What's New for Oracle Access Governance REST API

June 2026

REST API Category	Changes in REST API
Access Bundles	Added endpoint to retry failed provisioning of an Access Bundle `POST /accessBundles/{accessBundleId}/retry` Added bulk retry endpoint for Access Bundle provisioning (`POST /accessBundles/retry`) Updated Access Bundle APIs to support Business Approvers.
Roles	Added endpoint to revoke a role for an identity `POST /roles/{roleId}/revoke` Updated Access Bundle APIs to support Business Approvers
Campaigns	Updated Campaigns APIs to support primary and secondary owners. Updated Delete Campaign to support deletion for Draft, Approved, System ended, and Terminated campaigns.

April 2026

REST API Category	Changes in REST API
Access Guardrails	New endpoints: Create Access Guardrails Update Access Guardrails Delete Access Guardrails

March 2026

REST API Category	Changes in REST API
Access Request	Updated specifications and examples to include separationOfDutiesAnalysisRequests response details in Get Access Requests and Create Access Requests endpoints.
Security Context	Added use case and example for access bundle and access request with security context values. For a reference scenario, see Access Request with Security Context Values.
Identities	New endpoint for Identities API to retrieve roles assigned to an identity. List Identity's Roles
Orchestrated Systems	Updated response to include description attribute for Find Permission Attributes API.

December 2025

REST API Category	Changes in REST API
Access Request	Updated specifications and examples to remove the `createdBy` parameter from the Pre-check accesses for Violations and Create Access Requests endpoints.

November 2025

REST API Category	Changes in REST API
Access Request	Pre-check accesses for Violations
SeparationOfDuties	Check status of the separation of duties request(s)

October 2025

REST API Category	Changes in REST API
License Requirement	You can now use External API with any Oracle Access Governance license.
Revision Management for Identity Collections	Oracle Access Governance now includes resource revision approval process before its implementation. If configured, resource edits or deletions go through an approval workflow. Identity Collections
List permissions for an Identity	New endpoint for Identities API to retrieve permissions assigned to an identity. List Identity's Permissions
List members of an Organization	New endpoint to retrieve members or identities in an organization. List Members of an Organization

September 2025

REST API Category	Changes in REST API
Organization	New endpoints for Oracle Access Governance Organization: List Organizations
Access Bundles Roles Access Requests	Updated endpoints to support availability of permissions/roles only to the members of an organization Create Access Bundle Create Access Requests Create Role For a reference scenario, see Request Limited to Members of Organization.

August 2025

REST API Category	Changes in REST API
Campaigns	New endpoints with the ability to create and manage campaigns: Create a Campaign Update campaign Get a list of Access Governance criteria type with its states Get a list of permissions Get a list of resources Get a list of roles Get a list of valid operators for data types Get a list of entity attributes Get a list of cloud providers Get a list of compartments Get a list of custom attributes values Get a list of domains Get a list of identity collections Get a list of policies List attribute values for the given entity type
Identities	New endpoints with the ability to manage Account Lifecycle: Activate an Identity Delete an Account Disable an Account Enable an Account Get Identity Attributes Get Identity Operators Get a list of Identity Attributes value Terminate an Identity

REST API Category

Changes in REST API

Campaigns

New endpoints with the ability to create and manage campaigns:

Identities

New endpoints with the ability to manage Account Lifecycle:

June 2025

REST API Category	Changes in REST API
Permissions	New category with new endpoint Revoke Permission
Rate Limits	API Rate Limits have been introduced. For more information, see API Rate Limits
Identities	Updated List Identities to simplify querying identity data using the `attributeValues` and `attributes` query parameters. See List Identities.
Access Reviews	New category with new endpoints - Access Reviews
Campaigns	New category with new endpoints - Campaigns
Identity Collections	New category with new endpoints - Identity Collections
Access Request	Updated category with new endpoint: POST: Create an extension request This supports the time-bound access functionality and you can request an extension for the soon-to-expire access, based on the allowed number of days defined during access bundle configuration. For a reference scenario, see Time-Bound Access.
Access Bundles	Updated endpoints to support time-bound access functionality Create Access Bundle Update Access Bundle
Approvals	Updated category with new endpoints: Act on Approval Tasks in Bulk (Async) Get status for asynchronous bulk Approval task
Orchestrated System	Updated category with new endpoints to support Separation of Duties (SoD) Analysis: Request analysis of Separation of Duties (Async) Get the status of the Separation of Duties Analysis request IDs
Applications Roles	Learn about the required application roles to run APIs, segregated based on tasks for each API endpoint. See Application roles.

May 2025

REST API Category	Changes in REST API
Authentication	Revised Authentication and Authorization mechanism by introducing the Authorization Code grant type. For more details, see Get Bearer Access Token using the OAuth 2.0 Authorization Code.
Polices	New category with the following endpoints: Create Policies Update Policies List Policies Get Policy Details Delete a Policy
Access Bundles	You can now create an access bundle using the following grant types: Client Credentials Authorization Code

April 2025

REST API Category	Changes in REST API
Access Guardrails	New category with the following endpoints: Get Access Guardrails Details List Access Guardrails Analyze Access Guardrails For a reference scenario, see Raise an Access Request with High Risk Violations.
Approvals	New category with the following endpoints: List Approvals Get Approval Task Act on one or more Approval tasks Get a list of my Approval tasks
Roles	New category with the following endpoints: Create Role Update Role List Roles Get Role Details Delete Role
Identities	New category with the following endpoints: List Accounts Get Account Details

March 2025

REST API Category	Changes in REST API
Oracle Access Governance REST API	General availability of external API with the following resources: AccessBundles Access Request ApprovalWorkflow Identities OrchestratedSystem