Endpoint | HTTP Verb | Description | Request Schema | Response Schema (Success) |
---|
v2/claimsets/claimSets | GET | Retrieves all claimsets | - | [
{
"id": 0,
"name": "string",
"_isSystemReserved": true,
"_applications": []
}
] |
---|
v2/claimsets/claimSets | POST | Creates a new claimset. | { "name": "string"} | { "id": 0, "name": "string", "_isSystemReserved": false, "_applications": [] }
|
---|
v2/claimsetsclaimSets/{id} | GET | Retrieves a specific claimset by id | - | {
"id": 0,
"name": "string",
"_isSystemReserved": false,
"_applications": [],
"resourceClaims": [
{ "id": "string", "name": "string",
"read": true,
"create": true,
"update": true,
"delete": true,
"_defaultAuthStrategiesForCRUD": [
{
"authStrategyName": "string",
"isInheritedFromParent": true
}
],
"authStrategyOverridesForCRUD": [
{
"authStrategyName": "string",
"isInheritedFromParent": true
}
],
"children": [
"list of resource claims"
]
}
]
} |
---|
v2/claimsetsclaimSets/{id} | PUT | Update the claim set name. | { "id": 0, "name": "string" } | HTTP response as documented below |
---|
v2/claimsetsclaimSets/{id} | DELETE | Deletes a claimset by id | - | HTTP response as documented below |
---|
v2/claimsetsclaimSets/{claimsetidclaimSetId}/resourceclaimActionsresourceClaimActions | POST | Add resourceclaimaction association to claim set. At least one action should be enabled (read, create, update, delete).
resouceclaimId, claimsetId are required fields.
parentResourceClaimId can be null.
Note: If resource claim is a child, then parentResourceClaimId is needed. | { "resouceclaimId" : 0, "parentresourceclaimId": 0, "resourceClaimActions": { "read": true, "create": true, "update": true, "delete": true } } | HTTP response as documented below |
---|
v2/claimsetsclaimSets/{claimsetidclaimSetId}/ resourceclaimActionsresourceClaimActions/{resourceclaimidresourceClaimid}
| PUT | Updates the resourceclaimActions to a specific resource claim on a claimset. At least one action should be enabled (read, create, update, delete). resouceclaimId, claimsetId are required fields. parentResourceClaimId can be null. Note: If resource claim is a child, then parentResourceClaimId is needed. | { "parentResourceClaimId": 0, "resourceClaimActions": { "read": true, "create": true, "update": true, "delete": true } } | HTTP response as documented below |
---|
v2/ claimsetsclaimSets/{ claimsetidclaimSetId}/ resourceclaimsresourceClaimActions/ { resourceclaimidresourceClaimId}/ overrideauthstrategyoverrideAuthStrategy
| POST | Override the default authorization strategies on provided resource claim for a specific action. ex: actionName = read, authstrategyName=Ownershipbased | { "actionName": string, "authstrategyName: string } | HTTP response as documented below |
---|
v2/ claimsetsclaimSets/{ claimsetidclaimSetId}/ resourceclaimsresourceClaimActions/ { resourceclaimidresourceClaimId}/ resetauthstrategiesresetAuthStrategies
| POST | Reset to default authorization strategies on provided resource claim. | - | HTTP response as documented below |
---|
v2/claimsetsclaimSets/{claimsetidclaimSetId}/ resourceclaimsresourceClaimActions/{resourceclaimidresourceClaimId} | DELETE | Deletes a resource claims association from a claim set | - | HTTP response as documented below |
---|
v2/claimsetsclaimSets/copy | POST | Copy the existing claimset and create new. | { "originalId": 0, "name": "string" } | HTTP response as documented below
|
---|