Oracle Access Governance REST APIs

Get the policy statements details for the given policy statement ID for the policy access review

get

/access-governance/access-reviews/20250331/accessReviews/{accessReviewId}/policyStatements/{policyStatementId}

Returns policy statements details for the given policy statement ID for the policy access review.

Request

Path Parameters

accessReviewId(required): string

Unique access review identifier.
policyStatementId(required): string

Unique policy statement identifier.

Header Parameters

opc-request-id: string

The client request ID for tracing. The only valid characters for request IDs are letters, numbers, underscore, and dash.

Response

Supported Media Types

application/json

200 Response

The details of policy statement for given policy.

Headers

etag: string

For optimistic concurrency control. See `if-match`.
opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : PolicyStatement

Type: object

The policy statement associated with the given review task.

Show Source

hasLocationInsights(required): boolean

Is the policy statement has location insights or not.
hasResourceInsights(required): boolean

Is the policy statement has resource insights or not.
hasSubjectInsights(required): boolean

Is the policy statement has subject insights or not.
id(required): string

The id of the policy statement.
isActionable(required): boolean

Is the policy statement actionable or not.
notes: array notes

The list of policy notes from insights.
position: integer

The position order of the statement in the policy.
statement(required): string

The policy statement.
verb: string

The privilege of the resources in the statement.

{
    "type":"object",
    "description":"The policy statement associated with the given review task.",
    "required":[
        "id",
        "statement",
        "isActionable",
        "hasSubjectInsights",
        "hasLocationInsights",
        "hasResourceInsights"
    ],
    "properties":{
        "id":{
            "type":"string",
            "description":"The id of the policy statement."
        },
        "statement":{
            "description":"The policy statement.",
            "type":"string"
        },
        "position":{
            "description":"The position order of the statement in the policy.",
            "type":"integer"
        },
        "isActionable":{
            "description":"Is the policy statement actionable or not.",
            "type":"boolean"
        },
        "hasSubjectInsights":{
            "description":"Is the policy statement has subject insights or not.",
            "type":"boolean"
        },
        "hasLocationInsights":{
            "description":"Is the policy statement has location insights or not.",
            "type":"boolean"
        },
        "hasResourceInsights":{
            "description":"Is the policy statement has resource insights or not.",
            "type":"boolean"
        },
        "notes":{
            "type":"array",
            "description":"The list of policy notes from insights.",
            "items":{
                "type":"string"
            }
        },
        "verb":{
            "description":"The privilege of the resources in the statement.",
            "type":"string"
        }
    }
}

Nested Schema : notes

Type: array

The list of policy notes from insights.

Show Source

Array of: string

{
    "type":"array",
    "description":"The list of policy notes from insights.",
    "items":{
        "type":"string"
    }
}

400 Response

Bad Request

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

401 Response

Unauthorized

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

404 Response

Not Found

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

429 Response

Too Many Requests

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

500 Response

Internal Server Error

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

Default Response

Unknown Error

Headers

opc-request-id: string

Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.

Root Schema : Error

Type: object

Error Information.

Show Source

code(required): string

A short error code that defines the error, meant for programmatic parsing.
message(required): string

A human-readable error string.

{
    "required":[
        "code",
        "message"
    ],
    "properties":{
        "code":{
            "type":"string",
            "description":"A short error code that defines the error, meant for programmatic parsing."
        },
        "message":{
            "type":"string",
            "description":"A human-readable error string."
        }
    },
    "description":"Error Information."
}

Examples

The following example shows how to retrieve details for a given policy statement in policy. Use the Access Control review task id for a policy.

cURL Example

curl -i -X GET \
   -H "Authorization:Bearer <your access token>" \
 '${service-instance-url}/access-governance/access-reviews/accessReviews/${accessReviewId}/policyStatements/${policyStatementId}

Example of the Response Body

The following example shows the contents of the response body in JSON format:

{
  "id": "tapolicystmt.OCI.f10xxf64-7c18-42de-a146-f55c8c363xxx.cf22d7cedc3dd991ff9e23bfbb26939a",
  "statement": "ALLOW GROUP Auto_InfraAdmins to manage policies IN TENANCY",
  "position": 0,
  "isActionable": true,
  "hasSubjectInsights": true,
  "hasLocationInsights": true,
  "hasResourceInsights": true,
  "notes": [],
  "verb": "MANAGE"
}