IDaaS Open Platform
Employee Identity (EIAM)

Paginated Query of Application-side Permissions for Application Roles

API

# Permissions

The Identity Management API is authorized at the application level. Before calling an API, you need to set interface permissions for different applications. For details, please refer to API Permissions.

Permission Code Description
app_role_all Read and write permissions for role management APIs
app_role_read Read permissions for role management APIs
all Read and write permissions for all APIs
read Permissions for all read APIs

# Request Description

GET https://{your_domain}/api/v2/tenant/applications/{application_id}/app-roles/permissions/page?offset=0&limit=1

# Request Headers

Parameter Name Chinese Name Required Type Description
Authorization Authorization Yes String Format: Bearer {access_token}
Content-Type Content Type Yes String Fixed value: application/json; charset=utf-8

# Request Example

None

# Request Parameters

Parameter Name Chinese Name Required Type Description
application_id Application ID Yes String Target application id
offset Page Number Yes Int Starts from page 0
limit Page Size Yes Int Number per page, between 1 and 50

# Return Example

Correct Example:
HTTP/1.1 200 OK
{
    "number": 0,
    "total": 2,
    "size": 10,
    "list": [
        {
            "roleId": "20230922093020557-4362-A6C9CF0EE",
        },
        {
            "roleId": "20230921140018768-35A4-7DBD541BC",
            "funcPerms": [
                {
                    "id": "20230914153344573-EB4E-3CB09F9B6",
                    "remoteId": null
                },
                {
                    "id": "20230920113324284-EFDF-BE5B34E7D",
                    "remoteId": null
                }
            ],
            "dataPerms": [
                {
                    "id": "20230914153344573-EB4E-3CB09F9B6",
                    "remoteId": null
                },
                {
                    "id": "20230920113324284-EFDF-BE5B34E7D",
                    "remoteId": null
                }
]
        }
    ]
}


Error Example:
HTTP/1.1 400 Bad Request
{
    "error_code": " APP.0001",
    "error_msg": "Application does not exist"
}
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43

# Return Parameters

Parameter Name Chinese Name Type Description
roleId Application Role ID Object
funcPerms Function Permission Information Collection Object In the collection, id: IDaaS primary key information, remoteId: Remote ID
dataPerms Data Permission Information Collection Object In the collection, id: IDaaS primary key information, remoteId: Remote ID

# Error Codes

Status Code Error Code Error Message Handling Measures
400 APP.0001 Application does not exist Please check if the application exists
App does not exist

Query Application Function Permissions