Introduction
This is the NetFoundry Auth service
Overview
HTTP verbs
NetFoundry adheres closely to standard HTTP and REST conventions in its use of HTTP verbs.
| Verb | Usage |
|---|---|
|
Used to retrieve a resource |
|
Used to create a new resource |
|
Used to update an existing resource, full updates only |
|
Used to delete an existing resource |
The PATCH method is not used (yet).
|
HTTP status codes
NetFoundry adheres closely to standard HTTP and REST conventions in its use of HTTP status codes.
| Status code | Usage |
|---|---|
|
The actual response will depend on the request method used. In a GET request, the response will contain an entity corresponding to the requested resource. In a POST request, the response will contain an entity describing or containing the result of the action. |
|
The request has been fulfilled and resulted in a new resource being created. |
|
The request has been accepted and is being processed asynchronously Standard response for successful HTTP requests which invoke back-end services. |
|
The server successfully processed the request, but is not returning any content. |
|
The server cannot or will not process the request due to something that is perceived to be a client error (e.g., malformed request syntax, invalid request message framing, or deceptive request routing). |
|
The request lacks valid authentication credentials for the target resource. |
|
The request is authenticated with valid credentials however that set of credentials is not authorized to access this resource. |
|
The requested resource could not be found but may be available again in the future. Subsequent requests by the client are permissible. |
Pagination
Paginated services will accept the following optional request parameters:
| Path | Type | Optional | Description |
|---|---|---|---|
page |
Integer |
true |
Page you want to retrieve, 0 indexed and defaults to 0. |
size |
Integer |
true |
Size of the page you want to retrieve, defaults to 1000. |
sort |
String |
true |
Properties that should be sorted by in the format |
Pagination response has following structure:
| Path | Type | Optional | Description |
|---|---|---|---|
content |
Array[Object] |
false |
Actual items. |
totalElements |
Integer |
false |
Total count. |
totalPages |
Integer |
false |
Total pages with current page size. |
last |
Boolean |
false |
If this page is the last one. |
numberOfElements |
Integer |
false |
Actual size of content array (number of items). |
first |
Boolean |
false |
If this page is the first one. |
sort |
Object |
true |
Sort information object. |
size |
Integer |
false |
Requested size of the page. |
number |
Integer |
false |
Page number. |
empty |
booloean |
false |
If this page is empty. |
Authorization
Masquerade
POST /masquerade
Exchange a NetFoundry token with a service identity for a NetFoundry token with a user identity.
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
identityId |
String |
true |
Must not be null. |
audience |
String |
true |
Must not be empty. |
claims |
Map |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
token |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/masquerade' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.Z2VRuo4mqjJ5ynqR2Ic-uHCL3yvwS4zrzRBxl2aiP5DtamoUAhEbfAGa2a00LBqE464sNmzsiiuDDprJjXpAKfGhKql-qGGCLZtELhezCkgDpQ4G_dfoDPBvPzxzxGPSNpDigxVU_FSvicxw_w2H-1Btd5L-qJOu8ABWkeYMhyRcO4bthrv3arh8cbnMlZddmwY7c_GKsdzGXcECsRFeLMc7_cTSttLfXNrFX67IK_77yNLSGT687Uk6R6kml3EMb2Zbmvaj-qdH9NPxgns-K2BqJpxEtdye1sWeGydIUX0Naygll5guK-97PkMV5ooIvqIEt5xWgSWcSeTU9p5CtA' \
-d '{"identityId":"9432a1c1-a50c-4753-81fc-33d4825a66bc","audience":"io.netfoundry.test","claims":{}}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 2372
{
"token" : "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJsakJjNGdER2x6RmQtVnQ0ck1QTkhRIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6Ijk0MzJhMWMxLWE1MGMtNDc1My04MWZjLTMzZDQ4MjVhNjZiYyIsImF1ZCI6ImlvLm5ldGZvdW5kcnkudGVzdCIsImlhdCI6MTY4NTUyMjIyOCwiZXhwIjoxNjg1NTIyNTI4LCJncmFudHMtc3VwZXIiOiJbe1wiaWRcIjpcImM2NDE4MjcxLWM3YmYtNDRiYS1iNTI0LTEzODUxOWEzMmQwZVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjcyMGJlZWE3LWNjODAtNDY5My1hYjBhLTY3ZDc0ZjgzNjU4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn1dIiwiZ3JhbnRzLWN1c3RvbSI6IltdIiwiZ3JhbnRzLXB1YmxpYyI6Ilt7XCJpZFwiOlwiZWQ1Y2YyZWEtZjAwNi00MDQ0LTlmYmQtMGI3ODNiN2I5MGFiXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg4fSx7XCJpZFwiOlwiZGJlOTA2NjItMDBmYi00MjM3LWI4ZjUtMDI0N2RhMmZlNjhhXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkxfSx7XCJpZFwiOlwiOTNiOTdhYWUtMTc0NC00YTE4LTkwZDQtY2E4YzllMGFlY2UxXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIxfSx7XCJpZFwiOlwiNDIyMGYwMzQtNmY1OC00ODM3LWI0ZDYtZTI5ZGU2ODYwZTg2XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg4fSx7XCJpZFwiOlwiNzBlY2M2OTAtY2U4OC00ODEwLTllZjMtYjlhY2E0NDZhZmE0XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTk1fSx7XCJpZFwiOlwiZTY1YWU5NGEtMmZmYy00YzhiLWIxZDgtM2Q3OWYyZGNiMDk3XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjA2fSx7XCJpZFwiOlwiOTkzNzEyNWUtMzBmZS00ZGY2LTg2MDktMmMyYjZiNTE5ZDhmXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fSx7XCJpZFwiOlwiZTUxZGYyOGQtNjJjMC00MTY1LTlmNDUtODFiMzliMmRkOTViXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkwfSx7XCJpZFwiOlwiM2U1NTEwZWMtMzg3YS00ZjJhLTgxMjAtMjcxYzJkZjZlMGQzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkyfSx7XCJpZFwiOlwiMTg2MmM2ODgtNWJmZC00Y2Q0LTllYjItMWUyN2E5YzA0ZDMzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fSx7XCJpZFwiOlwiYzg2OWFiYjUtNDJhNy00NDUxLTgwOWMtODU3MmYyYWI3ZTlhXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIwfSx7XCJpZFwiOlwiNjhmMzE4YzUtZDZkYy00NmZjLTk5YzQtNjk5NTA4NzFmZmIzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fV0iLCJncmFudHMtYWN0aW9uIjoiW10iLCJncmFudHMtc3RhbmRhcmQiOiJbXSIsInBvbGljaWVzIjpbeyJyZXNvdXJjZXMiOlsibmZybjp0ZXN0czoqOmZvb3M6KiJdLCJhY3Rpb25zIjpbInRlc3RzOmNyZWF0ZS1mb28iXX1dfQ.SdjacwBEhtBVICfZT8QESUiYGP7vP4QBk-cMeVCBHMqk2_C9FT2W0P2MxMdgAtB5KMQLI2gAHkKK1tyWQLCRKcaDb1VkmmxydAmvd5DKyxE-Lha4v6sol47kH1DCg0JncId8bf853K_cCTrprZEjBCyg7K8nYchZo2j3x42j0-P-EkpoeBEzgm472-nNOdIOD1YVqV5RV7SHR--LRm1eaEO0aWytTs22xBjq6yyCeMBNxrrYmYQ8ouN5Yx2lTRKXaF42MtTCVlLmCqrdg7DKm_aFd1J1DV4dEKiJ0XRm4QJWJsxF7lvKJvRFD_J3UDitRx_x0bJt8Bv7_wQziUy-CQ"
}Core Authorization Resources
Domains
Find Domains
GET /domains
Returns a set of {@link Domain}s that the client is authorized to read.
Authorization
This endpoint requires read action on the domain resource type.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].name |
String |
true |
A human friendly name which can be used for UX purposes. Must not be null. |
[].code |
String |
true |
A globally unique value that can be used by code to namespace other values which only have to be unique within a domain, such as a resource’s key. This value must be formatted as an inverse domain name. For example, "io.netfoundry.authorization" for the colloquial 'authorization' domain. Must match the regular expression |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link Domain} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link Domain} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/domains' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.lopR1SDUW84DGVy1LW6Pzg9MIdz-3jPfBMmor2Wp28dGuQg5BooqG0jNQ2YQeU_bSAmgMLek-OfH_o-AVQVc6DFbxB7088Cu_yMPQhj8gqyrrz_WdNhTqi4zZsfPnUzbp2Z85ffMTSwBBnEAyaVZaAKdKJC1JPW0ZXJ5zl1PTNy6P7tYNaYzmx9QGY3L47a35sSg4Vds8hcJ2xxMjIf-kMogwziBLHscnlJoIJPKBCyeIdXETJUiEitXB1qr460WlW3HCyE4xCxhQE5myMGzv2iECO1988jT0aqd4F4IYt2PWLU0UgS7sbX3NE9TIPG0dn9Y6UplRNd-i3y2iAq5Lw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 878
[ {
"id" : "a3de6728-065d-4999-b4c6-56103d6a9015",
"name" : "Test Domain 27",
"code" : "test.domain.27",
"createdBy" : "70a5206d-a101-4383-93e5-6c9a8ca59a10",
"createdAt" : "2023-05-31T08:37:08.860060Z",
"updatedAt" : "2023-05-31T08:37:08.860060Z",
"_title" : "Test Domain 27"
}, {
"id" : "459eca65-064e-4a92-8ee7-5d3348b46df4",
"name" : "Test Domain 21",
"code" : "test.domain.21",
"createdBy" : "4188841c-9482-4598-a441-6f2d88eb77ca",
"createdAt" : "2023-05-31T08:37:05.209322Z",
"updatedAt" : "2023-05-31T08:37:05.209322Z",
"_title" : "Test Domain 21"
}, {
"id" : "4c2603e9-1cb3-4025-ae6f-0179511967a2",
"name" : "Test Domain 49",
"code" : "test.domain.49",
"createdBy" : "c1b41a74-1a99-4d72-9f56-02f25226ba6c",
"createdAt" : "2023-05-31T08:37:12.636371Z",
"updatedAt" : "2023-05-31T08:37:12.636371Z",
"_title" : "Test Domain 49"
} ]Get Domain
GET /domains/{idOrCode}
Authorization
This endpoint requires read action on the domain resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
idOrCode |
String |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
A human friendly name which can be used for UX purposes. Must not be null. |
code |
String |
true |
A globally unique value that can be used by code to namespace other values which only have to be unique within a domain, such as a resource’s key. This value must be formatted as an inverse domain name. For example, "io.netfoundry.authorization" for the colloquial 'authorization' domain. Must match the regular expression |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link Domain} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link Domain} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/domains/a35579f0-9a66-4093-a215-3d30a5dc93ea' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJtQWRIbHdSYW5yTFF0WFFfUkRHRnV3IiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6ImJmMjBlMDg3LTAyMjEtNDA0My04MTA3LTQ4OWY1MGE1ZWY3NyIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIzMywiZXhwIjoxNjg1NTI1ODMzLCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjkzYjk3YWFlLTE3NDQtNGExOC05MGQ0LWNhOGM5ZTBhZWNlMVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiMmVlNDI3NGYtNmVkZS00MGNmLTllYjctNjMxYzk2ZTY4ZTgyXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjMzfV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.GE7H4V6hYkyVGNYn8Zb6ohoxd91j_Qo4LpyJIXoCO4i98f1Prs0QKfHDynNSx8_QI9Klep2IJb5gHGwHej02SBKB3Je73C9Xf5-uALPjKyG575tV4G1y-DcMgM9cFozEf-cxFCxW_ICoVGbI3xJMWuXCRC4nTojLgQR03hUBQCKj23lt6gILLj7sKZMNMHxgAWr8AbTMVmvpJ8gDFE9RGTOjn_NpmZFcH4gMCB-bAzBCBmRDJ5mIFTi5j1zKmkmKFVtCzPlvkcX3B4fuV68l78CeuJwohxKsrBqny7vnqqh5pj2mYkNrJX5nMzACAJv0uIWNRXbjXJ8zH-pwHD71zQ'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 288
{
"id" : "a35579f0-9a66-4093-a215-3d30a5dc93ea",
"name" : "Test Domain",
"code" : "io.netfoundry.test",
"createdBy" : "2907a9c2-e46f-4115-b130-d9dfe776f45c",
"createdAt" : "2023-05-31T08:36:46.232210Z",
"updatedAt" : "2023-05-31T08:36:46.232210Z",
"_title" : "Test Domain"
}Get Domain
GET /domains/{idOrCode}
Authorization
This endpoint requires read action on the domain resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
idOrCode |
String |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
A human friendly name which can be used for UX purposes. Must not be null. |
code |
String |
true |
A globally unique value that can be used by code to namespace other values which only have to be unique within a domain, such as a resource’s key. This value must be formatted as an inverse domain name. For example, "io.netfoundry.authorization" for the colloquial 'authorization' domain. Must match the regular expression |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link Domain} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link Domain} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/domains/io.netfoundry.test' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.a1SgyeWS2NB8KKFQIUjFel04KpekZK-WsIoOfH-QG7ofSmJJ2xlnn9NUz-QO4n0Rf_EfJDNjagSdLZogjdd9l05Ff4bS1jeL8fCFvVRssX0Bmk2flbOhbGf8XMndiDBRn-ayjvbeWHiowi0QA8bP-teeBMh9t-_5PwF8wYusdRToaGXZm_-4QztZJkZvM7h7dy6zSjDFCvhQGe5MoJ1ezibl3VXbxeYUCF2BRXyQsA9p7jGwcbkgmDBLmyPonEimPTTxiITIAclW0vkk99cxJf-OZHZ9Xbk8fULuLREeNGMcNwb-l73h4zZPhLK_fnfSOFXPJsSmGBpl_XpaY2HzgQ'Example response
HTTP/1.1 200 OK
Content-Disposition: inline;filename=f.txt
Content-Type: application/json
Content-Length: 288
{
"id" : "a35579f0-9a66-4093-a215-3d30a5dc93ea",
"name" : "Test Domain",
"code" : "io.netfoundry.test",
"createdBy" : "2907a9c2-e46f-4115-b130-d9dfe776f45c",
"createdAt" : "2023-05-31T08:36:46.232210Z",
"updatedAt" : "2023-05-31T08:36:46.232210Z",
"_title" : "Test Domain"
}Create Domain
POST /domains
Authorization
This endpoint requires create action on the domain resource type.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
name |
String |
true |
Must not be null. |
code |
String |
true |
Must match the regular expression |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
A human friendly name which can be used for UX purposes. Must not be null. |
code |
String |
true |
A globally unique value that can be used by code to namespace other values which only have to be unique within a domain, such as a resource’s key. This value must be formatted as an inverse domain name. For example, "io.netfoundry.authorization" for the colloquial 'authorization' domain. Must match the regular expression |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link Domain} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link Domain} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/domains' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiIwYUVETFFkX0NXcTYwRW5GcWpQVkp3IiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjRhOTA0ZTg4LTgzYmUtNDQxOS05ZjIyLTVhODc5NmI3YzVlMiIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIzMywiZXhwIjoxNjg1NTI1ODMzLCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjkzYjk3YWFlLTE3NDQtNGExOC05MGQ0LWNhOGM5ZTBhZWNlMVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiZDcwNmFlMzMtNGFkZC00MjY4LWJjYjAtNGEzNWI5MDJhOTg2XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjMzfV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.cODirpW9RGaZFZuwuqlBMOd-HyZTPfgIqU43vg0stvmXfvqIWDJliY6BNfpRUbTDFvkUrfH9fZ8jpKyYumkWsfhuXWdU95cCHXoInuewBjMCq4cScVbl6zb3M-I7bpgj3Wylizk9S5aOfdY5J7JjYWwe9MAMN-3-uQ6KizhixcP8mW3PFruVac5VZFGrGgyzL5xX5EWZLguturC3MLMNU7m8-L0Oqsr4blWMAHqI5_j1xSK_CQEWbIl0WtrWwXs1URGZhi3UyTib02s4lNb4Szp7CdGE5RBuQGBvGnSpEabseYZzclgRkX-gMPN7jLhLg6WAuBHoJzzLnMm1ZxaA4A' \
-d '{"name":"Other Test Domain","code":"other.test.domain"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 299
{
"id" : "a9180346-9650-4230-adb6-59940080a0da",
"name" : "Other Test Domain",
"code" : "other.test.domain",
"createdBy" : "4a904e88-83be-4419-9f22-5a8796b7c5e2",
"createdAt" : "2023-05-31T08:37:13.571837Z",
"updatedAt" : "2023-05-31T08:37:13.571837Z",
"_title" : "Other Test Domain"
}Resource Types
Find Resource Types
GET /resource-types
Returns a set of {@link ResourceType}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link ResourceType}s.
Authorization
This endpoint requires read action on the resource-type resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
domainId |
Object |
true |
Filters results to those that are in one of the specified ,{@link Domain},s. |
code |
Object |
true |
Filters results to those matching one of the specified codes. |
parentId |
Object |
true |
Filters results to those that are an immediate child of one of the specified ,{@link ResourceType},s. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].domainId |
String |
true |
The id of the domain within which this {@link ResourceType} exists. Must not be null. |
[].name |
String |
true |
The human friendly name of this {@link ResourceType}. Must not be null. |
[].code |
String |
true |
A unique value (within the domain) that can be used by code as a reference to this resource type. These values should almost always be the simple type name of the resource class, such as "BillingAccount". Must match the regular expression |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link ResourceType} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link ResourceType} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].root |
Boolean |
true |
|
[].depth |
Integer |
true |
Returns the depth of this {@link ResourceType} within the tree, where a root {@link ResourceType} has a depth of 0. |
[].parentId |
String |
true |
Returns the id of the parent {@link ResourceType} or null if this is a root. |
[].childrenIds |
Array[Object] |
true |
Returns the id of {@link ResourceType}s that are children of this. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resource-types' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.ha7SXCR_jgAGaowVq4eTlyZe2GaOsho6OfNltSstl-sQ2pFR5iQo7Xs1JNmFeIAB95oEdxUyK1KRWultkOhFyW3qhv-7ttxzspzhlGS4Ngucs38AsVBkNTfqJTA1085Zb4uxNVSBcK1_weBcQdwNAAcuWY9o8cMzF6nPSdIWYFmbz9t0wcwcNyJx4BjyHhj-Gx8tXCMyoBEMzBsYsiQscWqitS_VspRcyBLA6xb09xsV8W_vK9KQI0inMHcHHVV2_Fba-GV7vhGue_5XWTLDtHtkC03tgAR9zSOeZUZgjoOclXTAHC2rXVs5507oOZvKNLoVvARSPemyq41cdvj1MQ'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1317
[ {
"id" : "0a9397f9-af63-4021-ac11-49e743efc662",
"domainId" : "b161c6b3-a903-4ed7-8b80-469c022fff79",
"name" : "Endpoint",
"code" : "endpoint",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:27.730611Z",
"updatedAt" : "2023-05-31T08:36:27.730611Z",
"root" : false,
"depth" : 2,
"parentId" : "3c740cea-aec1-441c-a02d-a9a226b61f39",
"childrenIds" : [ ],
"_title" : "Endpoint"
}, {
"id" : "199e2236-845b-4fe2-93a8-12cb8cf72e4d",
"domainId" : "b67a42c9-85a0-40a5-b8cf-81bcf902340c",
"name" : "Payment Profile",
"code" : "payment-profile",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:34.797910Z",
"updatedAt" : "2023-05-31T08:36:34.797910Z",
"root" : false,
"depth" : 1,
"parentId" : "2529bc81-9c74-4b77-9f56-33386216b3dd",
"childrenIds" : [ ],
"_title" : "Payment Profile"
}, {
"id" : "456c7529-4c68-4e71-abef-8d1895a9498a",
"domainId" : "b161c6b3-a903-4ed7-8b80-469c022fff79",
"name" : "Data Center",
"code" : "data-center",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:27.719183Z",
"updatedAt" : "2023-05-31T08:36:27.719183Z",
"root" : true,
"depth" : 0,
"parentId" : null,
"childrenIds" : [ ],
"_title" : "Data Center"
} ]Get Resource Type
GET /resource-types/{id}
Authorization
This endpoint requires read action on the resource-type resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
domainId |
String |
true |
The id of the domain within which this {@link ResourceType} exists. Must not be null. |
name |
String |
true |
The human friendly name of this {@link ResourceType}. Must not be null. |
code |
String |
true |
A unique value (within the domain) that can be used by code as a reference to this resource type. These values should almost always be the simple type name of the resource class, such as "BillingAccount". Must match the regular expression |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link ResourceType} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link ResourceType} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
root |
Boolean |
true |
|
depth |
Integer |
true |
Returns the depth of this {@link ResourceType} within the tree, where a root {@link ResourceType} has a depth of 0. |
parentId |
String |
true |
Returns the id of the parent {@link ResourceType} or null if this is a root. |
childrenIds |
Array[Object] |
true |
Returns the id of {@link ResourceType}s that are children of this. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resource-types/c6e58f31-3cb2-4f56-9199-a0b05a7adf7d' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.fmsFcE1_tP2GT697rR1nQOay2k4NRgL1iD87om0EeyseWUKCYwc3kZq5SQCPsNYsMUpS6r1B8JVReb4x1eIJp865LvYxjNZFABRaFDQOR6peqLQeZMHjRDO151VxQwAxCRm5nGu_YUItKDQsEohWQrP0WwT1_3sh43vjmK1UfitE6-leH3cB8QVoyFkiX9O4UQ1PzuOMwEX_H6flISszMwueLUj3gxKNHZYb4J2dhOMKIGEl5xBEuzhQkIC7i5bGibNcJixHAORSrUtn8qvWUo2Qy8sv1pmh4ENVeQdR2YjAaWEZFl4w1pwbYwIIQ_cZMVWmfI5fnuRGPuWE9MKdNA'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 406
{
"id" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d",
"domainId" : "a35579f0-9a66-4093-a215-3d30a5dc93ea",
"name" : "Test Type",
"code" : "test-type",
"createdBy" : "d79dc0cb-9bf5-46b3-b7cb-6574b404f3f3",
"createdAt" : "2023-05-31T08:36:46.272988Z",
"updatedAt" : "2023-05-31T08:36:46.272988Z",
"root" : true,
"depth" : 0,
"parentId" : null,
"childrenIds" : [ ],
"_title" : "Test Type"
}Create Resource Type
POST /resource-types
Authorization
This endpoint requires the following actions:
-
createaction on theresource-typeresource type -
readaction on thedomainresource type -
readaction on theresource-typeresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
domainId |
String |
true |
Client must have |
parentId |
String |
true |
Client must have |
resourceType |
Object |
true |
Must not be null. |
resourceType.name |
String |
true |
Must not be null. |
resourceType.code |
String |
true |
Must match the regular expression |
resourceType.children |
Array[Object] |
true |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
domainId |
String |
true |
The id of the domain within which this {@link ResourceType} exists. Must not be null. |
name |
String |
true |
The human friendly name of this {@link ResourceType}. Must not be null. |
code |
String |
true |
A unique value (within the domain) that can be used by code as a reference to this resource type. These values should almost always be the simple type name of the resource class, such as "BillingAccount". Must match the regular expression |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link ResourceType} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link ResourceType} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
root |
Boolean |
true |
|
depth |
Integer |
true |
Returns the depth of this {@link ResourceType} within the tree, where a root {@link ResourceType} has a depth of 0. |
parentId |
String |
true |
Returns the id of the parent {@link ResourceType} or null if this is a root. |
childrenIds |
Array[Object] |
true |
Returns the id of {@link ResourceType}s that are children of this. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resource-types' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.YzvnxCNbf0_epCmn2hVlqgaCi7DQLpDgS6Mt_WOsCHXlwAPTdcA71kzfOBr5YyBZIgWi2dZMJhbcpm9HffHNYC6eOQezFlCoMnjBpNPvtoO5q9vv8SMA1zIXvDnj-CeqAAg8IeX8bqmM2djHe3KJHwUGiGcHRdVuLZvqIHT84lIHnkMOpS3OC48GrgGn78diGWVBhAUJO4BntTjyGAja7aHTUHfaOJzRFnvDT-t0LwG9cRsWEDiI-oA-jYUCHYT3VU1oigMtz7_8P17ga5DMxjJCeBsLqoGkcGvD6D5AdDStulRpZl1GDQ2_SCOedZm3QKv8Y2KWr27ZgFd4ad063A' \
-d '{"domainId":"a35579f0-9a66-4093-a215-3d30a5dc93ea","parentId":"c6e58f31-3cb2-4f56-9199-a0b05a7adf7d","resourceType":{"name":"Another Test Type","code":"anoter-test-type","children":[]}}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 464
{
"id" : "e0af5a7b-ed02-4ba7-aef5-38785668608e",
"domainId" : "a35579f0-9a66-4093-a215-3d30a5dc93ea",
"name" : "Another Test Type",
"code" : "anoter-test-type",
"createdBy" : "20b3a819-8f08-4ef5-9edd-87076a08e009",
"createdAt" : "2023-05-31T08:37:11.463963Z",
"updatedAt" : "2023-05-31T08:37:11.463963Z",
"root" : false,
"depth" : 1,
"parentId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d",
"childrenIds" : [ ],
"_title" : "Another Test Type"
}Resource Actions
Find Resource Actions
GET /resource-actions
Returns a set of {@link ResourceAction}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
specified. {@link CustomRole}s. Only non-deleted {@link CustomRoleAction}s are considered. {@link StandardRoleType}s.
Authorization
This endpoint requires read action on the resource-action resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
code |
Object |
true |
Filters results to those matching one of the specified codes. |
resourceTypeId |
Object |
true |
Filters results to those that apply to one of the ,{@link ResourceType},s specified. |
domainId |
Object |
true |
Filters results to those that are in one of the specified ,{@link Domain},s. |
customRoleId |
Object |
true |
Filters results to those that are granted by one of the specified ,{@link CustomRole},s. Only non-deleted ,{@link CustomRoleAction},s are considered. |
standardRoleTypeId |
Object |
true |
Filters results to those that are included in one of the specified ,{@link StandardRoleType},s. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].resourceTypeId |
String |
true |
The type of resource that this {@link ResourceAction} applies to. Must not be null. |
[].name |
String |
true |
A human friendly name for this action. This should be a verb only, such as "Create", "Grant", "Remove", "Activate", "Update", "Delete", etc. This can contain more than one word, and spaces are permitted and encouraged if more than one word is present. Words should be initial-caps. This value will be appended with the names of other entities, such as a resource type name, in order to compute names for the composition of this with another entity. For example, if this action is "Create" and it is composed with a resource type named "Network", then the resulting composition may be named "Create Network". Must not be null. |
[].code |
String |
true |
Used by code as a reference to this action. These values should almost always be a simple verb such as "create", "update", "grant", "fetch", etc. Lower-case and hyphen separation of words is encouraged. Since this is used by code, the key value have a limited alphabet of letters, numbers, and hyphens. This value must be unique among the set of {@link ResourceAction}s targeting the same resource type. Must match the regular expression |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link ResourceAction} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link ResourceAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].standardAction |
Boolean |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resource-actions' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.TTrOQt1AIxzdRR1PGpHaceAbC9CPqI7XEwh02yH6X_2drKi1rl75-IOUlMFQvgMK6a_rTGTgkrvmViD9Eg0i8hHfYofTUbMWEmX0CVf0PB6e4G588vcYqqv8gBGff5aacfEKjdfgW6gr3il-Wh1sMBluTYFvgF1HoEQjqyIyc0y95HuaOsAvMdj0jXWkrckto7QcaP4SPESwCSzvDRmuqjar47pyJf0gR_WE1NXarvJ2hVcUU494d-8sSv4_HmYEMcnpQ9A-k4ed2UR6wIjhqa8E-9NRkpalw2xkhQ8OM9Impfow03TekWG_HXvMGB15V6UfLWxiR8YXMlceh9eKvw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1110
[ {
"id" : "a3b10079-f39f-4f71-932f-1489410f688a",
"resourceTypeId" : "0e322dfe-531d-42da-9919-d09c6a317f2c",
"name" : "Delete",
"code" : "delete",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:28.708529Z",
"updatedAt" : "2023-05-31T08:36:28.708529Z",
"standardAction" : true,
"_title" : "Delete Support Path"
}, {
"id" : "950c2f8f-aa8d-482b-98c8-f287c2bc0576",
"resourceTypeId" : "e934c8e3-1e89-41dd-9110-5a9d15b1229c",
"name" : "Update",
"code" : "update",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:35.513168Z",
"updatedAt" : "2023-05-31T08:36:35.513168Z",
"standardAction" : true,
"_title" : "Update Signup"
}, {
"id" : "fb9b1521-c08e-477f-887d-1d3c8ca0471d",
"resourceTypeId" : "36ba970f-a7de-4f31-acb3-997b63b26264",
"name" : "Create",
"code" : "create",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:35.187920Z",
"updatedAt" : "2023-05-31T08:36:35.187920Z",
"standardAction" : true,
"_title" : "Create Identity Preference"
} ]Get Resource Action
GET /resource-actions/{id}
Authorization
This endpoint requires read action on the resource-action resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceTypeId |
String |
true |
The type of resource that this {@link ResourceAction} applies to. Must not be null. |
name |
String |
true |
A human friendly name for this action. This should be a verb only, such as "Create", "Grant", "Remove", "Activate", "Update", "Delete", etc. This can contain more than one word, and spaces are permitted and encouraged if more than one word is present. Words should be initial-caps. This value will be appended with the names of other entities, such as a resource type name, in order to compute names for the composition of this with another entity. For example, if this action is "Create" and it is composed with a resource type named "Network", then the resulting composition may be named "Create Network". Must not be null. |
code |
String |
true |
Used by code as a reference to this action. These values should almost always be a simple verb such as "create", "update", "grant", "fetch", etc. Lower-case and hyphen separation of words is encouraged. Since this is used by code, the key value have a limited alphabet of letters, numbers, and hyphens. This value must be unique among the set of {@link ResourceAction}s targeting the same resource type. Must match the regular expression |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link ResourceAction} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link ResourceAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
standardAction |
Boolean |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resource-actions/7f3fab32-bd55-42d8-a473-cbd6728a7f55' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.N_bngqQeAkcfx0b4fJnk6YzB30-jmYPaVAZhKgVvAh5Yum7mJkifeguuH-zY96hje1ka9wf7nHb7TS6xj-yk_v9EH2Rmp7J4zySO3dI_rYD0vZcd_Bn1whPV_jrnKa8KeCJB4Sw38QfGwUT8USIYxTorH3uR8wET4NQpq9IdUMCzU0L4djKzh8C9PGY1UlYCqNEC6Hlex7aA1RCaG-JgDllhWm7ja0FwXtVHrfI8QdVxGAwCFKdcovjciPLMd24hIwd2aGxyoMEv1vNJrIpidIdHuOiwEe9kJYMwBMXyTvUEEE9RdZHna8WRnMcuz82Nce6k21mZiaLkDhvxHVnZSg'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 380
{
"id" : "7f3fab32-bd55-42d8-a473-cbd6728a7f55",
"resourceTypeId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d",
"name" : "Test Action",
"code" : "test-action",
"createdBy" : "aba7b9e1-3b50-4124-b685-d885c4bf0bc5",
"createdAt" : "2023-05-31T08:36:46.305782Z",
"updatedAt" : "2023-05-31T08:36:46.305782Z",
"standardAction" : false,
"_title" : "Test Action Test Type"
}Create Resource Action
POST /resource-actions
Authorization
This endpoint requires the following actions:
-
createaction on theresource-actionresource type -
readaction on theresource-typeresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
resourceTypeId |
String |
true |
Client must have |
actions |
Array[Object] |
true |
Must not be empty. |
actions[].name |
String |
true |
Must not be null. |
actions[].code |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].resourceTypeId |
String |
true |
The type of resource that this {@link ResourceAction} applies to. Must not be null. |
[].name |
String |
true |
A human friendly name for this action. This should be a verb only, such as "Create", "Grant", "Remove", "Activate", "Update", "Delete", etc. This can contain more than one word, and spaces are permitted and encouraged if more than one word is present. Words should be initial-caps. This value will be appended with the names of other entities, such as a resource type name, in order to compute names for the composition of this with another entity. For example, if this action is "Create" and it is composed with a resource type named "Network", then the resulting composition may be named "Create Network". Must not be null. |
[].code |
String |
true |
Used by code as a reference to this action. These values should almost always be a simple verb such as "create", "update", "grant", "fetch", etc. Lower-case and hyphen separation of words is encouraged. Since this is used by code, the key value have a limited alphabet of letters, numbers, and hyphens. This value must be unique among the set of {@link ResourceAction}s targeting the same resource type. Must match the regular expression |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link ResourceAction} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link ResourceAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].standardAction |
Boolean |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resource-actions' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJ5VVlPUEY3YnZia3pxWVljSEp4RFlBIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjIyMDVlNjRmLTc3ZWUtNDJkMC04YTQzLWQxODE3Nzg0NzRhNSIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIxOCwiZXhwIjoxNjg1NTI1ODE4LCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiNTUyZTE4OTMtMzAzZi00OTFkLTg1ODEtNjg4ODE2NmEyY2UyXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjE4fSx7XCJpZFwiOlwiMzIyZDRhNWQtZmY5Yi00MDEwLWEwYjctODZiYzJhZGEzMjkxXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjE4fV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.QDedU3l9MkoJ-LJOu0QQtsUBSDr05a4I0E7_gTbfqb8UjRHEwuiHIB6nO6azk3J8UNydGvN_JKG0io8PIzOniJhqbpKEnaWP0rCMr5h651M0pJXche91jN1mo1ykRi77xVimPIt6AEE8-43WQMrIfY1CcnBhnA6h4ifQcxVko9qQbHIFbOpnaKcSPWPfx0v5efUgcs1aC5UoSXsWzcIKtMR6JMfcc97bopRkgwXj53Mf3rLSqehijH49Pkqa1YgjyqBkgHzjkICJAnju5GS-QbZEyrEykKiwN9pvM1frrHvqgpWuWMiD35Ix0O9mCbbodadzuTjWKqPT5ZUq06g97g' \
-d '{"resourceTypeId":"c6e58f31-3cb2-4f56-9199-a0b05a7adf7d","actions":[{"name":"Update Custom","code":"update-custom"}]}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 390
[ {
"id" : "3e50dd21-ddc0-45c6-8979-3ba8f236e5b4",
"resourceTypeId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d",
"name" : "Update Custom",
"code" : "update-custom",
"createdBy" : "2205e64f-77ee-42d0-8a43-d181778474a5",
"createdAt" : "2023-05-31T08:36:58.457650Z",
"updatedAt" : "2023-05-31T08:36:58.457650Z",
"standardAction" : false,
"_title" : "Update Custom Test Type"
} ]Authorization Grants
Grants (abstract)
Find Grants
GET /grants
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
grantType |
Object |
true |
|
identityId |
Object |
true |
|
resourceActionId |
Object |
true |
|
path |
Object |
true |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].grantType |
String |
true |
The concrete type that this virtual {@link Grant} is based upon. Never null. Must be one of [CustomRole, IdentityResourceAction, PublicGrant, SuperUser]. |
[].grantId |
String |
true |
The id of the concrete grant resource on which this virtual {@link Grant} is based. If the grant type has separate resources for the grant and the privileges, then this will reference the grant resource (the resource with an identity id.) Never null. |
[].privilegeSourceId |
String |
true |
The id of the concrete {@link PrivilegeSource} from which this grant is based. Some grant types combine the grant and privilege aspects into a single resource. For example, a {@link SuperUser} is both a grant (it specifies an identity id) and a privilege source. In other cases, such as a {@link CustomRole} and {@link CustomRoleGrant}, they are separate. When they are the same resource, this value will match the grantId value. Never null. |
[].identityId |
String |
true |
The identity id of the holder of this grant. Almost never null, with the one exception of a grant made to all users (or all authenticated users.). |
[].privileges |
Map |
true |
The set of privileges that this grants. These are organized as a stack of 3 Maps where the keys are the domain code, then the resource type code, then the action code, and the leaf value is a set of paths on which that action can be performed. |
[].createdBy |
String |
true |
The identity id that created the grant. Must not be null. |
[].createdAt |
String |
true |
The date-time at which the grant was created. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which the grant was deleted. This will be null for an grant that has not been deleted. If this property is not null, then the grant is 'marked' as being deleted. |
[].deletedBy |
String |
true |
The identity id that deleted the grant. This will be null until the resource is marked deleted. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/grants' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.lfnLQ8CK_s1xwUK698I2t5D5EkVKcNnvTREBYTEIAopxiJG2tYf--pVjyCja9R_2zC41nkOXL84JkX6zqiBiW9e3hND3JlodB2jCO6l4hHFG2FXHSE673QZ0tb-b601ydowzXoONYIodf29PBbypc34A3QO6F169bBxdSItMREIbprgGxhVgt8t8L8k4IRj_UdAzZU3fmCEfUYPwE-WSMPHQiQeh6FJGDkZjW1PkfjWAnx2jqOgzyBQno3iPEm4Rmc0uDWF60mS3etLM7DPibNsyCZ0Liqxh_g9nMUvvhtyK8b3NeXzrQcSWqlEbFMJKNuBssKCbOuHKQluUKz2Qwg'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1728
[ {
"grantType" : "IdentityResourceAction",
"grantId" : "6825096b-ed43-4abd-8597-15b8bc3febe9",
"privilegeSourceId" : "6825096b-ed43-4abd-8597-15b8bc3febe9",
"identityId" : "0ed768fa-7214-4404-8335-a715156dff45",
"privileges" : {
"io.netfoundry.network" : {
"support-path" : {
"read" : [ [ ] ]
}
}
},
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:32.515457Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Read Support Path, All to identity 0ed768fa-7214-4404-8335-a715156dff45"
}, {
"grantType" : "IdentityResourceAction",
"grantId" : "c0d83248-0954-4b49-8bab-c5e8528b15ad",
"privilegeSourceId" : "c0d83248-0954-4b49-8bab-c5e8528b15ad",
"identityId" : "48ef8928-4f59-4428-b4df-83cd7ec770bf",
"privileges" : {
"io.netfoundry.network" : {
"network" : {
"read" : [ [ ] ]
}
}
},
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:35.295351Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Read Network, All to identity 48ef8928-4f59-4428-b4df-83cd7ec770bf"
}, {
"grantType" : "IdentityResourceAction",
"grantId" : "cdedd112-0989-429e-90b1-ce0558f31433",
"privilegeSourceId" : "cdedd112-0989-429e-90b1-ce0558f31433",
"identityId" : "83d8cce9-1ad2-4ec1-ae23-9d1f3d28f2ba",
"privileges" : {
"io.netfoundry.network" : {
"service" : {
"read" : [ [ ] ]
}
}
},
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:30.176126Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Read Service, All to identity 83d8cce9-1ad2-4ec1-ae23-9d1f3d28f2ba"
} ]Super-User Grants
Find Super Users
GET /super-users
Returns a set of {@link SuperUser}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link Domain}s. To search for {@link SuperUser}s that explicitly grant access to all domains (ie, the domainId is null), include this query parameter with no value. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the super-user resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
identityId |
Object |
true |
Filters results to those that grant to an identity specified in this set. |
domainId |
Object |
true |
Filters results to those that grant access to one of the specified ,{@link Domain},s. To search for ,{@link SuperUser},s that explicitly grant access to all domains (ie, the domainId is null), include this query parameter with no value. |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].identityId |
String |
true |
The id of the identity to whom super-user access has been granted. Must not be null. |
[].domainId |
String |
true |
An optional {@link Domain} id, which when set indicates that this super-user is limited to {@link ResourceAction}s in the corresponding {@link Domain}. When not set, this super-user applies to all {@link Domain}s, present and future. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link SuperUser} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link SuperUser} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link SuperUser} was deleted. This will be null for an {@link SuperUser} that has not been deleted. If this property is not null, then the {@link SuperUser} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[].type |
String |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/super-users' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.WG2T6gllkTE6EacQ25OlKFeOq0GvM5s5FrGtK_DhnljmPzer5Pv3WA8PPTSTaSAvE0Bux6QogghD7-G9yk0zjDAQjAMBVaf2WH3-938CjOKDlZ-pnL54MDg8QcQBjOAYjI3SflZs95bhfMxC3k-RAAejyrmimKrMToHyBXiaM8WeUoWbKbnnvdJ1_FdzOG0-5SA1V5rd6uC5yHMUfe-VDtzA968EoJFXB6W4ZrcKUKdMwS3ZhSoL_itgj_sNhpHg6hOKAWfFeiFTsY9EHken-VNV90Sy96XSuJ1tfVTYFVQoFVddAUWbClX2OB1dBJJ_qoa2kfbEBVGUmpEOrGpdSg'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1602
[ {
"id" : "720beea7-cc80-4693-ab0a-67d74f83658a",
"identityId" : "9432a1c1-a50c-4753-81fc-33d4825a66bc",
"domainId" : "a35579f0-9a66-4093-a215-3d30a5dc93ea",
"createdBy" : "7d1facda-e353-43e8-8d32-ff444885bf62",
"createdAt" : "2023-05-31T08:36:46.318961Z",
"updatedAt" : "2023-05-31T08:36:46.318961Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.superuser.SuperUser",
"_title" : "Grant All Actions (SU) in Test Domain to identity 9432a1c1-a50c-4753-81fc-33d4825a66bc"
}, {
"id" : "648c9b92-eee8-4e05-b514-36779fd1d31e",
"identityId" : "b886aa40-1bbe-46cc-9aaf-d0789c4de885",
"domainId" : "6ba5278a-3fd5-4f3b-ad23-10d2bf862cdc",
"createdBy" : "3dd15655-2b31-4410-a807-e1826ea46cf2",
"createdAt" : "2023-05-31T08:37:02.487678Z",
"updatedAt" : "2023-05-31T08:37:02.583752Z",
"deletedAt" : "2023-05-31T08:37:02.582611Z",
"deletedBy" : "0e9d4164-c809-4106-96b5-8fa3a1024aa6",
"type" : "io.netfoundry.auth.domainv2.superuser.SuperUser",
"_title" : "Grant All Actions (SU) in Test Domain 10 to identity b886aa40-1bbe-46cc-9aaf-d0789c4de885"
}, {
"id" : "a968215d-409e-4d23-9009-a6aa1d154a1a",
"identityId" : "26f4b047-f166-4b90-839d-21593256ef40",
"domainId" : null,
"createdBy" : "d6718153-64a4-4a79-b71c-7ab2a122bb8e",
"createdAt" : "2023-05-31T08:36:56.050100Z",
"updatedAt" : "2023-05-31T08:36:56.050100Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.superuser.SuperUser",
"_title" : "Grant All Actions (SU) in All Domains to identity 26f4b047-f166-4b90-839d-21593256ef40"
} ]Get Super User
GET /super-users/{id}
Authorization
This endpoint requires read action on the super-user resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
The id of the identity to whom super-user access has been granted. Must not be null. |
domainId |
String |
true |
An optional {@link Domain} id, which when set indicates that this super-user is limited to {@link ResourceAction}s in the corresponding {@link Domain}. When not set, this super-user applies to all {@link Domain}s, present and future. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link SuperUser} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link SuperUser} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link SuperUser} was deleted. This will be null for an {@link SuperUser} that has not been deleted. If this property is not null, then the {@link SuperUser} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/super-users/720beea7-cc80-4693-ab0a-67d74f83658a' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiIwd1dQUW9JNzNOYTN1SGViTDloZW9BIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjZjZTExODY2LTVlMDEtNDVmYy05NDYzLTNhN2NkMThiOTZlZiIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyMiwiZXhwIjoxNjg1NTI1ODIyLCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjkzYjk3YWFlLTE3NDQtNGExOC05MGQ0LWNhOGM5ZTBhZWNlMVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiMmYwMWFiN2UtYjhiOS00N2U2LTgxZmEtZTVjZTNjZDdjMTgyXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIyfV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.SG7kywBqudIda3-2v2JBoic36pok49cz-A-PdaE3XLbSVWmCOvZ7yE3tc8u2NHWFTPQehlRELPFdADsseMQ_FDL_wmQJT6-El_ulskqjfi3gfFrXs00IspMblKo4wP3Dx9VBDIbXCR8Mebq1HIw1csYl2_M4JtIzZk1SvKDEsbFuEnFqxHVOs3vcCMLTqq4i2Y3R3e2fxpkZuZp4xjrXmhMDZr-u25Vsf57l6Ce7DcoQdG8bk3W9mXThcKcAYV55_uL-K8LrHzPfESt7cgrCvCKTpczFSAYczCYPA6OSM97R_jWpLO8hQiK6hvyFtlnLrsKBqHViEJK0TXVVz2lbLA'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 522
{
"id" : "720beea7-cc80-4693-ab0a-67d74f83658a",
"identityId" : "9432a1c1-a50c-4753-81fc-33d4825a66bc",
"domainId" : "a35579f0-9a66-4093-a215-3d30a5dc93ea",
"createdBy" : "7d1facda-e353-43e8-8d32-ff444885bf62",
"createdAt" : "2023-05-31T08:36:46.318961Z",
"updatedAt" : "2023-05-31T08:36:46.318961Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.superuser.SuperUser",
"_title" : "Grant All Actions (SU) in Test Domain to identity 9432a1c1-a50c-4753-81fc-33d4825a66bc"
}Create Super User
POST /super-users
Authorization
This endpoint requires the following actions:
-
createaction on thesuper-userresource type -
readaction on thedomainresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
identityId |
String |
true |
Must not be null. |
domainId |
String |
true |
Client must have |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
The id of the identity to whom super-user access has been granted. Must not be null. |
domainId |
String |
true |
An optional {@link Domain} id, which when set indicates that this super-user is limited to {@link ResourceAction}s in the corresponding {@link Domain}. When not set, this super-user applies to all {@link Domain}s, present and future. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link SuperUser} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link SuperUser} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link SuperUser} was deleted. This will be null for an {@link SuperUser} that has not been deleted. If this property is not null, then the {@link SuperUser} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/super-users' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.lem-z-dH7CI39hIzMk6s1y7u-AQQxsfk2mnx4WGmT3bohOkHQN51mLd6G8VTh688lETQDXTFiQMiuO5ne52WSRs1XMUvrvcbtbASv2gnqE5M3Aw3wFQZcfQIXOXwaFtVnX0dAdmE_iTiyuGZ97RvTst1bGqSYDcs-YMuUS53KdsaSpQBt9qNZFfThmG7prxmCruk0o_AUzSNxQtIVatOLftms3d49I8sKSrkJbdv3Mp1ReOn3pBQRwZm5NRa1wtm-c55xS0ezKp_JvqnnFyvmlpeCuq87Ykk_p4lpnXXIm9YryavLJ4o9hwG0LJSkiuilY5o13JIMLnQiUVXTNIe3w' \
-d '{"identityId":"9432a1c1-a50c-4753-81fc-33d4825a66bc","domainId":null}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 488
{
"id" : "c6418271-c7bf-44ba-b524-138519a32d0e",
"identityId" : "9432a1c1-a50c-4753-81fc-33d4825a66bc",
"domainId" : null,
"createdBy" : "f9567c5a-60d8-427c-af48-31ac1511da58",
"createdAt" : "2023-05-31T08:37:01.923683Z",
"updatedAt" : "2023-05-31T08:37:01.923683Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.superuser.SuperUser",
"_title" : "Grant All Actions (SU) in All Domains to identity 9432a1c1-a50c-4753-81fc-33d4825a66bc"
}Delete Super User
DELETE /super-users/{id}
Authorization
This endpoint requires delete action on the super-user resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/super-users/648c9b92-eee8-4e05-b514-36779fd1d31e' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.A2dKXHxPZGPa60YyYWls87uJGL51Cgvz1N0126G_CB9OiuoTWQs4NwjOQ0G0Ehv9lmpNMz2o7c64tivSLiXKix1huPwPfAFB4F_dkDPEZflu7V6Psab-nFnywYpuW4d8XMmN_90iD9nIbN-bzBHwn0cfpnkp_IRXWnYKhEbM7euXEfebQ9_1AIFQ5fDsHqt5AQktalUAUK7FGKBtFgHN1MBYH4AvH-M_56RpkMMMG9XjHrZZZ6qrz42ehoARkUYFbnsV7Js24e-uui8fA8Ap4Hi6ywnl0RoXsf6qU91kfU7-Pz4OC8Azf7FGs3MHya3IEV4TalWhOD_862FPOIFR9g'Example response
HTTP/1.1 200 OKPublic Grants
Find Public Grants
GET /public-grants
Returns a set of {@link PublicGrant}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link ResourceAction}s. false, filters to those with the isAnonymous property is false. When not specified, the results will include those with both true and false values for this property. example, if the path is to Network X which is under Network Group Y, this would restrict the results to {@link IdentityResourceAction}s that grant an action on any resource under Network X, an action on Network X itself, or an action on Network Group Y. Combine this query parameter with resourceActionIds to limit the results to the types of actions along the path that are of interest.
The path value must start with a domain code followed by a colon. It may then have a comma delimited sequence of colon separated resource type code and resource id pairs. The path structure must match that of the server defined resource tree for the specified resources in the specified domain. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the public-grant resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
resourceActionId |
Object |
true |
Filters results to those that grant one of the specified ,{@link ResourceAction},s. |
isAnonymous |
Boolean |
true |
When true, filters results where the isAnonymous property is true. When false, filters to those with the isAnonymous property is false. When not specified, the results will include those with both true and false values for this property. |
path |
Object |
true |
Filters results to those that target any resource along the specified path. For example, if the path is to Network X which is under Network Group Y, this would restrict the results to ,{@link IdentityResourceAction},s that grant an action on any resource under Network X, an action on Network X itself, or an action on Network Group Y. Combine this query parameter with resourceActionIds to limit the results to the types of actions along the path that are of interest., |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].resourceActionId |
String |
true |
Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link PublicGrant} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link PublicGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link PublicGrant} was deleted. This will be null for an {@link PublicGrant} that has not been deleted. If this property is not null, then the {@link PublicGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[].path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link PublicGrant} targets. Must not be null. |
[].path[].resourceId |
String |
true |
Must not be null. |
[].path[].resourceTypeId |
String |
true |
|
[].type |
String |
true |
|
[].anonymous |
Boolean |
true |
If true, then any client may perform the linked action even if not authenticated. If false, then a client must be authenticated in order to perform the linked action. The actual identity id of the client does not matter for {@link PublicGrant}s. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/public-grants' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJDWFBnVlI0a2sybUFucU1rRndIRVlBIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6ImExNDg3NmQyLTFlYTktNDgyOC05NTdmLWQxNzQwYmYyMDEyMSIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyMSwiZXhwIjoxNjg1NTI1ODIxLCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjkzYjk3YWFlLTE3NDQtNGExOC05MGQ0LWNhOGM5ZTBhZWNlMVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiNjBmYWU0NTgtOTI4YS00ZTI0LTk3MTYtYjNiYTdkNTk0ODYzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIxfV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.DrtnK2pEALlqTGBwqFCgyG_LimVseVsjxKkv7wb8T2QwmvFSEu_vi2drS8x52tp9b0Ih2VD0YDNTjOUa05QZNQFfv9djgtemVWK-8PCxqfJk79-LQcXYaN9D1obMh8t2xF6JHD1hAkwEg291QYuNpbj2Q6t-8WXKIquFj1CjDvPdpHyjdwnEodULeVFcKPSjSX4HwxEb0Kw5_BhXij4sUqnW0_BaLu3bh6smWzZ434Wy2JuOtx5FcyMx9bNDcCfHyZ5HwkMQ6dVnqvyYfWsi-tL9-k4vdlee7wr9fe9kdJuC8PnLWsUFJK9BMmzBiOtEwqwT0Ajakoe6XKzjOp3faw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1484
[ {
"id" : "dbe90662-00fb-4237-b8f5-0247da2fe68a",
"resourceActionId" : "ba3ce9c5-7d62-4e5a-bab0-4730dd5a52fe",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:31.504728Z",
"updatedAt" : "2023-05-31T08:36:31.504728Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"type" : "io.netfoundry.auth.domainv2.publicgrant.PublicGrant",
"anonymous" : false,
"_title" : "Grant Read Workflow Status, All to All Authenticated Clients"
}, {
"id" : "1862c688-5bfd-4cd4-9eb2-1e27a9c04d33",
"resourceActionId" : "b03d3cff-d1ec-4932-a6d8-32496c4e4f38",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:29.609941Z",
"updatedAt" : "2023-05-31T08:36:29.609941Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"type" : "io.netfoundry.auth.domainv2.publicgrant.PublicGrant",
"anonymous" : false,
"_title" : "Grant Read Domain, All to All Authenticated Clients"
}, {
"id" : "e51df28d-62c0-4165-9f45-81b39b2dd95b",
"resourceActionId" : "e6098d67-37d9-47f6-8088-a148b0b86a27",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:30.085199Z",
"updatedAt" : "2023-05-31T08:36:30.085199Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"type" : "io.netfoundry.auth.domainv2.publicgrant.PublicGrant",
"anonymous" : false,
"_title" : "Grant Read Network Configuration Metadata, All to All Authenticated Clients"
} ]Get Public Grant
GET /public-grants/{id}
Authorization
This endpoint requires read action on the public-grant resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceActionId |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link PublicGrant} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link PublicGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link PublicGrant} was deleted. This will be null for an {@link PublicGrant} that has not been deleted. If this property is not null, then the {@link PublicGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link PublicGrant} targets. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
type |
String |
true |
|
anonymous |
Boolean |
true |
If true, then any client may perform the linked action even if not authenticated. If false, then a client must be authenticated in order to perform the linked action. The actual identity id of the client does not matter for {@link PublicGrant}s. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/public-grants/c869abb5-42a7-4451-809c-8572f2ab7e9a' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiIxTTBtQmlVZFN4Vi1aWXNPTjVoVERRIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjE2YTFmNzI0LWYwOWQtNDYyNy1hM2FhLTVjN2NmMmRlMDQ5ZiIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyMCwiZXhwIjoxNjg1NTI1ODIwLCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiNGQ0ZDc4YjEtN2Q5NC00MWY4LWE0YzUtMWNhZGU4NmI4NzY0XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIwfV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.d2g_UNV_IIkNZn6vohV4-pH4S8I29zrZBjNA2SlppMqXePc66608B0rH2g7f9jcBtIMQyUG2cpF8JaDqjoGTFr9nzC39-lpAJF0CPM33Bn_GzIL4r5W-dPrelDHIviGa6iw95EaZ6BpjQNk1iCGj8xV7I3q-htkY03K7wwVWFGayHffSJgTKWKH0YQGvDTIA3h7qH5bcDSjXURCWTaHxSPdCJ5Drnk2r7_jAR58CfWNHahitQJiO5ex2kWD3-fYya2xOeSOMwOpJIfzJ5F8Xnp3irjReH1LtHXGBS6I3dSn4V-PLwetQfqYF0LCUO7Q3KNeBjMBRLoHRdqhGfm-peg'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 675
{
"id" : "c869abb5-42a7-4451-809c-8572f2ab7e9a",
"resourceActionId" : "464de97d-5069-492d-8e1d-7c156c56ed2e",
"createdBy" : "11443d55-b44f-4798-8ad8-c89203a6833d",
"createdAt" : "2023-05-31T08:37:00.099619Z",
"updatedAt" : "2023-05-31T08:37:00.099619Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "119b4a03-8646-40e8-8e12-8eb9f8dbd7c3",
"resourceTypeId" : "b123c3db-b3d0-4d84-be9e-2ced5f00f0b2"
} ],
"type" : "io.netfoundry.auth.domainv2.publicgrant.PublicGrant",
"anonymous" : false,
"_title" : "Grant Test Action 6 Test Type 5 on/under Test Type 5 119b4a03-8646-40e8-8e12-8eb9f8dbd7c3 to All Authenticated Clients"
}Create Public Grant
POST /public-grants
Authorization
This endpoint requires the following actions:
-
createaction on thepublic-grantresource type -
readaction on theresource-actionresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
resourceActionId |
String |
true |
Client must have |
path |
Array[Object] |
true |
Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
anonymous |
Boolean |
true |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceActionId |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link PublicGrant} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link PublicGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link PublicGrant} was deleted. This will be null for an {@link PublicGrant} that has not been deleted. If this property is not null, then the {@link PublicGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link PublicGrant} targets. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
type |
String |
true |
|
anonymous |
Boolean |
true |
If true, then any client may perform the linked action even if not authenticated. If false, then a client must be authenticated in order to perform the linked action. The actual identity id of the client does not matter for {@link PublicGrant}s. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/public-grants' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.MF6_aF90deDeUvDbBJKjdspcL9PVGbgArB8HttQW0S8_egibLyo0nTAUKAYFdo4ny2vMFoxNG2vOx-fnNIhEQu55LwDmMXcFIhZevIBUuPxw44VnRbcwQHXMyzweRRwdCizSq4NjtDjIeJw7C0xB9UeookhetTpJaQYajKIbFtMhn8erRxi7sI3p1y-H3f8p_UMpTcEFGm0mHENwtALi_W6WYi1drsk9UNkBJ7Xunr0Vwp82UP8sMctgS2py_zgO1xal2acKBhXORm51N0cOiYR8TgSd8RYHt7JF2_nTZuWnOYb3rMUBZbxbzcdegl_Q3cKLOXijJkaZKTYVyaT4Gg' \
-d '{"resourceActionId":"7f3fab32-bd55-42d8-a473-cbd6728a7f55","path":[{"resourceId":"addbdd81-7aa2-4232-86b9-0a8b517da7ac","resourceTypeId":"c6e58f31-3cb2-4f56-9199-a0b05a7adf7d"}],"anonymous":false}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 669
{
"id" : "93b97aae-1744-4a18-90d4-ca8c9e0aece1",
"resourceActionId" : "7f3fab32-bd55-42d8-a473-cbd6728a7f55",
"createdBy" : "e8397bd5-1537-4939-aed9-6d30030c15ec",
"createdAt" : "2023-05-31T08:37:01.160877Z",
"updatedAt" : "2023-05-31T08:37:01.160877Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "addbdd81-7aa2-4232-86b9-0a8b517da7ac",
"resourceTypeId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d"
} ],
"type" : "io.netfoundry.auth.domainv2.publicgrant.PublicGrant",
"anonymous" : false,
"_title" : "Grant Test Action Test Type on/under Test Type addbdd81-7aa2-4232-86b9-0a8b517da7ac to All Authenticated Clients"
}Delete Public Grant
DELETE /public-grants/{id}
Authorization
This endpoint requires delete action on the public-grant resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/public-grants/4452e9a0-199a-40da-8a9b-6a0965b4d164' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.FPN8W41DuEdr03D2jNQclj9I3foiybLSKVHnCYjifJERxyyKePjWLm3usDL6fSe6kyYC1LMrzzCVEPYe95SPVmNSfEb0ockdEIcCVahPme23efWi-gS05zF0cjGRvBP3mm3sbuk6o4OnnvCCMmw8fbsGdAVUWzRFF6ZcfkW0EV317JuebKIs4NVMp6tyLCSr06cPs0keEUg_iX2K7ydI3Xr2icgUc9q3_mLC-GXT83CCKhSv4fvzhf2URAsI-50lSZpJYWG-V7VX8cCcik8zbJXUo1X7-esGp1RXMV_N4HdV0QsCXh-7f8sAn5InFWxxUAw56KjIfuCPuPWni3z7mQ'Example response
HTTP/1.1 200 OKIdentity - Resource Action Grants
Find Identity Resource Actions
GET /identity-resource-actions
Returns a set of {@link IdentityResourceAction}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link ResourceAction}s. For example, if the path is to Network X which is under Network Group Y, this would restrict the results to {@link CustomRoleAction}s that grant an action on any resource under Network X, an action on Network X itself, or an action on Network Group Y. Combine this query parameter with resourceActionIds to limit the results to the types of actions along the path that are of interest.
The path value must start with a domain code followed by a colon. It may then have a comma delimited sequence of colon separated resource type code and resource id pairs. The path structure must match that of the server defined resource tree for the specified resources in the specified domain. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the identity-resource-action resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
identityId |
Object |
true |
Filters results to those that grant to an identity specified in this set. |
resourceActionId |
Object |
true |
Filters results to those that grant one of the specified ,{@link ResourceAction},s. |
path |
Object |
true |
Filters results to those that target any resource along the specified path., |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].identityId |
String |
true |
The id of the identity to whom this {@link IdentityResourceAction#resourceActionId} has been granted. Must not be null. |
[].resourceActionId |
String |
true |
The {@link ResourceAction} that possession of this {@link IdentityResourceAction} grants to the linked identity for resources under the specified path. Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was deleted. This will be null for an {@link IdentityResourceAction} that has not been deleted. If this property is not null, then the {@link IdentityResourceAction} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[].path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link CustomRoleAction} targets. For example, if this {@link CustomRoleAction} is "Update Widget Service" then this property defines the (id) path of/to the "Widget Service" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to the {@link ResourceAction#getResourceTypeId()}. Both must target the same {@link ResourceType}. Must not be null. |
[].path[].resourceId |
String |
true |
Must not be null. |
[].path[].resourceTypeId |
String |
true |
|
[].type |
String |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/identity-resource-actions' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJXdHp1NHFGeFA2a19KVHBSclRPU01nIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjI5OGI2ZmU3LTM1YTMtNDVlYy1iMTcwLTFlNzY4Mzk1ZTc1MiIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyNSwiZXhwIjoxNjg1NTI1ODI1LCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjkzYjk3YWFlLTE3NDQtNGExOC05MGQ0LWNhOGM5ZTBhZWNlMVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiZDAyZDdlNmYtOWM5OC00MDMxLTgxNGYtOWI2Mzk2NWRmZmIzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjI1fV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.LUMF1nYsN2NFXegjqg7gBULIDpw6I1Fti64uyAc0mE8R8EqRK560S2K8qkSDYuTrcv8e_izfyK1XbUmSAb6QfPSOghRJbF7z0NGC3epqinZ6z7NTnVP5zzwkJQOTzxGN6_1b2QbglMP-irmeZmfBhJE9owOXsmgm-zBX8AtnGeB1hTg5t1NCsNqcviIDgKUA7A7w5DK7wuU8PElnP001xbPFqj5qXrWgribWatSCizwnHsT9gPPLMRClkuUXjvqd8VVihjz1P21NOuMETsfoXz0GVlA8Dso1IlXPBBt9wb5l6X6EZ_V7s3UfshGU6UAsghTsdTKuIcnlNS5W0NDNwQ'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1745
[ {
"id" : "a1bd28d9-c325-4f14-84f2-9884a425fd98",
"identityId" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"resourceActionId" : "8a26782e-92f2-47e3-8b2b-514a3957bda9",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:36.414213Z",
"updatedAt" : "2023-05-31T08:36:36.414213Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"type" : "io.netfoundry.auth.domainv2.identityresourceaction.IdentityResourceAction",
"_title" : "Grant Create Network Controller MoveStart Deployment-Network Controller, All to identity 0ab1b47d-a5de-4f39-a3bd-7b130cacf401"
}, {
"id" : "b2a8ad1f-bf66-4eea-8a05-83382649b87d",
"identityId" : "26690eb4-92e9-4ed0-acbe-6e26564eae99",
"resourceActionId" : "67bc55cd-2301-42ff-9d14-399ad168c9f1",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:36.119284Z",
"updatedAt" : "2023-05-31T08:36:36.119284Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"type" : "io.netfoundry.auth.domainv2.identityresourceaction.IdentityResourceAction",
"_title" : "Grant Read Edge Router, All to identity 26690eb4-92e9-4ed0-acbe-6e26564eae99"
}, {
"id" : "9b1f3946-9a89-4c6d-b98c-b2ba897dbdb3",
"identityId" : "2b6f496d-36f1-4e66-a205-8abcf1d41d74",
"resourceActionId" : "328d9358-4b51-45b2-becf-e299390a2071",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:36.309419Z",
"updatedAt" : "2023-05-31T08:36:36.309419Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"type" : "io.netfoundry.auth.domainv2.identityresourceaction.IdentityResourceAction",
"_title" : "Grant Read Network Group, All to identity 2b6f496d-36f1-4e66-a205-8abcf1d41d74"
} ]Get Identity Resource Action
GET /identity-resource-actions/{id}
Authorization
This endpoint requires read action on the identity-resource-action resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
The id of the identity to whom this {@link IdentityResourceAction#resourceActionId} has been granted. Must not be null. |
resourceActionId |
String |
true |
The {@link ResourceAction} that possession of this {@link IdentityResourceAction} grants to the linked identity for resources under the specified path. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was deleted. This will be null for an {@link IdentityResourceAction} that has not been deleted. If this property is not null, then the {@link IdentityResourceAction} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link CustomRoleAction} targets. For example, if this {@link CustomRoleAction} is "Update Widget Service" then this property defines the (id) path of/to the "Widget Service" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to the {@link ResourceAction#getResourceTypeId()}. Both must target the same {@link ResourceType}. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/identity-resource-actions/342e973f-5539-4c7b-8c38-db9ea8772ee9' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.cr2ZR7XEDfZfuZc6g5FmRrhXgtFWfa6UjBvkk2GQpblj5hkTdghqW9jMopFlJJBiOy45iMZsyuRb0UIBhIJkKXj_VbztDo09Rwbt6VuhYWsJEtXmj8MmaX3cF3SR8uMYGieobsq3QGpnQAJ2bQB5xbRoXGu5ONi1qRrA4PQe-Yq4Fs7zBY1brHSy6cduDpDtgnQWeK_J6CU2T6GQZOImjP2UZqM9IgWGBKrUHt9bpQuHp4TpPaP2USTjVJo3uE4nSB516ixyzEXolgkhhHcfoI1GeZ_dgFCrCIj2vlEd5GcuWoh0UnxW1PL6MExVfLDr3vLDt3LjIcu9sk40K8m-Cw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 754
{
"id" : "342e973f-5539-4c7b-8c38-db9ea8772ee9",
"identityId" : "67a3e55f-3dec-4f8c-a403-24a1addd72b6",
"resourceActionId" : "ee32e996-2fc3-4534-8f22-f957ee41e8ff",
"createdBy" : "a814c922-73c5-46dc-86d6-97a7bb190a95",
"createdAt" : "2023-05-31T08:37:05.949019Z",
"updatedAt" : "2023-05-31T08:37:05.949019Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "bbabfabf-573e-4f64-b652-e41ffe9f7751",
"resourceTypeId" : "6c277ac0-76ad-49f3-b004-e9da8ef43f3b"
} ],
"type" : "io.netfoundry.auth.domainv2.identityresourceaction.IdentityResourceAction",
"_title" : "Grant Test Action 26 Test Type 25 on/under Test Type 25 bbabfabf-573e-4f64-b652-e41ffe9f7751 to identity 67a3e55f-3dec-4f8c-a403-24a1addd72b6"
}Create Identity Resource Action
POST /identity-resource-actions
Authorization
This endpoint requires the following actions:
-
createaction on theidentity-resource-actionresource type -
readaction on theresource-actionresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
identityId |
String |
true |
Must not be null. |
resourceActionId |
String |
true |
Client must have |
path |
Array[Object] |
true |
Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
The id of the identity to whom this {@link IdentityResourceAction#resourceActionId} has been granted. Must not be null. |
resourceActionId |
String |
true |
The {@link ResourceAction} that possession of this {@link IdentityResourceAction} grants to the linked identity for resources under the specified path. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link IdentityResourceAction} was deleted. This will be null for an {@link IdentityResourceAction} that has not been deleted. If this property is not null, then the {@link IdentityResourceAction} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link CustomRoleAction} targets. For example, if this {@link CustomRoleAction} is "Update Widget Service" then this property defines the (id) path of/to the "Widget Service" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to the {@link ResourceAction#getResourceTypeId()}. Both must target the same {@link ResourceType}. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/identity-resource-actions' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.kqFiTjcvQXJtd1gbPzoGl09nA4YkdTrol4_HWMx2XF76OUZr2vikZNyBkLp2cv9Gxtg85wsE-hE2Q4R5e7IdF5n2fgxmVgIJ7_Hw8K9p-9CfwiZsBRn4RqIiQR3FsxajUA595P6hXfwBZs3cNjRIR0Gzu4K6uVRCGkvF0YfpDp_250nzynnCJSTdbP97paHJmDA5Ts_PGB1NR_7m6GPnWLjEw-Yn08kY3E4OJ_ei7v9saz061O7rFczeGu2dERnbddHHY9RmuGew_3IynyQRbUZtDT4Nswt6eRd_cFPEZT0XciC9nOxaqGLzsyV5jjHnAzqKYP53P6oV5PTsJZcbRg' \
-d '{"identityId":"bf80efd0-ec4a-4241-a4be-5dd70219ecc2","resourceActionId":"7f3fab32-bd55-42d8-a473-cbd6728a7f55","path":[{"resourceId":"6538e9f3-1737-4b7c-8ec3-b2997c45e7de","resourceTypeId":"c6e58f31-3cb2-4f56-9199-a0b05a7adf7d"}]}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 745
{
"id" : "8aa9db9a-f4a7-454a-b9f6-e71161a3d9dc",
"identityId" : "bf80efd0-ec4a-4241-a4be-5dd70219ecc2",
"resourceActionId" : "7f3fab32-bd55-42d8-a473-cbd6728a7f55",
"createdBy" : "518dcedb-9ce5-4e79-b072-2e34093910b1",
"createdAt" : "2023-05-31T08:37:06.668659Z",
"updatedAt" : "2023-05-31T08:37:06.668659Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "6538e9f3-1737-4b7c-8ec3-b2997c45e7de",
"resourceTypeId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d"
} ],
"type" : "io.netfoundry.auth.domainv2.identityresourceaction.IdentityResourceAction",
"_title" : "Grant Test Action Test Type on/under Test Type 6538e9f3-1737-4b7c-8ec3-b2997c45e7de to identity bf80efd0-ec4a-4241-a4be-5dd70219ecc2"
}Delete Identity Resource Action
DELETE /identity-resource-actions/{id}
Authorization
This endpoint requires delete action on the identity-resource-action resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/identity-resource-actions/4d02d19e-c2fb-4482-b0a1-a18f692eccaa' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.gaPbDPKSRcDKD_sK4xRtlEpUIE6BuMtu5Fy-xxm_qfzA19dx1_fJmKrxigjkn5KHveePLZdJ252EQFEKhwVeURCL9WEbEqEfnoOQpqrX11y_qIsojgWOrsQ11j6DeCbO7MH7Ci3m7REXuc1497cpXQ0bWUPrI3x5JED6ps5W-ocf_gX9mnJxQotjUqjy6kPPVDjxJOFaJ4v9_m0p8DmuGE137kEbEXt5TCu23dTuDzY1iMBXZzU10E61g4f_yUFrHXlFD7ZD1njpC0tUxVKgvInp0r4c1Nw5zXy6SstsH02l8bNVGcrJZyrgN7aO5iMTUuKqZcVj24F7pS9t1JYQ2w'Example response
HTTP/1.1 200 OKCustom Roles
Find Custom Roles
GET /custom-roles
Returns a set of {@link CustomRole}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link ResourceAction}s. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the custom-role resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
identityId |
Object |
true |
Filters results to those granted to one of the specified identity ids. |
resourceActionId |
Object |
true |
Filters results to those that grant one of the specified ,{@link ResourceAction},s. |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].name |
String |
true |
The human friendly name of this {@link CustomRole}. Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link CustomRole} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link CustomRole} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link CustomRole} was deleted. This will be null for an {@link CustomRole} that has not been deleted. If this property is not null, then the {@link CustomRole} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[].type |
String |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-roles' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.GUNIm77PnDYNCi2A581wyDRXbB2IEsPcBE9DLhTIdneD6YmXE2nKNW6GEqwq5U6BCTS_nOO6aABHDxtHQJjJRxPJbYTquL-zYp5h7__Oo4ihVI0Lru9BRGfqhVgERr8P7ct9wo-e5L865gbg81Ksv9kxpDlhbVsGmyK4ZG5hGo-Drqoy_uQIYnOnxsISl2lPi2eI6YLChNKZiIDEHbUMOCNYHc99cRi9FZkr1ROEf-R6htjsjqHZt-kwfRh05IEFVXoispAb2OBF0CarDw_X79Q9ncYDPYq_R-q0ChNkOzYsZXs_JkuE2SogRe01-4H0kiQ4ML_YTAn7A-Gst0CRdw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1151
[ {
"id" : "665bf926-a4de-4a65-a59e-1206e0ff6fcb",
"name" : "NF Support (Read-Only)",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:30.100397Z",
"updatedAt" : "2023-05-31T08:36:30.100397Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.customrole.CustomRole",
"_title" : "NF Support (Read-Only)"
}, {
"id" : "00736fb7-484e-44e1-bae9-d358a4d7421c",
"name" : "Test Custom Role 48",
"createdBy" : "19943807-da36-49be-9b8e-fb15796cc868",
"createdAt" : "2023-05-31T08:37:12.633743Z",
"updatedAt" : "2023-05-31T08:37:12.633743Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.customrole.CustomRole",
"_title" : "Test Custom Role 48"
}, {
"id" : "b5dcc52f-4eb1-421a-9036-f8d4348d1d67",
"name" : "Test Custom Role 44",
"createdBy" : "0e0e1a2d-1344-41e2-b730-7cb685c81e38",
"createdAt" : "2023-05-31T08:37:12.083693Z",
"updatedAt" : "2023-05-31T08:37:12.083693Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.customrole.CustomRole",
"_title" : "Test Custom Role 44"
} ]Get Custom Role
GET /custom-roles/{id}
Authorization
This endpoint requires read action on the custom-role resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
The human friendly name of this {@link CustomRole}. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link CustomRole} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link CustomRole} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link CustomRole} was deleted. This will be null for an {@link CustomRole} that has not been deleted. If this property is not null, then the {@link CustomRole} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-roles/c0e6f64f-c7c7-4b1a-9dc6-4bd4fbc1300c' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.eALNp5rEqgsk35oHXMZ-wRS9-v_M4ANj6RK5qtFbXLFGIJb30-eMK3ZYw6CLweCENjt6s7sF06dxqIX7RL4lMPlwgri73RnV9GNHs949Gh_b8dz5mSJ8GsU20csvX2s-veX4Kn23JEXGoBTB_qejcDXMgm4YFeecunvdbCyRlIqaLk1NDDRt4Nk4vWFBmEoHH7_36ZBrSuTqiyeQHcpOhUMWfaECVPsDld2XFqAcwsDswby8dh7G7Mr1he2o_bCexgyp4NsArPDwpy-npNL2n-r6tT4phpCBynSbLj8pEjawjD9FpFqqORySHB8JueP0B5NFBXt0dLO85LNozwlDew'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 379
{
"id" : "c0e6f64f-c7c7-4b1a-9dc6-4bd4fbc1300c",
"name" : "Test Custom Role 52",
"createdBy" : "214f64f8-4f9c-405b-9669-6d0081b93339",
"createdAt" : "2023-05-31T08:37:13.841416Z",
"updatedAt" : "2023-05-31T08:37:13.841416Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.customrole.CustomRole",
"_title" : "Test Custom Role 52"
}Create Custom Role
POST /custom-roles
Authorization
This endpoint requires create action on the custom-role resource type.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
name |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
The human friendly name of this {@link CustomRole}. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link CustomRole} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link CustomRole} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link CustomRole} was deleted. This will be null for an {@link CustomRole} that has not been deleted. If this property is not null, then the {@link CustomRole} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-roles' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.Fjr6LHuY1G4DMXVAHpZmgM1hGuXr3QEGRs1eQoPWbHILDwraFXh3FvnCXDrkfCA5iWpu6lgL2hpEcIuKdCCnphkd2a6BVXWQs4ATdTRVzGS0MMI23fcYE1PhhoqgRXBwrFlhFwMft0Z1i-Of4NffHIv2Le0BqAPSvUtmlAOikGTEaCXVmx-C2VvgAajPZzQ90b5flI-103CFGSZchmvcAYZstYZ1Z4LcLR151lcWwCBlFEcIW9bsYo_ia4F3p-bu-4OtBu9hSXwjiqUCBcyj8YPmTivh4ienwvFqB8Mqf4ZC4dU3wMk0qb-sZv0iXlyHnV1OzNlgpSoBHRLCFbbT7g' \
-d '{"name":"Test Custom Role Create"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 387
{
"id" : "3dcedf73-91e4-40a2-944c-a95a6f277e9b",
"name" : "Test Custom Role Create",
"createdBy" : "cf71a796-f53e-4188-b714-55f30e546b45",
"createdAt" : "2023-05-31T08:37:14.452731Z",
"updatedAt" : "2023-05-31T08:37:14.452731Z",
"deletedAt" : null,
"deletedBy" : null,
"type" : "io.netfoundry.auth.domainv2.customrole.CustomRole",
"_title" : "Test Custom Role Create"
}Delete Custom Role
DELETE /custom-roles/{id}
Authorization
This endpoint requires delete action on the custom-role resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-roles/2434e390-d472-493a-8ede-dee8a278aea1' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.RX1tINqlRWlmsLBx-3Vuh7lUmnXE87aluUdKRbVEH8F-mwJ2lRsGhG6DUoM1ejkxHfKszWM1eZlTzGeFJ18Zm9ZePCiO2dvMSw60fXfOxOEJsV-y5CqEGcqilFtOLqAA9vbU5UL7cr_jwlooh1K5LcPhBM87DIhxLGbUeF5cUlFSA7aToo6gjNQBlGeYz4kEtAxZ0iyZom8XVDzknPnVAU79GQ2OkNToWxjW2bTi1gkEeqgnyEcqqBdfEaInbKl-3AcMaz7y45OM8e5ylXA6IS5yVhUfHw1b6QaENp-jxwbm2DTFGfvakdRjaeJ4H6d8j6NJ4xnSNff4yxxYQiCmow'Example response
HTTP/1.1 200 OKGrant Custom Role (deprecated)
POST /custom-roles/{id}/identity-grants/{identityId}
Deprecated.
Deprecated. Use {@link CustomRoleGrantController#createCustomRoleGrant} to grant an identity a standard role.
Authorization
This endpoint requires the following actions:
-
readaction on thecustom-roleresource type -
createaction on thecustom-role-grantresource type
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
identityId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-roles/1b6de4af-a82a-48db-8e0a-318ab127ed0b/identity-grants/b8288f21-5eb6-4566-8b10-36b9a548e913' -i -X POST \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.Zp1NsA7I8tytnFpgwkl5ZFSQf2lXMbD4KV8HB8brBNxLOVRwt3_AzdXzPkgw2ebdJv0W8aBeLj1eqZjY8I6vZYp4-qAsonZMX7RxD_Rkzg3AWQk7Or4xSH0FI2jvycfjFNQP4kLG-mW_DgRoDx0xctlxKKkXEj1sET6GYenjnboGiQSEGMHDl4wg_8Q4_IAPi1GfRyPA0S1Hjpd006busV0MbQZxR2UndG445GwBLuBQ7gCN-gc5X1DWmZrUMz8NvCWKHilM47-xncuaakHyckx5zi4S6fDQaR0863c9z4I57VKFAQ2io-jghPzVysfPqHEH9mg3BuFdilOJ_i9UlA'Example response
HTTP/1.1 200 OKRevoke Custom Role (deprecated)
DELETE /custom-roles/{id}/identity-grants/{identityId}
Deprecated.
Deprecated. Use {@link CustomRoleGrantController#createCustomRoleGrant} to grant an identity a standard role.
Authorization
This endpoint requires the following actions:
-
readaction on thecustom-roleresource type -
deleteaction on thecustom-role-grantresource type
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
identityId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-roles/1d804815-9343-4e7d-b11e-6849fce43933/identity-grants/6dbb68c9-d627-4862-9b03-4fb119d83dce' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.I8T98-s6KbnZd1AGZPJOrR7u34Goj_8xjDcns_b_UFgYKzNkauULzu2D___kigTjiQtcwk9O0LJS_CiJQuOZUHCa7xBqGGJpNZfPuGfILtT3Ptfd_eCnzo5RzWXP8DNiL7iFsAJf8NfRPgo9OKX14bNg9b8gKdkvnQoJkfjVAl1TLXqWf2nsDRFq7T5FLIUCMoUkylRSDFXINY0s6Yd71naax3YZS2XjJvTwMGkbT2nFM7OjezGBoz-eNaMUXeG_OmKUaDHFap2WpHmxCjNNvHGnGRYYC34orNpiGOmuJO1uqnrdD8owyASoaD1YUeL00E9Kq1ic1wuj6lditgcVoQ'Example response
HTTP/1.1 200 OKCustom Role Actions
Find Custom Role Actions
GET /custom-role-actions
Returns a set of {@link CustomRoleAction}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link ResourceAction}s. For example, if the path is to Network X which is under Network Group Y, this would restrict the results to {@link CustomRoleAction}s that grant an action on any resource under Network X, an action on Network X itself, or an action on Network Group Y. Combine this query parameter with resourceActionIds to limit the results to the types of actions along the path that are of interest.
The path value must start with a domain code followed by a colon. It may then have a comma delimited sequence of colon separated resource type code and resource id pairs. The path structure must match that of the server defined resource tree for the specified resources in the specified domain. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the custom-role-action resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
customRoleId |
Object |
true |
Filters results to those from one of the specified ,{@link CustomRole},s. |
resourceActionId |
Object |
true |
Filters results to those that grant one of the specified ,{@link ResourceAction},s. |
path |
Object |
true |
Filters results to those that target any resource along the specified path., |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].customRoleId |
String |
true |
The {@link CustomRole} that this {@link CustomRoleAction} belongs to. This {@link CustomRoleAction} should be granted to any identity that is granted this linked {@link CustomRole}. Must not be null. |
[].resourceActionId |
String |
true |
The {@link ResourceAction} that this {@link CustomRoleAction} confers to the identities that hold the linked {@link CustomRole}. Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was deleted. This will be null for an {@link CustomRoleAction} that has not been deleted. If this property is not null, then the {@link CustomRoleAction} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[].path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link CustomRoleAction} targets. For example, if this {@link CustomRoleAction} is "Update Widget Service" then this property defines the (id) path of/to the "Widget Service" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to the {@link ResourceAction#getResourceTypeId()}. Both must target the same {@link ResourceType}. Must not be null. |
[].path[].resourceId |
String |
true |
Must not be null. |
[].path[].resourceTypeId |
String |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-actions' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.G6zeS3Dbw5yl52xev3ZFPP8o_s5laBkO5VTFRzPpZMqdZqsI4u9OvI3d018ZqcCNJZoTsFGhaTptUNGFcx82yFFGCNSyM_9sIt2FRIXvMFLLj0u7CdOcpghWS33tQH4BMJ8Qc1M-UW77bGbehBq4hPbu6vyxaci4szR6f5CKpUEAhe8_di7CIzbZj-AmnsiJsxb9GThL1yZPCXEQKpJ_S-Uq40VWuN--rKvAoLKX8cnUFBjaeq6n5SvsVLGOru-ffg4o5Dgae5ZvGKKk-fRJIEaGHlw26EnANNeFeJ94S32I4E-46RaTdgvmaipmx6X3eRP_yPP6lkUgwENcoilMXw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1278
[ {
"id" : "791ea2e0-dc26-4f99-b8f1-b8051073bea5",
"customRoleId" : "665bf926-a4de-4a65-a59e-1206e0ff6fcb",
"resourceActionId" : "d983f0ef-0316-4d40-af15-eec27cb35000",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:36.209773Z",
"updatedAt" : "2023-05-31T08:36:36.209773Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"_title" : "Read Http Agent, All"
}, {
"id" : "525d3a07-f260-48a9-8da0-08a44745156b",
"customRoleId" : "233ae92e-4b5d-4cab-9549-5d55fd1cbf6c",
"resourceActionId" : "8a67525b-f92b-44c1-bad2-94cec5561944",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:29.323354Z",
"updatedAt" : "2023-05-31T08:36:29.323354Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"_title" : "Read Standard Role, All"
}, {
"id" : "5033b71e-62d2-401c-9d79-7af0fb27043f",
"customRoleId" : "668720a0-531a-44fc-b196-4d3dbfba73eb",
"resourceActionId" : "4ec59d02-ee8c-41c3-ad53-6dc8656c62dd",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:34.822222Z",
"updatedAt" : "2023-05-31T08:36:34.822222Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ ],
"_title" : "Delete Billing Account, All"
} ]Get Custom Role Action
GET /custom-role-actions/{id}
Authorization
This endpoint requires read action on the custom-role-action resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
customRoleId |
String |
true |
The {@link CustomRole} that this {@link CustomRoleAction} belongs to. This {@link CustomRoleAction} should be granted to any identity that is granted this linked {@link CustomRole}. Must not be null. |
resourceActionId |
String |
true |
The {@link ResourceAction} that this {@link CustomRoleAction} confers to the identities that hold the linked {@link CustomRole}. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was deleted. This will be null for an {@link CustomRoleAction} that has not been deleted. If this property is not null, then the {@link CustomRoleAction} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link CustomRoleAction} targets. For example, if this {@link CustomRoleAction} is "Update Widget Service" then this property defines the (id) path of/to the "Widget Service" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to the {@link ResourceAction#getResourceTypeId()}. Both must target the same {@link ResourceType}. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-actions/2fab0525-ba11-4639-a72c-285c8e715763' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.jxlOhmcRz6h46ryFrqag-IuY-CrzcGEtbVyI6uXRl-jUoh8w1InA-AgXZfcFs-1kKNKAO21CxmH6p-ouzamA9kkE3XdrYGaGcNRA12ia_KolO6KI0eP9chI21VpHR_PxdMQ8xqS11Umy0dmqS_pb_MvgCPPAN8qQQmA9LeejgXn90CTr5sOGmlbB4G3DzhpYBSLySXiF9MUGwxXSvGCe3t0pkurdxIJW2JhHk5FX2iyORldeXGsK5mvt-mzp68_KJ7cSpDtVZI4GqzuWGgXR1OKmFqgSqjC_9H52YbFKGfRGnrWy4hUVotlJWgTBaILGVSAfo_0tdYQCbjGxYzsT1A'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 613
{
"id" : "2fab0525-ba11-4639-a72c-285c8e715763",
"customRoleId" : "b5dcc52f-4eb1-421a-9036-f8d4348d1d67",
"resourceActionId" : "f13321f1-a0a4-499b-8284-bd6b0058af0e",
"createdBy" : "8b8982ab-431f-4676-bfee-15fabeae9afa",
"createdAt" : "2023-05-31T08:37:12.145713Z",
"updatedAt" : "2023-05-31T08:37:12.145713Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "9ab76e72-3a1a-4c47-8d52-2a59762f7a30",
"resourceTypeId" : "d7631f7a-4c2e-4b85-b366-26ff847ddfa3"
} ],
"_title" : "Test Action 47 Test Type 46 on/under Test Type 46 9ab76e72-3a1a-4c47-8d52-2a59762f7a30"
}Create Custom Role Action
POST /custom-role-actions
Authorization
This endpoint requires the following actions:
-
createaction on thecustom-role-actionresource type -
readaction on thecustom-roleresource type -
readaction on theresource-actionresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
customRoleId |
String |
true |
Client must have |
resourceActionId |
String |
true |
Client must have |
path |
Array[Object] |
true |
Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
customRoleId |
String |
true |
The {@link CustomRole} that this {@link CustomRoleAction} belongs to. This {@link CustomRoleAction} should be granted to any identity that is granted this linked {@link CustomRole}. Must not be null. |
resourceActionId |
String |
true |
The {@link ResourceAction} that this {@link CustomRoleAction} confers to the identities that hold the linked {@link CustomRole}. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link CustomRoleAction} was deleted. This will be null for an {@link CustomRoleAction} that has not been deleted. If this property is not null, then the {@link CustomRoleAction} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link CustomRoleAction} targets. For example, if this {@link CustomRoleAction} is "Update Widget Service" then this property defines the (id) path of/to the "Widget Service" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to the {@link ResourceAction#getResourceTypeId()}. Both must target the same {@link ResourceType}. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-actions' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.DpsvW1usDUZahN08lEVHTzy_RV0yDDkLeph2ZVZWL4XK3rwavCzkYCqriitqMw_qKgKbSYp9HIEVCdb14GGJlab2GdpxxFJ8fI5TwPVYYiPhcB1-nVL-ZzGVpmIbiOdITtOz7S3i2d34PtJE5_0MqJ2Ps7b7XTKF1OgwH8oK9rl4fnducD9PndGlXnm4N5reOg4k8iFg827VNywBSKazEV14nws4QS2k5RLw1hhiPZzbG5Dj_-WkEjXi3y0N_fGHAgjzmbm5sACgA4md8yWHcd8Uon-ddwZg0lG6QhWMP6vKl22aXAb1Qx4VFulk0AAgSu9mJ-ztVe1Z3Crk6gzHAA' \
-d '{"customRoleId":"3264db39-724e-4fc9-ac4d-26474719d91f","resourceActionId":"7f3fab32-bd55-42d8-a473-cbd6728a7f55","path":[{"resourceId":"37f22e10-b579-433f-a6d8-b4cf3e34ac47","resourceTypeId":"c6e58f31-3cb2-4f56-9199-a0b05a7adf7d"}]}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 604
{
"id" : "7b157760-ba91-4520-8741-d84aad436bca",
"customRoleId" : "3264db39-724e-4fc9-ac4d-26474719d91f",
"resourceActionId" : "7f3fab32-bd55-42d8-a473-cbd6728a7f55",
"createdBy" : "4854e2e2-c9ea-428d-b3b9-71a782aa08fa",
"createdAt" : "2023-05-31T08:37:11.855744Z",
"updatedAt" : "2023-05-31T08:37:11.855744Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "37f22e10-b579-433f-a6d8-b4cf3e34ac47",
"resourceTypeId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d"
} ],
"_title" : "Test Action Test Type on/under Test Type 37f22e10-b579-433f-a6d8-b4cf3e34ac47"
}Delete Custom Role Action
DELETE /custom-role-actions/{id}
Authorization
This endpoint requires delete action on the custom-role-action resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-actions/3ff8000b-7e7a-4379-9d72-4393765ba81f' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.VrNrickdBeeKRt12njg6jEswtFF8_KWlmTBhIgaoaHn5vx6NEol5AtKfYV0vSZRuySk4Yh-VGdiXSw3vF5YCQQBBGZIb88vDB4esjBjyIa3jLLFpEblLbKqamHTRoDzY0eu_zHCJssIHhe7RjUz6HwjmMsKXIoFLKgX0USpFi04dZV4dNTCT2BdD5jNrrxO9ZZlV_xPjfub65MshaEfryGq4XgzJBdKZU7F9XkPgLgqT5uZgFkNEnIFVyLyIAfb1JxVD28Sia-RRlf1Vzqj3FQ5M5c0c_MQkN4KEN23KorX2Vd6UzHiJMMwFgaJbwzrYnhX-PwrG7tkv95GRFPl9LQ'Example response
HTTP/1.1 200 OKCustom Roles Grants
Find Custom Role Grants
GET /custom-role-grants
Returns a set of {@link CustomRoleGrant}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the custom-role-grant resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
customRoleId |
Object |
true |
Filters results to grants to one of the specified ,{@link CustomRole},s. |
customRoleIds |
Object |
true |
Deprecated.. |
identityId |
Object |
true |
Filters results to those granted to one of the specified identity ids. |
identityIds |
Object |
true |
Deprecated.. |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].identityId |
String |
true |
Must not be null. |
[].customRoleId |
String |
true |
Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was deleted. This will be null for an {@link CustomRoleGrant} that has not been deleted. If this property is not null, then the {@link CustomRoleGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-grants' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.e9HGOEwBBqqX16-2Ytx9klKxY7YOlCdEeOJnubDoGfMM3nThRi3MPjL7Wq2Lw9-OpGTcO3USHtjiq3d0lHvhV9y4vM39FRG1S1QgOUGBuq3ZBtvQilkqd3IgWy_f7QXfnoSUmUrrMX0IXgsthM5cDUps8dYpeZ8sra9GVFPoCn1wyMP0AGgTpy1aHgaOLgZvENUFJ0-zmyxmYxkT6GgcnF843u-3DFoTgui0g5MtB7pACwe0RHix8Mu0lID6Km4VxFPIzedVU928Zx0ewt6K_1jx8tXrc5-hgc9ImkQfpcfYTIDfEYRsP6I5xFCUD2vyCXj3vM2cB9FmT7F3IAy7Aw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1398
[ {
"id" : "19576a87-a13e-4f4d-8637-980674a28a53",
"identityId" : "6b41cd7c-1898-48a6-98b7-f634c364db27",
"customRoleId" : "233ae92e-4b5d-4cab-9549-5d55fd1cbf6c",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:29.349024Z",
"updatedAt" : "2023-05-31T08:36:29.349024Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Read-Only, ALL Auth Domain Resources to identity 6b41cd7c-1898-48a6-98b7-f634c364db27"
}, {
"id" : "c7ecc9d7-14f1-4585-82b8-ca4ed291c66f",
"identityId" : "bc186704-9a24-4c84-a5f5-a756a17a67e0",
"customRoleId" : "233ae92e-4b5d-4cab-9549-5d55fd1cbf6c",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:29.643439Z",
"updatedAt" : "2023-05-31T08:36:29.643439Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Read-Only, ALL Auth Domain Resources to identity bc186704-9a24-4c84-a5f5-a756a17a67e0"
}, {
"id" : "cd980fca-2a2e-4e60-92c4-ea7aafb9ac7d",
"identityId" : "77872bbd-5daa-4d18-8362-2f57438673fc",
"customRoleId" : "58d144fd-c158-4e32-bd64-cb344a4dd896",
"createdBy" : "936da5f3-321c-45a3-96fb-9ca50011ab7f",
"createdAt" : "2023-05-31T08:37:17.849331Z",
"updatedAt" : "2023-05-31T08:37:17.849331Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Custom Role 73 to identity 77872bbd-5daa-4d18-8362-2f57438673fc"
} ]Get Custom Role Grant
GET /custom-role-grants/{id}
Authorization
This endpoint requires read action on the custom-role-grant resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
Must not be null. |
customRoleId |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was deleted. This will be null for an {@link CustomRoleGrant} that has not been deleted. If this property is not null, then the {@link CustomRoleGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-grants/e246e3ea-f6f9-4a44-bc37-d64971e4754e' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.PcLeQ1EnY-fL8XzRZVcNKrT7mrP7cfq186G25GaiCNrC_tP7imXMW20eFccJsl7wGYbmh5xlPspyfVNfcyGhAKiw7ipofVlb47sVfGe_psLzEWV3pxi0_YeK1brZsxAd5LpS_pLxdVSkn_P9PEXyqhB1NichEN05bTF-a4VyloJmR7sF5TMuZNcnVgqZI6bQp7Wq_RbohFvWI0jSFjTU9VL3CNXcuEUiWLYTOvUiXRK0oH4OrvN0qAcy65qir7Og0zealMHdWfHmyVmXDP7gz0ooc2N7xM4vbFuqf77w7jmAz7Z60BzkRgWPD4t0YIHbOF-Y-seJAxSoVZq1aBVy4g'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 452
{
"id" : "e246e3ea-f6f9-4a44-bc37-d64971e4754e",
"identityId" : "d35e8840-487e-4aa2-b84b-cd73ff392856",
"customRoleId" : "81dfb6f3-30d8-479c-8736-12036932c4cd",
"createdBy" : "fc893156-4c99-4fe1-aa03-a4b3f7295ab5",
"createdAt" : "2023-05-31T08:37:17.361170Z",
"updatedAt" : "2023-05-31T08:37:17.361170Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Custom Role 71 to identity d35e8840-487e-4aa2-b84b-cd73ff392856"
}Create Custom Role Grant
POST /custom-role-grants
Authorization
This endpoint requires the following actions:
-
createaction on thecustom-role-grantresource type -
readaction on thecustom-roleresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
customRoleId |
String |
true |
Client must have |
identityId |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
Must not be null. |
customRoleId |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link CustomRoleGrant} was deleted. This will be null for an {@link CustomRoleGrant} that has not been deleted. If this property is not null, then the {@link CustomRoleGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-grants' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.SiquwXAeSc8QEiQCYHuvLRzOAYfv5rgDnKbojRxf-NbAu8BPAA-U5ero-_Iy0eLULZMoPou-38Vj7WkYFSYCiAoIf2dt5dg7AE66WebDKciqL8G1ifntgl8Es_PhkUHgOG0M6noHAGd6_0cP3HRZn2D0wJ-FTYaWXrTtJut_WL5KV6JeP7P4URzXfa2S7YFPSG_QsGb74JjMrfPRdG15SWibr-uojyZsqOQ51iphifZZU3DQzh2B3DItoy_2S_zVL-kriYinonEiZ9e4jAY1AHmYE78zECu0NuGHxXPdGBo95OE_149YaU7D3S662mNkNFzEeJuXhq9zVfFwDulpww' \
-d '{"customRoleId":"58d144fd-c158-4e32-bd64-cb344a4dd896","identityId":"77872bbd-5daa-4d18-8362-2f57438673fc"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 452
{
"id" : "cd980fca-2a2e-4e60-92c4-ea7aafb9ac7d",
"identityId" : "77872bbd-5daa-4d18-8362-2f57438673fc",
"customRoleId" : "58d144fd-c158-4e32-bd64-cb344a4dd896",
"createdBy" : "936da5f3-321c-45a3-96fb-9ca50011ab7f",
"createdAt" : "2023-05-31T08:37:17.849331Z",
"updatedAt" : "2023-05-31T08:37:17.849331Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Custom Role 73 to identity 77872bbd-5daa-4d18-8362-2f57438673fc"
}Delete Custom Role Grant
DELETE /custom-role-grants/{id}
Authorization
This endpoint requires delete action on the custom-role-grant resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/custom-role-grants/4ab5cce9-f576-4ac5-b399-c854f9bbe015' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.NXnTtMhjIXvpsZQOwzntUmTVfbzesL5E3bJXBpehLwSgKFy-rkzrN-CGUNrgNT6XwdLTltorcP_7EpCIy7VcfmiMNXLn9itwcxdLHd46rIQVv884RPyfMPpT9ZkQRTKBOdfEvuPPzKaveH8SbSOR-161PWAy9sarUMpA2e7h_YBXOeQxHnbuOROLCtU40RLCSWgxt_LUNRRmGB4PxXsEfDLsQeVwCoS8t6_eXqkWqJLqM9qor2MwISYRyAdw4coVDMXus7E3-GBCZcrtJm9RsD4lywqsCnjrTxQPFK-9n1iZ9yO2kq61WgKg71WZx9GLvZ_IrV5yQ6N_0TbAMAyMnQ'Example response
HTTP/1.1 200 OKStandard Roles
Find Standard Roles
GET /standard-roles
Returns a set of {@link StandardRole}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link StandardRoleType}s. identities. resources.
For example, if Network id X is passed, this would restrict the results to instances of a Network X Standard Role, such as Network Admin of Network X, Network Read-Only of Network X, etc. This would exclude Network Group Standard Roles, even if the Network Group contains Network X. For example, if the path is to Network X which is under Network Group Y, this would restrict the results to {@link CustomRoleAction}s that grant an action on any resource under Network X, an action on Network X itself, or an action on Network Group Y. Combine this query parameter with resourceActionIds to limit the results to the types of actions along the path that are of interest.
The path value must start with a domain code followed by a colon. It may then have a comma delimited sequence of colon separated resource type code and resource id pairs. The path structure must match that of the server defined resource tree for the specified resources in the specified domain. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the standard-role resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
standardRoleTypeId |
Object |
true |
Filters results to those that are of one of the specified ,{@link StandardRoleType},s. |
identityId |
Object |
true |
Filters results to those which have been granted to one of the specified identities. |
resourceId |
Object |
true |
Filters results to those that specifically target one of the specified resources., |
path |
Object |
true |
Filters results to those that target any resource along the specified path., |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].standardRoleTypeId |
String |
true |
The 'type' of this {@link StandardRole}. Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link StandardRole} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link StandardRole} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link StandardRole} was deleted. This will be null for an {@link StandardRole} that has not been deleted. If this property is not null, then the {@link StandardRole} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[].path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link StandardRole} targets. For example, if this {@link StandardRole} is "ACME Corporation Account Manager" then this property defines the (id) path of/to the "ACME Corporation" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to this {@link StandardRole#standardRoleType}'s resource type. Both must target the same {@link ResourceType}. Must not be null. |
[].path[].resourceId |
String |
true |
Must not be null. |
[].path[].resourceTypeId |
String |
true |
|
[].type |
String |
true |
|
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-roles' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.cV0huHkRHYqMKq0vNSXvTTXmBM6RjnaDD9ZjTc3Gb40D90ft-qz68-1T-llr4ZX11-z94OclgbY5yHsaxtdpRphdGq_jm8QCzf9pmCrYQ_-BWS9N1KHJ60uUV8AmN2xxxsrw_mD9f4-yhNh-kgFbdYyOKEJ8AgslWYY5v4XSyvQTAG5oUvDA02bsLjrteYJUOclkY6lmBa5l4uE9VLDuwHS71B_A4y1ZCtPzWBRkirOsbs3SLjeWZmVV2aKCk_ud89w57se22ejvKZ9aDlMnZWXObmUcH8c5HeSAWfeqkeFjKKZI5TgmZ1iP8zOA3_hCOkgDFN-jvmFLO1-YUDgnwA'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1793
[ {
"id" : "2e3531bb-65d4-4fde-9ac2-bfed1e03f752",
"standardRoleTypeId" : "07e68be5-9b08-4ac6-a986-d69cd61b9092",
"createdBy" : "c6e4a80c-8f5d-412f-9c1a-38e395b3938e",
"createdAt" : "2023-05-31T08:37:03.566064Z",
"updatedAt" : "2023-05-31T08:37:03.566064Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "534b808c-a7f6-4186-bc2f-61b354f99d46",
"resourceTypeId" : "0139ae40-e7ac-4767-9997-c22d460570fb"
} ],
"type" : "io.netfoundry.auth.domainv2.standardrole.StandardRole",
"_title" : "Test Type 14 Admin - 534b808c-a7f6-4186-bc2f-61b354f99d46"
}, {
"id" : "7aab5f65-2077-4d4d-b5a8-aea3942369f2",
"standardRoleTypeId" : "b920e96c-16d8-4066-ac6e-078331b88d11",
"createdBy" : "71beb81f-80f2-4a05-a164-589fdf3af336",
"createdAt" : "2023-05-31T08:37:03.180769Z",
"updatedAt" : "2023-05-31T08:37:03.180769Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "52b47983-508b-4d8c-9327-570a8c0c92f3",
"resourceTypeId" : "b986e5ea-627a-4696-963f-dc9809d5771a"
} ],
"type" : "io.netfoundry.auth.domainv2.standardrole.StandardRole",
"_title" : "Test Type 12 Admin - 52b47983-508b-4d8c-9327-570a8c0c92f3"
}, {
"id" : "b06db955-5f15-4225-8cff-a88bfd4de2ed",
"standardRoleTypeId" : "009fd32f-8ef0-4561-9d6c-1b90dc48ac69",
"createdBy" : "5b245684-870d-4e19-98cf-f2c8f493aa6c",
"createdAt" : "2023-05-31T08:37:04.028131Z",
"updatedAt" : "2023-05-31T08:37:04.028131Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "11a3825e-8666-4375-b0fa-698d604313e2",
"resourceTypeId" : "344f3a0a-508b-4b9c-aad0-32acb8dde644"
} ],
"type" : "io.netfoundry.auth.domainv2.standardrole.StandardRole",
"_title" : "Test Type 16 Admin - 11a3825e-8666-4375-b0fa-698d604313e2"
} ]Get Standard Role
GET /standard-roles/{id}
Authorization
This endpoint requires read action on the standard-role resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
standardRoleTypeId |
String |
true |
The 'type' of this {@link StandardRole}. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link StandardRole} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link StandardRole} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link StandardRole} was deleted. This will be null for an {@link StandardRole} that has not been deleted. If this property is not null, then the {@link StandardRole} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link StandardRole} targets. For example, if this {@link StandardRole} is "ACME Corporation Account Manager" then this property defines the (id) path of/to the "ACME Corporation" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to this {@link StandardRole#standardRoleType}'s resource type. Both must target the same {@link ResourceType}. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-roles/2e3531bb-65d4-4fde-9ac2-bfed1e03f752' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.Ozzg9hkPUbocxL7uDMPN0Aa7qYMh4z58lNpx968O7hGkf9I6fxusPUccraGrjug342nKnTErRW1vEVXuaXCj8FML5Kxq5Wrl1B1WdoPxR9u68tuLmDQlCa4bbGSahyVult3O2tjAWIhabO62zCdu4sKKLLIuDbR6GFzJ8imhK-fdY6Ky8JjH_pkJQ2kfI11eYheuQIy0_Z-6jh88Iu-0uxWrj9bFRtocwtn3N1ResA4SuL1l-HUjFWa0dd5Ulc60iZTxa_gzgzElIVeklqGaTrVLEPgj3GS2ZbNrj7xhx7y1Ih3tGUGSnvamUedjbvs3pUYSwzge792ZO9tA6mBCuA'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 595
{
"id" : "2e3531bb-65d4-4fde-9ac2-bfed1e03f752",
"standardRoleTypeId" : "07e68be5-9b08-4ac6-a986-d69cd61b9092",
"createdBy" : "c6e4a80c-8f5d-412f-9c1a-38e395b3938e",
"createdAt" : "2023-05-31T08:37:03.566064Z",
"updatedAt" : "2023-05-31T08:37:03.566064Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "534b808c-a7f6-4186-bc2f-61b354f99d46",
"resourceTypeId" : "0139ae40-e7ac-4767-9997-c22d460570fb"
} ],
"type" : "io.netfoundry.auth.domainv2.standardrole.StandardRole",
"_title" : "Test Type 14 Admin - 534b808c-a7f6-4186-bc2f-61b354f99d46"
}Create Standard Role
POST /standard-roles
Authorization
This endpoint requires the following actions:
-
createaction on thestandard-roleresource type -
readaction on thestandard-role-typeresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
standardRoleTypeId |
String |
true |
Client must have |
path |
Array[Object] |
true |
Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
standardRoleTypeId |
String |
true |
The 'type' of this {@link StandardRole}. Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link StandardRole} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link StandardRole} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link StandardRole} was deleted. This will be null for an {@link StandardRole} that has not been deleted. If this property is not null, then the {@link StandardRole} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
path |
Array[Object] |
true |
The path (ordered pairs of resource type and id) from resource tree root to the target resource that this {@link StandardRole} targets. For example, if this {@link StandardRole} is "ACME Corporation Account Manager" then this property defines the (id) path of/to the "ACME Corporation" resource. The path, specifically the ordered list of resource types that it contains, is co-variant to this {@link StandardRole#standardRoleType}'s resource type. Both must target the same {@link ResourceType}. Must not be null. |
path[].resourceId |
String |
true |
Must not be null. |
path[].resourceTypeId |
String |
true |
|
type |
String |
true |
|
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-roles' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJZcEdFM29RTzRNMVNkX3IzRTNnU0RnIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjViMjQ1Njg0LTg3MGQtNGUxOS05OGNmLWYyYzhmNDkzYWE2YyIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyMywiZXhwIjoxNjg1NTI1ODIzLCJncmFudHMtc3VwZXIiOiJbXSIsImdyYW50cy1jdXN0b20iOiJbXSIsImdyYW50cy1wdWJsaWMiOiJbe1wiaWRcIjpcImVkNWNmMmVhLWYwMDYtNDA0NC05ZmJkLTBiNzgzYjdiOTBhYlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcImRiZTkwNjYyLTAwZmItNDIzNy1iOGY1LTAyNDdkYTJmZTY4YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MX0se1wiaWRcIjpcIjkzYjk3YWFlLTE3NDQtNGExOC05MGQ0LWNhOGM5ZTBhZWNlMVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMX0se1wiaWRcIjpcIjQyMjBmMDM0LTZmNTgtNDgzNy1iNGQ2LWUyOWRlNjg2MGU4NlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OH0se1wiaWRcIjpcIjcwZWNjNjkwLWNlODgtNDgxMC05ZWYzLWI5YWNhNDQ2YWZhNFwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5NX0se1wiaWRcIjpcImU2NWFlOTRhLTJmZmMtNGM4Yi1iMWQ4LTNkNzlmMmRjYjA5N1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIwNn0se1wiaWRcIjpcIjk5MzcxMjVlLTMwZmUtNGRmNi04NjA5LTJjMmI2YjUxOWQ4ZlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImU1MWRmMjhkLTYyYzAtNDE2NS05ZjQ1LTgxYjM5YjJkZDk1YlwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5MH0se1wiaWRcIjpcIjNlNTUxMGVjLTM4N2EtNGYyYS04MTIwLTI3MWMyZGY2ZTBkM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE5Mn0se1wiaWRcIjpcIjE4NjJjNjg4LTViZmQtNGNkNC05ZWIyLTFlMjdhOWMwNGQzM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX0se1wiaWRcIjpcImM4NjlhYmI1LTQyYTctNDQ1MS04MDljLTg1NzJmMmFiN2U5YVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyMH0se1wiaWRcIjpcIjY4ZjMxOGM1LWQ2ZGMtNDZmYy05OWM0LTY5OTUwODcxZmZiM1wiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjE4OX1dIiwiZ3JhbnRzLWFjdGlvbiI6Ilt7XCJpZFwiOlwiMDA4MTc3MWYtOGYwMS00YzU3LWJlNWItOWYwMTA3YmYwMjUyXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIzfSx7XCJpZFwiOlwiZmQ4ZWE2YzAtNjAyNC00MzNmLThlYWQtN2FjZGY2Njg1Zjk2XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIzfV0iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.FO85gyNkLb1zRY-xaVsuGr5qc_0em3iYVY8ZAwMZV3kek7QOso4iJR45ChA2oU1JpdJTuuHLbuZg7jW1Vrm4YuJQYceJ6Fxo_hJpCD5q7lYgQCK5mHtCjaQdaDQG8qOhrR0C0_2nEu2yDOAXlHzRM64siy-vbDG9RHIlGVg7qnBCWdLLol2im_ZDRay4x58Qu-hHI2SPvJ5zjQVgc9Tv-C3o2NAhJaQLO2dZOEZ0KW-lNrFv4XCeDb00rAYRVIUTgQ9LFCUpPCWkUeHKLogq6N1camnv8B6iGLjWqn02ElOUAqsh097MuB6WR_2jGBH4G0Fhfm8mzdh7YzWmaU2bDg' \
-d '{"standardRoleTypeId":"009fd32f-8ef0-4561-9d6c-1b90dc48ac69","path":[{"resourceId":"11a3825e-8666-4375-b0fa-698d604313e2","resourceTypeId":"344f3a0a-508b-4b9c-aad0-32acb8dde644"}]}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 595
{
"id" : "b06db955-5f15-4225-8cff-a88bfd4de2ed",
"standardRoleTypeId" : "009fd32f-8ef0-4561-9d6c-1b90dc48ac69",
"createdBy" : "5b245684-870d-4e19-98cf-f2c8f493aa6c",
"createdAt" : "2023-05-31T08:37:04.028131Z",
"updatedAt" : "2023-05-31T08:37:04.028131Z",
"deletedAt" : null,
"deletedBy" : null,
"path" : [ {
"resourceId" : "11a3825e-8666-4375-b0fa-698d604313e2",
"resourceTypeId" : "344f3a0a-508b-4b9c-aad0-32acb8dde644"
} ],
"type" : "io.netfoundry.auth.domainv2.standardrole.StandardRole",
"_title" : "Test Type 16 Admin - 11a3825e-8666-4375-b0fa-698d604313e2"
}Delete Standard Role
DELETE /standard-roles/{id}
Authorization
This endpoint requires delete action on the standard-role resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-roles/1b8bfb9c-2621-45af-94c4-b914aac0d0e9' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.UTur8dtCM6RYIZ6HZ9_0wgCHjUvuschaOF_Y7gcabWR7DOoQEMdxEVIwDUavXRK1kDepU41AKTdw4KmBMcZsZ8BLuMMDFx3ln0An-PVeBfatkONcJn5obwgMS4TXgBMjwQGenmlzyf-00JJ_JLt-yhz7LrxvDcIqiot44Bs2erZqia8XlDRHqYphUX5xt8qMH33iksfL6Qr1yKtUDVUeB8Th8rldZl5TFK0kRpfcfiHEI_-Qzta_oOxmkrNhpD3_o833GTaqyDXK8SbbsKItM9n5Gwf9zmU_5ebvvEVsya1nGj-ADN8yjEhuiLjvHmec87Wp-RNmTsq9qMmAFu28gQ'Example response
HTTP/1.1 200 OKStandard Roles Grants
Find Standard Role Grants
GET /standard-role-grants
Returns a set of {@link StandardRoleGrant}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the standard-role-grant resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
standardRoleId |
Object |
true |
Filters results to grants to one of the specified ,{@link StandardRole},s. |
standardRoleIds |
Object |
true |
Deprecated.. |
identityId |
Object |
true |
Filters results to those granted to one of the specified identity ids. |
identityIds |
Object |
true |
Deprecated.. |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].identityId |
String |
true |
Must not be null. |
[].standardRoleId |
String |
true |
Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was deleted. This will be null for an {@link StandardRoleGrant} that has not been deleted. If this property is not null, then the {@link StandardRoleGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-grants' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.k-VV4IiYF6Zv4MxjqLAHmF0Q_e1V_Pn9uBRtjNQqgfvfbiUEyOuVwlzstAXZzZ9TerbPgtacAEJoSpI8XbAJGk4UxgwucX1-y1MQws5OlGRiXC_e8v-mO6O7lYKGd-wBBQzDTpTWstryDmBZPa1z1MsK0hdbHZYII0W0L_SivANk-oCJjfsXjLJFkjjNuRy105Q4nrb_K1DIpE_8yq832mL_WuAtWQ_pNb3k7w95CJkVVtijecuwyxvBm3T-85l9iZtrksS9vl7dI0Hzff6rvHLYLg07Ki9ZNMGgz6GIy_6u_MEKjAu62W50GCK5ddNNqwIvwbCD4gpIUYd8YdMaYA'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1543
[ {
"id" : "3d6f7f8d-5c47-4ed2-ba9b-14d0bc504d01",
"identityId" : "6e78c1e0-836f-4f8b-a4af-4a8a442c2206",
"standardRoleId" : "4cef026b-fa49-4475-952d-3092b9e8be53",
"createdBy" : "cb52c0f0-6fd7-4bf1-8b97-b8812521ec8f",
"createdAt" : "2023-05-31T08:37:15.030535Z",
"updatedAt" : "2023-05-31T08:37:15.030535Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Type 57 Admin - d78f6d78-439d-4af2-9e58-1b5342b9a64a to identity 6e78c1e0-836f-4f8b-a4af-4a8a442c2206"
}, {
"id" : "202c73e4-18a4-452e-ac27-3329cf6b826c",
"identityId" : "ebd6fe75-5de8-4248-8855-8952e36c3b98",
"standardRoleId" : "7aab5f65-2077-4d4d-b5a8-aea3942369f2",
"createdBy" : "57a72a9e-2a8b-4c27-becb-23e9de767062",
"createdAt" : "2023-05-31T08:37:03.382019Z",
"updatedAt" : "2023-05-31T08:37:03.382019Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Type 12 Admin - 52b47983-508b-4d8c-9327-570a8c0c92f3 to identity ebd6fe75-5de8-4248-8855-8952e36c3b98"
}, {
"id" : "44527237-f031-4587-a20a-37c1edabe100",
"identityId" : "a1d49385-dbff-48af-8f03-4478e5c99a1f",
"standardRoleId" : "6dcbbe4b-6cef-40f9-b5b0-41e54ce6260c",
"createdBy" : "e0bdae20-8a53-4e59-9011-9ada434dbf45",
"createdAt" : "2023-05-31T08:37:04.891599Z",
"updatedAt" : "2023-05-31T08:37:05.016225Z",
"deletedAt" : "2023-05-31T08:37:05.003170Z",
"deletedBy" : "29dc4831-f13f-4d5a-a508-62ad8f3f066b",
"_title" : "Grant Test Type 20 Admin - c2e93398-7f85-476d-87d0-254ce88d7cf7 to identity a1d49385-dbff-48af-8f03-4478e5c99a1f"
} ]Get Standard Role Grant
GET /standard-role-grants/{id}
Authorization
This endpoint requires read action on the standard-role-grant resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
Must not be null. |
standardRoleId |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was deleted. This will be null for an {@link StandardRoleGrant} that has not been deleted. If this property is not null, then the {@link StandardRoleGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-grants/3e61148f-23bf-4672-b758-2899aaf7ba2b' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.P3QazjOCDw6aiOO7qAzjc13KluirxiPuTXcy5P3-elO51sQ7ex2mrk8vPB63_hJ6DPZe6T8o2ArXabRMM5HzE74MjJ7uv9o_O5k0zkODX5CTY4de5dK5eZe2e32l-eDDtGTvvAZ9dNzSgrI4-8-wxLGJCOLd78y8vZiPGxEB7EeJKh9NlePdy_H0v-K1mrmjpT1Y5L7eHnp7rhjIzvClrxbbZ3Za5tZFexvRqdi8OyIwCK7R32q9uPkRiCoq05EP4_8BjFZLC2SGtOi5GYz__BrS-8_IgVqJg9MPFWcnVLRDC4zwsi6GuEWpA8JW3aTgQVAGbUmvr9qcLWyVw53Ybw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 492
{
"id" : "3e61148f-23bf-4672-b758-2899aaf7ba2b",
"identityId" : "a3d361e0-7f13-4857-8c37-e689a5677744",
"standardRoleId" : "81248a81-1e74-4546-95ee-6fb7d022ab77",
"createdBy" : "1704ca90-b8de-497e-8ed3-b6789d464988",
"createdAt" : "2023-05-31T08:37:15.381898Z",
"updatedAt" : "2023-05-31T08:37:15.381898Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Type 59 Admin - 338b8e02-9167-417a-9c8e-c71491870ad6 to identity a3d361e0-7f13-4857-8c37-e689a5677744"
}Create Standard Role Grant
POST /standard-role-grants
Authorization
This endpoint requires the following actions:
-
createaction on thestandard-role-grantresource type -
readaction on thestandard-roleresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
standardRoleId |
String |
true |
Client must have |
identityId |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
identityId |
String |
true |
Must not be null. |
standardRoleId |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link StandardRoleGrant} was deleted. This will be null for an {@link StandardRoleGrant} that has not been deleted. If this property is not null, then the {@link StandardRoleGrant} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-grants' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.koKuA4PuLmtQliqJ67NFyY7anjZ0L8pl83QepzVsT9lyHciEU1HyK4wI8BW29xGjbsQ-48FFaWQoLgArbqo0FRRobjT4UXYs-9VvIarcLcUPMNnTxIG88pfNDnMDFcPnIs-Pet4QkHUzdZ9Lz-vUdWPL3GNRauz_vH_CxJlALivSnxEe-IelsfInqqYGoSBGTrX0tHj1FlOJ8-cF8OPgIGPAqCQYfwurdnfl6Va6kgpKN8AV2oPfmRTGCjo32ZAKDZfGsNQ8-BYyVlxwr9VnTn5M3ynH9Ca0CN6eAL_dJH15FtOEgucTMnXCrxqnfh7L4FJc7ZKd-6JIt06UHzC0tw' \
-d '{"standardRoleId":"4cef026b-fa49-4475-952d-3092b9e8be53","identityId":"6e78c1e0-836f-4f8b-a4af-4a8a442c2206"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 492
{
"id" : "3d6f7f8d-5c47-4ed2-ba9b-14d0bc504d01",
"identityId" : "6e78c1e0-836f-4f8b-a4af-4a8a442c2206",
"standardRoleId" : "4cef026b-fa49-4475-952d-3092b9e8be53",
"createdBy" : "cb52c0f0-6fd7-4bf1-8b97-b8812521ec8f",
"createdAt" : "2023-05-31T08:37:15.030535Z",
"updatedAt" : "2023-05-31T08:37:15.030535Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Grant Test Type 57 Admin - d78f6d78-439d-4af2-9e58-1b5342b9a64a to identity 6e78c1e0-836f-4f8b-a4af-4a8a442c2206"
}Delete Standard Role Grant
DELETE /standard-role-grants/{id}
Authorization
This endpoint requires delete action on the standard-role-grant resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-grants/e50f077b-8042-4b0b-bced-f4376599b6d4' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.YN6_7Q8ICBx26STFsW4ylhbSX7RTDNnRD27f3SN7qbGw4rlebzkYNmuD3nS9_GEFdW5fNf4uu5zzt3v-T_zaWpWJI-c7lGExeX3SY0dCjfk311_r4HrPvhwrvaDLPi0Qs7zz8sI9QEk5XoVykOgIiOB9RZlT8-6QQLkGB9ScfpgjsPUWXNdABAKOsrksbjOyIWHS51OImIHPCDEFi7v4BkhAVOHAHI2K317VDLVC6xhDk6aA429UKJsa-7LYNvMnmZHFKX11ilXY8XqbLT9C5efqOdtJjLMOJeuj2MSjALAzUdcJY3i_yVKPi-s72Wp5JsBWro1WMpCPiSICHf-tAA'Example response
HTTP/1.1 200 OKStandard Role Types
Find Standard Role Types
GET /standard-role-types
Returns a set of {@link StandardRoleType}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
{@link ResourceType}s. strategies. by the specified {@link StandardRoleType}. In other words, all returned {@link StandardRoleType}s are logical sub-sets of the {@link StandardRoleType} specified by this query parameter.
Authorization
This endpoint requires read action on the standard-role-type resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
resourceTypeId |
Object |
true |
Filters results to those that target one of the specified ,{@link ResourceType},s. |
resourceTypeIds |
Object |
true |
Deprecated.. |
authorizationStrategyName |
Object |
true |
Filters results to those that are of one of the specified strategies. |
authorizationStrategyNames |
Object |
true |
Deprecated.. |
includedByStandardRoleTypeId |
Object |
true |
Filters results to those whose actions are fully included by the specified ,{@link StandardRoleType},. In other words, all returned ,{@link StandardRoleType},s are logical sub-sets of the ,{@link StandardRoleType}, specified by this query parameter. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].resourceTypeId |
String |
true |
Must not be null. |
[].authorizationStrategyName |
String |
true |
Must not be null. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link StandardRoleType} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link StandardRoleType} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-types' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.dPDyY1zWP-F8pfG871aRHhp3l1ayjzcQadnZV6iuEYORVBddglTP7icRmyqlzuswvPY9-ocLMA0AFXDMCMkA8V8wuCncENXHDhbzz_3QCH3tMkY7M7PDW57sLd-u4Znmm7R-e_JQ8uGvwpWkd8VVBV9pd3-Zd46s6C39Hxl7UDnKIQA3HfHiDZpkr-VSSxg5By36uX8sBisJ7DFT2-WXQLzIbsmS0udD-yGPy5XeqiUwHuAoG9kczNEd6SJPsitC6NmbjCLQdKzU-mIgMlPz-BF3giuJ8_RnHtdvN9-xr4r3xcwB2_cLsEuLuT12XgbaAd5srRAFSvjaRbekx1Vm8A'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1032
[ {
"id" : "d06d6459-361c-4c3f-8b37-b076a79ffd46",
"resourceTypeId" : "d54ca733-ae39-4876-8853-1b2cb0fd30bc",
"authorizationStrategyName" : "Admin",
"createdBy" : "253b23dd-3c09-4208-ae1a-70164f241096",
"createdAt" : "2023-05-31T08:37:04.876239Z",
"updatedAt" : "2023-05-31T08:37:04.876239Z",
"_title" : "Test Type 20 Admin"
}, {
"id" : "a360d39d-4def-4fde-8369-2b82ef8b18ff",
"resourceTypeId" : "fe49001a-d5d8-456a-be8f-a10c36ead225",
"authorizationStrategyName" : "Read-Only",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:27.922770Z",
"updatedAt" : "2023-05-31T08:36:27.922770Z",
"_title" : "Network Group Read-Only"
}, {
"id" : "c60f1d9e-18d8-4b0f-8e4f-067ec2d62d44",
"resourceTypeId" : "fe49001a-d5d8-456a-be8f-a10c36ead225",
"authorizationStrategyName" : "Admin",
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:27.922770Z",
"updatedAt" : "2023-05-31T08:36:27.922770Z",
"_title" : "Network Group Admin"
} ]Get Standard Role Type
GET /standard-role-types/{id}
Authorization
This endpoint requires read action on the standard-role-type resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceTypeId |
String |
true |
Must not be null. |
authorizationStrategyName |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link StandardRoleType} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link StandardRoleType} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-types/b62779d4-3d2e-4fbc-a8a3-4d2e2eb11d82' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.ijyiE_NYUUxDcXryfoUqfk9UyQmO4rNCsagLDVx6dS8Rm5V2GxVjBwabg38cRzpFpOfc5onta7JtMLO0WZbgE3LabAz35dwBCzKN6uleoNr-QjHS2DjIgFfESmrjMbiUSDLw-qjBqmae4uLBFYr-T_KsZZrpJ_2BvcE7tk0Vd_KF5m_LhrCxHmQDCZlR2Lr7VxcVDimJ5laTEx5hkK8ONk-4DdNbHKKo7ql8C4Ox2nPx8HEGDRer7m_EHTUom0HlUdhU3FDIBPP5bG1Loe9agPCMmm9-awJDnrjVUjA9QBrRwoPbbmtrPIGklBiDoYypPw4qJTMT0tPreEWHF8tLcw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 338
{
"id" : "b62779d4-3d2e-4fbc-a8a3-4d2e2eb11d82",
"resourceTypeId" : "55566286-8214-4e1d-a621-eed56b64582f",
"authorizationStrategyName" : "Admin",
"createdBy" : "7036ee1b-184d-41d4-9a27-f8cac9bd1c41",
"createdAt" : "2023-05-31T08:37:08.898345Z",
"updatedAt" : "2023-05-31T08:37:08.898345Z",
"_title" : "Test Type 28 Admin"
}Create Standard Role Type
POST /standard-role-types
Authorization
This endpoint requires the following actions:
-
createaction on thestandard-role-typeresource type -
readaction on theresource-typeresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
resourceTypeId |
String |
true |
Client must have |
authorizationStrategy |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceTypeId |
String |
true |
Must not be null. |
authorizationStrategyName |
String |
true |
Must not be null. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link StandardRoleType} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link StandardRoleType} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/standard-role-types' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.k6x_1YvINrfvYzsqlV702y8xpXFGihUqwNtO8vXCjXoALk_R8xhsd1Hc3g0_h98Bz-cVeB6AP968mfUPRJ5DS23o1Q-ll9I797yMKUBPe8gZVM8yuAM6ZEv-m96W77-Dh84x_1lL9a_Biz3Fc1p5BXWV9h_KRHOFRQFoaKVbLrH6xAqGnlNvrJYirK8p8siHSARbX2z4gm9-5qFaJDOfLREjhQw8ziB5bwXR1lFwhllkgEMb4dhrcID7xkV5U29sAtdaX5pTIpavsJNWk2kcQ-TSQGsS-g5BBJTmPlI35joCSKB87xLh6uQpiutEq09QJvOr4Dc827fvpreX-iRcYQ' \
-d '{"resourceTypeId":"c6e58f31-3cb2-4f56-9199-a0b05a7adf7d","authorizationStrategy":"Admin"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 335
{
"id" : "44fa9590-9063-4e8b-a576-ca6cc824e75c",
"resourceTypeId" : "c6e58f31-3cb2-4f56-9199-a0b05a7adf7d",
"authorizationStrategyName" : "Admin",
"createdBy" : "6927b3bc-cffc-4eaf-8aa5-a507844ac4ab",
"createdAt" : "2023-05-31T08:37:08.761358Z",
"updatedAt" : "2023-05-31T08:37:08.761358Z",
"_title" : "Test Type Admin"
}Resource Action Inclusions in Standard Roles
Find Action Inclusions
GET /action-inclusions
Returns a set of {@link ActionInclusion}s that the client is authorized to read and which match the specified (optional) query parameters.
If multiple query parameters are specified, then results must match each query parameter that is set. If a query parameter supports multiple values, then a result must match at least one of the values. In other words, distinct query parameters are AND’d while value matching within a single query parameter act as an OR condition. For example a query parameter "?x=1,2&y=3" becomes (X == 1 OR X == 2) AND (Y == 3).
strategies. {@link ResourceAction}s. only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not.
Authorization
This endpoint requires read action on the action-inclusion resource type.
Path parameters
No parameters.
Query parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
resourceActionId |
Object |
true |
Filters results to those that apply to one of the specified ,{@link ResourceAction},s. |
authorizationStrategyName |
Object |
true |
Filters results to those that apply to one of the specified strategies. |
isDeleted |
Boolean |
true |
When true, returns only those that are marked as deleted. When false, returns only those that are not marked deleted. When not set, returns all those that are otherwise matching, whether they are marked deleted or not. |
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].resourceActionId |
String |
true |
Must not be null. |
[].authorizationStrategyName |
String |
true |
Must not be null. |
[].includeWhenAbove |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is above the {@link StandardRoleType}'s {@link ResourceType}. |
[].includeWhenAt |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is the same as the {@link StandardRoleType}'s {@link ResourceType}. |
[].includeWhenBelow |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is below the {@link StandardRoleType}'s {@link ResourceType}. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link ActionInclusion} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link ActionInclusion} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link ActionInclusion} was deleted. This will be null for an {@link ActionInclusion} that has not been deleted. If this property is not null, then the {@link ActionInclusion} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/action-inclusions' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.FkgqHUqriH4nvleMhhoqBEV49jzuIk-hb9gIPD4K1Tcs8uomz20KDbCpyJuI1LK5ZdWOZmtsbe1AwPftxI8whNVFz8h3p3BXF1QSjx5swW4dcCPNqUg1-gWABYjXHac-pHNUsmN5Z9oUf_YRHYR27tg7B3aAQwEXfDcTUP_JMuua5kM1j5Ucdb0y-FMJWU99YId7rBcjinGrT8rCZ3eLx8xCcp7Uhc5vun8_xx9IyYZnComso3JINSr6xwf9fXYvPBfjdJWpOqCMfd8y0IBVTS-dTGhDQiauO0DWOLunupOXFUXrxd6qr4GzmL9WfUm2jq2W0OkydWJgcST53zUkBg'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1579
[ {
"id" : "b1aa4be7-7cc3-43ba-a9de-f618ce4fc801",
"resourceActionId" : "34c9ddbe-00bc-46ef-8e61-165c83715628",
"authorizationStrategyName" : "Contributor",
"includeWhenAbove" : false,
"includeWhenAt" : false,
"includeWhenBelow" : true,
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:30.271284Z",
"updatedAt" : "2023-05-31T08:36:30.271284Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Inclusion Rules for Create AppWan in Contributor Standard Roles"
}, {
"id" : "01a3fc8c-dc3e-444d-a40b-b57b90c759f2",
"resourceActionId" : "7b43007f-3bc9-4d40-9d0f-589035617595",
"authorizationStrategyName" : "Admin",
"includeWhenAbove" : false,
"includeWhenAt" : false,
"includeWhenBelow" : true,
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:35.351571Z",
"updatedAt" : "2023-05-31T08:36:35.351571Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Inclusion Rules for Delete Process Execution in Admin Standard Roles"
}, {
"id" : "bbc789eb-6b32-4f11-9b02-74615239e255",
"resourceActionId" : "9c3d4bfd-dd6f-4042-8712-8f3d9cbea869",
"authorizationStrategyName" : "Read-Only",
"includeWhenAbove" : true,
"includeWhenAt" : true,
"includeWhenBelow" : true,
"createdBy" : "0ab1b47d-a5de-4f39-a3bd-7b130cacf401",
"createdAt" : "2023-05-31T08:36:30.390409Z",
"updatedAt" : "2023-05-31T08:36:30.390409Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Inclusion Rules for Read Exemption Configuration in Read-Only Standard Roles"
} ]Get Action Inclusion
GET /action-inclusions/{id}
Authorization
This endpoint requires read action on the action-inclusion resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceActionId |
String |
true |
Must not be null. |
authorizationStrategyName |
String |
true |
Must not be null. |
includeWhenAbove |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is above the {@link StandardRoleType}'s {@link ResourceType}. |
includeWhenAt |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is the same as the {@link StandardRoleType}'s {@link ResourceType}. |
includeWhenBelow |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is below the {@link StandardRoleType}'s {@link ResourceType}. |
createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
createdAt |
String |
true |
The date-time at which this {@link ActionInclusion} was created. Must not be null. |
updatedAt |
String |
true |
The date-time at which this {@link ActionInclusion} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
deletedAt |
String |
true |
The date-time at which this {@link ActionInclusion} was deleted. This will be null for an {@link ActionInclusion} that has not been deleted. If this property is not null, then the {@link ActionInclusion} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
_title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/action-inclusions/4f9c02bf-a3b7-450d-b2d3-b7e8d46b20df' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.UwlEbnlG_RoFclrsfAbR3M9j1-PoZ18o_tachdUwHIyxu9UE2H5Z9KSb7IdiPWtgcd8qtORpZ_f8dWz6cdpVJIfkR9LG-3pBpVnP_disVj0hPGVmk9IH3H_1A3UJrCuNx5GyEKz8AkfrnlWp4cEgEBtgUOHTLbRj-R1Ow-ioaf5wzBl395btdUAut1T7estLMYQL2VFlOv2qM5m88PoVZA2-HGscITjlhOAV3hNS3Zy-ixR8y1vBKbVhTwQHFPq6DtpVwh9F0_Gq6xXqcVuutESlQJFjWSsyIHR-gU7DQVXDFj_sFIS4JjHudMFSMH-D3m6Asi7MkdBt37OESOz6Ig'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 522
{
"id" : "4f9c02bf-a3b7-450d-b2d3-b7e8d46b20df",
"resourceActionId" : "26ab7b3f-e4c2-490c-9256-528ee06d01ae",
"authorizationStrategyName" : "Admin",
"includeWhenAbove" : false,
"includeWhenAt" : true,
"includeWhenBelow" : true,
"createdBy" : "12c064cd-8872-437c-855c-79bfbb83eadb",
"createdAt" : "2023-05-31T08:37:16.130121Z",
"updatedAt" : "2023-05-31T08:37:16.130121Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Inclusion Rules for Test Action 64 Test Type 63 in Admin Standard Roles"
}Create Action Inclusion
POST /action-inclusions
Authorization
This endpoint requires the following actions:
-
createaction on theaction-inclusionresource type -
readaction on theresource-actionresource type
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
resourceActionId |
String |
true |
Client must have |
includeWhen |
Map |
true |
Must not be empty. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
[].id |
String |
true |
Must not be null. |
[].resourceActionId |
String |
true |
Must not be null. |
[].authorizationStrategyName |
String |
true |
Must not be null. |
[].includeWhenAbove |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is above the {@link StandardRoleType}'s {@link ResourceType}. |
[].includeWhenAt |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is the same as the {@link StandardRoleType}'s {@link ResourceType}. |
[].includeWhenBelow |
Boolean |
true |
True if the linked {@link ResourceAction} should be included in {@link StandardRole}s where this {@link ResourceAction}'s {@link ResourceType} is below the {@link StandardRoleType}'s {@link ResourceType}. |
[].createdBy |
String |
true |
The identity id that created this resource. Must not be null. |
[].createdAt |
String |
true |
The date-time at which this {@link ActionInclusion} was created. Must not be null. |
[].updatedAt |
String |
true |
The date-time at which this {@link ActionInclusion} was updated. The only supported 'update' on this bean is to mark it as deleted. Must not be null. |
[].deletedAt |
String |
true |
The date-time at which this {@link ActionInclusion} was deleted. This will be null for an {@link ActionInclusion} that has not been deleted. If this property is not null, then the {@link ActionInclusion} is 'marked' as being deleted. For data retention reasons, we never actually delete a resource. |
[].deletedBy |
String |
true |
The identity id that deleted this resource. This will be null until the resource is marked deleted. |
[]._title |
String |
true |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/action-inclusions' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.JsheXh1ZZjjNscmPuJeDl4iqlfqrVtPDhjhF5HcDJ3fD15l-Ic5DiWEOBRHayq5BbzNmDPy5-o2Co73EjiVSATsAD1tLpxI8ImLg-peSGFCJMe2QQz2Z0EpgXZ-66fmomUf0wql0bGzko6EiNxVwVQXOET2QKu6hUk6We4j1iL7Es4l9nr-a9xEH3vG8WTD0DZPpuD89OIfgpXxeXOrSLCt0dYJfhb8hferCCL8fNciv51YbNGTgltedUnsDLnp9Xg2dkDfVHQkPg-GTy7iYSHs5mKucIqe_l-V27HLNFMPySqCEJmRA_Rd5ds__wEv2G-A6FPUIecBFihpGCqHQDQ' \
-d '{"resourceActionId":"afff5dcb-3ed0-4425-ae73-adcdcad07624","includeWhen":{"Admin":{"above":false,"at":true,"below":true}}}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 526
[ {
"id" : "38041e2e-7726-4951-ab8d-1ed08c18fdf9",
"resourceActionId" : "afff5dcb-3ed0-4425-ae73-adcdcad07624",
"authorizationStrategyName" : "Admin",
"includeWhenAbove" : false,
"includeWhenAt" : true,
"includeWhenBelow" : true,
"createdBy" : "13e10d86-0ca9-4834-add6-0c9927540a5c",
"createdAt" : "2023-05-31T08:37:16.683603Z",
"updatedAt" : "2023-05-31T08:37:16.683603Z",
"deletedAt" : null,
"deletedBy" : null,
"_title" : "Inclusion Rules for Test Action 70 Test Type 69 in Admin Standard Roles"
} ]Delete Action Inclusion
DELETE /action-inclusions/{id}
Authorization
This endpoint requires delete action on the action-inclusion resource type.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/action-inclusions/b6a13356-164a-4c25-bc62-8b6afd6036d1' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.aiZuaWX51LYfQkj1GP5q0IFvEUzOg6YEn_C1urwZThHF4FUjItjCF462GtYIBt31eoglQdVnmAS_jYTb9NdokvO5g-ktnn0uilYyeb78p7QNNXPrXljoFJVZRfqRzFkGdzh0vuVkTA7BsSj8POOfWX8ctPJ57nDG9yUvhCh5vT74BImzlwuJz5iLBwrocm6nCx1tpdp8M-TM3gjOJiGtPs5oiLQggG1gUon1caGXmQ1jsVwOZObfoCIyvveNhpviopbgF41p5BwLCvGb00Z2SGbVcnkqwheDFiBTYu4ytOmrG3Bm2r3vdv8er_aJgg9WyBIk-hctkg7GACQEXI_xUg'Example response
HTTP/1.1 200 OKDeprecated Resources
Resources
Find Resources
GET /resources
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
Supports standard paging query parameters.
| Parameter | Type | Optional | Description |
|---|---|---|---|
nameLike |
String |
true |
|
descriptionLike |
String |
true |
Request fields
No request body.
Response fields
Standard paging response where content field is list of following objects:
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
resourceTemplateId |
String |
true |
|
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resources' -i -X GETExample response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1163
{
"content" : [ {
"id" : "2961fd95-2c6c-4b4c-93d9-7d251b5e4daf",
"name" : "nfrn:networkconfigs:*",
"description" : "All Network Config",
"resourceTemplateId" : null,
"createdAt" : "2023-05-31T08:36:28.113592Z"
}, {
"id" : "2b374a00-bf8d-4874-8cb5-5ce67adff0e0",
"name" : "nfrn:orgs:*:nets:*:gateway-clusters:*:endpoints:*",
"description" : "All Gateway Cluster Endpoints",
"resourceTemplateId" : null,
"createdAt" : "2023-05-31T08:36:24.929234Z"
}, {
"id" : "cdace3ea-d75b-11e9-b01a-d05099466715",
"name" : "nfrn:*",
"description" : "All NetFoundry Resources",
"resourceTemplateId" : null,
"createdAt" : "2023-05-31T08:36:24.929234Z"
} ],
"pageable" : {
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"offset" : 0,
"pageNumber" : 0,
"pageSize" : 20,
"paged" : true,
"unpaged" : false
},
"totalPages" : 3,
"totalElements" : 44,
"last" : false,
"size" : 20,
"number" : 0,
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"numberOfElements" : 20,
"first" : true,
"empty" : false
}Get Resource
GET /resources/{idOrName}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
idOrName |
String |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
resourceTemplateId |
String |
true |
|
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resources/fbb04592-e3eb-4e14-8131-9118a31ebae3' -i -X GETExample response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 193
{
"id" : "fbb04592-e3eb-4e14-8131-9118a31ebae3",
"name" : "nfrn:tests:*:foos:*",
"description" : "All Foos",
"resourceTemplateId" : null,
"createdAt" : "2023-05-31T08:36:46.134902Z"
}Create Resource
POST /resources
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
audience |
String |
true |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
resourceTemplateId |
String |
true |
|
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resources' -i -X POST \
-H 'Content-Type: application/json' \
-d '{"name":"nfrn:tests:*:random:*","description":"random test resource","audience":"io.netfoundry.tests"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 207
{
"id" : "391129bd-4586-4f50-ae8b-1a1b0f7997a2",
"name" : "nfrn:tests:*:random:*",
"description" : "random test resource",
"resourceTemplateId" : null,
"createdAt" : "2023-05-31T08:36:57.444553Z"
}Delete Resource
DELETE /resources/{id}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/resources/21cf9743-4c45-4bcd-94a2-262cac27fb3d' -i -X DELETEExample response
HTTP/1.1 200 OKActions
Find Actions
GET /actions
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
Supports standard paging query parameters.
| Parameter | Type | Optional | Description |
|---|---|---|---|
nameLike |
String |
true |
|
descriptionLike |
String |
true |
Request fields
No request body.
Response fields
Standard paging response where content field is list of following objects:
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must match the regular expression |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/actions' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.Yuawv7FjyaUIDbtntMlvwoiP2XftWlV0n20hGXdSsZAU3IwRMEHbYvJR3sxrIWj3NgCarjSIp5nOYepY1ZAuMxYDD14RKsJ3r8IOLY_RnSe9NYicDAurqt754ajiRYPtJK8ix5xrunq6LppGUfAaYk694TkmiOG3nfUzwJXEK1AmeDjHy1XPwpcksYJlVc9kNiUfHslRPq_v92HEkY1TBm36W2c3qeJEuk77sovRwHuvwsjGE7sbHL7u31YKBh49KPKvrfcb_KkeZ0eafBMfrJOwnhSPDz4EtwwsleNTYGhVVDlCCGaNpuqT4l-bVTY_xPB6t7RrWk0mHzxheZPGYw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1093
{
"content" : [ {
"id" : "6c2eafe4-f9c2-4799-9699-368220d79dde",
"name" : "networkconfigs:get-networkconfig-mds",
"description" : "Get Network Config Metadatas",
"createdAt" : "2023-05-31T08:36:28.113186Z"
}, {
"id" : "8da0c587-4c5f-4e93-b2b7-422de2bca286",
"name" : "networkconfigs:*",
"description" : "All Network Config Actions",
"createdAt" : "2023-05-31T08:36:28.112566Z"
}, {
"id" : "a68353ea-b58d-441e-8714-b5ed62c75f22",
"name" : "networks:create-aws-autoscale-endpoint",
"description" : "Create AWS Auto-Scale Endpoints",
"createdAt" : "2023-05-31T08:36:24.655768Z"
} ],
"pageable" : {
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"offset" : 0,
"pageNumber" : 0,
"pageSize" : 20,
"paged" : true,
"unpaged" : false
},
"totalPages" : 9,
"totalElements" : 167,
"last" : false,
"size" : 20,
"number" : 0,
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"numberOfElements" : 20,
"first" : true,
"empty" : false
}Get Action
GET /actions/{idOrName}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
idOrName |
String |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must match the regular expression |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/actions/c2f1178e-d573-47fd-b6c0-92d9cc697e93' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.k0ixmCUYmKH0P1KtX56JXLgwFKv0sDAC-Zpm_2igCq2QVSLsuop0njpBrsCJoPu9qLFjCQBYq5enEAXAnSET_zYOMhGHvgMzeV5zNPl9E3LlvXVZNVZOMV0h3WW1sFUiB9c7UFBDrDAru_MhfV6AcDHUGmKrNGIEtUZnGACMX4YJH28VV6_6Gq5UfK0SSLiCHHVHqUbiDJ9QIuBQxsXy3VvBESKkDYUy8yH_8qkY0COpv1HVZx_FhDxLguscGxDAVQe8cA6bH07wR9_sEyyrA1M0uVojwkfaUN3TWoCUXFcTdsBER-YX4F3TnMXdN4yobzGR2_FBXeV4lKJs5ZBJBw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 161
{
"id" : "c2f1178e-d573-47fd-b6c0-92d9cc697e93",
"name" : "tests:create-foo",
"description" : "Create Foo",
"createdAt" : "2023-05-31T08:36:46.082516Z"
}Create Action
POST /actions
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
name |
String |
true |
Must match the regular expression |
description |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must match the regular expression |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/actions' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.MDidnDfHz8z7Oo5R_DzDxhkyuRq2QISSlytiSenaEfcOKJf0jd-NzKNpMH1ZU3b9x3DPETySCAoiKig0usKtknVrUcmpTgyXmV2h0xS1rTPWfEgkrAnVUGZUIvSQ6UITYprxDdgycCPmL7w33IMup-cpfuMzdavz862IHUoKpx7wK20009GszqApylL03j-wIYqnx9DJIifoXiivg0CE69rt7i41jruFq0mOQsU-akwgKVJLSDcYuSGYsig-QJMOCOaKVh7WWyYGwOtOrY76krjHJ3N5UF5N1WgPUl3E6O-9Ys8huZteuZgyTgHZuuZjWKAyZp1_1MgcT276ZRtDuA' \
-d '{"name":"nfrn:get-widget","description":"Getting a widget"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 166
{
"id" : "014e5adc-380e-4bdd-8614-60032ba74654",
"name" : "nfrn:get-widget",
"description" : "Getting a widget",
"createdAt" : "2023-05-31T08:37:08.006702Z"
}Policies
Find Policies
GET /policies
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
Supports standard paging query parameters.
| Parameter | Type | Optional | Description |
|---|---|---|---|
resourceIdIn |
Object |
true |
|
actionIdIn |
Object |
true |
|
descriptionLike |
String |
true |
|
roleId |
Object |
true |
|
identityId |
Object |
true |
Request fields
No request body.
Response fields
Standard paging response where content field is list of following objects:
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceId |
String |
true |
Must not be null. |
actionId |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJvMDVHVEh3SVVpRDNiZWRRSjIyNnJBIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjFmOWIyMzZkLTE2YzktNDU1Ny1hYjEzLTM5N2RiYTUyNjFjMiIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyOSwiZXhwIjoxNjg1NTI1ODI5LCJncmFudHMtc3VwZXIiOiJbe1wiaWRcIjpcIjMyMGFiODE4LWUyNGMtNDYwOC05MzI4LTdlMjljNzNhOTFkNVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyOX1dIiwiZ3JhbnRzLWN1c3RvbSI6IltdIiwiZ3JhbnRzLXB1YmxpYyI6Ilt7XCJpZFwiOlwiZWQ1Y2YyZWEtZjAwNi00MDQ0LTlmYmQtMGI3ODNiN2I5MGFiXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg4fSx7XCJpZFwiOlwiZGJlOTA2NjItMDBmYi00MjM3LWI4ZjUtMDI0N2RhMmZlNjhhXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkxfSx7XCJpZFwiOlwiOTNiOTdhYWUtMTc0NC00YTE4LTkwZDQtY2E4YzllMGFlY2UxXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIxfSx7XCJpZFwiOlwiNDIyMGYwMzQtNmY1OC00ODM3LWI0ZDYtZTI5ZGU2ODYwZTg2XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg4fSx7XCJpZFwiOlwiNzBlY2M2OTAtY2U4OC00ODEwLTllZjMtYjlhY2E0NDZhZmE0XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTk1fSx7XCJpZFwiOlwiZTY1YWU5NGEtMmZmYy00YzhiLWIxZDgtM2Q3OWYyZGNiMDk3XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjA2fSx7XCJpZFwiOlwiOTkzNzEyNWUtMzBmZS00ZGY2LTg2MDktMmMyYjZiNTE5ZDhmXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fSx7XCJpZFwiOlwiZTUxZGYyOGQtNjJjMC00MTY1LTlmNDUtODFiMzliMmRkOTViXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkwfSx7XCJpZFwiOlwiM2U1NTEwZWMtMzg3YS00ZjJhLTgxMjAtMjcxYzJkZjZlMGQzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkyfSx7XCJpZFwiOlwiMTg2MmM2ODgtNWJmZC00Y2Q0LTllYjItMWUyN2E5YzA0ZDMzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fSx7XCJpZFwiOlwiYzg2OWFiYjUtNDJhNy00NDUxLTgwOWMtODU3MmYyYWI3ZTlhXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIwfSx7XCJpZFwiOlwiNjhmMzE4YzUtZDZkYy00NmZjLTk5YzQtNjk5NTA4NzFmZmIzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fV0iLCJncmFudHMtYWN0aW9uIjoiW10iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.DMlTzrkDglW-y4u5vGD186rZzFStecQzvX5I6R9PiCXUTJtQ8R7j1O9fuCrNzQcwjAN7w4VdAMF3wv2WVVBI6ND2gwONx5XmUnlUE1kB46UzWLp7ts7XMK2yvSbdgjOxsvLdTlbXksSDqyK0fJ9ezGDro_8JyDWJcTEqLOX4EQSA60Vy5Qz5BUE6O_NsaAgk7DQ3pN0htxr4meQh4licvT_SR3C-WCWv0N8rhd_jhNoY6krpWQPINGU1yJAIxVl6bSCIlVK9CqloODDO9DuT8x4AJaEYGgyCeGLvD98TdNjnVGDt0h7qk1WVVhHkhw9Ok3dl-hhA0Sny1z_2_s0F6Q'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1215
{
"content" : [ {
"id" : "0597e8f7-be2b-11e9-b33b-d05099466715",
"resourceId" : "d862d360-d75b-11e9-b01a-d05099466715",
"actionId" : "d180d08a-d75b-11e9-b01a-d05099466715",
"description" : "",
"createdAt" : "2023-05-31T08:36:25.170090Z"
}, {
"id" : "0597e924-be2b-11e9-b33b-d05099466715",
"resourceId" : "d862d360-d75b-11e9-b01a-d05099466715",
"actionId" : "d180d1a5-d75b-11e9-b01a-d05099466715",
"description" : "",
"createdAt" : "2023-05-31T08:36:25.170090Z"
}, {
"id" : "0597e934-be2b-11e9-b33b-d05099466715",
"resourceId" : "d862d360-d75b-11e9-b01a-d05099466715",
"actionId" : "d180cffa-d75b-11e9-b01a-d05099466715",
"description" : "",
"createdAt" : "2023-05-31T08:36:25.170090Z"
} ],
"pageable" : {
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"offset" : 0,
"pageNumber" : 0,
"pageSize" : 20,
"paged" : true,
"unpaged" : false
},
"totalPages" : 9,
"totalElements" : 171,
"last" : false,
"size" : 20,
"number" : 0,
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"numberOfElements" : 20,
"first" : true,
"empty" : false
}Get Policy
GET /policies/{id}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceId |
String |
true |
Must not be null. |
actionId |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies/b1adaee0-a1ff-4e42-a5c8-49d3181022a5' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.hYqkbpMJTamEr0N0gelGv0-xzbBrU56YwREWy2zJ0aBVLSQFecpeJQXliT4ZmhW3jX9CNJW1Glq25n8GFRsWGvEbxVryovM0-diqhagRPt73CdTk8O7kbt9a2MsU34RpWb3GBzS_aNnI5fxxbWiPDBicg2eAv-NyJqyGrUiTDkNq3y46GuDMxn2HWheSmPmhk5SS4S_QwcTQeMfPX2cm78NEnvxEIO2exaZBBN6ihTC00c8PxmK6voDqAsVyARBJC0-_-hodJjiV5bjYXQb7vkonkHfbbMIiBhtEV7UjwPVJPpXr-pONnyEhMUyaBh5vxtxfvoo8_ibTVaziygzInw'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 255
{
"id" : "b1adaee0-a1ff-4e42-a5c8-49d3181022a5",
"resourceId" : "fbb04592-e3eb-4e14-8131-9118a31ebae3",
"actionId" : "c2f1178e-d573-47fd-b6c0-92d9cc697e93",
"description" : "Create Foo for All Foos",
"createdAt" : "2023-05-31T08:36:46.166055Z"
}Create Policy
POST /policies
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
resourceId |
String |
true |
Must not be null. |
actionId |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
resourceId |
String |
true |
Must not be null. |
actionId |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies' -i -X POST \
-H 'Content-Type: application/json' \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.PWcXWyhrT0KOmjwGuGeeGqfd9n5QXNpm-hROQmCI4v1DH8wYsp0G64AD_OaqCJF-0o5hrY8ookU0Q_Oy36yJpfHdgECTe_B1j9xzZoRmlfzakYG_mI4DpiAYby_8iB885LgWYUHugVAH72EzCCa_N8wTidfvWZ1NAHUEYXF2bqAIO5ErA8DWSega4CfzTX-8d8KE2kdYmy9UsNsyeEnsl1ZEFJsf2VSxgsTlLdxyxKLlCGbpsvklw6e1DIKeTn0YtvwgJ9y7_RicXgpVDvODhGd-n0eZRHFmsYv4Vqf36pyX0q5E2XYDqlkeg8y7auF6vhxDHMhO_fKlrZdXnZi65Q' \
-d '{"resourceId":"3955cb57-cbe6-4df0-8f84-a6a97682a641","actionId":"39c61cd4-3225-4aaa-b296-656a601f32eb"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 264
{
"id" : "2152da3a-75e0-40b6-aadc-9e019ab7e4b2",
"resourceId" : "3955cb57-cbe6-4df0-8f84-a6a97682a641",
"actionId" : "39c61cd4-3225-4aaa-b296-656a601f32eb",
"description" : "Random Action 42 on All Random41",
"createdAt" : "2023-05-31T08:37:10.581395Z"
}Delete Policy
DELETE /policies/{id}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies/86622f88-3187-4647-a300-681bed4e1e3d' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.RXgde_J24RiUdaZi-_tJAn5KyVxzIR9N95jEdLGmq_Ii_4E5P9vDGYUSWJec8GADrozqz8whfnQquQgVdjRly9_D9BSvEFMO_Qw1oUv83OgH9TtuUfm8NP8A0__X9xHHyfHVN0Suk5mOtW4q5nyj33rOySCS34A2OWeCnGcasCE23-wtE8W6-GZwZBnNcFm-syzPeyDOd_RC3eC1wjQu4IzTaxt9cU89iiER-N_J_jebcIwuf32G3R_eiZe3dVJx63n8jOdjI-F8As1KT_vca-nkLCOiC8L_g83z0-kjb-nkTpkV8QG3ljBeYZ9tDI7D6s3EZnsJomOrnWiH1PcJ1A'Example response
HTTP/1.1 200 OKGrant Policy To Identity
PUT /policies/{id}/identity-grants/{identityId}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
identityId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies/8a93082c-fb03-473a-a254-7e53124e9cc5/identity-grants/6989ae09-f86e-42f8-a3b6-dd9fa9e671ea' -i -X PUT \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.Jd3LtSuKDvwvhchltx1YyiwYZhKPOc2FLX5mK63uua2CH758E4PSVMPQGTT6UNh_VhbwHlwIVjtHxsIlnm4fB-S5knqfgQgOKvviK3PPxmGb2uhjglg6nCGdC-F_kA4IMqdeyoigq67Sf4c9ULh2JxwOTSCXoBtwREks51N_5rXZRcvfJ0-tRJ9SIUcLz0arto8pvj9s48T6XKDDwwGwFAbl0LK8rVU9KNWlsU65OJEMwMQn7mC2engArExfG-zeZoVrbwvhodR1zaXj5SvGb3UWtGF4c866ZK5APZTIZ7dHs6VKyM94fPan8yfDICVQx_G27eKYhJwkceACSVCzEA'Example response
HTTP/1.1 200 OKRevoke Policy From Identity
DELETE /policies/{id}/identity-grants/{identityId}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
identityId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies/d7c924dc-000b-4b92-bc6a-205c5634ac09/identity-grants/a82b882a-a0a6-4f3a-8d05-b14ef5594278' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.eyJqdGkiOiJKS3Jfb3RlbENNSVE3YzR3ckNOZjhBIiwiaXNzIjoiTmV0Rm91bmRyeSIsInN1YiI6IjdiMjY2OGI3LWExZjYtNGUzNS04M2RmLWQxZWRiMDI1OTNkMCIsImF1ZCI6ImlvLm5ldGZvdW5kcnkuYXV0aCIsImlhdCI6MTY4NTUyMjIyOSwiZXhwIjoxNjg1NTI1ODI5LCJncmFudHMtc3VwZXIiOiJbe1wiaWRcIjpcIjQ2OWEzZjAwLWM1ZDAtNGZiZi1iYzU0LTIzOGRkOGQ3NDJiZVwiLFwibGFzdE1vZGlmaWVkXCI6MTY4NTUyMjIyOX1dIiwiZ3JhbnRzLWN1c3RvbSI6IltdIiwiZ3JhbnRzLXB1YmxpYyI6Ilt7XCJpZFwiOlwiZWQ1Y2YyZWEtZjAwNi00MDQ0LTlmYmQtMGI3ODNiN2I5MGFiXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg4fSx7XCJpZFwiOlwiZGJlOTA2NjItMDBmYi00MjM3LWI4ZjUtMDI0N2RhMmZlNjhhXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkxfSx7XCJpZFwiOlwiOTNiOTdhYWUtMTc0NC00YTE4LTkwZDQtY2E4YzllMGFlY2UxXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIxfSx7XCJpZFwiOlwiNDIyMGYwMzQtNmY1OC00ODM3LWI0ZDYtZTI5ZGU2ODYwZTg2XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg4fSx7XCJpZFwiOlwiNzBlY2M2OTAtY2U4OC00ODEwLTllZjMtYjlhY2E0NDZhZmE0XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTk1fSx7XCJpZFwiOlwiZTY1YWU5NGEtMmZmYy00YzhiLWIxZDgtM2Q3OWYyZGNiMDk3XCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjA2fSx7XCJpZFwiOlwiOTkzNzEyNWUtMzBmZS00ZGY2LTg2MDktMmMyYjZiNTE5ZDhmXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fSx7XCJpZFwiOlwiZTUxZGYyOGQtNjJjMC00MTY1LTlmNDUtODFiMzliMmRkOTViXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkwfSx7XCJpZFwiOlwiM2U1NTEwZWMtMzg3YS00ZjJhLTgxMjAtMjcxYzJkZjZlMGQzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTkyfSx7XCJpZFwiOlwiMTg2MmM2ODgtNWJmZC00Y2Q0LTllYjItMWUyN2E5YzA0ZDMzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fSx7XCJpZFwiOlwiYzg2OWFiYjUtNDJhNy00NDUxLTgwOWMtODU3MmYyYWI3ZTlhXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMjIwfSx7XCJpZFwiOlwiNjhmMzE4YzUtZDZkYy00NmZjLTk5YzQtNjk5NTA4NzFmZmIzXCIsXCJsYXN0TW9kaWZpZWRcIjoxNjg1NTIyMTg5fV0iLCJncmFudHMtYWN0aW9uIjoiW10iLCJncmFudHMtc3RhbmRhcmQiOiJbXSJ9.OGm6CdCgwqImhnwVUMxzzdTyPh1jHuo__youBpt_POw1DuhgVkZTBCrOppsmQevRHak5bPhH7huwph1fQF91yxL0GK171wbThLOFHT23mL979bid7YH6rPu_LCWh2HmDcynpbRHuAz3mJ13G5IyFbN64keCy1bHGHS225DnMDKFepUqm6RAMEMpdYsb2eNcar4CCk-KEHjRuabXGGXk7xwGg6gZG3e3S0tBUEkKqrxF3_Y9f85suK7CdopyBSJA3mIjSpuCpncSzlUWZxm85Gx_g2J2Z6gW6ZxakMiRJ-m4lZNfVYTt4Bs1CuxF8ZbvjM6lQUnY8z6tcdviFNlmcaA'Example response
HTTP/1.1 200 OKGrant Policy To Role
PUT /policies/{id}/role-grants/{roleId}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
roleId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies/c4051cad-fe03-4d80-ace8-232bfe6d24e3/role-grants/1b917941-fbc8-48f0-959b-3c125c3fefa9' -i -X PUT \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.K3m6BmrC4JB-NelEpX7fES-lCJW-2qQKBbi-snLIgWiPP7tMKO0WjCfuJ3TeIQ0pwY5ZORxtQtZR5xo63qSsmMQqP7c3z8Px4sXr7EBz7FOGcn52Dvngq708Ij9h97XmKUEklO4Q9o92PhfGXkfMsEIcXyv7kou3KgWTo7GGQqHNNixdVyltUIn0EFtd-slicFIoxXC1npdTCVkEjD75pSwRviPpGT1R4-UnFEWTxG0l-TrJK8_MkMTBJexpnK49IRkE77Ylx-hpFCmRIkmpoBiyANXKIPg7vzkhHJoajJOKs27Yk0MeBE5l1BBP1k62mZXWN3yrmHMRNsVhi3RW6w'Example response
HTTP/1.1 200 OKRevoke Policy From Role
DELETE /policies/{id}/role-grants/{roleId}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
roleId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/policies/b17db734-d10e-44ae-b635-195608c876ba/role-grants/aa2f4758-4397-4e76-b996-df033839a2ef' -i -X DELETE \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.a8G1Y5SBiWiTJoE5gcHipMHJSl1SIYtHhbc3glSxHB9fugX20WU61FfHMLvxLcTO1rtoOWzZAcc5QW6l_KJJ0H9x_zZJzON3tC_Wsz1-PlvK8Vy_hFaS1RdXdakjT3RbTrAaNckLzBqPi3IbfFC1iJ4vzjLHL-l-olCI2C8NVnQh3uMdzKwWfYNRt2VIEWm8dcQvwB8Kmcb8l0swy5zox28urKhq4xZQdGnhMfgyh-q-QU4I012KCdseyGit5MpVNgnmHziyc2f3GcQFYEQrn21wxoRk3ZzNAuAfmEfNZq9_5ecjg3zPFzAaPqdzNTNdGdvnE4sj7kJ0fXTBz1o--w'Example response
HTTP/1.1 200 OKRoles
Find Roles
GET /roles
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
Supports standard paging query parameters.
| Parameter | Type | Optional | Description |
|---|---|---|---|
nameLike |
String |
true |
|
descriptionLike |
String |
true |
|
policyId |
Object |
true |
|
identityId |
Object |
true |
Request fields
No request body.
Response fields
Standard paging response where content field is list of following objects:
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/roles' -i -X GETExample response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1015
{
"content" : [ {
"id" : "02156c4f-68d1-4cd7-be67-e33b9a034d4b",
"name" : "Random Role 0",
"description" : "All random on all tests",
"createdAt" : "2023-05-31T08:36:52.556086Z"
}, {
"id" : "79db3df4-f066-45cc-bbc9-c3816e703cd2",
"name" : "Foo Admin",
"description" : "All Foo related actions",
"createdAt" : "2023-05-31T08:36:46.194078Z"
}, {
"id" : "ce46aba4-d75b-11e9-b01a-d05099466715",
"name" : "super-user",
"description" : "Super User - All Access",
"createdAt" : "2023-05-31T08:36:25.349916Z"
} ],
"pageable" : {
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"offset" : 0,
"pageNumber" : 0,
"pageSize" : 20,
"paged" : true,
"unpaged" : false
},
"totalPages" : 1,
"totalElements" : 8,
"last" : true,
"size" : 20,
"number" : 0,
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"numberOfElements" : 8,
"first" : true,
"empty" : false
}Get Role
GET /roles/{idOrName}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
idOrName |
String |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/roles/79db3df4-f066-45cc-bbc9-c3816e703cd2' -i -X GETExample response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 167
{
"id" : "79db3df4-f066-45cc-bbc9-c3816e703cd2",
"name" : "Foo Admin",
"description" : "All Foo related actions",
"createdAt" : "2023-05-31T08:36:46.194078Z"
}Create Role
POST /roles
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
No parameters.
Request fields
| Path | Type | Optional | Description |
|---|---|---|---|
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
Response fields
| Path | Type | Optional | Description |
|---|---|---|---|
id |
String |
true |
Must not be null. |
name |
String |
true |
Must not be null. |
description |
String |
true |
Must not be null. |
createdAt |
String |
true |
Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/roles' -i -X POST \
-H 'Content-Type: application/json' \
-d '{"name":"Test Role e42737f3-4e19-4240-a5b8-cac153cb4bc9","description":"Random test role"}'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 197
{
"id" : "aab6a49f-42d6-46e2-b185-0f1e1fe3f565",
"name" : "Test Role e42737f3-4e19-4240-a5b8-cac153cb4bc9",
"description" : "Random test role",
"createdAt" : "2023-05-31T08:36:55.334777Z"
}Delete Role
DELETE /roles/{id}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/roles/f22870e5-7193-4e68-acfc-60e432f19d4d' -i -X DELETEExample response
HTTP/1.1 200 OKGrant Role To Identity
PUT /roles/{id}/identity-grants/{identityId}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
identityId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/roles/02156c4f-68d1-4cd7-be67-e33b9a034d4b/identity-grants/b09d7d53-b73e-4e8c-b728-dd9990abf661' -i -X PUTExample response
HTTP/1.1 200 OKRevoke Role From Identity
DELETE /roles/{id}/identity-grants/{identityId}
Authorization
Authorization not required for this request.
Path parameters
| Parameter | Type | Optional | Description |
|---|---|---|---|
id |
Object |
false |
|
identityId |
Object |
false |
Query parameters
No parameters.
Request fields
No request body.
Response fields
No response body.
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/roles/ef70eb25-5415-4af0-9a99-ae87e08c1c52/identity-grants/de8fb119-dd33-4451-8518-f0c9db232f7f' -i -X DELETEExample response
HTTP/1.1 200 OKClaims
Find Claims
GET /claims
Authorization
Authorization not required for this request.
Path parameters
No parameters.
Query parameters
Supports standard paging query parameters.
| Parameter | Type | Optional | Description |
|---|---|---|---|
identityIdIn |
Object |
true |
|
roleIdIn |
Object |
true |
|
policyIdIn |
Object |
true |
|
resourceNameLike |
String |
true |
|
actionNameLike |
String |
true |
|
audience |
String |
true |
Request fields
No request body.
Response fields
Standard paging response where content field is list of following objects:
| Path | Type | Optional | Description |
|---|---|---|---|
resource |
String |
true |
The policy resource name. Must not be null. |
action |
String |
true |
The policy action name. Must not be null. |
Example request
$ curl 'https://gateway.netFoundry.io/auth/v1/claims' -i -X GET \
-H 'Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImEzOTA0ZjM0LTFmNmItNGVmMC05NWM4LWIzN2ZlMDJkYjEyMyJ9.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.SZQrtXJStznZHi9jJMbDu6CDyHOU1V-9Hf_DwNoB4NmaYqFu0DuZtPdGfYfnqHXKrJmueS74zfKb2CtVTx2v_60kU656RnV6lTGwd8hQlrYqYoQCRb9ILzSQnpKyUOz0Gk8ddj8HF314Jd-8MoCestIr4xtWqnfUaAc5eN96AA7aFb1PmdDgyxewKaxQvzeXib3WUmMlh5L7Hqv5XaRBGuTBgUjc5E1ryfRb0uvJAdn0hFFL5MVPSa_EDnqrWs6Q4TVElB4DWDWj__gCURlA15K_KAhQxuZISmZRQ52t0hgDX05uxlS-sf2PFN48YEgcXkHTDj5M2JjO7Aa-i9R2xg'Example response
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 533
{
"content" : [ {
"resource" : "nfrn:tenants:*",
"action" : "tenants:get-tenants"
}, {
"resource" : "nfrn:tenants:*",
"action" : "tenants:get-tenants"
}, {
"resource" : "nfrn:orgs:*:billingkeys:*",
"action" : "billing:create-keys"
} ],
"pageable" : "INSTANCE",
"totalPages" : 1,
"totalElements" : 20,
"last" : true,
"size" : 20,
"number" : 0,
"sort" : {
"empty" : true,
"sorted" : false,
"unsorted" : true
},
"numberOfElements" : 20,
"first" : true,
"empty" : false
}