Get list of prior actions for an access review
get
/access-governance/access-reviews/20250331/accessReviews/{accessReviewId}/priorActions
Returns list of prior actions of the access review for a given accessReviewId.
Request
Path Parameters
-
accessReviewId(required): string
Unique access review identifier.
Query Parameters
-
limit: integer
Minimum Value:
1Maximum Value:1000The maximum number of items to return.Default Value:10 -
page: string
Minimum Length:
1A token representing the position at which to start retrieving results. This must come from the `opc-next-page` header field of a previous response. -
sortBy: string
The sort by parameter for prior actions and default value is timeReviewed.Default Value:
timeReviewedAllowed Values:[ "campaignName", "reviewerName", "reviewerType", "timeReviewed", "action" ] -
sortOrder: string
The sort order to use, either 'ASC' or 'DESC'.Allowed Values:
[ "ASC", "DESC" ]
Header Parameters
-
opc-request-id: string
The client request ID for tracing. The only valid characters for request IDs are letters, numbers, underscore, and dash.
Response
Supported Media Types
- application/json
200 Response
The access review prior actions.
Headers
-
opc-next-page: string
For pagination of a list of items. When paging through a list, if this header appears in the response, then a partial list might have been returned. Include this value as the `page` parameter for the subsequent GET request to get the next batch of items.
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : AccessReviewPriorActionsSummaryCollection
Type:
objectList of prior action summaries.
Show Source
-
items(required):
array items
List of prior action summaries.
Nested Schema : items
Type:
arrayList of prior action summaries.
Show Source
-
Array of:
object AccessReviewPriorActionsSummary
The prior action for the given review task.
Nested Schema : AccessReviewPriorActionsSummary
Type:
objectThe prior action for the given review task.
Show Source
-
action(required):
string
Allowed Values:
[ "ACCEPT", "REVOKE", "MODIFY", "ASSIGN", "REMOVE", "REASSIGN", "REJECTED", "INITIAL_REQUEST", "APPROVED", "DELETED", "CANCELLED", "FAILED", "REQUEST_INFO", "PROVIDE_INFO", "CANCEL", "REJECT" ]The action that was taken by the reviewer. -
campaignName(required):
string
The name of the campaign or event.
-
finalAction:
string
The final action for that stage/level for that review task.
-
hasSodViolation:
boolean
Whether or not there were SOD violations present.
-
isAutoActioned:
boolean
Whether or not the review task was auto actioned.
-
isCompletionRuleActioned:
string
Whether or not the review task was actioned by completion rule.
-
justification:
string
The justification given by the reviewer.
-
level:
integer
The reviewer level.
-
reviewerName(required):
string
The name of the reviewer or actor.
-
reviewerType(required):
string
Allowed Values:
[ "CUSTOM_OWNER", "OWNER", "USER", "USER_MANAGER", "CLOUD_REVIEWER", "APPROVAL_SYSTEM", "REQUESTOR", "BENEFICIARY", "BENEFICIARY_MANAGER", "CUSTOM_USER", "GROUP", "MANAGER_CHAIN", "SYSTEM", "NO_APPROVAL" ]The type of the reviewer or actor. -
subLevel:
string
SubLevel will be the manager level in the management chain.
-
timeReviewed(required):
string(date-time)
The date that the reviewer took the action.
400 Response
Bad Request
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
401 Response
Unauthorized
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
404 Response
Not Found
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
429 Response
Too Many Requests
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
500 Response
Internal Server Error
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
Default Response
Unknown Error
Headers
-
opc-request-id: string
Unique Oracle-assigned identifier for the request. If you need to contact Oracle about a particular request, please provide the request ID.
Root Schema : Error
Type:
objectError Information.
Show Source
-
code(required):
string
A short error code that defines the error, meant for programmatic parsing.
-
message(required):
string
A human-readable error string.
Examples
The following example shows how to retrieve audit trail for an access review task. This captures the history of actions performed on this access review task.
cURL Example - Without Query Parameters
curl -i -X GET \
-H "Authorization:Bearer <your access token>" \
'${service-instance-url}/access-governance/access-reviews/accessReviews/${accessReviewId}/priorActionsExample of the Response Body
The following example shows the contents of the response body in JSON format:
{
"items": [
{
"campaignName": "User created",
"level": 1,
"reviewerName": "Approval System",
"reviewerType": "CUSTOM_USER",
"action": "REASSIGN",
"timeReviewed": "2025-04-13T20:11:40.816Z",
"isAutoActioned": null,
"isCompletionRuleActioned": null,
"justification": "Reassignment by Approval System due to identity change",
"finalAction": null,
"subLevel": null,
"hasSodViolation": false
}
]
}If no prior action has been performed, the response will return a status code of 200 along with an empty itemsarray.