Access Controls
Your Emporix tenant name.
Note: The tenant name should always be written in lowercase.
^[a-z][a-z0-9]+$Page number to be retrieved. The number of the first page is 1.
1Number of items to be retrieved per page.
60Search by given resources that contain the metadata.modifiedAt date field with a date later than the specified value. The format is as follows: ''yyyy-MM-dd''.
2022-01-01Search by access controls with the roleId field equal to the specified value.
Note: This query parameter is deprecated.
1rl5e52e-6e27-4ac5-9471-2467d3fb7503Search by the id of a given resource.
Note: This query parameter is deprecated.
Standard query parameter used to search for specific values.
- Searching for an item by string property:
q=id:31065d5b-b62e, whereidis the field name and31065d5b-b62eis its required value. - Searching for an item by localized field property:
q=name.en:T-swherenameis the name of the field,enis a language code andT-sis a required value of this field. This query works only for localized fields, which are stored in a Map format wherekeyis a language code andvalueis translation to particular language. + Searching for items by date property. All numer-based property queries are valid also for dates. In that case the date should be placed within double quotes:q=metadata.createdAt:(>="2021-05-18T07:27:27.455Z" AND <"2021-05-20T07:27:27.455Z")+ Searching for items with non existing or empty property:q=name.en:nullwherename.enis a name of fields that has valuenull. + Searching for items with existing property:q=attributes:existswhereattributesis a name of field that hasnon nullvalue. + Searching for items by multiple specific values:q=id:(5c3325baa9812100098ff48f,5c3325d1a9812100098ff494)whereidis name of field and strings within a bracket are it''s required value. + Searching for items by multiple fields:q=id:5c3325baa9812100098ff48f name.en:T-swhereidand ''name.en'' are the names of fields. All documents that contain given values of these fields are returned. Multiple fields separated by space can be specified. Multiple values for each field can be also specified in a format presented above. + Searching for items with string fields conforming to a regex:q=name.en:~ABCD12orq=name.en:(~AB CD)- in case of searching for strings with space, wherenameis the name of field andABCD12orAB CDis it''s querying regex.'
id:in(exampleId1,exampleId2)Adds expanded resource and/or role objects to the response.
Note: This query parameter is deprecated.
role,resourcePossible values: Flag indicating whether the total number of retrieved items should be returned.
falseExample: trueList of language codes acceptable for the response. You can specify factors that indicate which language should be retrieved if the one with a higher factor was not found in the localized fields. If the value is specified, then it must be present in the tenant configuration.
- If the header is set to a particular language or a list of languages, all localized fields are retrieved as strings.
- If the header is set to
*, all localized fields are retrieved as maps of translations, where the keys are language codes and values are the fields in their respective languages. - If the header is empty, localized fields are retrieved in the default language defined in the Configuration Service.
The request was successful. A list of access controls is returned.
Unsupported language provided.
Given request is unauthorized - the authorization token is invalid or has expired. It usually means that tenant from the token does not match tenant from path.
Scope validation failed, details will be provided in response message
Your Emporix tenant name.
Note: The tenant name should always be written in lowercase.
^[a-z][a-z0-9]+$Unique identifier of an access control.
084bcaf6-66b8-4ddd-9489-65c5f6449e94Adds expanded resource and/or role objects to the response.
Note: This query parameter is deprecated.
role,resourcePossible values: List of language codes acceptable for the response. You can specify factors that indicate which language should be retrieved if the one with a higher factor was not found in the localized fields. If the value is specified, then it must be present in the tenant configuration.
- If the header is set to a particular language or a list of languages, all localized fields are retrieved as strings.
- If the header is set to
*, all localized fields are retrieved as maps of translations, where the keys are language codes and values are the fields in their respective languages. - If the header is empty, localized fields are retrieved in the default language defined in the Configuration Service.
The request was successful. Access control details are returned.
Definition of access control
Assignment unique identifier generated when the assignment is created.
Role unique identifier associated with this access control.
Resource unique identifier associated with this access control.
Domain identifiers associated with this access control.
["example_domain"]A list of resolved scopes for a particular access control.
Determines whether this access control generates scopes with restriction suffixes when assigned to a group that has restrictions defined. When true, the generated scopes will include restrictions (e.g. order.order_manage--DE) based on the group's restrictions list. When false, scopes are generated without restriction suffixes regardless of the group's restrictions.
Restricts the type of group this access control can be assigned to.
CUSTOMER- the access control can be assigned only to groups ofCUSTOMERuser type.EMPLOYEE- the access control can be assigned only to groups ofEMPLOYEEuser type.
If this property is not present, the access control can be assigned to any group regardless of its user type.
Indicated whether this access control is predefined in the system or was created by a user.
Indicated whether this access control is associated with vendor scopes.
Unsupported language provided.
Given request is unauthorized - the authorization token is invalid or has expired. It usually means that tenant from the token does not match tenant from path.
Scope validation failed, details will be provided in response message
Given resources cannot be found.
Your Emporix tenant name.
Note: The tenant name should always be written in lowercase.
^[a-z][a-z0-9]+$Unique identifier of an access control.
084bcaf6-66b8-4ddd-9489-65c5f6449e94The Content-Language request HTTP header defines language(s) of the payload.
dePayload for creating or updating an access control.
Scope codes for this access control. Must not be empty.
Domain identifiers for the access control.
["example_domain"]Restricts the type of group this access control can be assigned to.
CUSTOMER- the access control can be assigned only to groups ofCUSTOMERuser type.EMPLOYEE- the access control can be assigned only to groups ofEMPLOYEEuser type.
If this property is not present, the access control can be assigned to any group regardless of its user type.
Note: This property is immutable. It can only be set when the access control is created and cannot be changed afterwards.
The request was successful. The access control has been created.
The request was successful. The access control has been updated.
Unsupported content language provided.
Given request is unauthorized - the authorization token is invalid or has expired. It usually means that tenant from the token does not match tenant from path.
Scope validation failed, details will be provided in response message
Your Emporix tenant name.
Note: The tenant name should always be written in lowercase.
^[a-z][a-z0-9]+$Unique identifier of an access control.
084bcaf6-66b8-4ddd-9489-65c5f6449e94The request was successful. The access control has been deleted.
Given request is unauthorized - the authorization token is invalid or has expired. It usually means that tenant from the token does not match tenant from path.
Scope validation failed, details will be provided in response message
No content
Last updated
Was this helpful?