1. Oracle Access Governance REST APIs
  2. Tasks
  3. AccessReviews

Modify an access review

post

/access-governance/access-reviews/20250331/accessReviews/{accessReviewId}/actions/modify

Modifying the access review for a given accessReviewId.

Request

Path Parameters
Header Parameters
  • For optimistic concurrency control. In the PUT or DELETE call for a resource, set the `if-match` parameter to the value of the etag from a previous GET or POST response for that resource. The resource will be updated or deleted only if the etag you provide matches the resource's current etag value.
  • The client request ID for tracing. The only valid characters for request IDs are letters, numbers, underscore, and dash.
Body ()
Details to modify the Access Review.
Root Schema : ModifyAccessReviewDetails
Type: object
Details to modify the access review. revokedChildIds and acceptedChildIds are mutually exclusive.
Show Source
Nested Schema : acceptedChildIds
Type: array
Maximum Number of Items: 500
List of child ids that are accepted for given access review.
Show Source
Nested Schema : revokedChildIds
Type: array
Maximum Number of Items: 500
List of child ids that are revoked for given access review.
Show Source
Nested Schema : ChildId
Type: object
The child ID object.
Show Source
  • Minimum Length: 1
    Maximum Length: 255
    The ID of the child object.
  • Allowed Values: [ "ASSOCIATION", "CONDITION", "EXCLUDED", "INCLUDED", "PRIMARY", "NON_REVIEWABLE" ]
    The type of the child object.
Back to Top

Response

Supported Media Types

202 Response

Successfully submitted request to modify the access review.
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

400 Response

Bad Request
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source

401 Response

Unauthorized
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source

404 Response

Not Found
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source

412 Response

Precondition failed
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source

429 Response

Too Many Requests
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source

500 Response

Internal Server Error
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source

Default Response

Unknown Error
Headers
  • Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Body ()
Root Schema : Error
Type: object
Error Information.
Show Source
Back to Top

Examples

The following example shows how to review each policy statement, where you accept a few statements and reject a few. Applicable for Policy Access Review task. Use 

/access-governance/access-reviews/20250331/accessReviews/{accessReviewId}/actions/accept
to accept all the policy statements for a policy review task.

Note:

Generate Access Token using grant_type = password or Authorization code.

cURL Request Example

curl -i -X POST \
   -H "Authorization:Bearer <your-access-token>" \
   -H "Content-Type:application/json" \
    -d \
    '{
  "justification": "Accepted one of the two",
  "revokedChildIds": [
    {
      "id": "tapolicystmt.OCI.f101xxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.bebxxxxx",
      "type": "ASSOCIATION"
    }
  ],
  "acceptedChildIds": [
    {
      "id": "tapolicystmt.OCI.f101xxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.248xxxxx",
      "type": "ASSOCIATION"
    }
  ]
}'
 '<${service-instance-url}/access-governance/access-reviews/${version}/accessReviews/${accessReviewId}/actions/modify>'

Sample Request Payload

Select POST and add the following URL
${service-instance-url}/access-governance/access-reviews/${version}/accessReviews/${accessReviewId}/actions/modify>
{
  "justification": "Accepted one of the two",
  "revokedChildIds": [
    {
      "id": "tapolicystmt.OCI.f101xxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.bebxxxxx",
      "type": "ASSOCIATION"
    }
  ],
  "acceptedChildIds": [
    {
      "id": "tapolicystmt.OCI.f101xxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.248xxxxx",
      "type": "ASSOCIATION"
    }
  ]
}

Example of the Response Code

You'll receive 204 response no body content.

Verify Reassignment through Audit Trail of an Access Review Task

Run the following API using the access review task

/access-governance/access-reviews/20250331/accessReviews/{accessReviewId}/priorActions
You'll receive the following response:
{
  "items": [
    {
      "campaignName": "Policy Review Example - June 2025",
      "level": 1,
      "reviewerName": "John Doe",
      "reviewerType": "CUSTOM_USER",
      "action": "MODIFY",
      "timeReviewed": "2025-06-12T10:23:29.820Z",
      "isAutoActioned": null,
      "isCompletionRuleActioned": null,
      "justification": "Accepted one of the two",
      "finalAction": "MODIFY",
      "subLevel": null,
      "hasSodViolation": false
    }
  ]
}
Back to Top