Get membership rules and excluded identities for Identity collection access review
get
/access-governance/access-reviews/20250331/accessReviews/{accessReviewId}/membershipRules
Returns membership rules and excluded identities for Identity collection access review.
Request
Path Parameters
-
accessReviewId(required): string
Unique access review identifier.
Header Parameters
-
opc-request-id: string
The client request ID for tracing. The only valid characters for request IDs are letters, numbers, underscore, and dash.
Response
Supported Media Types
- application/json
200 Response
The access review membership rules.
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : MembershipRule
Type:
objectThe Membership rule summary for the IC review.
Show Source
-
attributeConditions:
array attributeConditions
The attribute conditions for the Membership rule.
-
bindingOperator:
string
The operator of the Membership rule.
Nested Schema : attributeConditions
Type:
arrayThe attribute conditions for the Membership rule.
Show Source
-
Array of:
object AttributeCondition
The Attribute condition for the Membership rule.
Nested Schema : AttributeCondition
Type:
objectThe Attribute condition for the Membership rule.
Show Source
-
attrKey(required):
object IdNameObject
The Attribute key or Operator condition for the Membership rule.
-
attrType(required):
string
The attribute type of the Membership rule condition.
-
attrValue(required):
string
The attribute value of the Membership rule condition.
-
id(required):
string
The ID of the Membership rule condition.
-
operator(required):
object IdNameObject
The Attribute key or Operator condition for the Membership rule.
Nested Schema : IdNameObject
Type:
objectThe Attribute key or Operator condition for the Membership rule.
Show Source
-
displayName(required):
string
The display name of the Attribute Key or Operator.
-
id(required):
string
The ID of the Attribute Key or Operator.
-
name(required):
string
The name of the Attribute Key or Operator.
400 Response
Bad Request
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
401 Response
Unauthorized
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
404 Response
Not Found
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
429 Response
Too Many Requests
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
500 Response
Internal Server Error
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
Default Response
Unknown Error
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
Examples
The following example shows how to retrieve membership rule for an access review task. Use the Access Control review task id for an Identity Collection.
cURL Example - Without Query Parameters
curl -i -X GET \
-H "Authorization:Bearer <your access token>" \
'${service-instance-url}/access-governance/access-reviews/accessReviews/${accessReviewId}/membershipRulesExample of the Response Body
The following example shows the contents of the response body in JSON format:
{
"bindingOperator": "ALL",
"attributeConditions": [
{
"id": "88ac7274-1e47-4bec-a807-c6f804345fdd",
"attrKey": {
"id": "addresses.country",
"name": "Location",
"displayName": "Location"
},
"operator": {
"id": "EQ",
"name": "Equals",
"displayName": "EQ"
},
"attrValue": "India",
"attrType": "string"
}
]
}If you use an access review task id other than identity collection, then you'll receive the following response:
{
"bindingOperator": null,
"attributeConditions": null
}