Oracle Access Governance REST APIs

Create an Access Request

post

/access-governance/access-controls/20250331/accessRequests

Creates a new access request for an identity with the specified details.

Request

Header Parameters

opc-request-id: string

The client request ID for tracing. The only valid characters for request IDs are letters, numbers, underscore, and dash.

Details for the new Access Request

Root Schema : CreateAccessRequestDetails

Type: object

The information about new AccessRequest.

Show Source

accessBundles: array accessBundles

list of Access bundle items.
accountProfileDetails: array accountProfileDetails

list of account profiles associated to access request
attributes: object attributes

Additional Properties Allowed: additionalProperties

Attributes of the corresponding model. Example: `{"foo-namespace": {"bar-key": "value"}}`
createdBy: string

The user that created the request
identities: array identities

list of identity ids
justification: string

Justification for creating the access request
permissionRoles: array permissionRoles

list of Permission roles items.
requestStatus: string

Status of the access request
targetAttributes: array targetAttributes

list of targetAttributes associated with targets

{
    "type":"object",
    "properties":{
        "justification":{
            "type":"string",
            "description":"Justification for creating the access request"
        },
        "requestStatus":{
            "type":"string",
            "description":"Status of the access request"
        },
        "createdBy":{
            "type":"string",
            "description":"The user that created the request"
        },
        "permissionRoles":{
            "type":"array",
            "description":"list of Permission roles items.",
            "items":{
                "$ref":"#/definitions/Info"
            }
        },
        "accessBundles":{
            "type":"array",
            "description":"list of Access bundle items.",
            "items":{
                "$ref":"#/definitions/AccessBundleInfo"
            }
        },
        "identities":{
            "type":"array",
            "description":"list of identity ids",
            "items":{
                "$ref":"#/definitions/Info"
            }
        },
        "targetAttributes":{
            "type":"array",
            "description":"list of targetAttributes associated with targets",
            "items":{
                "$ref":"#/definitions/TargetAttribute"
            }
        },
        "accountProfileDetails":{
            "type":"array",
            "description":"list of account profiles associated to access request",
            "items":{
                "$ref":"#/definitions/AccountProfileInfo"
            }
        },
        "attributes":{
            "type":"object",
            "description":"Attributes of the corresponding model. \nExample: `{\"foo-namespace\": {\"bar-key\": \"value\"}}`\n",
            "additionalProperties":{
                "type":"object",
                "properties":{
                }
            }
        }
    },
    "description":"The information about new AccessRequest."
}

Nested Schema : accessBundles

Type: array

list of Access bundle items.

Show Source

Array of: object AccessBundleInfo

Generic information object.

{
    "type":"array",
    "description":"list of Access bundle items.",
    "items":{
        "$ref":"#/definitions/AccessBundleInfo"
    }
}

Nested Schema : accountProfileDetails

Type: array

list of account profiles associated to access request

Show Source

Array of: object AccountProfileInfo

Account Profile Configuration by Identity

{
    "type":"array",
    "description":"list of account profiles associated to access request",
    "items":{
        "$ref":"#/definitions/AccountProfileInfo"
    }
}

Nested Schema : attributes

Type: object

Additional Properties Allowed

Show Source

object additionalProperties

{
    "type":"object",
    "description":"Attributes of the corresponding model. \nExample: `{\"foo-namespace\": {\"bar-key\": \"value\"}}`\n",
    "additionalProperties":{
        "type":"object",
        "properties":{
        }
    }
}

Attributes of the corresponding model. Example: `{"foo-namespace": {"bar-key": "value"}}`

Nested Schema : identities

Type: array

list of identity ids

Show Source

Array of: object Info

Generic information object.

{
    "type":"array",
    "description":"list of identity ids",
    "items":{
        "$ref":"#/definitions/Info"
    }
}

Nested Schema : permissionRoles

Type: array

list of Permission roles items.

Show Source

Array of: object Info

Generic information object.

{
    "type":"array",
    "description":"list of Permission roles items.",
    "items":{
        "$ref":"#/definitions/Info"
    }
}

Nested Schema : targetAttributes

Type: array

list of targetAttributes associated with targets

Show Source

Array of: object TargetAttribute

Account & entitlement attributes

{
    "type":"array",
    "description":"list of targetAttributes associated with targets",
    "items":{
        "$ref":"#/definitions/TargetAttribute"
    }
}

Nested Schema : AccessBundleInfo

Type: object

Generic information object.

Show Source

accountProfileId: string

account profile id
displayName: string

display name of the entity
id: string

id of the entity.
name: string

name of the entity.

{
    "type":"object",
    "properties":{
        "id":{
            "type":"string",
            "description":"id of the entity."
        },
        "name":{
            "type":"string",
            "description":"name of the entity."
        },
        "displayName":{
            "type":"string",
            "description":"display name of the entity"
        },
        "accountProfileId":{
            "type":"string",
            "description":"account profile id"
        }
    },
    "description":"Generic information object."
}

Nested Schema : AccountProfileInfo

Type: object

Account Profile Configuration by Identity

Show Source

accountAttributes: array accountAttributes

Account Attribute Values
accountProfileId: string

Account Profile Id
identityAccountAttributesDetails: array identityAccountAttributesDetails

Account Attributes Info by Identity
identitySpecific: boolean

Same configuration for all identities.

{
    "type":"object",
    "properties":{
        "accountProfileId":{
            "type":"string",
            "description":"Account Profile Id"
        },
        "identitySpecific":{
            "type":"boolean",
            "description":"Same configuration for all identities."
        },
        "identityAccountAttributesDetails":{
            "type":"array",
            "description":"Account Attributes Info by Identity",
            "items":{
                "$ref":"#/definitions/IdentityAccountAttributesInfo"
            }
        },
        "accountAttributes":{
            "type":"array",
            "description":"Account Attribute Values",
            "items":{
                "$ref":"#/definitions/TargetAttributeDataSummary"
            }
        }
    },
    "description":"Account Profile Configuration by Identity"
}

Nested Schema : accountAttributes

Type: array

Account Attribute Values

Show Source

Array of: object TargetAttributeDataSummary

Target Attributes

{
    "type":"array",
    "description":"Account Attribute Values",
    "items":{
        "$ref":"#/definitions/TargetAttributeDataSummary"
    }
}

Nested Schema : identityAccountAttributesDetails

Type: array

Account Attributes Info by Identity

Show Source

Array of: object IdentityAccountAttributesInfo

Account Profile Attributes

{
    "type":"array",
    "description":"Account Attributes Info by Identity",
    "items":{
        "$ref":"#/definitions/IdentityAccountAttributesInfo"
    }
}

Nested Schema : TargetAttributeDataSummary

Type: object

Target Attributes

Show Source

children: array children

nested attributes
discriminator: string

this field signify attribute field is password
entitlementType: string

Entitlement Type
isQuestion: boolean

Boolean value for checking if this is attribute is a question for requester.
name: string

Attribute name - Unique identifier
title: string

Display Name for the attribute.
type: string

Type of attribute
values: array values

Attribute Values

{
    "type":"object",
    "properties":{
        "name":{
            "type":"string",
            "description":"Attribute name - Unique identifier"
        },
        "title":{
            "type":"string",
            "description":"Display Name for the attribute."
        },
        "values":{
            "type":"array",
            "description":"Attribute Values",
            "items":{
                "type":"string"
            }
        },
        "type":{
            "type":"string",
            "description":"Type of attribute"
        },
        "entitlementType":{
            "type":"string",
            "description":"Entitlement Type"
        },
        "children":{
            "type":"array",
            "description":"nested attributes",
            "items":{
                "$ref":"#/definitions/NestedAttributesSummary"
            }
        },
        "discriminator":{
            "type":"string",
            "description":"this field signify attribute field is password"
        },
        "isQuestion":{
            "type":"boolean",
            "description":"Boolean value for checking if this is attribute is a question for requester."
        }
    },
    "description":"Target Attributes"
}

Nested Schema : children

Type: array

nested attributes

Show Source

Array of: object NestedAttributesSummary

Nested set of Orchestrated System attributes

{
    "type":"array",
    "description":"nested attributes",
    "items":{
        "$ref":"#/definitions/NestedAttributesSummary"
    }
}

Nested Schema : values

Type: array

Attribute Values

Show Source

Array of: string

{
    "type":"array",
    "description":"Attribute Values",
    "items":{
        "type":"string"
    }
}

Nested Schema : NestedAttributesSummary

Type: object

Nested set of Orchestrated System attributes

Show Source

items: array items

Orchestrated System attributes

{
    "type":"object",
    "properties":{
        "items":{
            "type":"array",
            "description":"Orchestrated System attributes",
            "items":{
                "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
            }
        }
    },
    "description":"Nested set of Orchestrated System attributes"
}

Nested Schema : items

Type: array

Orchestrated System attributes

Show Source

Array of: object OrchestratedSystemAttributeDataSummary

Orchestrated System Attributes

{
    "type":"array",
    "description":"Orchestrated System attributes",
    "items":{
        "$ref":"#/definitions/OrchestratedSystemAttributeDataSummary"
    }
}

Nested Schema : OrchestratedSystemAttributeDataSummary

Type: object

Orchestrated System Attributes

Show Source

children: array children

nested attributes
discriminator: string

this field signify attribute field is password
isQuestion: boolean

Indicates if this Orchestrated System Attribute will be presented as a question.
name: string

Attribute name - Unique identifier
permissionType: string

Permission Type
title: string

Display Name for the attribute.
type: string

Type of attribute
values: array values

Attribute Values

{
    "type":"object",
    "properties":{
        "name":{
            "type":"string",
            "description":"Attribute name - Unique identifier"
        },
        "title":{
            "type":"string",
            "description":"Display Name for the attribute."
        },
        "values":{
            "type":"array",
            "description":"Attribute Values",
            "items":{
                "type":"string"
            }
        },
        "type":{
            "type":"string",
            "description":"Type of attribute"
        },
        "permissionType":{
            "type":"string",
            "description":"Permission Type"
        },
        "children":{
            "type":"array",
            "description":"nested attributes",
            "items":{
                "$ref":"#/definitions/NestedAttributesSummary"
            }
        },
        "discriminator":{
            "type":"string",
            "description":"this field signify attribute field is password"
        },
        "isQuestion":{
            "type":"boolean",
            "description":"Indicates if this Orchestrated System Attribute will be presented as a question."
        }
    },
    "description":"Orchestrated System Attributes"
}

Nested Schema : children

Type: array

nested attributes

Show Source

Array of: object NestedAttributesSummary

Nested set of Orchestrated System attributes

{
    "type":"array",
    "description":"nested attributes",
    "items":{
        "$ref":"#/definitions/NestedAttributesSummary"
    }
}

Nested Schema : values

Type: array

Attribute Values

Show Source

Array of: string

{
    "type":"array",
    "description":"Attribute Values",
    "items":{
        "type":"string"
    }
}

Nested Schema : IdentityAccountAttributesInfo

Type: object

Account Profile Attributes

Show Source

accountAttributes: array accountAttributes

Account Attribute Values
identityId: string

Global Identity Id

{
    "type":"object",
    "properties":{
        "identityId":{
            "type":"string",
            "description":"Global Identity Id"
        },
        "accountAttributes":{
            "type":"array",
            "description":"Account Attribute Values",
            "items":{
                "$ref":"#/definitions/TargetAttributeDataSummary"
            }
        }
    },
    "description":"Account Profile Attributes"
}

Nested Schema : accountAttributes

Type: array

Account Attribute Values

Show Source

Array of: object TargetAttributeDataSummary

Target Attributes

{
    "type":"array",
    "description":"Account Attribute Values",
    "items":{
        "$ref":"#/definitions/TargetAttributeDataSummary"
    }
}

Nested Schema : additionalProperties

Type: object

Show Source

{
    "type":"object",
    "properties":{
    }
}

Nested Schema : Info

Type: object

Generic information object.

Show Source

displayName: string

Display Name of the entity.
id: string

id of the entity.
name: string

name of the entity.

{
    "type":"object",
    "properties":{
        "id":{
            "type":"string",
            "description":"id of the entity."
        },
        "name":{
            "type":"string",
            "description":"name of the entity."
        },
        "displayName":{
            "type":"string",
            "description":"Display Name of the entity."
        }
    },
    "description":"Generic information object."
}

Nested Schema : TargetAttribute

Type: object

Account & entitlement attributes

Show Source

accountAttributes: array accountAttributes

List of target account attributes
displayName: string

displayName of the object class
entitlementAttributes: array entitlementAttributes

List of target entitlement attributes
objectClass: string

Name of the object class
target(required): object Info

Generic information object.

{
    "type":"object",
    "required":[
        "target"
    ],
    "properties":{
        "objectClass":{
            "type":"string",
            "description":"Name of the object class"
        },
        "displayName":{
            "type":"string",
            "description":"displayName of the object class"
        },
        "target":{
            "$ref":"#/definitions/Info"
        },
        "accountAttributes":{
            "type":"array",
            "description":"List of target account attributes",
            "items":{
                "$ref":"#/definitions/TargetAttributeData"
            }
        },
        "entitlementAttributes":{
            "type":"array",
            "description":"List of target entitlement attributes",
            "items":{
                "$ref":"#/definitions/TargetAttributeData"
            }
        }
    },
    "description":"Account & entitlement attributes"
}

Nested Schema : accountAttributes

Type: array

List of target account attributes

Show Source

Array of: object TargetAttributeData

Target Attributes

{
    "type":"array",
    "description":"List of target account attributes",
    "items":{
        "$ref":"#/definitions/TargetAttributeData"
    }
}

Nested Schema : entitlementAttributes

Type: array

List of target entitlement attributes

Show Source

Array of: object TargetAttributeData

Target Attributes

{
    "type":"array",
    "description":"List of target entitlement attributes",
    "items":{
        "$ref":"#/definitions/TargetAttributeData"
    }
}

Nested Schema : TargetAttributeData

Type: object

Target Attributes

Show Source

discriminator: string

this field signify attribute field is password
entitlementType: string

Entitlement Type
lookupType: string

LookUpID for the attribute
name: string

Attribute name
required: boolean

Is this attribute mandatory
type: string

Type of attribute

{
    "type":"object",
    "properties":{
        "name":{
            "type":"string",
            "description":"Attribute name"
        },
        "type":{
            "type":"string",
            "description":"Type of attribute"
        },
        "required":{
            "type":"boolean",
            "description":"Is this attribute mandatory"
        },
        "lookupType":{
            "type":"string",
            "description":"LookUpID for the attribute"
        },
        "entitlementType":{
            "type":"string",
            "description":"Entitlement Type"
        },
        "discriminator":{
            "type":"string",
            "description":"this field signify attribute field is password"
        }
    },
    "description":"Target Attributes"
}

Response

Supported Media Types

application/json

200 Response

The newly created Access Request

Headers

etag: string

For optimistic concurrency control. See `if-match`.
opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : AccessRequest

Type: object

Description of AccessRequest.

Show Source

accessBundles: array accessBundles

list of Access bundle items.
attributes: object attributes

Additional Properties Allowed: additionalProperties

Attributes of the corresponding model. Example: `{"foo-namespace": {"bar-key": "value"}}`
createdBy: string

The user that created the request
id(required): string

The Unique Oracle ID (OCID) that is immutable on creation.
identities: array identities

list of identities
justification: string

Justification for creating or updating the access request
permissionRoles: array permissionRoles

list of Permission roles items.
requestStatus: string

Status of the access request
timeCreated: string(date-time)

The time the the AccessRequest was created. An RFC3339 formatted datetime string
timeUpdated: string(date-time)

The time the the AccessRequest was last updated. An RFC3339 formatted datetime string

{
    "type":"object",
    "required":[
        "id"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"The Unique Oracle ID (OCID) that is immutable on creation."
        },
        "justification":{
            "type":"string",
            "description":"Justification for creating or updating the access request"
        },
        "requestStatus":{
            "type":"string",
            "description":"Status of the access request"
        },
        "timeCreated":{
            "type":"string",
            "format":"date-time",
            "description":"The time the the AccessRequest was created. An RFC3339 formatted datetime string"
        },
        "timeUpdated":{
            "type":"string",
            "format":"date-time",
            "description":"The time the the AccessRequest was last updated. An RFC3339 formatted datetime string"
        },
        "createdBy":{
            "type":"string",
            "description":"The user that created the request"
        },
        "permissionRoles":{
            "type":"array",
            "description":"list of Permission roles items.",
            "items":{
                "$ref":"#/definitions/Info"
            }
        },
        "accessBundles":{
            "type":"array",
            "description":"list of Access bundle items.",
            "items":{
                "$ref":"#/definitions/AccessBundleInfo"
            }
        },
        "identities":{
            "type":"array",
            "description":"list of identities",
            "items":{
                "$ref":"#/definitions/Info"
            }
        },
        "attributes":{
            "type":"object",
            "description":"Attributes of the corresponding model. \nExample: `{\"foo-namespace\": {\"bar-key\": \"value\"}}`\n",
            "additionalProperties":{
                "type":"object",
                "properties":{
                }
            }
        }
    },
    "description":"Description of AccessRequest."
}

Nested Schema : accessBundles

Type: array

list of Access bundle items.

Show Source

Array of: object AccessBundleInfo

Generic information object.

{
    "type":"array",
    "description":"list of Access bundle items.",
    "items":{
        "$ref":"#/definitions/AccessBundleInfo"
    }
}

Nested Schema : attributes

Type: object

Additional Properties Allowed

Show Source

object additionalProperties

{
    "type":"object",
    "description":"Attributes of the corresponding model. \nExample: `{\"foo-namespace\": {\"bar-key\": \"value\"}}`\n",
    "additionalProperties":{
        "type":"object",
        "properties":{
        }
    }
}

Attributes of the corresponding model. Example: `{"foo-namespace": {"bar-key": "value"}}`

Nested Schema : identities

Type: array

list of identities

Show Source

Array of: object Info

Generic information object.

{
    "type":"array",
    "description":"list of identities",
    "items":{
        "$ref":"#/definitions/Info"
    }
}

Nested Schema : permissionRoles

Type: array

list of Permission roles items.

Show Source

Array of: object Info

Generic information object.

{
    "type":"array",
    "description":"list of Permission roles items.",
    "items":{
        "$ref":"#/definitions/Info"
    }
}

Nested Schema : AccessBundleInfo

Type: object

Generic information object.

Show Source

accountProfileId: string

account profile id
displayName: string

display name of the entity
id: string

id of the entity.
name: string

name of the entity.

{
    "type":"object",
    "properties":{
        "id":{
            "type":"string",
            "description":"id of the entity."
        },
        "name":{
            "type":"string",
            "description":"name of the entity."
        },
        "displayName":{
            "type":"string",
            "description":"display name of the entity"
        },
        "accountProfileId":{
            "type":"string",
            "description":"account profile id"
        }
    },
    "description":"Generic information object."
}

Nested Schema : additionalProperties

Type: object

Show Source

{
    "type":"object",
    "properties":{
    }
}

Nested Schema : Info

Type: object

Generic information object.

Show Source

displayName: string

Display Name of the entity.
id: string

id of the entity.
name: string

name of the entity.

{
    "type":"object",
    "properties":{
        "id":{
            "type":"string",
            "description":"id of the entity."
        },
        "name":{
            "type":"string",
            "description":"name of the entity."
        },
        "displayName":{
            "type":"string",
            "description":"Display Name of the entity."
        }
    },
    "description":"Generic information object."
}

400 Response

Bad Request

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

401 Response

Unauthorized

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

404 Response

Not Found

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

409 Response

Conflict

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

429 Response

Too Many Requests

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

500 Response

Internal Server Error

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

Default Response

Unknown Error

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}