Employee Identity (EIAM)
Query Application-side Permissions for a Single Application Role
API
# Permissions
The Identity Management API is authorized at the application dimension. Before calling the API, you need to set API permissions for different applications. For details, please refer to API Permissions.
| Permission Code | Description |
|---|---|
| app_role_all | Read and write permissions for role management APIs |
| app_role_read | Read permissions for role management APIs |
| all | Read and write permissions for all APIs |
| read | Permissions for all read APIs |
# Request Specification
GET https://{your_domain}/api/v2/tenant/applications/{application_id}/app-role/{role_id}/permissions
# Request Headers
| Parameter Name | Chinese Name | Required | Type | Description |
|---|---|---|---|---|
| Authorization | Authorization | Yes | String | Format: Bearer {access_token} |
| Content-Type | Content-Type | Yes | String | Fixed value: application/json; charset=utf-8 |
# Request Example
None
# Request Parameters
| Parameter Name | Chinese Name | Required | Type | Description |
|---|---|---|---|---|
| application_id | Application ID | Yes | String | Target application ID |
| role_id | Application Role ID | Yes | String |
# Response Example
Correct Example:
HTTP/1.1 200 OK
{
"funcPerms": [
{
"id": "20230914153344573-EB4E-3CB09F9B6",
"remoteId": null
},
{
"id": "20230920113324284-EFDF-BE5B34E7D",
"remoteId": null
}
],
"dataPerms": [
{
"id": "20230914153344573-EB4E-3CB09F9B6",
"remoteId": null
},
{
"id": "20230920113324284-EFDF-BE5B34E7D",
"remoteId": null
}
]
}
Error Example:
HTTP/1.1 400 Bad Request
{
"error_code": " APP.ROLE.0002",
"error_msg": "应用侧角色不存在"
}
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
# Response Parameters
| Parameter Name | Chinese Name | Type | Description |
|---|---|---|---|
| funcPerms | Functional Permission Information Collection | Object | id in the collection: IDaaS primary key information, remoteId: Remote ID |
| dataPerms | Data Permission Information Collection | Object | id in the collection: IDaaS primary key information, remoteId: Remote ID |
# Error Codes
| Status Code | Error Code | Error Message | Handling Measure |
|---|---|---|---|
| 400 | APP.ACCOUNT.0028 | Application role does not exist | Please check if the application role exists |
| The application role does not exist | |||
| 400 | APP.0001 | Application does not exist | Please check if the application exists |
| App does not exist |
Understood. I am ready to receive the Markdown content for translation. Please paste it.