Employee Identity (EIAM)
Query Application-side Data Permissions
Interface
# Permissions
The Identity Management API is authorized on an application dimension. Before calling the interface, you need to set interface permissions for different applications. For details, please refer to API Permissions.
| Permission Code | Description |
|---|---|
| app_data_read | Read permission for application-side data permission interfaces |
| app_data_all | Read and write permissions for application-side data permission interfaces |
| read | Read permission for all interfaces |
| all | Read and write permissions for all interfaces |
# Request Description
GET https://{your_domain}/api/v2/tenant/applications/{application_id}/data-perms
# Request Headers
| Parameter Name | Chinese Name | Required | Type | Description |
|---|---|---|---|---|
| Authorization | Authorization | Yes | String | Format: Bearer {access_token} |
| Content-Type | Content Type | Yes | String | Fixed value: application/json; charset=utf-8 |
# Request Example
None
# Request Parameters
| Parameter Name | Chinese Name | Required | Type | Description |
|---|---|---|---|---|
| application_id | Application ID | Yes | String | Maximum length 50 |
| model_id | Model ID | Yes | String | Maximum length 50 |
| offset | Page Number | Yes | Int | Starts from page 0 |
| limit | Page Size | Yes | Int | Number per page between 1-50 |
# Return Example
Success Example:
HTTP/1.1 200 OK
{
"number": 0,
"total": 4,
"size": 20,
"list": [
{
"id": "20231013153057724-88BB-2815716FE",
"appId": "20231013151104656-CD73-6A3EB9EFB",
"objmId": "20231013151529055-E367-79540B1A1",
"parentId": null,
"code": "sb",
"name": "Data Permission A",
"description": null,
"sequence": null,
"level": 1,
"path": "/20231013153057724-88BB-2815716FE",
"displayPath": "/Data Permission A",
"remoteId": null,
"extension": {}
},
{
"id": "20231013155621587-9230-F17BBAE48",
"appId": "20231013151104656-CD73-6A3EB9EFB",
"objmId": "20231013151529055-E367-79540B1A1",
"parentId": null,
"code": "sf",
"name": "Data Permission B",
"description": null,
"sequence": null,
"level": 1,
"path": "/20231013155621587-9230-F17BBAE48",
"displayPath": "/Data Permission B",
"remoteId": null,
"extension": {}
},
{
"id": "20231013155644373-7051-D88F34453",
"appId": "20231013151104656-CD73-6A3EB9EFB",
"objmId": "20231013151529055-E367-79540B1A1",
"parentId": null,
"code": "tiny",
"name": "Data Permission 3",
"description": null,
"sequence": null,
"level": 1,
"path": "/20231013155644373-7051-D88F34453",
"displayPath": "/Data Permission 3",
"remoteId": null,
"extension": {}
},
{
"id": "20231013155602775-176F-1C4C34336",
"appId": "20231013151104656-CD73-6A3EB9EFB",
"objmId": "20231013151529055-E367-79540B1A1",
"parentId": "20231013153057724-88BB-2815716FE",
"code": "c",
"name": "Sub Data Permission AA",
"description": null,
"sequence": null,
"level": 2,
"path": "/20231013153057724-88BB-2815716FE/20231013155602775-176F-1C4C34336",
"displayPath": "/Data Permission A/Sub Data Permission AA",
"remoteId": null,
"extension": {}
}
]
}
Error Example:
HTTP/1.1 400 Bad Request
{
"error": "invalid_token",
"error_description": "Invalid access token."
}
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
# Return Parameters
| Parameter Name | Chinese Name | Type | Description |
|---|---|---|---|
| id | Primary Key | String | |
| appId | Application ID | String | |
| objmId | Object Model ID | String | |
| parentId | Parent ID | String | |
| code | Application Data Permission Code | String | |
| name | Application Data Permission Name | String | |
| description | Description Information | String | |
| sequence | Sort Order | String | |
| level | Level | String | |
| path | ID Path | String | |
| displayPath | Name Path | String | |
| remoteId | Data Permission Remote Object ID | String | |
| extension | Extended Properties | String | Not yet open |
# Error Codes
| Status Code | Error Code | Error Message | Handling Measures |
|---|---|---|---|
| 400 | APP.OBJECTMODEL.0011 | Application Data Permissions Model is Not Enabled | |
| The application function permissions model is not opened |