Create Access Policies
post
/iam/governance/adminservice/api/v1/accesspolicies
in Oracle Identity Governance
Request
Supported Media Types
- application/json
The following example shows the contents of the request body in JSON format.
Nested Schema : accessPolicies
Type:
Show Source
array-
Array of:
object accessPolicy
Access Policy details
Nested Schema : accessPolicy
Type:
objectAccess Policy details
Show Source
-
deniedApplications(optional):
array deniedApplications
Details of Denied Application
-
description(optional):
string
Description of the Access Policy
-
name(optional):
string
Name of the Access Policy
-
owner(optional):
object owner
Owner
-
priority(optional):
string
Priority of the Access Policy
-
provisionedApplications(optional):
array provisionedApplications
Details of Provisioned Application
-
retrofit(optional):
boolean
Nested Schema : owner
Type:
objectOwner
Show Source
-
name(optional):
string
Owner login id for example xelsysadm
-
type(optional):
string
Allowed Values:
[ "USER", "ROLE" ]Type of Owner. Valid values are USER/ROLE
Nested Schema : deniedApplications
Type:
Show Source
object-
name(optional):
string
Name of the Denied Application
Nested Schema : provisionedApplications
Type:
Show Source
object-
childobjects(optional):
array childobjects
-
constraint(optional):
string
Allowed Values:
[ "DISABLE", "REVOKE" ]Constraint. Valid values are DISABLE/REVOKE -
general(optional):
object general
Additional Properties Allowed: additionalPropertiesParent form details
-
name(optional):
string
Name of the Provisioned Application
-
neor(optional):
boolean
Default Value:
falseKeep Account Active if entitlement exists outside the role
Nested Schema : childobject
Type:
Show Source
object-
description(optional):
string
Label of the child form.
-
records(optional):
array records
Child form details
Nested Schema : records
Type:
arrayChild form details
Show Source
-
Array of:
object items
Additional Properties Allowed: additionalProperties
Response
Supported Media Types
- application/json
200 Response
Access Policy created successfully
400 Response
Bad Request
500 Response
Internal Server Error
Examples
The following example shows how to create an access policy by submitting a POST request on the REST resource using cURL. The information shown here is against a pseudo system and serves as a prototype.
curl -u username:password -v -H "Content-Type: application/json" -H "X-Requested-By:<anyvalue>" -X POST "http://myhost.networkspeosubn.idmociclou02phx.pseudovcn.com:14000/iam/governance/adminservice/api/v1/accesspolicies" -d
Example of the Request Body
The following example shows the contents of the request body in JSON format:
{
"accessPolicies": [{
"name": "myaccesspolicy",
"description": "myaccesspolicy",
"priority": "2",
"retrofit": true,
"owner": {
"type": "USER",
"name": "XELSYSADM"
},
"provisionedApplications": [{
"name": "Application1",
"constraint": "REVOKE",
"neor":false,
"general": {
"Parent Number": "123",
"Parent Checkbox": "1",
"Parent Text": "abc",
"Parent Lookup": "pm1",
"Parent Date": "2020-12-02 00:00:00",
"Account ID": "456"
},
"childobjects": [{
"description": "childform1",
"records": [{
"Form1 Date": "2020-12-17 00:00:00",
"Form1 Checkbox": "1",
"Form1 Text": "abc",
"Form1 Lookup": "m1",
"Form1 Number": "123"
}]
},
{
"description": "childform2",
"records": [{
"Form2 Text": "abc",
"Form2 Number": "123"
}]
},
{
"description": "childform3",
"records": [{
"Form3 Date": "2020-12-17 00:00:00",
"Form3 Checkbox": "1"
}]
}
]
}],
"deniedApplications": [{
"name": "Application2"
}]
}]
}
Example of the Response Body
The following example shows the contents of the response body in JSON format:
{
"accessPolicies": [
{
"links":[
{
"rel":"self","href":"http://myhost.pseudo.com:14000/iam/governance/adminservice/api/v1/accesspolicies/191"
}
],
"id":"191",
"name":"myaccesspolicy",
"description":"myaccesspolicy"
}
]
}