typeDef": "<text>"
		      }
	      },
	      "key": ["type"],
	      "table_name": "filtering_options"
	}
}'
PUT CompanyViewMostCriticalEnttConf

Sets the schema definition for the related database table {{company_view_most_critical_entt}}.

Endpoint

/config/CompanyViewMostCriticalEnttConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"name": "CompanyViewMostCriticalEntt",
	"modelDefinition": {
	  "fields":{
	      "org": "text",
        "entt_id"    : "text",
        "entt_name" : "text",
	      "high" : "int",
	      "medium" : "int",
	      "seq" : "int",
        "low": "int",
        "total_employees" : "int",
	      "avg_conf_score": "float"
	  },
	  "key": ["org"],
	  "table_name": "company_view_most_critical_entt"
	}
}

Example Request

curl --location --request PUT '/config/CompanyViewMostCriticalEnttConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"name": "CompanyViewMostCriticalEntt",
	"modelDefinition": {
	   "fields":{
	      "org": "text",
	      "entt_id"    : "text",
	      "entt_name" : "text",
	      "high" : "int",
        "medium" : "int",
        "seq" : "int",
	      "low": "int",
	      "total_employees" : "int",
	      "avg_conf_score": "float"
     },
	   "key": ["org"],
	   "table_name": "company_view_most_critical_entt"
	}
}'
PUT FilteringOptionsConf

Set the filtering options.

Endpoint

/config/FilteringOptionsConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
      "filteringOptions": [
        {
            "type": "user",
            "groupName": "STATE",
            "title": "State"
        },
        {
            "type": "user",
            "groupName": "DEPARTMENT",
            "title": "Department"
        }
      ]
}

Example Request

curl --location --request PUT '/config/FilteringOptionsConf' \
--header 'Content-Type: application/json' \
--data-raw '{
      "filteringOptions": [
        {
            "type": "user",
            "groupName": "STATE",
            "title": "State"
        },
        {
            "type": "user",
            "groupName": "DEPARTMENT",
            "title": "Department"
        }
      ]
  }'
PUT OrgNameConf

Set the organization name.

Endpoint

/config/OrgNameConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"orgName": "abc"
}

Example Request

curl --location --request PUT '/config/OrgNameConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"orgName": "abc"
}'
PUT ConfidenceScorethresholdsConf

Set the confidence score thresholds.

Endpoint

/config/ConfidenceScorethresholdsConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
	"thresholds": {
	  "top": 1.01,
	  "high": 0.75,
	  "medium": 0.35,
	  "low": 0
	}
}

Example Request

curl --location --request PUT '/config/ConfidenceScoreThresholdsConf' \
--header 'Content-Type: application/json' \
--data-raw '{
	"thresholds": {
	  "top": 1.01,
	  "high": 0.75,
	  "medium": 0.35,
	  "low": 0
	}
}'
PUT UIHRData

Set the UI HR data.

Endpoint

/config/UIHRData

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
  "user": "User",
  "manager": "Manager",
  "emptype": " Employee Type",
  "buildingcode": "Building Code",
  "department": "Department Code",
  "departmentdescription": "Department Description",
  "jobcode": "Job code",
  "jobdescription": "Job Code Description",
  "lob": "Line Of Business",
  "lobsubgroup": "Line Of Business SubGroup",
  "managername": "Manager Name",
  "udfchief": "UDF Chief",
  "udfcostcenter": "UDF Cost Center",
  "username": "User Name"
}

Example Request

curl --location --request PUT '/config/UIHRData' \
--header 'Content-Type: application/json' \
--data-raw '{
  "user": "User",
  "manager": "Manager",
  "emptype": " Employee Type",
  "buildingcode": "Building Code",
  "department": "Department Code",
  "departmentdescription": "Department Description",
  "jobcode": "Job code",
  "jobdescription": "Job Code Description",
  "lob": "Line Of Business",
  "lobsubgroup": "Line Of Business SubGroup",
  "managername": "Manager Name",
  "udfchief": "UDF Chief",
  "udfcostcenter": "UDF Cost Center",
  "username": "User Name"
}'
PUT UIJustifications

Set the UI justifications.

Endpoint

/config/UIJustifications

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
  "USR_MANAGER_KEY": "Supervisor",
  "USR_DEPT_NO": "Department No",
  "USR_EMP_TYPE": "Employee Type",
  "USR_UDF_CHIEF": " UDF Chief",
  "USR_UDF_COST_CENTER": "UDF Cost Center",
  "USR_UDF_JOBCODE": "Job Code",
  "USR_UDF_BUILDINGCODE": "Building Code",
  "USR_UDF_LOB": "Line Of Business",
  "USR_UDF_LOBSUBGROUP": "Line of Business Subgroup"
}

Example Request

curl --location --request PUT '/config/UIJustifications' \
--header 'Content-Type: application/json' \
--data-raw '{
  "USR_MANAGER_KEY": "Supervisor",
  "USR_DEPT_NO": "Department No",
  "USR_EMP_TYPE": "Employee Type",
  "USR_UDF_CHIEF": " UDF Chief",
  "USR_UDF_COST_CENTER": "UDF Cost Center",
  "USR_UDF_JOBCODE": "Job Code",
  "USR_UDF_BUILDINGCODE": "Building Code",
  "USR_UDF_LOB": "Line Of Business",
  "USR_UDF_LOBSUBGROUP": "Line of Business Subgroup"
}'
PUT HighRiskConf

Set the high risk filter value.

Endpoint

/config/HighRiskConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
  "filterValue": "1"
}

Example Request

curl --location --request PUT '/config/HighRiskConf' \
--header 'Content-Type: application/json' \
--data-raw '{
  "filterValue": "1"
}'
PUT JustificationDelimiter

Set the justification delimiter to separate the different justifications in the string saved in Cassandra. For .csv files, the delimiter is a comma ( , ).

Endpoint

/config/JustificationDelimiter

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
    "justificationDelimeter": "_"
}

Example Request

curl --location --request PUT '/config/JustificationDelimeter' \
--header 'Content-Type: application/json' \
--data-raw '{
    "justificationDelimeter": "_"
  }'
PUT PermissionsConf

Set the permissions.

Endpoint

/config/PermissionsConf

Authorization

<Bearer Token JWT-value>

Headers

Content-Type      application/json

Body

{
  "actions": [
    "CERTIFYENTITLEMENTS_TO_USERS",
    "CERTIFYUSERS_TO_ENTITLEMENTS",
    "FILTERENTITLEMENTS",
    "REVOKECERTIFY_ACCESS",
    "SEARCHUSER",
    "SEARCHUSER_ENTITLEMENTS",
    "SEARCHSUPERVISOR_USER_ENTITLEMENTS",
    "SHOWASSIGNMENTS_STATS",
    "SHOWCOMPANY_PAGE",
    "SHOWCOMPANY_COVERAGE_DATA",
    "SHOWCOMPANY_ENTITLEMENTS_DATA",
    "SHOWCOMPANY_EMPLOYEE_PAGE",
    "SHOWCRITICAL_ENTITLEMENTS",
    "SHOWEMPLOYEE",
    "SHOWENTITLEMENT",
    "SHOWENTITLEMENT_AVG_GROUPS",
    "SHOWENTITLEMENT_AVG_GROUP_DETAILS",
    "SHOWENTITLEMENT_USERS",
    "SHOWFILTER_OPTIONS",
    "SHOWROLE_OWNER_PAGE",
    "SHOWROLE_OWNER_USER_DATA",
    "SHOWROLE_OWNER_ENT_DATA",
    "SHOWROLE_OWNER_AUTO_DATA",
    "SHOWSUPERVISOR_PAGE",
    "SHOWSUPERVISOR_DETAILS_PAGE",
    "SHOWSUPERVISOR_ENT_DATA",
    "SHOWSUPERVISOR_USER_DATA",
    "SHOWSUPERVISOR_ENTITLEMENT_USERS",
    "SHOWSUPERVISOR_USER_ENTITLEMENTS",
    "SHOWROLEOWNER_UNSCORED_ENTITLEMENTS",
    "SHOWSUPERVISOR_UNSCORED_ENTITLEMENTS",
    "SHOWUNSCORED_ENTITLEMENTS",
    "SHOWUSER",
    "SHOWALL_ROLE_OWNER_DATA"
  ],
  "permissions": {
    "Zoran Admin": {
      "can": "*"
    },
    "Zoran Entitlement Owner": {
      "can": [
        "FILTERENTITLEMENTS",
        "SEARCHUSER_ENTITLEMENTS",
        "SHOWENTITLEMENT",
        "SHOWENTITLEMENT_USERS",
        "SHOWFILTER_OPTIONS",
        "SHOWROLEOWNER_UNSCORED_ENTITLEMENTS",
        "SHOWROLE_OWNER_PAGE",
        "SHOWROLE_OWNER_ENT_DATA",
        "SHOWROLE_OWNER_AUTO_DATA",
        "SHOWROLE_OWNER_USER_PAGE",
        "SHOWROLE_OWNER_ENT_PAGE",
        "SHOWUSER_ENTITLEMENTS",
        "SHOWUNSCORED_ENTITLEMENTS",
        "CERTIFYENTITLEMENTS_TO_USERS",
        "CERTIFYUSERS_TO_ENTITLEMENTS",
        "REVOKECERTIFY_ACCESS"
      ]
    },
    "Zoran Executive": {
      "can": [
        "SHOWASSIGNMENTS_STATS",
        "SHOWCOMPANY_PAGE",
        "SHOWCOMPANY_COVERAGE_PAGE",
        "SHOWCOMPANY_ENTITLEMENTS_PAGE",
        "SHOWCOMPANY_EMPLOYEE_PAGE",
        "SHOWCRITICAL_ENTITLEMENTS",
        "SHOWENTITLEMENT_AVG_GROUPS",
        "SHOWENTITLEMENT_AVG_GROUP_DETAILS",
        "SHOWUSER_ENTITLEMENTS"
      ]
    },
    "Zoran Supervisor": {
      "can": [
        "FILTERENTITLEMENTS",
        "SHOWEMPLOYEE",
        "SHOWFILTER_OPTIONS",
        "SHOWSUPERVISOR_PAGE",
        "SHOWSUPERVISOR_DETAILS_PAGE",
        "SHOWSUPERVISOR_ENT_DATA",
        "SHOWSUPERVISOR_USER_DATA",
        "SHOWSUPERVISOR_ENTITLEMENT_USERS",
        "SHOWSUPERVISOR_USER_ENTITLEMENTS",
        "SEARCHSUPERVISOR_USER_ENTITLEMENTS",
        "SHOWSUPERVISOR_UNSCORED_ENTITLEMENTS",
        "CERTIFYENTITLEMENTS_TO_USERS",
        "CERTIFYUSERS_TO_ENTITLEMENTS",
        "REVOKECERTIFY_ACCESS"
      ]
    },
    "Zoran User": {
      "can": [
        "SHOWCERTIFICATIONS",
        "SEARCHUSER",
        "SHOWENTITLEMENT",
        "SHOW__USER"
      ]
    }
  }
}

Example Request

curl --location --request PUT '/config/PermissionsConf' \
--header 'Content-Type: application/json' \
--data-raw '{"actions":["CERTIFYENTITLEMENTS_TO_USERS"
  ,"CERTIFYUSERS_TO_ENTITLEMENTS","FILTERENTITLEMENTS"
  ,"REVOKECERTIFY_ACCESS","SEARCHUSER","SEARCHUSER_ENTITLEMENTS"
  ,"SEARCHSUPERVISOR_USER_ENTITLEMENTS","SHOWASSIGNMENTS_STATS"
  ,"SHOW_COMPANY_PAGE","SHOWCOMPANY_COVERAGE_DATA"
  ,"SHOW_COMPANY_ENTITLEMENTS_DATA","SHOWCOMPANY_EMPLOYEE_PAGE"
  ,"SHOW_CRITICAL_ENTITLEMENTS","SHOWEMPLOYEE","SHOWENTITLEMENT"
  ,"SHOW_ENTITLEMENT_AVG_GROUPS","SHOWENTITLEMENT_AVG_GROUP_DETAILS"
  ,"SHOW_ENTITLEMENT_USERS","SHOWFILTER_OPTIONS","SHOWROLE_OWNER_PAGE"
  ,"SHOW_ROLE_OWNER_USER_DATA","SHOWROLE_OWNER_ENT_DATA"
  ,"SHOW_ROLE_OWNER_AUTO_DATA","SHOWSUPERVISOR_PAGE"
  ,"SHOW_SUPERVISOR_DETAILS_PAGE","SHOWSUPERVISOR_ENT_DATA"
  ,"SHOW_SUPERVISOR_USER_DATA","SHOWSUPERVISOR_ENTITLEMENT_USERS"
  ,"SHOW_SUPERVISOR_USER_ENTITLEMENTS","SHOW_ROLEOWNER_UNSCORED_ENTITLEMENTS"
  ,"SHOW_SUPERVISOR_UNSCORED_ENTITLEMENTS","SHOW_UNSCORED_ENTITLEMENTS"
  ,"SHOWUSER","SHOWALL_ROLE_OWNER_DATA"]
  ,"permissions"
  :{"Zoran Admin":{"can":"*"},"Zoran Entitlement Owner"
  :{"can":["FILTERENTITLEMENTS","SEARCHUSER_ENTITLEMENTS"
  ,"SHOWENTITLEMENT","SHOWENTITLEMENT_USERS","SHOWFILTER_OPTIONS"
  ,"SHOWROLEOWNER_UNSCORED_ENTITLEMENTS","SHOWROLE_OWNER_PAGE"
  ,"SHOWROLE_OWNER_ENT_DATA","SHOWROLE_OWNER_AUTO_DATA"
  ,"SHOWROLE_OWNER_USER_PAGE","SHOWROLE_OWNER_ENT_PAGE"
  ,"SHOWUSER_ENTITLEMENTS","SHOWUNSCORED_ENTITLEMENTS"
  ,"CERTIFYENTITLEMENTS_TO_USERS","CERTIFYUSERS_TO_ENTITLEMENTS"
  ,"REVOKECERTIFY_ACCESS"]},"Zoran Executive"
  :{"can":["SHOWASSIGNMENTS_STATS","SHOWCOMPANY_PAGE"
  ,"SHOWCOMPANY_COVERAGE_PAGE","SHOWCOMPANY_ENTITLEMENTS_PAGE"
  ,"SHOWCOMPANY_EMPLOYEE_PAGE","SHOWCRITICAL_ENTITLEMENTS"
  ,"SHOWENTITLEMENT_AVG_GROUPS","SHOWENTITLEMENT_AVG_GROUP_DETAILS"
  ,"SHOWUSER_ENTITLEMENTS"]},"Zoran Supervisor"
  :{"can":["FILTERENTITLEMENTS","SHOWEMPLOYEE","SHOWFILTER_OPTIONS"
  ,"SHOWSUPERVISOR_PAGE","SHOWSUPERVISOR_DETAILS_PAGE"
  ,"SHOWSUPERVISOR_ENT_DATA","SHOWSUPERVISOR_USER_DATA"
  ,"SHOWSUPERVISOR_ENTITLEMENT_USERS","SHOWSUPERVISOR_USER_ENTITLEMENTS"
  ,"SEARCHSUPERVISOR_USER_ENTITLEMENTS","SHOWSUPERVISOR_UNSCORED_ENTITLEMENTS"
  ,"CERTIFYENTITLEMENTS_TO_USERS","CERTIFYUSERS_TO_ENTITLEMENTS"
  ,"REVOKECERTIFY_ACCESS"]},"Zoran User"
  :{"can":["SHOWCERTIFICATIONS","SEARCHUSER","SHOWENTITLEMENT"
  ,"SHOWUSER"]}
  }
}'
Copyright © 2010-2022 ForgeRock, all rights reserved.