diff --git a/.gitignore b/.gitignore index a179851..bf802dd 100644 --- a/.gitignore +++ b/.gitignore @@ -1,3 +1,2 @@ # Dir for bundles -dist node_modules diff --git a/dist/saviynt-rest-api-5.0-bundle.yaml b/dist/saviynt-rest-api-5.0-bundle.yaml new file mode 100644 index 0000000..75ed638 --- /dev/null +++ b/dist/saviynt-rest-api-5.0-bundle.yaml @@ -0,0 +1,41580 @@ +openapi: 3.1.0 +info: + title: Saviynt Enterprise Identity Cloud API Reference + description: This Collection provides the details of the supported methods for the Saviynt Enterprise Identity Cloud (EIC) + version: 5.0.0 + termsOfService: https://saviynt.com/terms/ + contact: + name: API Support + url: https://www.saviynt.com/support + email: support@saviynt.com + license: + name: Apache 2.0 + url: https://www.apache.org/licenses/LICENSE-2.0.html + x-logo: + url: https://saviynt.com/wp-content/uploads/2019/04/Saviynt_logo_Navy.svg +servers: + - url: https://{tenant}.saviyntcloud.com/ECM/api/v5 + variables: + tenant: + description: tenant + default: example +security: + - bearerAuth: [] +externalDocs: + description: Documentation + url: https://docs.saviyntcloud.com/ +tags: + - name: test + description: APIs + - name: auth + x-displayName: Authentication + description: APIs for managing user login, logout, session management, and API token issuance. + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: users + x-displayName: Users + description: APIs for creating, retrieving, updating, and deleting user + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: accounts + x-displayName: Accounts + description: APIs for managing user accounts , including creating, retrieving, updating, enabling, disabling , suspending. + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: access + x-displayName: Access + description: APIs for managing user access, including adding and removing access on existing accounts. + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: entitlements + x-displayName: Entitlements + description: APIs for managing entitlements + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: privileges + x-displayName: Privileges + description: APIs for managing Privileges + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: roles + x-displayName: Roles + description: APIs for managing Roles + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: groups + x-displayName: User Groups + description: APIs for managing User Groups + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: systems + x-displayName: Security Systems + description: APIs for managing Security Systems + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: endpoints + x-displayName: Endpoints + description: APIs for managing Endpoints + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: connections + x-displayName: Connections + description: APIs for managing Connections + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: entitlement-types + x-displayName: Entitlement Types + description: APIs for managing Entitlement Types + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: dynamic-attributes + x-displayName: Dynamic Attributes + description: APIs for managing Dynamic Attributes + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: organizations + x-displayName: Organizations + description: APIs for managing Organization + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: analytics + x-displayName: Analytics + description: APIs for managing Analytics + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: access-recommendations + x-displayName: Access Recommendations + description: APIs for managing Access Recommendations + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: dashboards + x-displayName: Dashboards + description: APIs for managing Dashboard + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: request-access + x-displayName: Request Access + description: APIs for managing Access Request + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: request-history + x-displayName: Request History + description: APIs for managing Request History + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: request-approval + x-displayName: Request Approval + description: APIs for managing Request Approval + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: request-user + x-displayName: Request User + description: APIs for managing User Request + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: request-role + x-displayName: Request Role + description: APIs for managing Role Request + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: request-organization + x-displayName: Request Organization + description: APIs for managing Organization Requests + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: arstasks + x-displayName: Tasks + description: APIs for managing Tasks + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: delegates + x-displayName: User Delegation + description: APIs for managing User Delegation + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: attestations + x-displayName: Attestations + description: APIs for managing Attestations + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: campaigns + x-displayName: Campaigns + description: APIs for managing Campaigns + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: campaigns-user-manager + x-displayName: User Manager Campaigns + description: APIs for managing User Manager Campaigns + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: campaigns-entitlement-owner + x-displayName: Entitlement Owner Campaigns + description: APIs for managing Entitlement Owner Campaigns + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: campaigns-application-owner + x-displayName: Application Owner Campaigns + description: APIs for managing Application Owner Campaigns + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: sod + x-displayName: Segregation of Duties + description: APIs for managing SODs + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: security + x-displayName: Security + description: APIs for managing Password + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: utils + x-displayName: Common Utilities + description: APIs for common Utilities + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: jobs + x-displayName: Job Management + description: APIs for managing Job + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: transport + x-displayName: Transport + description: APIs for managing Transport + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: policies + x-displayName: Provisioning Policies + description: APIs for managing + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: datasets + x-displayName: Datasets + description: APIs for managing Dataset + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: role-membership + x-displayName: Role Membership + description: APIs for managing role membership + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ + - name: sav-roles + x-displayName: Sav Roles + description: APIs for managing Sav Roles + externalDocs: + description: Product Documentation + url: https://docs.saviyntcloud.com/ +x-tagGroups: + - name: Authentication + tags: + - auth + - name: Repository + tags: + - users + - accounts + - access + - groups + - organizations + - name: Roles + tags: + - roles + - role-membership + - name: Policies + tags: + - policies + - name: SOD + tags: + - sod + - name: Requests + tags: + - request-access + - request-user + - request-role + - request-history + - request-approval + - name: Applications + tags: + - systems + - endpoints + - connections + - entitlement-types + - entitlements + - privileges + - dynamic-attributes + - name: Campaigns + tags: + - attestations + - campaigns + - campaigns-user-manager + - campaigns-entitlement-owner + - campaigns-application-owner + - name: Analytics + tags: + - analytics + - dashboard + - access-recommendations + - name: Admin + tags: + - delegates + - jobs + - transport + - datasets + - utils + - security + - sav-roles + - tasks +paths: + /api/login: + servers: + - url: https://{tenant}.saviyntcloud.com/ECM + variables: + tenant: + description: tenant + default: example + post: + security: [] + tags: + - auth + summary: Get Authorization Token + description: |- + The `Bearer Authentication scheme` is dedicated to the authentication using a token and is described by the [RFC6750]. Even if this scheme comes from an OAuth2 specification, you can still use it as a way to exchange between a client and a server. + The SSM API currently requires the HTTP authentication scheme `Bearer` for authentication. All requests must have a valid `Token` specified in the HTTP Authorization header with the `Bearer` scheme. + > https://example.saviyntcloud.com/ECM/api/login + + A `POST` request by passing 'username' and 'password' in `json` text in the `body`, will return a `Token` in the response which can be passed in a `header` variable for subsequent requests + operationId: getAuthorizationToken + requestBody: + content: + application/json: + schema: + type: object + properties: + username: + type: string + example: '' + password: + type: string + example: '' + examples: + Get Authorization Token: + value: '' + responses: + '200': + description: Get Token + headers: + Cache-Control: + schema: + type: string + example: no-store + Content-Length: + schema: + type: string + example: '2167' + Date: + schema: + type: string + example: Fri, 17 Aug 2018 22:21:22 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + content: + application/json: + schema: + type: object + properties: + access_token: + type: string + example: '*****' + expires_in: + type: number + example: 1800 + refresh_token: + type: string + example: refreshTokenabcd******* + roles: + type: array + items: + type: string + example: ROLE_ADMIN + example: + - ROLE_ADMIN + token_type: + type: string + example: Bearer + username: + type: string + example: admin + examples: + Get Token: + value: + access_token: '*****' + expires_in: 1800 + refresh_token: refreshTokenabcd******* + roles: + - ROLE_ADMIN + token_type: Bearer + username: admin + /oauth/access_token: + servers: + - url: https://{tenant}.saviyntcloud.com/ECM + variables: + tenant: + description: tenant + default: example + post: + operationId: refreshAuthorizationToken + tags: + - auth + summary: Refresh Authorization Token + description: |- + Saviynt Enterprise Identity Cloud (EIC) supports OAuth2.0 . OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications. For more information refer link below. + **Note**_**:**_ If grails.plugin.springsecurity.rest.refreshtoken.storage.jwt.expiration is set to some value in Config.groovy, refresh token will expire based on this config in api/login api. This will generate a new refresh token if another config - grails.plugin.springsecurity.rest.refreshtoken.new is set to true in Config.groovy. For blank or null, it will return the same Refresh token as passed in oauth/access_token api + [OAuth 2.0 documentation](https://oauth.net/2/) + security: [] + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + grant_type: + type: string + example: refresh_token + refresh_token: + type: string + example: '************' + examples: + Refresh Authorization Token: + value: + grant_type: refresh_token + refresh_token: '************' + responses: + '200': + description: Refresh Token + headers: + Cache-Control: + schema: + type: string + example: no-store + Date: + schema: + type: string + example: Mon, 20 Aug 2018 17:49:19 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + content: + application/json: + schema: + type: object + properties: + access_token: + type: string + example: newaccesstoken + expires_in: + type: number + example: 1800 + refresh_token: + type: string + example: '' + roles: + type: array + items: + type: string + example: ROLE_ADMIN + example: + - ROLE_ADMIN + token_type: + type: string + example: Bearer + username: + type: string + example: admin + examples: + Refresh Token: + value: + access_token: newaccesstoken + expires_in: 1800 + refresh_token: '' + roles: + - ROLE_ADMIN + token_type: Bearer + username: admin + /createUser: + post: + tags: + - users + summary: Create User + description: |- + This API onboard or create a new user. + The `Authorization` must have `Bearer` followed by `Token`. + Optional Parameters: + `validateagainstpolicy` - Values: Y/N, default is Y. Checks for the password policy, + `statuskey` - Values:1/0, 0 - Inactive, 1 - Active (default), + `allowpastdate` - true / false (default). If true, allows startdate to be less than current date, + `User params` like username, firstname, preferedFirstName, lastname, middlename, street, city, comments, statuskey, startdate(MM-dd-yyyy), enddate(MM-dd-yyyy), manager (manager username), password, location, jobCode, jobDescription, employeeType, departmentNumber, title, state, companyname, costcenter, departmentname, employeeclass, entity, jobcodedesc, locationdesc, locationnumber, siteid, orgunitid, region, regioncode, owner, employeeid, lastsyncdate, createdate, email, phonenumber, job_function, country, displayname, enabled(can be "1"/"true" or "0"/"false"), passwordExpired(can be "1"/"true" or "0"/"false"), accountExpired(can be "1"/"true" or "0"/"false"), accountLocked(can be "1"/"true" or "0"/"false"), secondaryManager, createdBy, termDate, vendorManager, secondaryPhone, secondaryEmail, customproperty<1-50>, hcp<1-5>, ecp<1-5>, customer(pass the organization name), + `securityQuestions` - + Example: "securityQuestions":\[ { "securityQuestion":"What is your first Pet's name?", "securityAnswer":"kitty" }, { "securityQuestion":"What is your favorite food?", "securityAnswer":"food" } \], + `checkrules` - true/ false (default : true), if true, then rules will be evaluated immediately, if false rules will be evaluated by a job. If checkrulesforapi configuration(true/false/null) is set in the configuration table, then it will take precendence over checkrules parameter. + `inlineruleevaluation` - true/ false (default is true), if true then rules will be evaluated immediately, if false rules will be evaluated by a job. + _**Note**_ - CreateUser API will not invoke workflow based on the _**User Modification Workflow**_ configuration. Please use createUserRequest API instead. + _**Note**_ - Both `checkrules` and `inlineruleevaluation` need to be set as true for the user update rules to be evaluated immediately. + `batchidentifier` - When inlineruleevaluation=false, this Rule Run Unique Identifier can be set and user update rules can be processed later by calling /api/processrules API + _**It's highly recommended to pass inlineruleevaluation:"false" for bulk load and call processrules api to evaluate and run the rules after the load is done.**_ + operationId: createUser + requestBody: + content: + application/json: + schema: + type: object + properties: + accountExpired: + type: string + example: 'true' + accountLocked: + type: string + example: 'false' + allowpastdate: + type: string + example: 'true' + enabled: + type: string + example: 'true' + enddate: + type: string + example: 10-11-2019 + firstname: + type: string + example: myfirstname + passwordExpired: + type: string + example: 'true' + startdate: + type: string + example: 10-18-2018 + statuskey: + type: string + example: '1' + username: + type: string + example: johndoe + examples: + Create User: + value: + accountExpired: 'true' + accountLocked: 'false' + allowpastdate: 'true' + enabled: 'true' + enddate: 10-11-2019 + firstname: myfirstname + passwordExpired: 'true' + startdate: 10-18-2018 + statuskey: '1' + username: johndoe + responses: + '200': + description: Create User + headers: + Date: + schema: + type: string + example: Sat, 11 Aug 2018 00:50:48 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=efce7cb9-bea7-455f-9d19-545da8092b72; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: ' Users created with username johndoe ' + examples: + Create User: + value: + errorCode: '0' + message: ' Users created with username johndoe ' + /updateUser: + post: + tags: + - users + summary: Update User + description: "This method updates a specific \"user\" record in SSM, based on the input parameter `username` of the relevant user. \n\nAll the input parameters it requires are attributes which could be updated for the relevant user record. The attributes which are supplied with valid values as input to the method, will get updated, if the operation is successfully executed.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nMandatory params:\n\n`username`\n\n***OR***\n\n`propertytosearch`\n\n***Note*** - If both params are passed, propertytosearch will take precedence.\n\nOptional params:\n\n`validateagainstpolicy` - Values: Y/N, default is Y. Checks for the password policy,\n\n`allowpastdate` - true / false (default). If true, allows startdate to be less than current date,\n\n`statuskey` - Values:1/0, 0 - Inactive, 1 - Active,\n\n`updatedusername` - update username,\n\n`User params` like\n firstname, \n preferedFirstName,\n lastname,\n middlename,\n street,\n city,\n comments,\n statuskey,\n startdate(MM-dd-yyyy),\n enddate(MM-dd-yyyy),\n manager (manager username),\n password,\n location,\n jobCode,\n jobDescription,\n employeeType,\n systemUserName,\n departmentNumber,\n title,\n state,\n companyname,\n costcenter,\n departmentname,\n employeeclass,\n entity,\n jobcodedesc,\n locationdesc,\n locationnumber,\n siteid,\n orgunitid,\n region,\n regioncode,\n owner,\n employeeid,\n lastsyncdate,\n createdate,\n email,\n phonenumber,\n job_function,\n country,\n displayname,\n enabled(can be \"1\"/\"true\" or \"0\"/\"false\"),\n passwordExpired(can be \"1\"/\"true\" or \"0\"/\"false\"),\n\taccountExpired(can be \"1\"/\"true\" or \"0\"/\"false\"),\n\taccountLocked(can be \"1\"/\"true\" or \"0\"/\"false\"),\n secondaryManager,\n createdBy,\n termDate,\n vendorManager,\n secondaryPhone,\n secondaryEmail,\n customproperty<1-50>,\n hcp<1-5>,\n ecp<1-5>,\n customer(pass the organization name),\n \n `securityQuestions` - \n\nExample: \n\"securityQuestions\":[\n\t\t{\n\t\t\t\"securityQuestion\":\"What is your first Pet's name?\",\n\t\t\t\"securityAnswer\":\"kitty\"\n\t\t},\n\t\t{\n\t\t\t\"securityQuestion\":\"What is your favorite food?\",\n\t\t\t\"securityAnswer\":\"food\"\n\t\t}\n\t\t],\n\t\t\n`checkrules` - true/ false (default : true), if true, then rules will be evaluated immediately, if false rules will be evaluated by a job. If checkrulesforapi configuration(true/false/null) is set in the configuration table, then it will take precendence over checkrules parameter.\n\n`inlineruleevaluation` - true/ false (default is true), if true then rules will be evaluated immediately, if false rules will be evaluated by a job.\n\n***Note*** - UpdateUser API will not invoke workflow based on the ***User Modification Workflow*** configuration. Please use updateUserRequest API instead.\n\n***Note*** - Both `checkrules` and `inlineruleevaluation` need to be set as true for the user update rules to be evaluated immediately.\n\n`batchidentifier` - When inlineruleevaluation=false, this Rule Run Unique Identifier can be set and user update rules can be processed later by calling /api/processrules API\n\n***Note*** - This API supports PUT HTTP method along with POST.\n\n***It's highly recommended to pass inlineruleevaluation:\"false\" for bulk load and call processrules api to evaluate and run the rules after the load is done.***" + operationId: updateUser + requestBody: + content: + application/json: + schema: + type: object + properties: + customproperty1: + type: string + example: customized value + email: + type: string + example: test@sav.com + employeeType: + type: string + example: RobotID11111 + firstname: + type: string + example: John + jobcodedesc: + type: string + example: QA + lastname: + type: string + example: Chipchase + manager: + type: string + example: admin + middlename: + type: string + example: kumar + preferedFirstName: + type: string + example: RoboID111111 + propertytosearch: + type: string + example: lastname + statuskey: + type: string + example: '1' + examples: + Update User: + value: + customproperty1: customized value + email: test@sav.com + employeeType: RobotID11111 + firstname: John + jobcodedesc: QA + lastname: Chipchase + manager: admin + middlename: kumar + preferedFirstName: RoboID111111 + propertytosearch: lastname + statuskey: '1' + responses: + '200': + description: Update User / Update User - Inactive Manager / Update User - propertytosearch param + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 01 Jan 2021 02:05:16 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=248093fc-7f94-40aa-9522-257910954d1c; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS User Updated Successfully + examples: + Update User: + value: + errorCode: '0' + message: SUCCESS User Updated Successfully + Update User - Inactive Manager: + value: + errorCode: '0' + message: ' manager with username A007825 is inactive. User Updated Successfully' + Update User - propertytosearch param: + value: + errorCode: '0' + message: ' User Updated Successfully' + /getUser: + post: + tags: + - users + summary: Get User Details + description: "This method returns a `List` of Users in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nOptional params:\r\n\r\n`username` - Specify the username for which you want to get the user attribute details,\r\n\r\n`responsefields` - User attributes which you want to see in the response(for encrypted values, mention ecp<1-5>, and for hashed values, mention hcp<1-5>),\r\n\r\n`max`,\r\n\r\n`offset`,\r\n\r\n`sort`,\r\n\r\n`order` - asc/desc,\r\n\r\n`manager` - username,\r\n\r\n`secondarymanager` - userkey *OR* `secondaryManager` - username\r\n\r\n`showsecurityanswers` - \"0\"/\"1\" to display encrypted security answers for the user \r\n\r\n \r\n\r\n\r\n`filtercriteria` - User fields based on which you want to get the user attribute details(including userkey),\r\n\r\n***OR***\r\n\r\n`searchCriteria` - search for a user based on the string passed (eg - “\\*ab\\*” or “\\*ab” or “ab\\*”) in their firstname, lastname, displayname and username only, example - \"ab*\" - This will return all users with firstname or lastname or username starting with \"ab\"\r\n\r\n***OR***\r\n\r\n`advsearchcriteria` - search for a user based on the string passed (eg - “\\*ab\\*” or “\\*ab” or “ab\\*”), example - {\"username\":\"a*\", \"firstname\":\"*b\"} - This will return all users with username starting with \"a\" AND firstname ending with \"b\". Exact match search is applicable for types boolean, users, customer. Date can be entered in format - yyyy-MM-dd.\r\n\r\n***OR***\r\n\r\n`userQuery` - Sample: “userQuery”:”user.customproperty1='abc' or user.displayname like '%display%'”.\r\n\r\n***Note*** - By default, if no responsefields param is passed, required attrs that will always return are username, email, statuskey, firstname, lastname, employeeid along with other attributes with nonblank values only." + operationId: getUserDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + filtercriteria: + type: object + properties: + username: + type: string + example: lmcneil + showsecurityanswers: + type: string + example: '1' + examples: + Get User Details: + value: + filtercriteria: + username: lmcneil + showsecurityanswers: '1' + responses: + '200': + description: Get User Details / Get User Details 2 + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 23 Jul 2020 18:46:04 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=94589b88-cb05-4e05-a11d-dc62e85bb238; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + displaycount: + type: string + example: '1' + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + totalcount: + type: string + example: '1' + userlist: + type: array + items: + type: object + properties: + firstname: + type: string + example: John + statuskey: + type: string + example: '1' + userKey: + type: number + example: 5 + username: + type: string + example: johndoe + accountExpired: + type: string + accountLocked: + type: string + example: 'false' + city: + type: string + example: San Francisco + companyname: + type: string + example: Global Modern Services, Inc. (USA) + costcenter: + type: string + example: GMS USA + country: + type: string + example: USA + createdate: + type: string + example: 06/08/2020T10:35:46+0000 + customer: + type: string + example: testorg + customproperty1: + type: string + example: 3aa5550b7fe348b98d7b5741afc65534 + displayname: + type: string + example: Logan McNeil + email: + type: string + example: test@gmail.com + employeeType: + type: string + example: Regular + employeeid: + type: string + example: '21001' + enabled: + type: string + example: 'true' + encryptedSecurityAnswers: + type: string + example: lhCSZZbYyxHaRZN6L9s4IPXAIwx86J87GEXwt5wIutPnEGkywv4W9UImm9u+qlk67bTNecLwHBClApo9olYBEceyC+h4gcLrjWwLOLlJ3Wc= + failedTries: + type: string + example: '0' + lastPasswordUpdateDate: + type: string + example: 07/23/2020T18:25:58+0000 + lastname: + type: string + example: McNeil + location: + type: string + example: San Francisco + passwordExpired: + type: string + example: 'false' + phonenumber: + type: string + example: 415789-8904 + preferedFirstName: + type: string + example: Logan + savUpdateDate: + type: string + example: 06/08/2020T10:36:03+0000 + systemUserName: + type: string + example: lmcneil + title: + type: string + example: Chief Human Resources Officer + updatedate: + type: string + example: 07/23/2020T18:25:58+0000 + updateuser: + type: string + example: admin + userSource: + type: string + example: '127' + example: + - firstname: John + statuskey: '1' + userKey: 5 + username: johndoe + examples: + Get User Details: + value: + displaycount: '1' + errorCode: '0' + msg: Successful + totalcount: '1' + userlist: + - firstname: John + statuskey: '1' + userKey: 5 + username: johndoe + Get User Details 2: + value: + displaycount: '1' + errorCode: '0' + msg: Successful + totalcount: '1' + userlist: + - accountExpired: 'false' + accountLocked: 'false' + city: San Francisco + companyname: Global Modern Services, Inc. (USA) + costcenter: GMS USA + country: USA + createdate: 06/08/2020T10:35:46+0000 + customer: testorg + customproperty1: 3aa5550b7fe348b98d7b5741afc65534 + displayname: Logan McNeil + email: test@gmail.com + employeeType: Regular + employeeid: '21001' + enabled: 'true' + encryptedSecurityAnswers: lhCSZZbYyxHaRZN6L9s4IPXAIwx86J87GEXwt5wIutPnEGkywv4W9UImm9u+qlk67bTNecLwHBClApo9olYBEceyC+h4gcLrjWwLOLlJ3Wc= + failedTries: '0' + firstname: Logan + lastPasswordUpdateDate: 07/23/2020T18:25:58+0000 + lastname: McNeil + location: San Francisco + passwordExpired: 'false' + phonenumber: 415789-8904 + preferedFirstName: Logan + savUpdateDate: 06/08/2020T10:36:03+0000 + statuskey: '1' + systemUserName: lmcneil + title: Chief Human Resources Officer + updatedate: 07/23/2020T18:25:58+0000 + updateuser: admin + userKey: 12444 + userSource: '127' + username: lmcneil + /user: + get: + tags: + - users + summary: Get List of Users + description: "This API returns the user information from SSM. This API will return only the user attributes which are not null or blank.\r\n\r\nYou can search for a user based on any parameters given below and not only the username.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`q`\r\n\r\nOptional params:\r\n`offset`,\r\n`max`,\r\n`sort`,\r\n`order`,\r\n`countonly`,\r\n`fields`\r\n`showsecurityanswers` - \"0\"/\"1\" to display encrypted security answers for the user" + operationId: getListOfUsers + parameters: + - name: q + in: query + schema: + type: string + example: accountExpired:0 + - name: fields + in: query + schema: + type: string + example: firstname,lastname,username + - name: sort + in: query + schema: + type: string + example: username + - name: order + in: query + schema: + type: string + example: desc + - name: offset + in: query + schema: + type: string + example: '2' + - name: max + in: query + schema: + type: string + example: '2' + responses: + '200': + description: Get User + headers: + Date: + schema: + type: string + example: Tue, 07 Aug 2018 20:08:23 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4e8d3193-c459-4e21-abf7-2f0ee18aad3f; Path=/ + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 2 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + offset: + type: string + example: '2' + order: + type: string + example: desc + results: + type: array + items: + type: object + properties: + Last Name: + type: string + example: Doe + User Name: + type: string + example: johndoe + firstname: + type: string + example: John + example: + - Last Name: Doe + User Name: johndoe + firstname: John + - Last Name: Doe + User Name: janedoe + firstname: Jane + sort: + type: string + example: username + examples: + Get User: + value: + count: 2 + errorCode: '0' + msg: Successful + offset: '2' + order: desc + results: + - Last Name: Doe + User Name: johndoe + firstname: John + - Last Name: Doe + User Name: janedoe + firstname: Jane + sort: username + /addremoveuserfromrole: + post: + tags: + - role-membership + summary: Add/Remove User from SAV ROLE + description: "This method grants/removes membership of a \"user\" to one or more roles in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`username` - Username for the user to whom the roles are to be granted,\r\n\r\n`rolename` - comma separated values with names of roles that need to be granted,\r\n\r\n`operation` (0/1) - 0:Remove and 1:Add" + operationId: addRemoveUserFromSavRole + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: {} + responses: + '200': + description: Add Remove User from Sav Role - Success / Add/Remove User from SAV ROLE - Failure + headers: + Date: + schema: + type: string + example: Tue, 11 Sep 2018 01:17:52 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=3f2130c1-55ca-4f1a-86a2-1546bc09944a; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: success + examples: + Add Remove User from Sav Role - Success: + value: + errorCode: '0' + message: success + Add/Remove User from SAV ROLE - Failure: + value: + errorCode: '1' + message: Bad Request. Association Between User 'johndoe' and role 'ROLE_MANAGER' already exists. + /getAccessDetailsForUser: + post: + tags: + - access + summary: Get Access Details For User + description: "This API call can be used to get the user details, account details, and details of all the entitlements the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`username`\r\n\r\nOptional params:\r\n`endpoint`, `max`, `offset`, `entitlementtype`\r\n\r\n***Note*** - This API supports GET HTTP method along with POST." + operationId: getAccessDetailsForUser + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + endpoint: + type: string + example: System1 + username: + type: string + example: johndoe + responses: + '200': + description: Get Access Details For User + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:13:55 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=78a59564-c96d-4d24-9cc1-e05522d397dd; Path=/ + content: + application/json: + schema: + type: object + properties: + Accountdetails: + type: array + items: + type: object + properties: + createdon: + type: string + example: 07/26/2018 + customproperty1: + type: string + example: cp1 + customproperty10: + type: string + example: cp10 + customproperty2: + type: string + example: cp2 + customproperty20: + type: string + example: cp20 + customproperty30: + type: string + example: cp30 + description: + type: string + example: desc + endpoint: + type: string + example: System1 + name: + type: string + example: janedoe + status: + type: string + example: '1' + example: + - createdon: 07/26/2018 + customproperty1: cp1 + customproperty10: cp10 + customproperty2: cp2 + customproperty20: cp20 + customproperty30: cp30 + description: desc + endpoint: System1 + name: janedoe + status: '1' + Entitlementdetails: + type: array + items: + type: object + properties: + access: + type: string + example: Select + confidentiality: + type: string + example: '0' + customproperty1: + type: string + example: test + customproperty20: + type: string + example: cp20 + customproperty3: + type: string + example: cp3 + customproperty8: + type: string + example: cp8 + description: + type: string + example: '' + displayname: + type: string + example: Display Name One + endpoint: + type: string + example: System1 + entitlementOwner: + example: + - jamessmith + - peterpan + anyOf: + - type: array + items: + type: string + example: jamessmith + example: + - jamessmith + - peterpan + - type: string + example: '' + - type: string + example: '' + - type: string + example: '' + - type: string + example: '' + entitlementType: + type: string + example: Access + entitlement_glossary: + type: string + example: '' + entitlement_value: + type: string + example: Entitlement1 + module: + type: string + example: Select + priviliged: + type: string + example: '0' + requestForm: + type: string + example: Request Form Table + risk: + type: string + example: '0' + soxcritical: + type: string + example: '0' + status: + type: string + example: '1' + syscritical: + type: string + example: '0' + updatedate: + type: string + example: 04/08/2017 + updateuser: + type: string + example: '1' + example: + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - jamessmith + - peterpan + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement1 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - jamessmith + - peterpan + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement2 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - jamessmith + - peterpan + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement3 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - customproperty1: test + description: '' + displayname: '' + endpoint: System1 + entitlementOwner: + - jamessmith + - janedoe + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement4 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - customproperty1: ap1 + customproperty20: cp20 + customproperty3: cp3 + customproperty8: cp8 + description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement5 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/27/2018 + updateuser: '191327' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement6 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement Name for testing the codec issue within user manager attestation + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement7 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + PrivilegeDetails: + type: array + items: {} + example: [] + UserDetails: + type: object + properties: + Company Name: + type: string + example: Information Technology International + Create Date: + type: string + example: 03/28/2018T07:00:00+0000 + customproperty1: + type: string + example: IP + Department Name: + type: string + example: IAM + Job Function: + type: string + example: A dummy name for a Skill Pool Group + Last Name: + type: string + example: Doe + Orgunit ID: + type: string + example: CO + User Name: + type: string + example: johndoe + accountExpired: + type: string + example: 'false' + accountLocked: + type: string + example: 'false' + city: + type: string + example: Atlanta + comments: + type: string + example: test + country: + type: string + example: US + createdBy: + type: string + example: admin + customproperty10: + type: string + example: '' + customproperty11: + type: string + example: '' + customproperty12: + type: string + example: zzzTHIRD + customproperty13: + type: string + example: ABCDE + customproperty14: + type: string + example: '20160803' + customproperty15: + type: string + example: Data change + customproperty16: + type: string + example: '2016-08-03 00:00:00' + customproperty17: + type: string + example: '' + customproperty18: + type: string + example: Allowed + customproperty19: + type: string + example: '1827' + customproperty2: + type: string + example: '' + customproperty20: + type: string + example: INFORMATION TECHNOLOGY INTERNATIONAL B.V. + customproperty21: + type: string + example: '' + customproperty22: + type: string + example: '' + customproperty23: + type: string + example: '' + customproperty24: + type: string + example: '' + customproperty25: + type: string + example: '' + customproperty26: + type: string + example: '' + customproperty27: + type: string + example: '' + customproperty28: + type: string + example: '' + customproperty29: + type: string + example: '' + customproperty3: + type: string + example: Activated + customproperty30: + type: string + example: '2016-09-15 00:30:56' + customproperty31: + type: string + example: '' + customproperty32: + type: string + example: '' + customproperty33: + type: string + example: '' + customproperty34: + type: string + example: '' + customproperty35: + type: string + example: '' + customproperty36: + type: string + example: '' + customproperty37: + type: string + example: '' + customproperty38: + type: string + example: '' + customproperty39: + type: string + example: '' + customproperty4: + type: string + example: SITI + customproperty40: + type: string + example: '1' + customproperty5: + type: string + example: C + customproperty6: + type: string + example: John Doe + customproperty7: + type: string + example: J.Doe + customproperty8: + type: string + example: mm + customproperty9: + type: string + example: '' + departmentNumber: + type: string + example: '565' + displayname: + type: string + example: Doe, John + doNotDisturbDelegate: + type: string + example: jackwoods + email: + type: string + example: jdoe@saviynt.com + employeeType: + type: string + example: Contractor + employeeclass: + type: string + example: C + employeeid: + type: string + example: '' + enabled: + type: string + example: 'true' + encryptedSecurityAnswers: + type: string + example: 0Ti6Bg7+E6QEKEd+x4GNhjWpG3KQ0jCbDzxhupvqPrTsrFM8vmoV/eq70xasjbuX7/amIxOXFHDVpPyHhDXA2AFHjnrHqung/1lBsLLr6tw= + enddate: + type: string + example: 01/28/2019T08:00:00+0000 + failedTries: + type: string + example: '0' + firstname: + type: string + example: John + jobCode: + type: string + example: zzzzzzzz + jobcodedesc: + type: string + example: zzzzzzzz + lastsyncdate: + type: string + example: 02/28/2018T08:00:00+0000 + location: + type: string + example: SF-OFC + locationdesc: + type: string + example: 5 Longfellow St.Deer Park + locationnumber: + type: string + example: SF-OFC + manager: + type: string + example: janedoe + middlename: + type: string + example: w + owner: + type: string + example: janedoe + owneronTerminate: + type: string + example: '4' + passwordExpired: + type: string + example: 'false' + preferedFirstName: + type: string + example: John + secondaryManager: + type: string + example: jamessmith + startdate: + type: string + example: 01/28/2018T08:00:00+0000 + statuskey: + type: string + example: '1' + street: + type: string + example: s + systemUserName: + type: string + example: jdoe + termDate: + type: string + example: 04/28/2018T07:00:00+0000 + title: + type: string + example: Analyst + updatedate: + type: string + example: 08/02/2018T04:08:16+0000 + updateuser: + type: string + example: admin + vendorManager: + type: string + example: awsadmin + entitlementsCount: + type: number + example: 8 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + totalEntitlementCount: + type: number + example: 8 + examples: + Get Access Details For User: + value: + Accountdetails: + - createdon: 07/26/2018 + customproperty1: cp1 + customproperty10: cp10 + customproperty2: cp2 + customproperty20: cp20 + customproperty30: cp30 + description: desc + endpoint: System1 + name: janedoe + status: '1' + Entitlementdetails: + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - jamessmith + - peterpan + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement1 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - jamessmith + - peterpan + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement2 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - jamessmith + - peterpan + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement3 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - customproperty1: test + description: '' + displayname: '' + endpoint: System1 + entitlementOwner: + - jamessmith + - janedoe + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement4 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - customproperty1: ap1 + customproperty20: cp20 + customproperty3: cp3 + customproperty8: cp8 + description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement5 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/27/2018 + updateuser: '191327' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement6 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement Name for testing the codec issue within user manager attestation + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement7 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + PrivilegeDetails: [] + UserDetails: + Company Name: Information Technology International + Create Date: 03/28/2018T07:00:00+0000 + customproperty1: IP + Department Name: IAM + Job Function: A dummy name for a Skill Pool Group + Last Name: Doe + Orgunit ID: CO + User Name: johndoe + accountExpired: 'false' + accountLocked: 'false' + city: Atlanta + comments: test + country: US + createdBy: admin + customproperty10: '' + customproperty11: '' + customproperty12: zzzTHIRD + customproperty13: ABCDE + customproperty14: '20160803' + customproperty15: Data change + customproperty16: '2016-08-03 00:00:00' + customproperty17: '' + customproperty18: Allowed + customproperty19: '1827' + customproperty2: '' + customproperty20: INFORMATION TECHNOLOGY INTERNATIONAL B.V. + customproperty21: '' + customproperty22: '' + customproperty23: '' + customproperty24: '' + customproperty25: '' + customproperty26: '' + customproperty27: '' + customproperty28: '' + customproperty29: '' + customproperty3: Activated + customproperty30: '2016-09-15 00:30:56' + customproperty31: '' + customproperty32: '' + customproperty33: '' + customproperty34: '' + customproperty35: '' + customproperty36: '' + customproperty37: '' + customproperty38: '' + customproperty39: '' + customproperty4: SITI + customproperty40: '1' + customproperty5: C + customproperty6: John Doe + customproperty7: J.Doe + customproperty8: mm + customproperty9: '' + departmentNumber: '565' + displayname: Doe, John + doNotDisturbDelegate: jackwoods + email: jdoe@saviynt.com + employeeType: Contractor + employeeclass: C + employeeid: '' + enabled: 'true' + encryptedSecurityAnswers: 0Ti6Bg7+E6QEKEd+x4GNhjWpG3KQ0jCbDzxhupvqPrTsrFM8vmoV/eq70xasjbuX7/amIxOXFHDVpPyHhDXA2AFHjnrHqung/1lBsLLr6tw= + enddate: 01/28/2019T08:00:00+0000 + failedTries: '0' + firstname: John + jobCode: zzzzzzzz + jobcodedesc: zzzzzzzz + lastsyncdate: 02/28/2018T08:00:00+0000 + location: SF-OFC + locationdesc: 5 Longfellow St.Deer Park + locationnumber: SF-OFC + manager: janedoe + middlename: w + owner: janedoe + owneronTerminate: '4' + passwordExpired: 'false' + preferedFirstName: John + secondaryManager: jamessmith + startdate: 01/28/2018T08:00:00+0000 + statuskey: '1' + street: s + systemUserName: jdoe + termDate: 04/28/2018T07:00:00+0000 + title: Analyst + updatedate: 08/02/2018T04:08:16+0000 + updateuser: admin + vendorManager: awsadmin + entitlementsCount: 8 + errorCode: '0' + msg: Successful + totalEntitlementCount: 8 + /getEntDetailsforUsers: + get: + tags: + - access + summary: Get Flat Response Entitlement Details For User + description: "This API call can be used to get a flat response consisting of user details, account details, and details of all the entitlements the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params:\r\n`username`, `entitlementType`, `entitlement_value`, `endpoint`, `userQuery`, `accountQuery`, `entQuery`, `accEntQuery`, `max`(default - 100), `offset`(default - 0)" + operationId: getFlatResponseEntitlementDetailsForUser + requestBody: + content: + application/json: + schema: + type: object + properties: + accEntQuery: + type: string + example: accEnt.updatedate > '2000-11-07 00:00:00' + accountQuery: + type: string + example: account.name like '%245947%' + endpoint: + type: string + example: AWS + entQuery: + type: string + example: ent.entitlement_value like '%arn:aws:iam::%' + entitlementType: + type: string + example: AWSPolicy + entitlement_value: + type: string + example: arn:aws:iam::661222050851:policy/CrossPolicy2 + max: + type: string + example: '1' + offset: + type: string + example: '0' + userQuery: + type: string + example: user.username like '%245947%' + username: + type: string + example: '245947' + examples: + Get Flat Response Entitlement Details For User: + value: + accEntQuery: accEnt.updatedate > '2000-11-07 00:00:00' + accountQuery: account.name like '%245947%' + endpoint: AWS + entQuery: ent.entitlement_value like '%arn:aws:iam::%' + entitlementType: AWSPolicy + entitlement_value: arn:aws:iam::661222050851:policy/CrossPolicy2 + max: '1' + offset: '0' + userQuery: user.username like '%245947%' + username: '245947' + responses: + '200': + description: Get Entitlement Details For User - Flat response + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 29 Dec 2020 02:03:19 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2a2dce02-9adf-405f-a07c-29492fccd012; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + accessDetails: + type: array + items: + type: object + properties: + accountdisplayname: + type: string + example: '245947' + accountkey: + type: number + example: 3684 + accountname: + type: string + example: '245947' + accountstatus: + type: string + example: Manually Suspended + endpointDisplayname: + type: string + example: AWS + endpointkey: + type: number + example: 1 + endpointname: + type: string + example: AWS + entdescription: + type: + - string + - 'null' + example: null + entdisplayname: + type: + - string + - 'null' + example: null + entitlementType: + type: string + example: AWSPolicy + entitlementTypeDisplayname: + type: string + example: AWSPolicy + entitlementTypeRequestForm: + type: string + example: Request Form Table + entitlementTypekey: + type: number + example: 59 + entitlement_value: + type: string + example: arn:aws:iam::661222050851:policy/CrossPolicy2 + entitlement_valuekey: + type: number + example: 194098 + entstatus: + type: number + example: 1 + securitysystemdisplayname: + type: string + example: AWS + securitysystemkey: + type: number + example: 1 + systemname: + type: string + example: AWS + userkey: + type: number + example: 2511 + username: + type: string + example: '245947' + userstatus: + type: number + example: 1 + example: + - accountdisplayname: '245947' + accountkey: 3684 + accountname: '245947' + accountstatus: Manually Suspended + endpointDisplayname: AWS + endpointkey: 1 + endpointname: AWS + entdescription: null + entdisplayname: null + entitlementType: AWSPolicy + entitlementTypeDisplayname: AWSPolicy + entitlementTypeRequestForm: Request Form Table + entitlementTypekey: 59 + entitlement_value: arn:aws:iam::661222050851:policy/CrossPolicy2 + entitlement_valuekey: 194098 + entstatus: 1 + securitysystemdisplayname: AWS + securitysystemkey: 1 + systemname: AWS + userkey: 2511 + username: '245947' + userstatus: 1 + displayCount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + totalCount: + type: number + example: 1 + examples: + Get Entitlement Details For User - Flat response: + value: + accessDetails: + - accountdisplayname: '245947' + accountkey: 3684 + accountname: '245947' + accountstatus: Manually Suspended + endpointDisplayname: AWS + endpointkey: 1 + endpointname: AWS + entdescription: null + entdisplayname: null + entitlementType: AWSPolicy + entitlementTypeDisplayname: AWSPolicy + entitlementTypeRequestForm: Request Form Table + entitlementTypekey: 59 + entitlement_value: arn:aws:iam::661222050851:policy/CrossPolicy2 + entitlement_valuekey: 194098 + entstatus: 1 + securitysystemdisplayname: AWS + securitysystemkey: 1 + systemname: AWS + userkey: 2511 + username: '245947' + userstatus: 1 + displayCount: 1 + errorCode: '0' + msg: Successful + totalCount: 1 + /getRoleDetailsforUsers: + get: + tags: + - role-membership + summary: Get Flat Response Role Details For User + description: "This API call can be used to get a flat response consisting of user details and details of all the roles the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params:\r\n`rolename`, `roletype`, `username`, `userQuery`, `roleQuery`, `roleUserAccQuery`, `max`(default - 100), `offset`(default - 0)" + operationId: getFlatResponseRoleDetailsForUser + requestBody: + content: + application/json: + schema: + type: object + properties: + max: + type: string + example: '1' + offset: + type: string + example: '0' + roleQuery: + type: string + example: role.role_name like '%Content Administrator%' + roleUserAccQuery: + type: string + example: roleUserAcc.updatedate > '2000-09-17 00:00:00' + rolename: + type: string + example: Content Administrator:661222050851 + roletype: + type: string + example: FIREFIGHTER + userQuery: + type: string + example: user.id='27' + username: + type: string + example: U020966 + examples: + Get Flat Response Role Details For User: + value: + max: '1' + offset: '0' + roleQuery: role.role_name like '%Content Administrator%' + roleUserAccQuery: roleUserAcc.updatedate > '2000-09-17 00:00:00' + rolename: Content Administrator:661222050851 + roletype: FIREFIGHTER + userQuery: user.id='27' + username: U020966 + responses: + '200': + description: Get Role Details For User - Flat response + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 29 Dec 2020 02:40:12 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2a2dce02-9adf-405f-a07c-29492fccd012; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + displayCount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + roleDetails: + type: array + items: + type: object + properties: + roledescription: + type: string + example: Privileged access designed for content owners who need full access to CloudFront, S3, Glacier, Kinesis Firehose, App Streams and Cloud Search. + roledisplayname: + type: string + example: Content Administrator + rolekey: + type: number + example: 3 + rolename: + type: string + example: Content Administrator:661222050851 + rolestatus: + type: number + example: 1 + roletype: + type: number + example: 3 + userkey: + type: number + example: 27 + username: + type: string + example: U020966 + userstatus: + type: number + example: 1 + example: + - roledescription: Privileged access designed for content owners who need full access to CloudFront, S3, Glacier, Kinesis Firehose, App Streams and Cloud Search. + roledisplayname: Content Administrator + rolekey: 3 + rolename: Content Administrator:661222050851 + rolestatus: 1 + roletype: 3 + userkey: 27 + username: U020966 + userstatus: 1 + totalCount: + type: number + example: 1 + examples: + Get Role Details For User - Flat response: + value: + displayCount: 1 + errorCode: '0' + msg: Successful + roleDetails: + - roledescription: Privileged access designed for content owners who need full access to CloudFront, S3, Glacier, Kinesis Firehose, App Streams and Cloud Search. + roledisplayname: Content Administrator + rolekey: 3 + rolename: Content Administrator:661222050851 + rolestatus: 1 + roletype: 3 + userkey: 27 + username: U020966 + userstatus: 1 + totalCount: 1 + /authenticateUser: + post: + tags: + - auth + summary: Authenticate User + description: |- + This API call can be used to authenticate the user in SSM + The `Authorization` must have `Bearer` followed by `Token` + Mandatory Params: + `username`, + `password` + operationId: authenticateUser + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + password: + type: string + example: password1A + username: + type: string + example: johndoe + responses: + '200': + description: Authenticate User Failure / Authenticate User Success + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 01:29:31 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2c0ea716-a367-4c45-8251-6bc4ca89083e; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '1' + message: + type: string + example: Authentication Failed + examples: + Authenticate User Failure: + value: + errorCode: '1' + message: Authentication Failed + Authenticate User Success: + value: + errorCode: '0' + message: Authentication Successful + /validateUserData: + post: + tags: + - users + summary: Validate User Data + description: |- + This API will validate the attribute values of an existing user. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username` + Optional params: + user properties like `customproperty<1-50>`, `hcp<1-5>`, `ecp<1-5>`, `firstname`, `lastname`, `statuskey`, `manager` etc. + operationId: validateUserData + requestBody: + content: + application/json: + schema: + type: object + properties: + ecp1: + type: string + example: test1 + firstname: + type: string + example: John + hcp1: + type: string + example: test2 + lastname: + type: string + example: Doe1 + username: + type: string + example: jdoe + examples: + Validate User Data: + value: + ecp1: test1 + firstname: John + hcp1: test2 + lastname: Doe1 + username: jdoe + responses: + '200': + description: Validate User Data + headers: + Date: + schema: + type: string + example: Tue, 04 Dec 2018 17:41:22 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5a6ab212-14b2-42aa-a175-089a8e2d24bb; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + validationResult: + type: object + properties: + ecp1: + type: string + example: 'true' + firstname: + type: string + example: 'true' + hcp1: + type: string + example: 'true' + lastname: + type: string + example: 'false' + examples: + Validate User Data: + value: + errorCode: '0' + msg: Success + validationResult: + ecp1: 'true' + firstname: 'true' + hcp1: 'true' + lastname: 'false' + /getSavRoles: + get: + tags: + - sav-roles + summary: Get SavRoles + description: "StartFragment\n\nThis API returns the SavRoles of an user in SSM.\n\nThe\_`Authorization`\_must have\_`Bearer`\_followed by\_`Token`.\n\nOptional params:\n\n`max`,`offset`,`username`\n\nEndFragment" + operationId: getSavroles + requestBody: + content: + text/plain: + examples: + Get SavRoles: + value: '' + responses: + '200': + description: Get SavRoles + headers: + Cache-Control: + schema: + type: string + example: no-cache, no-store, max-age=0, must-revalidate + Date: + schema: + type: string + example: Wed, 30 Nov 2022 05:25:43 GMT + Expires: + schema: + type: string + example: '0' + Referrer-Policy: + schema: + type: string + example: no-referrer + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + X-XSS-Protection: + schema: + type: string + example: 1 ; mode=block + content: + application/json: + schema: + type: object + properties: + savroles: + type: array + items: + type: object + properties: + CUSTOMPROPERTY1: + type: string + example: 'null' + CUSTOMPROPERTY10: + type: string + example: 'null' + CUSTOMPROPERTY11: + type: string + example: 'null' + CUSTOMPROPERTY12: + type: string + example: 'null' + CUSTOMPROPERTY13: + type: string + example: 'null' + CUSTOMPROPERTY14: + type: string + example: 'null' + CUSTOMPROPERTY15: + type: string + example: 'null' + CUSTOMPROPERTY16: + type: string + example: 'null' + CUSTOMPROPERTY17: + type: string + example: 'null' + CUSTOMPROPERTY18: + type: string + example: 'null' + CUSTOMPROPERTY19: + type: string + example: 'null' + CUSTOMPROPERTY2: + type: string + example: 'null' + CUSTOMPROPERTY20: + type: string + example: 'null' + CUSTOMPROPERTY3: + type: string + example: 'null' + CUSTOMPROPERTY4: + type: string + example: 'null' + CUSTOMPROPERTY5: + type: string + example: 'null' + CUSTOMPROPERTY6: + type: string + example: 'null' + CUSTOMPROPERTY7: + type: string + example: 'null' + CUSTOMPROPERTY8: + type: string + example: 'null' + CUSTOMPROPERTY9: + type: string + example: 'null' + HOMEPAGE: + type: string + example: 'null' + ISOOTB: + type: string + example: 'true' + READONLY: + type: string + example: 'false' + ROLEDESCRIPTION: + type: string + example: ADMIN USER + ROLENAME: + type: string + example: ROLE_ADMIN + STATUSKEY: + type: string + example: Active + UPDATEDATE: + type: string + example: '2021-06-01 06:47:27.0' + UPDATEUSER: + type: string + example: admin + example: + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: ADMIN USER + ROLENAME: ROLE_ADMIN + STATUSKEY: Active + UPDATEDATE: '2021-06-01 06:47:27.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: ROLE_ADMIN_SAVIYNTSUPPORT USER + ROLENAME: ROLE_ADMIN_SAVIYNTSUPPORT + STATUSKEY: Active + UPDATEDATE: '2021-06-01 06:58:24.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: '' + CUSTOMPROPERTY10: '' + CUSTOMPROPERTY11: '' + CUSTOMPROPERTY12: '' + CUSTOMPROPERTY13: '' + CUSTOMPROPERTY14: '' + CUSTOMPROPERTY15: '' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: '' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: '' + CUSTOMPROPERTY4: '' + CUSTOMPROPERTY5: '' + CUSTOMPROPERTY6: '' + CUSTOMPROPERTY7: '' + CUSTOMPROPERTY8: '' + CUSTOMPROPERTY9: '' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: PAM END USER ROLE + ROLENAME: ROLE_SAV_PAMENDUSER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:26.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: '' + CUSTOMPROPERTY10: '' + CUSTOMPROPERTY11: '' + CUSTOMPROPERTY12: '' + CUSTOMPROPERTY13: '' + CUSTOMPROPERTY14: '' + CUSTOMPROPERTY15: '' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: '' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: '' + CUSTOMPROPERTY4: '' + CUSTOMPROPERTY5: '' + CUSTOMPROPERTY6: '' + CUSTOMPROPERTY7: '' + CUSTOMPROPERTY8: '' + CUSTOMPROPERTY9: '' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: PAM MANAGEMENT ROLE + ROLENAME: ROLE_SAV_PAMOWNER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:26.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: END USER ROLE + ROLENAME: ROLE_SAV_ENDUSER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: MANAGER ROLE + ROLENAME: ROLE_SAV_MANAGER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: SOD OWNER ROLE + ROLENAME: ROLE_SAV_SODOWNER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: SAV Role to provide access to all the OOTB personas shipped with Control Center. This won’t have access to PAM Owner persona. + ROLENAME: ROLE_SAV_CONTROLCENTER_IGAOWNER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'true' + ROLEDESCRIPTION: ROLE SAV AUDITOR READONLY + ROLENAME: ROLE_SAV_AUDITOR_READONLY + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: UI ADMIN USER ROLE + ROLENAME: ROLE_UIADMIN + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: '' + CUSTOMPROPERTY10: '' + CUSTOMPROPERTY11: '' + CUSTOMPROPERTY12: '' + CUSTOMPROPERTY13: '' + CUSTOMPROPERTY14: '' + CUSTOMPROPERTY15: '' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: '' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: '' + CUSTOMPROPERTY4: '' + CUSTOMPROPERTY5: '' + CUSTOMPROPERTY6: '' + CUSTOMPROPERTY7: '' + CUSTOMPROPERTY8: '' + CUSTOMPROPERTY9: '' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: Used by PAM extended solution + ROLENAME: ROLE_SAV_PAM_EXTENSIONS + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:32.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: SAV4SAV ROLE + ROLENAME: ROLE_SAV4SAV_ADMIN + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:22:07.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'false' + ROLEDESCRIPTION: SOD AUDITOR + ROLENAME: ROLE_SOD_AUDITOR + STATUSKEY: Active + UPDATEDATE: '2022-11-04 09:27:39.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'null' + ROLEDESCRIPTION: Role service account + ROLENAME: ROLE_SERVICE_ACCOUNT + STATUSKEY: Active + UPDATEDATE: '2022-11-03 13:37:20.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'false' + ROLEDESCRIPTION: test + ROLENAME: ROLE_TEST + STATUSKEY: Active + UPDATEDATE: '2022-11-04 12:30:18.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'false' + ROLEDESCRIPTION: COPY OF ADMIN USER + ROLENAME: ROLE_ADMIN -COPY + STATUSKEY: Active + UPDATEDATE: '2022-11-11 15:46:29.0' + UPDATEUSER: admin + examples: + Get SavRoles: + value: + savroles: + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: ADMIN USER + ROLENAME: ROLE_ADMIN + STATUSKEY: Active + UPDATEDATE: '2021-06-01 06:47:27.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: ROLE_ADMIN_SAVIYNTSUPPORT USER + ROLENAME: ROLE_ADMIN_SAVIYNTSUPPORT + STATUSKEY: Active + UPDATEDATE: '2021-06-01 06:58:24.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: '' + CUSTOMPROPERTY10: '' + CUSTOMPROPERTY11: '' + CUSTOMPROPERTY12: '' + CUSTOMPROPERTY13: '' + CUSTOMPROPERTY14: '' + CUSTOMPROPERTY15: '' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: '' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: '' + CUSTOMPROPERTY4: '' + CUSTOMPROPERTY5: '' + CUSTOMPROPERTY6: '' + CUSTOMPROPERTY7: '' + CUSTOMPROPERTY8: '' + CUSTOMPROPERTY9: '' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: PAM END USER ROLE + ROLENAME: ROLE_SAV_PAMENDUSER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:26.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: '' + CUSTOMPROPERTY10: '' + CUSTOMPROPERTY11: '' + CUSTOMPROPERTY12: '' + CUSTOMPROPERTY13: '' + CUSTOMPROPERTY14: '' + CUSTOMPROPERTY15: '' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: '' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: '' + CUSTOMPROPERTY4: '' + CUSTOMPROPERTY5: '' + CUSTOMPROPERTY6: '' + CUSTOMPROPERTY7: '' + CUSTOMPROPERTY8: '' + CUSTOMPROPERTY9: '' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: PAM MANAGEMENT ROLE + ROLENAME: ROLE_SAV_PAMOWNER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:26.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: END USER ROLE + ROLENAME: ROLE_SAV_ENDUSER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: MANAGER ROLE + ROLENAME: ROLE_SAV_MANAGER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: SOD OWNER ROLE + ROLENAME: ROLE_SAV_SODOWNER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: SAV Role to provide access to all the OOTB personas shipped with Control Center. This won’t have access to PAM Owner persona. + ROLENAME: ROLE_SAV_CONTROLCENTER_IGAOWNER + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'true' + ROLEDESCRIPTION: ROLE SAV AUDITOR READONLY + ROLENAME: ROLE_SAV_AUDITOR_READONLY + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: UI ADMIN USER ROLE + ROLENAME: ROLE_UIADMIN + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:28.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: '' + CUSTOMPROPERTY10: '' + CUSTOMPROPERTY11: '' + CUSTOMPROPERTY12: '' + CUSTOMPROPERTY13: '' + CUSTOMPROPERTY14: '' + CUSTOMPROPERTY15: '' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: '' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: '' + CUSTOMPROPERTY4: '' + CUSTOMPROPERTY5: '' + CUSTOMPROPERTY6: '' + CUSTOMPROPERTY7: '' + CUSTOMPROPERTY8: '' + CUSTOMPROPERTY9: '' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: Used by PAM extended solution + ROLENAME: ROLE_SAV_PAM_EXTENSIONS + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:21:32.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'true' + READONLY: 'false' + ROLEDESCRIPTION: SAV4SAV ROLE + ROLENAME: ROLE_SAV4SAV_ADMIN + STATUSKEY: Active + UPDATEDATE: '2022-11-02 04:22:07.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'false' + ROLEDESCRIPTION: SOD AUDITOR + ROLENAME: ROLE_SOD_AUDITOR + STATUSKEY: Active + UPDATEDATE: '2022-11-04 09:27:39.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: '' + CUSTOMPROPERTY17: '' + CUSTOMPROPERTY18: '' + CUSTOMPROPERTY19: '' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: '' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'null' + ROLEDESCRIPTION: Role service account + ROLENAME: ROLE_SERVICE_ACCOUNT + STATUSKEY: Active + UPDATEDATE: '2022-11-03 13:37:20.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'false' + ROLEDESCRIPTION: test + ROLENAME: ROLE_TEST + STATUSKEY: Active + UPDATEDATE: '2022-11-04 12:30:18.0' + UPDATEUSER: admin + - CUSTOMPROPERTY1: 'null' + CUSTOMPROPERTY10: 'null' + CUSTOMPROPERTY11: 'null' + CUSTOMPROPERTY12: 'null' + CUSTOMPROPERTY13: 'null' + CUSTOMPROPERTY14: 'null' + CUSTOMPROPERTY15: 'null' + CUSTOMPROPERTY16: 'null' + CUSTOMPROPERTY17: 'null' + CUSTOMPROPERTY18: 'null' + CUSTOMPROPERTY19: 'null' + CUSTOMPROPERTY2: 'null' + CUSTOMPROPERTY20: 'null' + CUSTOMPROPERTY3: 'null' + CUSTOMPROPERTY4: 'null' + CUSTOMPROPERTY5: 'null' + CUSTOMPROPERTY6: 'null' + CUSTOMPROPERTY7: 'null' + CUSTOMPROPERTY8: 'null' + CUSTOMPROPERTY9: 'null' + HOMEPAGE: 'null' + ISOOTB: 'false' + READONLY: 'false' + ROLEDESCRIPTION: COPY OF ADMIN USER + ROLENAME: ROLE_ADMIN -COPY + STATUSKEY: Active + UPDATEDATE: '2022-11-11 15:46:29.0' + UPDATEUSER: admin + security: + - bearerAuth: [] + /getAccounts: + post: + tags: + - accounts + summary: Get Account Details + description: |- + This method returns a `List` of "Accounts" in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: `username`, `endpoint`, `max`, `offset`, `accountQuery`, `advsearchcriteria` - accountKey,description,comments,accounttype,status,customproperty1-customproperty56,accountID,displayName,name,creator (username),updateuser (username),validfromDate validthrough,createdon,lastlogondate,lastpasswordchange,updatedate,orphan (true/false), accountowner - with fields 1. type - user/ usergroup (mandatory), 2. value - username/ usergroup name (mandatory), 3. rank - 1 to 5 (optional) + Sample - "advsearchcriteria":{ "status":"ACTIVE","name":"john\*","createdon":"2016-12-13","customproperty12":"\*Ro\*","orphan":"true","accountowner": \[ { "type": "user", "value": "janedoe", "rank": "1" } \]}, + Date can be searched with 'yyyy-MM-dd', dates and boolean are exact match. + **Note**: Any OR conditions must be used within parenthesis. For example: + { "accountQuery":"(acc.status='1' or acc.comments like '%a%')", "username":"admin" } + operationId: getAccountDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + accountQuery: + type: string + example: acc.status='1' + advsearchcriteria: + type: object + properties: + accountowner: + type: array + items: + type: object + properties: + rank: + type: string + example: '1' + type: + type: string + example: user + value: + type: string + example: admin + example: + - rank: '1' + type: user + value: admin + name: + type: string + example: svc* + status: + type: string + example: ACTIVE + examples: + Get Account Details: + value: + accountQuery: acc.status='1' + advsearchcriteria: + accountowner: + - rank: '1' + type: user + value: admin + name: svc* + status: ACTIVE + responses: + '200': + description: Get Account Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 29 Dec 2020 03:25:42 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ed52f4ad-43af-4e9a-974d-adaa7e626925; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + Accountdetails: + type: array + items: + type: object + properties: + accountID: + type: string + example: CN=svcIT62341,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + accountKey: + type: number + example: 541341 + accountclass: + type: string + example: top,person,organizationalPerson,user + accountowner: + type: array + items: + type: object + properties: + rank: + type: number + example: 1 + type: + type: string + example: user + value: + type: string + example: admin + example: + - rank: 1 + type: user + value: admin + - rank: 26 + type: user + value: allisonadowner + accounttype: + type: string + example: Service Account + comments: + type: string + example: Created as per request - 2430001 + createdon: + type: string + example: 07/10/2020 + creator: + type: string + example: System created + customproperty1: + type: string + example: svcIT62341 + customproperty11: + type: string + example: '12717263' + customproperty19: + type: string + example: '0' + customproperty2: + type: string + example: svcIT62341 + customproperty20: + type: string + example: svcIT62341@saviynt.com + customproperty26: + type: string + example: CN=svcIT62341,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + customproperty3: + type: string + example: AdminUser + customproperty30: + type: string + example: '512' + customproperty6: + type: string + example: svcIT62341 + customproperty7: + type: string + example: Saviynt + endpoint: + type: string + example: SaviyntAD + endpointKey: + type: number + example: 760 + lastpasswordchange: + type: string + example: 07/10/2020 + name: + type: string + example: svcIT62341 + status: + type: string + example: '1' + updatedate: + type: string + example: 07/10/2020 + userKey: + type: string + example: '' + username: + type: string + example: '' + example: + - accountID: CN=svcIT62341,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + accountKey: 541341 + accountclass: top,person,organizationalPerson,user + accountowner: + - rank: 1 + type: user + value: admin + - rank: 26 + type: user + value: allisonadowner + accounttype: Service Account + comments: Created as per request - 2430001 + createdon: 07/10/2020 + creator: System created + customproperty1: svcIT62341 + customproperty11: '12717263' + customproperty19: '0' + customproperty2: svcIT62341 + customproperty20: svcIT62341@saviynt.com + customproperty26: CN=svcIT62341,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + customproperty3: AdminUser + customproperty30: '512' + customproperty6: svcIT62341 + customproperty7: Saviynt + endpoint: SaviyntAD + endpointKey: 760 + lastpasswordchange: 07/10/2020 + name: svcIT62341 + status: '1' + updatedate: 07/10/2020 + userKey: '' + username: '' + displaycount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + total: + type: number + example: 1 + examples: + Get Account Details: + value: + Accountdetails: + - accountID: CN=svcIT62341,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + accountKey: 541341 + accountclass: top,person,organizationalPerson,user + accountowner: + - rank: 1 + type: user + value: admin + - rank: 26 + type: user + value: allisonadowner + accounttype: Service Account + comments: Created as per request - 2430001 + createdon: 07/10/2020 + creator: System created + customproperty1: svcIT62341 + customproperty11: '12717263' + customproperty19: '0' + customproperty2: svcIT62341 + customproperty20: svcIT62341@saviynt.com + customproperty26: CN=svcIT62341,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + customproperty3: AdminUser + customproperty30: '512' + customproperty6: svcIT62341 + customproperty7: Saviynt + endpoint: SaviyntAD + endpointKey: 760 + lastpasswordchange: 07/10/2020 + name: svcIT62341 + status: '1' + updatedate: 07/10/2020 + userKey: '' + username: '' + displaycount: 1 + errorCode: '0' + msg: Successful + total: 1 + /exportAccount: + post: + tags: + - accounts + summary: Export Account + description: |- + This API call can be used to fetch all the existing accounts in a particular endpoint and security system along with the account attributes. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `endpoint` - not the display name, `securitysystem` - not the display name + operationId: exportAccount + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + endpoint: + description: mandatory + type: string + example: System1 + securitysystem: + description: mandatory + type: string + example: System1 + responses: + '200': + description: Export Account + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:32:21 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a86326df-bf5d-4505-9ce7-4996bb03dfa3; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + result: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accountID: + type: string + example: 'null' + accounttype: + type: string + example: A + endpoint: + type: string + example: System1 + name: + type: string + example: smarquez + status: + type: string + example: '1' + systemname: + type: string + example: System1 + example: + - accountID: 'null' + accounttype: A + endpoint: System1 + name: smarquez + status: '1' + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: tbowers + status: Manually Provisioned + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: dbailey + status: Manually Provisioned + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: mchapman + status: Manually Provisioned + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: glogan + status: '1' + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: lkrause + status: '1' + systemname: System1 + total: + type: string + example: '6' + examples: + Export Account: + value: + errorCode: '0' + message: SUCCESS + result: + accounts: + - accountID: 'null' + accounttype: A + endpoint: System1 + name: smarquez + status: '1' + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: tbowers + status: Manually Provisioned + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: dbailey + status: Manually Provisioned + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: mchapman + status: Manually Provisioned + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: glogan + status: '1' + systemname: System1 + - accountID: 'null' + accounttype: 'null' + endpoint: System1 + name: lkrause + status: '1' + systemname: System1 + total: '6' + /createAccount: + post: + tags: + - accounts + summary: Create Account + description: |- + This method creates a new "account" for an "endpoint" in SSM. All the input parameters it requires are attributes with which the new account record would get created. + The `Authorization` header variable must be set to `Bearer` followed by `Token`. + Mandatory params: + `securitysystem` - not display name, `endpoint` - not display name, `name` - account name to be created + Optional params: + `accountid`, `username` - user for whom the account is created, `requestor` - user who is creating the account, + `accountowner` - owner of account + 1.`type`- usergroup / user, mandatory field 2. `value` - usergroup name / username, mandatory field 3. `rank` - values from 1-5, optional filed, Default: 1, + `description`, `displayname`, `comments`, `accountid`, `customproperty<1-56>`, `passwordchangestatus`, `privileged`, `usergroup`, `status` - Manually Suspended/Manually Provisioned/SUSPENDED FROM IMPORT SERVICE/1/2/3/4, default: 1 `accounttype` - Service Account/Shared Account/FIREFIGHTERID, defaul: null, `incorrectlogons`, `orphan` - true/false, `validfrom` - MM-dd-yyyy, `validthrough` - MM-dd-yyyy, `lastlogondate` - MM-dd-yyyy, `passwordlockdate`- MM-dd-yyyy, `lastpasswordchange` - MM-dd-yyyy + operationId: createAccount + requestBody: + content: + application/json: + schema: + type: object + properties: + accountid: + type: string + example: '123' + accountowner: + type: array + items: + type: object + properties: + rank: + type: string + example: '1' + type: + type: string + example: user + value: + type: string + example: dbailey + example: + - rank: '1' + type: user + value: dbailey + accounttype: + type: string + example: service account + comments: + type: string + example: '10282' + customproperty1: + type: string + example: '1212' + customproperty30: + type: string + example: '1212' + description: + type: string + example: test + displayname: + type: string + example: testaccc + endpoint: + type: string + example: System1 + incorrectlogons: + type: string + example: '12' + lastlogondate: + type: string + example: 10-03-2019 + name: + type: string + example: johnWS + orphan: + type: string + example: 'true' + passwordchangestatus: + type: string + example: changed + passwordlockdate: + type: string + example: 10-03-2019 + privileged: + type: string + example: 'true' + requestor: + type: string + example: admin + securitysystem: + type: string + example: System1 + usergroup: + type: string + example: testgroup + username: + type: string + example: johndoe + validfrom: + type: string + example: 11-03-2019 + validthrough: + type: string + example: 10-03-2019 + examples: + Create Account: + value: + accountid: '123' + accountowner: + - rank: '1' + type: user + value: dbailey + accounttype: service account + comments: '10282' + customproperty1: '1212' + customproperty30: '1212' + description: test + displayname: testaccc + endpoint: System1 + incorrectlogons: '12' + lastlogondate: 10-03-2019 + name: johnWS + orphan: 'true' + passwordchangestatus: changed + passwordlockdate: 10-03-2019 + privileged: 'true' + requestor: admin + securitysystem: System1 + usergroup: testgroup + username: johndoe + validfrom: 11-03-2019 + validthrough: 10-03-2019 + responses: + '200': + description: Create Account Success / Create Account Failure + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:34:01 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=47781b2b-e2d2-4199-8321-3b3f69a030bd; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + examples: + Create Account Failure: + value: + errorCode: '1' + message: Account with name johnWS already exists. + Create Account Success: + value: + errorCode: '0' + message: SUCCESS + /updateAccount: + post: + tags: + - accounts + summary: Update Account + description: |- + This method updates a particular "account" record in Saviynt, based on the account name. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `securitysystem`, `endpoint`, `name` - account name + Optional params: `customproperty<1 to 30>`, `status`, `description` + `accountowner` + - `type`: Specify user or usergroup as the owner type. This is a mandatory parameter. - `value`: Specify usergroup name or username. This is a mandatory parameter. - `rank`: Specify the rank of the owner. You can specify values from 1 to 5, 26, or 27. Specify 26 for a primary certifier and 27 for any secondary certifier. This is an optional parameter, and the default value is 1. - `action`: Specify add or remove. This is a mandatory parameter. + + `description`, `displayname`, `comments`, `accountid`, `customproperty<1-56>`, `passwordchangestatus`, `privileged`, `usergroup`, + `updateuser` - username of user who is updating the account, `status` - Manually Suspended/Manually Provisioned/SUSPENDED FROM IMPORT SERVICE/1/2/3/4, default: 1 `accounttype` - The account type that is imported from the third-party application (for example, Service Account, Shared Account, FIREFIGHTERID, and so on). default: null `incorrectlogons`, `orphan` - true/false, `validfrom` - MM-dd-yyyy, `validthrough` - MM-dd-yyyy, `lastlogondate` - MM-dd-yyyy, `passwordlockdate`\- MM-dd-yyyy, `lastpasswordchange` - MM-dd-yyyy + operationId: updateAccount + requestBody: + content: + application/json: + schema: + type: object + properties: + accountowner: + type: array + items: + type: object + properties: + action: + type: string + example: remove + rank: + type: string + example: '1' + type: + type: string + example: user + value: + type: string + example: dbailey + example: + - action: remove + rank: '1' + type: user + value: dbailey + - action: add + rank: '1' + type: user + value: acook + customproperty1: + type: string + example: cp1 + description: + type: string + example: desc + endpoint: + type: string + example: System1 + name: + type: string + example: johnWS + securitysystem: + type: string + example: System1 + status: + type: string + example: '1' + examples: + Update Account: + value: + accountowner: + - action: remove + rank: '1' + type: user + value: dbailey + - action: add + rank: '1' + type: user + value: acook + customproperty1: cp1 + description: desc + endpoint: System1 + name: johnWS + securitysystem: System1 + status: '1' + responses: + '200': + description: Update Account + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:36:41 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=7a5ee95d-8152-493e-b4ec-ee93437036cc; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: Account Updated Successfully + examples: + Update Account: + value: + errorCode: '0' + message: Account Updated Successfully + /assignAccountToUser: + post: + tags: + - accounts + summary: Assign Account to User + description: |- + This method provisions an "Account" to a "User" in SSM. The "Account" corresponds to a particular IT Application (e.g Microsoft Active Directory) which is modeled in SSM as "Endpoint" of a "Security System". + Mandatory params: + `securitysystem` - Name of the Security System for the relevant IT Application modeled in SSM. + `endpoint`- Name of the Endpoint corresponding to the Security System. + `accountname` - Account name for the provisioned account. + `username` - Username of the user to whom the account has to be provisioned. + The `Authorization` must have `Bearer` followed by `Token`. + operationId: assignAccountToUser + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + accountname: + type: string + example: johnWS + endpoint: + type: string + example: System1 + securitysystem: + type: string + example: System1 + username: + type: string + example: johndoe + examples: + Assign Account to User: + value: + accountname: johnWS + endpoint: System1 + securitysystem: System1 + username: johndoe + responses: + '200': + description: Assign Account to User + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:38:43 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=c247d759-3fd0-4750-b593-fb5eec81c650; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + examples: + Assign Account to User: + value: + errorCode: '0' + message: SUCCESS + /assignAccountToEntitlement: + post: + tags: + - access + summary: Assign Entitlement to Account + description: |- + This method provisions one or more "Entitlements" to an "Account". The "Entitlements" and "Account" correspond to a particular IT Application (e.g Microsoft Active Directory) which is modeled in SSM as "Endpoint" of a "Security System". + Mandatory params: `securitysystem` - Name of the Security System for the relevant IT Application modeled in SSM. + `endpoint`\- Name of the Endpoint corresponding to the Security System. + `accountname` - Account name to which the entitlements should be provisioned. + `entitlementtype` - Entitlement type for the entitlements which are to be provisioned. e.g. AD Groups, EBS Responsibilities, SAP Roles etc. + `entitlementvalue` - Names of the actual entitlements which are to be provisioned. + `startdate`: Specify the start date for the access period in MM-DD-YYYY date format (example: `12-23-2022`). + + + + The `Authorization` must have `Bearer` followed by `Token`. + operationId: assignEntitlementToAccount + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + accountname: + type: string + example: johnWS + endpoint: + type: string + example: System1 + entitlementtype: + type: string + example: Access + entitlementvalue: + type: string + example: Entitlement1 + securitysystem: + type: string + example: System1 + examples: + Assign Entitlement to Account: + value: + accountname: johnWS + endpoint: System1 + entitlementtype: Access + entitlementvalue: Entitlement1 + securitysystem: System1 + responses: + '200': + description: Assign Entitlement to Account + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:44:22 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=87be9ddb-28a8-45a6-9841-b15e8fa3998a; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + examples: + Assign Entitlement to Account: + value: + errorCode: '0' + message: SUCCESS + /removeAccountToEntitlement: + post: + tags: + - access + summary: Remove Entitlement from Account + description: |- + This method deprovisions one or more "Entitlements" from an "Account". The "Entitlements" and "Account" correspond to a particular IT Application (e.g Microsoft Active Directory) which is modeled in SSM as "Endpoint" of a "Security System". + Mandatory params: + `securitysystem` - Name of the Security System for the relevant IT Application modeled in SSM. + `endpoint`- Name of the Endpoint corresponding to the Security System. + `accountname` - Account name from which the entitlements should be deprovisioned. + `entitlementtype` - Entitlement type for the entitlements which are to be deprovisioned. e.g. AD Groups, EBS Responsibilities, SAP Roles etc. + `entitlementvalue` - Names of the actual entitlements which are to be deprovisioned. + The `Authorization` must have `Bearer` followed by `Token`. + operationId: removeEntitlementFromAccount + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + accountname: + type: string + example: johnWS + endpoint: + type: string + example: System1 + entitlementtype: + type: string + example: Access + entitlementvalue: + type: string + example: Entitlement1 + securitysystem: + type: string + example: System1 + examples: + Remove Entitlement from Account: + value: + accountname: johnWS + endpoint: System1 + entitlementtype: Access + entitlementvalue: Entitlement1 + securitysystem: System1 + responses: + '200': + description: Removes Entitlement from Account Success / Removes Entitlement from Account Failure + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 01:02:09 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=fc8f40c4-9e40-46d1-be65-8d90885de30a; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + examples: + Removes Entitlement from Account Failure: + value: + errorCode: '1' + message: Account (johnWS) has NO Entitlement (Entitlement1) + Removes Entitlement from Account Success: + value: + errorCode: '0' + message: SUCCESS + /createPrivilege: + put: + tags: + - privileges + summary: Create Privilege + description: |- + This API updates an endpoint in EIC. + The Authorization must have a Bearer followed by a Token. Mandatory parameters: • Endpoint • Securitysystem • Entitlementtype • attributename + Optional parameters: •attributetype((BOOLEAN/NUMBER/STRING/ENUM/MULTIPLE SELECT FROM LIST/MULTIPLE SELECT FROM SQL QUERY/SINGLE SELECT FROM SQL QUERY/PASSWORD/LARGE TEXT/CHECK BOX/DATE)), • orderindex, • defaultvalues, • attributeconfig(entitlement-based/user-based), • label, • attributegroup, • parentattribute, • childaction, • description, • actionstring, • required(true/false), • requestable(true/false), • hideoncreate(true/false), • hideonupdate(true/false) + operationId: createPrivilege + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: gcpshruti + entitlementtype: + type: string + example: Groups + privilege: + type: object + properties: + actionstring: + type: string + example: ghjkfghj + attributeconfig: + type: string + example: user-based + attributegroup: + type: string + example: '' + attributename: + type: string + example: att68 + attributetype: + type: string + example: PASSWORD + childaction: + type: string + example: fghj + defaultvalue: + type: string + example: erfg + description: + type: string + example: fghjk + hideoncreate: + type: boolean + example: true + hideonupdate: + type: boolean + example: false + label: + type: string + example: assadsd + orderindex: + type: string + example: '2' + parentattribute: + type: string + example: '' + requestable: + type: boolean + example: true + required: + type: boolean + example: true + securitysystem: + type: string + example: gcpshruti + examples: + Create Privilege: + value: + endpoint: gcpshruti + entitlementtype: Groups + privilege: + actionstring: ghjkfghj + attributeconfig: user-based + attributegroup: '' + attributename: att68 + attributetype: PASSWORD + childaction: fghj + defaultvalue: erfg + description: fghjk + hideoncreate: true + hideonupdate: false + label: assadsd + orderindex: '2' + parentattribute: '' + requestable: true + required: true + securitysystem: gcpshruti + responses: + '200': + description: Create Privilege + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-om.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Language: + schema: + type: string + example: en + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 05 Sep 2023 14:26:57 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + text/plain: + examples: + Create Privilege: + value: "\r\n\n\n\n \n \n \n \n \n \n \n \n Saviynt Security Manager Login\n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n
\n
\n
\n \n
\n \"Saviynt\"\n
\n
\n
\n
\n

Sign in

\n \n
\n
\n \n Enter Username And Password\r\n \n
\n
\n \n \n \n \n \n \n \n \n \n
\n
\n \n \n \n \n \n \n
\n
\n
\n
\n \r\n Forgot your password?\n
\n \n
\n
\n \n
\n
\n
\n
\n
\n
\n

Saviynt veic-trunk, © Copyright 2023, Saviynt All Rights Reserved. Use is subject to license terms.

\n
\n \n \r\n Support Request\n \n

\n
\n
\n
\n
\n
\n
\n
\n \n \n \n \n \n \n \n \n \n \n \n
\r\n
\n \n " + /updatePrivilege: + put: + tags: + - privileges + summary: Update Privilege + description: |- + This API updates an endpoint in EIC. The Authorization must have a Bearer followed by a Token. Mandatory parameters: • Endpoint • Securitysystem • Entitlementtype • attributename + Optional parameters: • attributetype((BOOLEAN/NUMBER/STRING/ENUM/MULTIPLE SELECT FROM LIST/MULTIPLE SELECT FROM SQL QUERY/SINGLE SELECT FROM SQL QUERY/PASSWORD/LARGE TEXT/CHECK BOX/DATE)), • orderindex, • defaultvalues, • attributeconfig(entitlement-based/user-based), • label, • attributegroup, • parentattribute, • childaction, • description, • actionstring, • required(true/false), • requestable(true/false), • hideoncreate(true/false), • hideonupdate(true/false) + operationId: updatePrivilege + requestBody: + content: + application/json: + examples: + Update Privilege: + value: "{{\r\n \"securitysystem\": \"gcpshruti\",\r\n \"endpoint\": \"gcpshruti\",\r\n \"entitlementtype\": \"Groups\",\r\n \"privilege\": {\r\n \"attributename\": \"att68\",\r\n \"attributetype\": \"PASSWORD\",\r\n \"orderindex\": \"2\",\r\n \"defaultvalue\": \"erfg\",\r\n \"attributeconfig\": \"user-based\",\r\n\r\n \"label\": \"assadsd\",\r\n \"attributegroup\": \"\",\r\n \"parentattribute\": \"\",\r\n \"childaction\": \"fghj\",\r\n \"description\": \"fghjk\",\r\n \"required\": true,\r\n \"requestable\": true,\r\n \"hideoncreate\": true,\r\n \"hideonupdate\": false,\r\n \"actionstring\": \"ghjkfghj\"\r\n }\r\n}\r\n" + responses: + '200': + description: Update Privilege + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-om.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Language: + schema: + type: string + example: en + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 05 Sep 2023 14:41:42 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + text/plain: + examples: + Update Privilege: + value: "\r\n\n\n\n \n \n \n \n \n \n \n \n Saviynt Security Manager Login\n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n
\n
\n
\n \n
\n \"Saviynt\"\n
\n
\n
\n
\n

Sign in

\n \n
\n
\n \n Enter Username And Password\r\n \n
\n
\n \n \n \n \n \n \n \n \n \n
\n
\n \n \n \n \n \n \n
\n
\n
\n
\n \r\n Forgot your password?\n
\n \n
\n
\n \n
\n
\n
\n
\n
\n
\n

Saviynt veic-trunk, © Copyright 2023, Saviynt All Rights Reserved. Use is subject to license terms.

\n
\n \n \r\n Support Request\n \n

\n
\n
\n
\n
\n
\n
\n
\n \n \n \n \n \n \n \n \n \n \n \n
\r\n
\n \n " + /deletePrivilege: + put: + tags: + - privileges + summary: Delete Privilege + description: |- + https://yourdomain.saviyntcloud.com/ECM/v5/deletePrivilege + This API updates an endpoint in EIC. + The Authorization must have a Bearer followed by a Token. + operationId: deletePrivilege + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: System1 + entitlementtype: + type: string + example: enttype1 + privilege: + type: string + example: attr1 + securitysystem: + type: string + example: System1 + examples: + Delete Privilege: + value: + endpoint: System1 + entitlementtype: enttype1 + privilege: attr1 + securitysystem: System1 + responses: + '200': + description: '' + /getEntitlements: + post: + tags: + - entitlements + summary: Get Entitlements + description: "This API can be used to get the list of all the entitlements.\r\n\r\nThis API call can be used to get the list and details of all the entitlements the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params:\r\n`username`,\r\n`entitlementtype`,\r\n`endpoint`,\r\n`requestedObject` -\"users\",\"userscount\",\r\n`max`,\r\n`offset`,\r\n`entitlementResponseFields`,\r\n`userResponseFields`,\r\n`userfiltercriteria`,\r\n`accountname`,\r\n`entownerwithrank` - if \"true\", returns the list of owners with owner rank for every entitlementValue,\r\n`returnentitlementmap`(true/false,default:false) - If true, entitlementmap details will be returned,\r\n`exactmatch` - Default is true. If given as false, it will search based on similar matches,\r\n\r\n`entitlementfiltercriteria`,\r\n\r\nOR \r\n\r\n`entQuery` - query to support only entitlement_values parameters. Sample - \"ent.description = 'Desc' or ent.displayname like '%display%'\".\r\n\r\n***Note*** - Either pass param entitlementfiltercriteria (with or without exactmatch) OR entQuery. Both cannot be passed simultaneously." + operationId: getEntitlements + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: AWS + entQuery: + type: string + example: ent.entitlement_value like '%i-03d58cd60fa90b9a9%' + entownerwithrank: + type: string + example: 'true' + returnentitlementmap: + type: string + example: 'true' + username: + type: string + example: jasorodriguez + examples: + Get Entitlements: + value: + endpoint: AWS + entQuery: ent.entitlement_value like '%i-03d58cd60fa90b9a9%' + entownerwithrank: 'true' + returnentitlementmap: 'true' + username: jasorodriguez + Get Entitlements Copy: + value: + endpoint: AWS + entQuery: ent.entitlement_value like '%i-03d58cd60fa90b9a9%' + entownerwithrank: 'true' + returnentitlementmap: 'true' + username: jasorodriguez + responses: + '200': + description: Get Entitlements / Get Entitlements + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 30 Jun 2021 20:38:34 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5fa8a880-0b39-44c7-be59-d60df88371ee; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + Entitlementdetails: + type: array + items: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accountname: + type: string + example: jasorodriguez + enddate: + type: string + example: '' + startdate: + type: string + example: '' + updatedate: + type: string + example: '' + example: + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + childEntitlementCount: + type: number + example: 0 + customproperty1: + type: string + example: 'Code: 80,Name: stopped' + customproperty10: + type: string + example: 'false' + customproperty13: + type: string + example: 'N' + customproperty15: + type: string + example: '2017-07-03 17:10:15' + customproperty16: + type: string + example: 'State: disabled' + customproperty17: + type: string + example: ami-0c2dfb1a + customproperty18: + type: string + example: AWSSaviynt-6612acc + customproperty19: + type: string + example: default + customproperty2: + type: string + example: m3.xlarge + customproperty20: + type: string + example: ip-172-31-19-127.ec2.internal + customproperty3: + type: string + example: 'Key: Owner,Value: Sagar Srikantaiah, Key: aws:cloudformation:stack-id,Value: arn:aws:cloudformation:us-east-1:661222050851:stack/IDMAMITest/b8c82f20-f8a8-11e6-845b-500c28903236, Key: aws:cloudformation:logical-id,Value: SaviyntAWSEC2, Key: Name,Value: IDMAMITest, Key: aws:cloudformation:stack-name,Value: IDMAMITest' + customproperty4: + type: string + example: 172.31.19.127 + customproperty5: + type: string + example: vpc-60389904 + customproperty6: + type: string + example: subnet-3e9ea667 + customproperty7: + type: string + example: 'false' + customproperty8: + type: string + example: 'Arn: arn:aws:iam::661222050851:instance-profile/IDMAMITest-SaviyntAWSInstanceProfile-PB8FBG9QPF8J,Id: AIPAI4Z55IKG4PEYTP622' + customproperty9: + type: string + example: us-east-1 + description: + type: string + example: '' + displayname: + type: string + example: '' + endpoint: + type: string + example: AWS + endpointKey: + type: number + example: 1 + entitlementID: + type: string + example: i-03d58cd60fa90b9a9 + entitlementMapDetails: + type: array + items: + type: object + properties: + addDependentTask: + type: string + example: '' + description: + type: string + example: Enable http, https, ssh access to the My ControlNode. + excludeEntitlement: + type: string + example: '' + exportPrimary: + type: string + example: sg-4341773f + primary: + type: string + example: sg-4341773f + primaryEntKey: + type: string + example: '189289' + primaryEntType: + type: string + example: AWSSecurityGroup + removeDependentEntTask: + type: string + example: '' + requestFilter: + type: string + example: '' + example: + - addDependentTask: '' + description: Enable http, https, ssh access to the My ControlNode. + excludeEntitlement: '' + exportPrimary: sg-4341773f + primary: sg-4341773f + primaryEntKey: '189289' + primaryEntType: AWSSecurityGroup + removeDependentEntTask: '' + requestFilter: '' + - addDependentTask: '' + description: '' + excludeEntitlement: '' + exportPrimary: vol-011ca83c3d8894018 + primary: vol-011ca83c3d8894018 + primaryEntKey: '192408' + primaryEntType: EBSVolume + removeDependentEntTask: '' + requestFilter: '' + - addDependentTask: '' + description: '' + excludeEntitlement: '' + exportPrimary: arn:aws:iam::661222050851:policy/ADAWSFFRoles-SaviyntAWSConfigPolicy-TVZXKOYNVMLC + primary: arn:aws:iam::661222050851:policy/ADAWSFFRoles-SaviyntAWSConfigPolicy-TVZXKOYNVMLC + primaryEntKey: '193885' + primaryEntType: AWSPolicy + removeDependentEntTask: '' + requestFilter: '' + entitlementOwner: + type: string + example: '' + entitlementType: + type: string + example: EC2InstanceDisplay + entitlementTypeKey: + type: number + example: 52 + entitlementTypeName: + type: string + example: EC2Instance + entitlement_glossary: + type: string + example: '' + entitlement_value: + type: string + example: i-03d58cd60fa90b9a9 + entitlement_valuekey: + type: string + example: '191373' + requestForm: + type: string + example: Request Form None + soxcritical: + type: string + example: '0' + status: + type: string + example: '1' + syscritical: + type: string + example: '0' + updatedate: + type: string + example: '2017-08-10 16:11:47' + example: + - accounts: + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + childEntitlementCount: 0 + customproperty1: 'Code: 80,Name: stopped' + customproperty10: 'false' + customproperty13: 'N' + customproperty15: '2017-07-03 17:10:15' + customproperty16: 'State: disabled' + customproperty17: ami-0c2dfb1a + customproperty18: AWSSaviynt-6612acc + customproperty19: default + customproperty2: m3.xlarge + customproperty20: ip-172-31-19-127.ec2.internal + customproperty3: 'Key: Owner,Value: Sagar Srikantaiah, Key: aws:cloudformation:stack-id,Value: arn:aws:cloudformation:us-east-1:661222050851:stack/IDMAMITest/b8c82f20-f8a8-11e6-845b-500c28903236, Key: aws:cloudformation:logical-id,Value: SaviyntAWSEC2, Key: Name,Value: IDMAMITest, Key: aws:cloudformation:stack-name,Value: IDMAMITest' + customproperty4: 172.31.19.127 + customproperty5: vpc-60389904 + customproperty6: subnet-3e9ea667 + customproperty7: 'false' + customproperty8: 'Arn: arn:aws:iam::661222050851:instance-profile/IDMAMITest-SaviyntAWSInstanceProfile-PB8FBG9QPF8J,Id: AIPAI4Z55IKG4PEYTP622' + customproperty9: us-east-1 + description: '' + displayname: '' + endpoint: AWS + endpointKey: 1 + entitlementID: i-03d58cd60fa90b9a9 + entitlementMapDetails: + - addDependentTask: '' + description: Enable http, https, ssh access to the My ControlNode. + excludeEntitlement: '' + exportPrimary: sg-4341773f + primary: sg-4341773f + primaryEntKey: '189289' + primaryEntType: AWSSecurityGroup + removeDependentEntTask: '' + requestFilter: '' + - addDependentTask: '' + description: '' + excludeEntitlement: '' + exportPrimary: vol-011ca83c3d8894018 + primary: vol-011ca83c3d8894018 + primaryEntKey: '192408' + primaryEntType: EBSVolume + removeDependentEntTask: '' + requestFilter: '' + - addDependentTask: '' + description: '' + excludeEntitlement: '' + exportPrimary: arn:aws:iam::661222050851:policy/USFederalDemoStack-SaviyntAWSPolicy-EQ3LNR2RUGS7 + primary: arn:aws:iam::661222050851:policy/USFederalDemoStack-SaviyntAWSPolicy-EQ3LNR2RUGS7 + primaryEntKey: '3932043' + primaryEntType: AWSPolicy + removeDependentEntTask: '' + requestFilter: '' + entitlementOwner: '' + entitlementType: EC2InstanceDisplay + entitlementTypeKey: 52 + entitlementTypeName: EC2Instance + entitlement_glossary: '' + entitlement_value: i-03d58cd60fa90b9a9 + entitlement_valuekey: '191373' + requestForm: Request Form None + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: '2017-08-10 16:11:47' + entitlementsCount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + totalEntitlementCount: + type: number + example: 1 + examples: + Get Entitlements: + value: + Entitlementdetails: + - accounts: + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + - accountname: jasorodriguez + enddate: '' + startdate: '' + updatedate: '' + childEntitlementCount: 0 + customproperty1: 'Code: 80,Name: stopped' + customproperty10: 'false' + customproperty13: 'N' + customproperty15: '2017-07-03 17:10:15' + customproperty16: 'State: disabled' + customproperty17: ami-0c2dfb1a + customproperty18: AWSSaviynt-6612acc + customproperty19: default + customproperty2: m3.xlarge + customproperty20: ip-172-31-19-127.ec2.internal + customproperty3: 'Key: Owner,Value: Sagar Srikantaiah, Key: aws:cloudformation:stack-id,Value: arn:aws:cloudformation:us-east-1:661222050851:stack/IDMAMITest/b8c82f20-f8a8-11e6-845b-500c28903236, Key: aws:cloudformation:logical-id,Value: SaviyntAWSEC2, Key: Name,Value: IDMAMITest, Key: aws:cloudformation:stack-name,Value: IDMAMITest' + customproperty4: 172.31.19.127 + customproperty5: vpc-60389904 + customproperty6: subnet-3e9ea667 + customproperty7: 'false' + customproperty8: 'Arn: arn:aws:iam::661222050851:instance-profile/IDMAMITest-SaviyntAWSInstanceProfile-PB8FBG9QPF8J,Id: AIPAI4Z55IKG4PEYTP622' + customproperty9: us-east-1 + description: '' + displayname: '' + endpoint: AWS + endpointKey: 1 + entitlementID: i-03d58cd60fa90b9a9 + entitlementMapDetails: + - addDependentTask: '' + description: Enable http, https, ssh access to the My ControlNode. + excludeEntitlement: '' + exportPrimary: sg-4341773f + primary: sg-4341773f + primaryEntKey: '189289' + primaryEntType: AWSSecurityGroup + removeDependentEntTask: '' + requestFilter: '' + - addDependentTask: '' + description: '' + excludeEntitlement: '' + exportPrimary: vol-011ca83c3d8894018 + primary: vol-011ca83c3d8894018 + primaryEntKey: '192408' + primaryEntType: EBSVolume + removeDependentEntTask: '' + requestFilter: '' + - addDependentTask: '' + description: '' + excludeEntitlement: '' + exportPrimary: arn:aws:iam::661222050851:policy/ADAWSFFRoles-SaviyntAWSConfigPolicy-TVZXKOYNVMLC + primary: arn:aws:iam::661222050851:policy/ADAWSFFRoles-SaviyntAWSConfigPolicy-TVZXKOYNVMLC + primaryEntKey: '193885' + primaryEntType: AWSPolicy + removeDependentEntTask: '' + requestFilter: '' + entitlementOwner: '' + entitlementType: EC2InstanceDisplay + entitlementTypeKey: 52 + entitlementTypeName: EC2Instance + entitlement_glossary: '' + entitlement_value: i-03d58cd60fa90b9a9 + entitlement_valuekey: '191373' + requestForm: Request Form None + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: '2017-08-10 16:11:47' + entitlementsCount: 1 + errorCode: '0' + msg: Successful + totalEntitlementCount: 1 + /getChildEntitlements: + get: + tags: + - entitlements + summary: Get Child Entitlements + description: |- + This API can be used to get the list of all child entitlements. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `endpointname`/`endpointkey` - if both are passed endpointkey is considered + Optional params: + `entitlementtypekey`/`entitlementtypename` - Possible values should have parent entitlementtypekey/entitlementtypename. If both are passed entitlementtypekey is considered, + `parententitlementvalue`/`parententitlementvaluekey` - if both are passed parententitlementvaluekey is considered, + `entquery` - query to support parent entitlement_values parameters. Sample - "pev.status = 1", + `childentquery` - query to support child entitlement_values parameters. Sample - "cev.customproperty3 = '25'", + `entitlements2query` - query to support entitlements2 parameters. Sample - "e2.jobId is not null", + `responsefields` - possible values should have child entitlementvalue domain properties. Sample - \["description","customproperty1","customproperty3","displayname"\], + `max`, + `offset` + operationId: getChildEntitlements + requestBody: + content: + application/json: + schema: + type: object + properties: + childentquery: + type: string + example: 'cev.customproperty3 = ''25'' ' + endpointkey: + type: string + example: '1' + endpointname: + type: string + example: AWS + entitlements2query: + type: string + example: e2.jobId is not null + entitlementtypekey: + type: string + example: '54' + entitlementtypename: + type: string + example: AWSSecurityGroup + entquery: + type: string + example: pev.status = 1 + max: + type: string + example: '5' + offset: + type: string + example: '0' + parententitlementvalue: + type: string + example: sg-0303987b + parententitlementvaluekey: + type: string + example: '189260' + responsefields: + type: array + items: + type: string + example: description + example: + - description + - customproperty1 + - customproperty3 + - displayname + examples: + Get Child Entitlements: + value: + childentquery: 'cev.customproperty3 = ''25'' ' + endpointkey: '1' + endpointname: AWS + entitlements2query: e2.jobId is not null + entitlementtypekey: '54' + entitlementtypename: AWSSecurityGroup + entquery: pev.status = 1 + max: '5' + offset: '0' + parententitlementvalue: sg-0303987b + parententitlementvaluekey: '189260' + responsefields: + - description + - customproperty1 + - customproperty3 + - displayname + responses: + '200': + description: Get Child Entitlements + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 24 Sep 2021 00:18:25 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=1e59254b-5058-49f9-89cd-3e9b9a250e8d; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + childEntitlementsList: + type: array + items: + type: object + properties: + customproperty1: + type: string + example: 23.240.16.195/32 + customproperty3: + type: string + example: '25' + endpoint: + type: string + example: AWS + endpointKey: + type: number + example: 1 + entitlementType: + type: string + example: SGIBRules + entitlementTypeKey: + type: number + example: 63 + entitlementTypeName: + type: string + example: SGIBRules + entitlement_value: + type: string + example: InboundRules::sg-0303987b#0 + entitlement_valuekey: + type: string + example: '189502' + parententitlementvalue: + type: string + example: sg-0303987b + parententitlementvaluekey: + type: number + example: 189260 + parententstatus: + type: string + example: '1' + requestForm: + type: string + example: Request Form None + example: + - customproperty1: 23.240.16.195/32 + customproperty3: '25' + endpoint: AWS + endpointKey: 1 + entitlementType: SGIBRules + entitlementTypeKey: 63 + entitlementTypeName: SGIBRules + entitlement_value: InboundRules::sg-0303987b#0 + entitlement_valuekey: '189502' + parententitlementvalue: sg-0303987b + parententitlementvaluekey: 189260 + parententstatus: '1' + requestForm: Request Form None + displaycount: + type: number + example: 1 + errorcode: + type: string + example: '0' + msg: + type: string + example: success + totalcount: + type: number + example: 1 + examples: + Get Child Entitlements: + value: + childEntitlementsList: + - customproperty1: 23.240.16.195/32 + customproperty3: '25' + endpoint: AWS + endpointKey: 1 + entitlementType: SGIBRules + entitlementTypeKey: 63 + entitlementTypeName: SGIBRules + entitlement_value: InboundRules::sg-0303987b#0 + entitlement_valuekey: '189502' + parententitlementvalue: sg-0303987b + parententitlementvaluekey: 189260 + parententstatus: '1' + requestForm: Request Form None + displaycount: 1 + errorcode: '0' + msg: success + totalcount: 1 + /createUpdateEntitlement: + post: + tags: + - entitlements + summary: Create/Update Entitlement + description: "This method creates a new \"entitlementvalue\" for an \"endpoint\" in SSM. All the input parameters it requires are attributes with which the new account record would get created.\r\n\r\nEnsure: The `Authorization` header variable must be set to `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n\r\n`endpoint`,\r\n`entitlementtype`,\r\n`entitlement_value`\r\n\r\nOptional params:\r\n\r\n`attributes` for Entitlement_values,\r\n\r\n`entitlementowner` - N is the rank, `entitlementowner` modifies entitlementowner with rank 1, `entitlementowner3` - modifies entitlementowner with rank 3,\r\n\r\n`entitlementID`,`newentitlement_value` - used to update the entitlement if multiple entitlements with same entitlement_value are present under the same entitlementtype and endpoint\r\n\r\n`entitlementcasecheck`(can be true or false, default : false) - If true, entitlement value search will be case sensitive during create or update.\r\n\r\n`entitlement_valuekey`\r\n\r\n`updatedentitlement_value` - new value for entitlement_value\r\n\r\n`entitlementmap` - \r\n1. `entitlementvalue`\r\n2. `entitlementtype`\r\n3. `endpoint`\r\n4. `requestfilter`\r\n5. `excludeentitlement`\r\n6. `adddependenttask`\r\n7. `removedependententtask`\r\n8. `updateType`(ADD/REMOVE, default : ADD)" + operationId: createUpdateEntitlement + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: Workday + entitlement_value: + type: string + example: Accounts Receivable Specialist (Unconstrained) + entitlementtype: + type: string + example: Security-Groups + status: + type: number + example: 1 + updatedentitlement_value: + type: string + example: Accounts Receivable Specialist (Unconstrained) Test + examples: + Create/Update Entitlement: + value: + endpoint: Workday + entitlement_value: Accounts Receivable Specialist (Unconstrained) + entitlementtype: Security-Groups + status: 1 + updatedentitlement_value: Accounts Receivable Specialist (Unconstrained) Test + responses: + '200': + description: Create/Update Entitlement + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 23 Jul 2020 22:45:47 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=94589b88-cb05-4e05-a11d-dc62e85bb238; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + entitlementObj: + type: object + properties: + description: + type: string + example: '' + displayname: + type: string + example: '' + endpoint: + type: string + example: Workday + entitlementID: + type: string + example: 3f9fc9e54e42458daa84ad725dcae8ff + entitlementOwner: + type: string + example: '' + entitlementType: + type: string + example: Security-Groups + entitlement_glossary: + type: string + example: '' + entitlement_value: + type: string + example: Accounts Receivable Specialist (Unconstrained) Test + entitlement_valuekey: + type: string + example: '296' + requestForm: + type: string + example: Request Form Table + soxcritical: + type: string + example: '0' + status: + type: string + example: '1' + syscritical: + type: string + example: '0' + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful in saving entitlement + examples: + Create/Update Entitlement: + value: + entitlementObj: + description: '' + displayname: '' + endpoint: Workday + entitlementID: 3f9fc9e54e42458daa84ad725dcae8ff + entitlementOwner: '' + entitlementType: Security-Groups + entitlement_glossary: '' + entitlement_value: Accounts Receivable Specialist (Unconstrained) Test + entitlement_valuekey: '296' + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + errorCode: '0' + msg: Successful in saving entitlement + /getEntitlementValuesForEndpoint: + post: + tags: + - entitlements + summary: Get Entitlement Values For Endpoint + description: "This method returns a `List` of \"EntitlementValues\" for a specific endpoint in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n`endpoint`\r\n\r\nOptional params:\r\n`entitlementType`, `max`, `offset`,\r\n`entownerwithrank` - if \"true\", returns the list of owners with owner rank for every entitlementValue\r\n`returnentitlementmap`(true/false,default:false) - If true, entitlementmap details will be returned" + operationId: getEntitlementValuesForEndpoint + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: Workday + entitlementType: + type: string + example: Security-Groups + entownerwithrank: + type: string + example: 'true' + examples: + Get Entitlement Values For Endpoint: + value: + endpoint: Workday + entitlementType: Security-Groups + entownerwithrank: 'true' + responses: + '200': + description: Get Entitlement Values For Endpoint / Get Entitlement Values For Endpoint 2 + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 21 Jul 2020 18:33:49 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8a56ec8d-a73d-4fd4-b58d-7cb6d0034075; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + Entitlementdetails: + type: array + items: + type: object + properties: + entitlement_valuekey: + type: string + example: '1' + entitlementID: + type: string + example: entitlementID + access: + type: string + example: Select + confidentiality: + type: string + example: '0' + customproperty1: + type: string + example: test + customproperty20: + type: string + example: cp20 + customproperty3: + type: string + example: cp3 + customproperty8: + type: string + example: cp8 + description: + type: string + example: '' + displayname: + type: string + example: Display Name One + endpoint: + type: string + example: System1 + entitlementOwner: + anyOf: + - type: array + items: + type: string + example: dbailey + example: + - dbailey + - crichards + - type: string + example: dbailey + entitlementType: + type: string + example: Access + entitlement_glossary: + type: string + example: '' + entitlement_value: + type: string + example: TestEnt1 + module: + type: string + example: Select + priviliged: + type: string + example: '0' + requestForm: + type: string + example: Request Form Table + risk: + type: string + example: '0' + soxcritical: + type: string + example: '0' + status: + type: string + example: '1' + syscritical: + type: string + example: '0' + updatedate: + type: string + example: 04/08/2017 + updateuser: + type: string + example: '1' + example: + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - dbailey + - crichards + entitlementType: Access + entitlement_glossary: '' + entitlement_value: TestEnt1 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement14 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + entitlementsCount: + type: number + example: 16 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + statusCode: + type: number + example: 200 + totalEntitlementCount: + type: number + example: 16 + examples: + Get Entitlement Values For Endpoint: + value: + Entitlementdetails: + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name One + endpoint: System1 + entitlementOwner: + - dbailey + - crichards + entitlementType: Access + entitlement_glossary: '' + entitlement_value: TestEnt1 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/08/2017 + updateuser: '1' + - customproperty1: test + description: '' + displayname: '' + endpoint: System1 + entitlementOwner: + - glogan + - smarquez + - lkrause + entitlementType: Access + entitlement_glossary: '' + entitlement_value: TestEnt2 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - access: Select + confidentiality: '0' + customproperty1: test + description: '' + displayname: Display Name Two + endpoint: System1 + entitlementOwner: + - bharell + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement3 + module: Select + priviliged: '0' + requestForm: Request Form Table + risk: '0' + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 03/24/2017 + updateuser: '1' + - customproperty1: ap1 + customproperty20: cp20 + customproperty3: cp3 + customproperty8: cp8 + description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement4 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 04/27/2018 + updateuser: '191327' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement5 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement6 + requestForm: Request Form Table + soxcritical: '0' + status: '1' + syscritical: '0' + updatedate: 02/22/2017 + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement7 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement8 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement9 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement10 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement11 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement12 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement13 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement14 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement15 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + - description: '' + displayname: '' + endpoint: System1 + entitlementOwner: '' + entitlementType: Access + entitlement_glossary: '' + entitlement_value: Entitlement16 + requestForm: Request Form Table + soxcritical: '0' + syscritical: '0' + entitlementsCount: 16 + errorCode: '0' + msg: Successful + totalEntitlementCount: 16 + /getListofPrivileges: + post: + tags: + - privileges + summary: Get List of Privileges for Entitlement Type + description: "This API gives the list of privileges for an entitlement type.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`endpoint`\r\n\r\nOptional params:\r\n`max`, `offset`, `entitlementType`" + operationId: getListOfPrivilegesForEntitlementType + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + endpoint: + type: string + example: System1 + entitlementtype: + type: string + example: Access + responses: + '200': + description: Get List of Privileges for Entitlement Type / Get List of Privileges for Entitlement Type Copy + headers: + Date: + schema: + type: string + example: Mon, 10 Sep 2018 21:38:10 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=eaae3d7b-2cce-4718-bec3-196281353d51; Path=/ + content: + application/json: + schema: + type: object + properties: + PrivilegeDetails: + type: array + items: + type: object + properties: + actionString: + type: string + attribute: + type: string + example: Read + attribute_config: + type: string + example: USER-BASED + attribute_type: + type: string + example: Boolean + attribute_values: + type: string + example: '' + attributegroup: + type: string + childaction: + type: string + defaultvalue: + type: string + example: 'true' + descriptionascsv: + type: string + editable: + type: boolean + example: true + entitlement_types: + type: object + properties: + endpointkey: + type: string + example: System1 + entitlementname: + type: string + example: Access + entitlements_column: + type: number + hideoncreate: + type: boolean + example: false + hideonupd: + type: boolean + example: false + label: + type: string + orderindex: + type: string + example: '0' + parentattribute: + type: string + regex: + type: string + requestablerequired: + type: boolean + example: false + required: + type: boolean + example: true + sqlquery: + type: string + updatedate: + type: string + example: 09/11/2018 02:18:49 + updateuser: + type: string + example: admin + example: + - actionString: null + attribute: Read + attribute_config: USER-BASED + attribute_type: Boolean + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: 'true' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: Read + orderindex: '0' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:18:49 + updateuser: admin + - actionString: null + attribute: Write + attribute_config: USER-BASED + attribute_type: Boolean + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: 'false' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: null + orderindex: '1' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:18:56 + updateuser: admin + - actionString: null + attribute: Privilege1 + attribute_config: USER-BASED + attribute_type: String + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: '' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: Privilege1 + orderindex: '0' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:19:35 + updateuser: admin + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + examples: + Get List of Privileges for Entitlement Type: + value: + PrivilegeDetails: + - actionString: null + attribute: Read + attribute_config: USER-BASED + attribute_type: Boolean + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: 'true' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: Read + orderindex: '0' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:18:49 + updateuser: admin + - actionString: null + attribute: Write + attribute_config: USER-BASED + attribute_type: Boolean + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: 'false' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: null + orderindex: '1' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:18:56 + updateuser: admin + - actionString: null + attribute: Privilege1 + attribute_config: USER-BASED + attribute_type: String + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: '' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: Privilege1 + orderindex: '0' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:19:35 + updateuser: admin + errorCode: '0' + msg: Successful + Get List of Privileges for Entitlement Type Copy: + value: + PrivilegeDetails: + - actionString: null + attribute: Read + attribute_config: USER-BASED + attribute_type: Boolean + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: 'true' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: Read + orderindex: '0' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:18:49 + updateuser: admin + - actionString: null + attribute: Write + attribute_config: USER-BASED + attribute_type: Boolean + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: 'false' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: null + orderindex: '1' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:18:56 + updateuser: admin + - actionString: null + attribute: Privilege1 + attribute_config: USER-BASED + attribute_type: String + attribute_values: '' + attributegroup: null + childaction: null + defaultvalue: '' + descriptionascsv: null + editable: true + entitlement_types: + endpointkey: System1 + entitlementname: Access + entitlements_column: null + hideoncreate: false + hideonupd: false + label: Privilege1 + orderindex: '0' + parentattribute: null + regex: null + requestablerequired: false + required: true + sqlquery: null + updatedate: 09/11/2018 02:19:35 + updateuser: admin + errorCode: '0' + msg: Successful + /removeEntitlementsFromRole: + post: + tags: + - roles + summary: Remove Entitlement From Role + description: |- + This API removes entitlement from role. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `rolename` or `rolekey` (if both are passed then rolekey will be considered), `entitlements`(within list of entitlements entitlementvalue, entitlementtype, endpoint are mandatory) + Optional params: + `requestor`, `comments` + operationId: removeEntitlementFromRole + requestBody: + content: + application/json: + schema: + type: object + properties: + comments: + type: string + example: removed using API + entitlements: + type: array + items: + type: object + properties: + endpoint: + type: string + example: Oracle + entitlementtype: + type: string + example: OEBS-Responsibility + entitlementvalue: + type: string + example: FIXED_ASSET_INQUIRY_TECH_IN + example: + - endpoint: Oracle + entitlementtype: OEBS-Responsibility + entitlementvalue: FIXED_ASSET_INQUIRY_TECH_IN + requestor: + type: string + example: admin + rolekey: + type: string + example: '115' + rolename: + type: string + example: Lambda_CreateAlarm + examples: + Remove Entitlement From Role: + value: + comments: removed using API + entitlements: + - endpoint: Oracle + entitlementtype: OEBS-Responsibility + entitlementvalue: FIXED_ASSET_INQUIRY_TECH_IN + requestor: admin + rolekey: '115' + rolename: Lambda_CreateAlarm + responses: + '200': + description: Remove Entitlement From Role + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 31 Dec 2020 22:26:21 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=41605420-ab72-4a92-b5f5-c09531dd583a; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 0 + msg: + type: string + example: success + examples: + Remove Entitlement From Role: + value: + errorcode: 0 + msg: success + /addrole: + post: + tags: + - roles + summary: Add Role + description: |- + This API adds role to user. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username`, + `rolename` + operationId: addRole + requestBody: + content: + application/json: + schema: + type: object + properties: + rolename: + type: string + example: Fire Fighter + username: + type: string + example: johndoe + examples: + Add Role: + value: + rolename: Fire Fighter + username: johndoe + responses: + '200': + description: Add Role + headers: + Date: + schema: + type: string + example: Wed, 24 Oct 2018 21:17:09 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9aabdb9e-22bc-4d27-9ed5-22661edc2a38; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + message: + type: string + example: ' Tasks created. IDs:: 673975 ' + examples: + Add Role: + value: + message: ' Tasks created. IDs:: 673975 ' + /getRoles: + post: + tags: + - roles + summary: Get Role Details for user + description: |- + This API can be used to get the list of all the roles. + This API call can be used to get the list and details of all the roles associated to the user. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `username`, `customproperty<1 to 60>`, `roletype`, `requestable`, `status`, `role_name`, `description`, `displayname`, `glossary`, `mininginstance`, `risk`, `updateuser`, `systemid`, `soxcritical`, `syscritical`, `level`, `priviliged`, `confidentiality`, `requestedObject` - contains users and/or entitlement_values + operationId: getRoleDetailsForUser + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + max: + type: string + example: '5' + offset: + type: string + example: '0' + requestedObject: + type: string + example: entitlement_values,users + roleQuery: + type: string + example: r.role_name = 'Feb7th1988Role' + roletype: + type: string + example: '4' + username: + type: string + example: usngom + text/plain: + examples: + Get Role Details for user: + value: '' + responses: + '200': + description: Get Role Details for user / Get Role Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://23-monthly-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 13 Feb 2023 09:18:08 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=3ace8924-6ccb-4065-9808-42a794834bf9; Version=1; Path=";Path=/;HttpOnly;"; Secure + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + Roledetails: + type: array + items: + type: object + properties: + confidentiality: + type: string + example: '5' + customproperty1: + type: string + example: jjjjjjjjjjj + customproperty10: + type: string + example: cp10 + customproperty11: + type: string + example: '' + customproperty12: + type: string + example: '' + customproperty13: + type: string + example: '' + customproperty14: + type: string + example: '' + customproperty15: + type: string + example: '' + customproperty16: + type: string + example: '' + customproperty17: + type: string + example: '' + customproperty18: + type: string + example: '' + customproperty19: + type: string + example: '' + customproperty2: + type: string + example: '' + customproperty20: + type: string + example: '' + customproperty21: + type: string + example: '' + customproperty22: + type: string + example: '' + customproperty23: + type: string + example: '' + customproperty24: + type: string + example: '' + customproperty25: + type: string + example: '' + customproperty26: + type: string + example: '' + customproperty27: + type: string + example: '' + customproperty28: + type: string + example: '' + customproperty29: + type: string + example: '' + customproperty3: + type: string + example: '' + customproperty30: + type: string + example: cp30bh + customproperty31: + type: string + example: cp31 + customproperty32: + type: string + example: '' + customproperty33: + type: string + example: '' + customproperty34: + type: string + example: '' + customproperty35: + type: string + example: '' + customproperty36: + type: string + example: cp36 + customproperty37: + type: string + example: '' + customproperty38: + type: string + example: '' + customproperty39: + type: string + example: '' + customproperty4: + type: string + example: '' + customproperty40: + type: string + example: '' + customproperty41: + type: string + example: '' + customproperty42: + type: string + example: '' + customproperty43: + type: string + example: '' + customproperty44: + type: string + example: '' + customproperty45: + type: string + example: '' + customproperty46: + type: string + example: '' + customproperty47: + type: string + example: '' + customproperty48: + type: string + example: '' + customproperty49: + type: string + example: '' + customproperty5: + type: string + example: '' + customproperty50: + type: string + example: '' + customproperty51: + type: string + example: '' + customproperty52: + type: string + example: '' + customproperty53: + type: string + example: '' + customproperty54: + type: string + example: '' + customproperty55: + type: string + example: '' + customproperty56: + type: string + example: '' + customproperty57: + type: string + example: '' + customproperty58: + type: string + example: '' + customproperty59: + type: string + example: '' + customproperty6: + type: string + example: '' + customproperty60: + type: string + example: '' + customproperty7: + type: string + example: '' + customproperty8: + type: string + example: '' + customproperty9: + type: string + example: '' + defaultTimeFrameHrs: + type: string + example: '' + description: + type: string + example: this is description | | EnterPriseEnterPrise EnterPriseEnterPrise + displayname: + type: string + example: '' + endpointkey: + type: string + example: '13' + glossary: + type: string + example: '' + maxTimeFrameHrs: + type: string + example: '' + owner: + type: array + items: + type: string + example: dbailey + example: + - dbailey + - lkrause + priviliged: + type: string + example: '1' + requestable: + type: string + example: 'true' + risk: + type: string + example: '' + role_name: + type: string + example: EnterPrise + roletype: + type: string + example: '4' + showDynamicAttrs: + type: string + example: 'false' + soxcritical: + type: string + example: '3' + status: + type: string + example: '1' + syscritical: + type: string + example: '3' + updatedate: + type: string + example: '2019-02-01 00:04:21' + updateuser: + type: string + example: '1' + userAccounts: + type: array + items: + type: object + properties: + accountname: + type: string + example: johndoe + enddate: + type: string + example: '' + startdate: + type: string + example: '2019-02-11 22:47:32' + example: + - accountname: johndoe + enddate: '' + startdate: '2019-02-11 22:47:32' + version: + type: string + example: '79' + example: + - confidentiality: '5' + customproperty1: jjjjjjjjjjj + customproperty10: cp10 + customproperty11: '' + customproperty12: '' + customproperty13: '' + customproperty14: '' + customproperty15: '' + customproperty16: '' + customproperty17: '' + customproperty18: '' + customproperty19: '' + customproperty2: '' + customproperty20: '' + customproperty21: '' + customproperty22: '' + customproperty23: '' + customproperty24: '' + customproperty25: '' + customproperty26: '' + customproperty27: '' + customproperty28: '' + customproperty29: '' + customproperty3: '' + customproperty30: cp30bh + customproperty31: cp31 + customproperty32: '' + customproperty33: '' + customproperty34: '' + customproperty35: '' + customproperty36: cp36 + customproperty37: '' + customproperty38: '' + customproperty39: '' + customproperty4: '' + customproperty40: '' + customproperty41: '' + customproperty42: '' + customproperty43: '' + customproperty44: '' + customproperty45: '' + customproperty46: '' + customproperty47: '' + customproperty48: '' + customproperty49: '' + customproperty5: '' + customproperty50: '' + customproperty51: '' + customproperty52: '' + customproperty53: '' + customproperty54: '' + customproperty55: '' + customproperty56: '' + customproperty57: '' + customproperty58: '' + customproperty59: '' + customproperty6: '' + customproperty60: '' + customproperty7: '' + customproperty8: '' + customproperty9: '' + defaultTimeFrameHrs: '' + description: this is description | | EnterPriseEnterPrise EnterPriseEnterPrise + displayname: '' + endpointkey: '13' + glossary: '' + maxTimeFrameHrs: '' + owner: + - dbailey + - lkrause + priviliged: '1' + requestable: 'true' + risk: '' + role_name: EnterPrise + roletype: '4' + showDynamicAttrs: 'false' + soxcritical: '3' + status: '1' + syscritical: '3' + updatedate: '2019-02-01 00:04:21' + updateuser: '1' + userAccounts: + - accountname: johndoe + enddate: '' + startdate: '2019-02-11 22:47:32' + version: '79' + displayCount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + totalCount: + type: number + example: 1 + examples: + Get Role Details: + value: + Roledetails: + - customproperty1: '' + customproperty10: '' + customproperty11: '' + customproperty12: '' + customproperty13: '' + customproperty14: '' + customproperty15: '' + customproperty16: '' + customproperty17: '' + customproperty18: '' + customproperty19: '' + customproperty2: '' + customproperty20: '' + customproperty21: '' + customproperty22: '' + customproperty23: '' + customproperty24: '' + customproperty25: '' + customproperty26: '' + customproperty27: '' + customproperty28: '' + customproperty29: '' + customproperty3: '' + customproperty30: '' + customproperty31: '' + customproperty32: '' + customproperty33: '' + customproperty34: '' + customproperty35: '' + customproperty36: '' + customproperty37: '' + customproperty38: '' + customproperty39: '' + customproperty4: '' + customproperty40: '' + customproperty41: '' + customproperty42: '' + customproperty43: '' + customproperty44: '' + customproperty45: '' + customproperty46: '' + customproperty47: '' + customproperty48: '' + customproperty49: '' + customproperty5: '' + customproperty50: '' + customproperty51: '' + customproperty52: '' + customproperty53: '' + customproperty54: '' + customproperty55: '' + customproperty56: '' + customproperty57: '' + customproperty58: '' + customproperty59: '' + customproperty6: '' + customproperty60: '' + customproperty7: '' + customproperty8: '' + customproperty9: '' + UserDetails: + - User Details Not Found + confidentiality: '' + defaultTimeFrameHrs: '' + description: '' + displayname: '' + endpointkey: '396' + entitlement_valueKey: '' + glossary: '' + lastReviewedBy: '' + lastReviewedCampaignName: '' + maxTimeFrameHrs: '' + owner: + - ownername: admin + rank: '1' + priviliged: '' + requestable: 'true' + risk: '' + roleKey: 1310 + roleState: '' + role_name: Feb7th1988Role + roletype: '4' + showDynamicAttrs: 'true' + soxcritical: '' + status: '1' + syscritical: '' + updatedate: '2023-02-08 09:18:08' + updateuser: '1' + version: 8 + displayCount: 1 + errorCode: '0' + msg: Successful + totalCount: 1 + Get Role Details for user: + value: + Roledetails: + - confidentiality: '5' + customproperty1: jjjjjjjjjjj + customproperty10: cp10 + customproperty11: '' + customproperty12: '' + customproperty13: '' + customproperty14: '' + customproperty15: '' + customproperty16: '' + customproperty17: '' + customproperty18: '' + customproperty19: '' + customproperty2: '' + customproperty20: '' + customproperty21: '' + customproperty22: '' + customproperty23: '' + customproperty24: '' + customproperty25: '' + customproperty26: '' + customproperty27: '' + customproperty28: '' + customproperty29: '' + customproperty3: '' + customproperty30: cp30bh + customproperty31: cp31 + customproperty32: '' + customproperty33: '' + customproperty34: '' + customproperty35: '' + customproperty36: cp36 + customproperty37: '' + customproperty38: '' + customproperty39: '' + customproperty4: '' + customproperty40: '' + customproperty41: '' + customproperty42: '' + customproperty43: '' + customproperty44: '' + customproperty45: '' + customproperty46: '' + customproperty47: '' + customproperty48: '' + customproperty49: '' + customproperty5: '' + customproperty50: '' + customproperty51: '' + customproperty52: '' + customproperty53: '' + customproperty54: '' + customproperty55: '' + customproperty56: '' + customproperty57: '' + customproperty58: '' + customproperty59: '' + customproperty6: '' + customproperty60: '' + customproperty7: '' + customproperty8: '' + customproperty9: '' + defaultTimeFrameHrs: '' + description: this is description | | EnterPriseEnterPrise EnterPriseEnterPrise + displayname: '' + endpointkey: '13' + glossary: '' + maxTimeFrameHrs: '' + owner: + - dbailey + - lkrause + priviliged: '1' + requestable: 'true' + risk: '' + role_name: EnterPrise + roletype: '4' + showDynamicAttrs: 'false' + soxcritical: '3' + status: '1' + syscritical: '3' + updatedate: '2019-02-01 00:04:21' + updateuser: '1' + userAccounts: + - accountname: johndoe + enddate: '' + startdate: '2019-02-11 22:47:32' + version: '79' + errorCode: '0' + msg: Successful + /getFireFighterRoles: + post: + tags: + - roles + summary: Get FireFighter Role Details + description: |- + This method returns a `List` of active "FireFighter" roles in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + No params + operationId: getFirefighterRoleDetails + responses: + '200': + description: Get FireFighter Roles + headers: + Date: + schema: + type: string + example: Tue, 07 Aug 2018 20:12:19 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a05c45f2-64d1-4521-a5a3-69cb73b94352; Path=/ + content: + application/json: + schema: + type: array + items: + type: object + properties: + class: + type: string + example: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: + type: + - string + - 'null' + customproperty1: + type: + - string + - 'null' + customproperty10: + type: + - string + - 'null' + customproperty11: + type: + - string + - 'null' + customproperty12: + type: + - string + - 'null' + customproperty13: + type: + - string + - 'null' + customproperty14: + type: + - string + - 'null' + customproperty15: + type: + - string + - 'null' + customproperty16: + type: + - string + - 'null' + customproperty17: + type: + - string + - 'null' + customproperty18: + type: + - string + - 'null' + customproperty19: + type: + - string + - 'null' + customproperty2: + type: + - string + - 'null' + customproperty20: + type: + - string + - 'null' + customproperty21: + type: + - string + - 'null' + customproperty22: + type: + - string + - 'null' + customproperty23: + type: + - string + - 'null' + customproperty24: + type: + - string + - 'null' + customproperty25: + type: + - string + - 'null' + customproperty26: + type: + - string + - 'null' + customproperty27: + type: + - string + - 'null' + customproperty28: + type: + - string + - 'null' + customproperty29: + type: + - string + - 'null' + customproperty3: + type: + - string + - 'null' + customproperty30: + type: + - string + - 'null' + customproperty31: + type: + - string + - 'null' + customproperty32: + type: + - string + - 'null' + customproperty33: + type: + - string + - 'null' + customproperty34: + type: + - string + - 'null' + customproperty35: + type: + - string + - 'null' + customproperty36: + type: + - string + - 'null' + customproperty37: + type: + - string + - 'null' + customproperty38: + type: + - string + - 'null' + customproperty39: + type: + - string + - 'null' + customproperty4: + type: + - string + - 'null' + customproperty40: + type: + - string + - 'null' + customproperty41: + type: + - string + - 'null' + customproperty42: + type: + - string + - 'null' + customproperty43: + type: + - string + - 'null' + customproperty44: + type: + - string + - 'null' + customproperty45: + type: + - string + - 'null' + customproperty46: + type: + - string + - 'null' + customproperty47: + type: + - string + - 'null' + customproperty48: + type: + - string + - 'null' + customproperty49: + type: + - string + - 'null' + customproperty5: + type: + - string + - 'null' + customproperty50: + type: + - string + - 'null' + customproperty51: + type: + - string + - 'null' + customproperty52: + type: + - string + - 'null' + customproperty53: + type: + - string + - 'null' + customproperty54: + type: + - string + - 'null' + customproperty55: + type: + - string + - 'null' + customproperty56: + type: + - string + - 'null' + customproperty57: + type: + - string + - 'null' + customproperty58: + type: + - string + - 'null' + customproperty59: + type: + - string + - 'null' + customproperty6: + type: + - string + - 'null' + customproperty60: + type: + - string + - 'null' + customproperty7: + type: + - string + - 'null' + customproperty8: + type: + - string + - 'null' + customproperty9: + type: + - string + - 'null' + defaultTimeFrameHrs: + type: + - number + - 'null' + example: 8 + description: + type: + - string + - 'null' + example: desc + displayname: + type: + - string + - 'null' + endpointkey: + type: + - number + - 'null' + flagexportedtoOIA: + type: boolean + example: false + glossary: + type: + - string + - 'null' + id: + type: number + example: 125 + level: + type: + - string + - 'null' + maxTimeFrameHrs: + type: + - string + - 'null' + mininginstance: + type: + - string + - 'null' + parentroles: + type: + - string + - 'null' + priviliged: + type: + - number + - 'null' + requestable: + type: boolean + example: true + risk: + type: + - string + - 'null' + role_name: + type: string + example: Data Administrator + role_user_accounts: + type: array + items: + type: object + properties: + class: + type: string + example: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: + type: number + example: 24 + example: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 24 + roletype: + type: number + example: 3 + showDynamicAttrs: + type: + - boolean + - 'null' + sodflag: + type: boolean + example: false + soxcritical: + type: number + example: 0 + status: + type: number + example: 1 + syscritical: + type: number + example: 0 + systemid: + type: + - number + - 'null' + updatedate: + type: string + example: '2017-03-24T20:16:11Z' + updateuser: + type: + - number + - 'null' + example: + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: 8 + description: desc + displayname: null + endpointkey: null + flagexportedtoOIA: false + glossary: null + id: 125 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: Data Administrator + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 24 + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-03-24T20:16:11Z' + updateuser: null + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: 8 + description: desc + displayname: null + endpointkey: 15 + flagexportedtoOIA: false + glossary: null + id: 126 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: Network Administrator + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 61 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 21 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 20 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 46 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 59 + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-07-26T03:18:31Z' + updateuser: 1 + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: '3' + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: '4' + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: '5' + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: 8 + description: desc + displayname: Display Name Role 1 + endpointkey: null + flagexportedtoOIA: false + glossary: test update + id: 129 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: Policy Administrator + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 35 + roletype: 3 + showDynamicAttrs: false + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-12-02T00:45:07Z' + updateuser: 1 + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: null + description: desc + displayname: null + endpointkey: null + flagexportedtoOIA: false + glossary: null + id: 130 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: 4 + requestable: true + risk: null + role_name: RoleTest + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 34 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 33 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 36 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 37 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 39 + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-02-01T05:20:29Z' + updateuser: 1 + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: hhh + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: null + description: null + displayname: null + endpointkey: 15 + flagexportedtoOIA: false + glossary: null + id: 132 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: test 66 + role_user_accounts: [] + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-07-26T03:21:12Z' + updateuser: 1 + examples: + Get FireFighter Roles: + value: + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: 8 + description: desc + displayname: null + endpointkey: null + flagexportedtoOIA: false + glossary: null + id: 125 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: Data Administrator + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 24 + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-03-24T20:16:11Z' + updateuser: null + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: 8 + description: desc + displayname: null + endpointkey: 15 + flagexportedtoOIA: false + glossary: null + id: 126 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: Network Administrator + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 61 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 21 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 20 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 46 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 59 + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-07-26T03:18:31Z' + updateuser: 1 + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: '3' + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: '4' + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: '5' + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: 8 + description: desc + displayname: Display Name Role 1 + endpointkey: null + flagexportedtoOIA: false + glossary: test update + id: 129 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: Policy Administrator + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 35 + roletype: 3 + showDynamicAttrs: false + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-12-02T00:45:07Z' + updateuser: 1 + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: null + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: null + description: desc + displayname: null + endpointkey: null + flagexportedtoOIA: false + glossary: null + id: 130 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: 4 + requestable: true + risk: null + role_name: RoleTest + role_user_accounts: + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 34 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 33 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 36 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 37 + - class: com.saviynt.ecm.identitywarehouse.domain.Role_user_account + id: 39 + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-02-01T05:20:29Z' + updateuser: 1 + - class: com.saviynt.ecm.identitywarehouse.domain.Roles + confidentiality: null + customproperty1: null + customproperty10: null + customproperty11: null + customproperty12: null + customproperty13: null + customproperty14: null + customproperty15: null + customproperty16: null + customproperty17: null + customproperty18: null + customproperty19: null + customproperty2: hhh + customproperty20: null + customproperty21: null + customproperty22: null + customproperty23: null + customproperty24: null + customproperty25: null + customproperty26: null + customproperty27: null + customproperty28: null + customproperty29: null + customproperty3: null + customproperty30: null + customproperty31: null + customproperty32: null + customproperty33: null + customproperty34: null + customproperty35: null + customproperty36: null + customproperty37: null + customproperty38: null + customproperty39: null + customproperty4: null + customproperty40: null + customproperty41: null + customproperty42: null + customproperty43: null + customproperty44: null + customproperty45: null + customproperty46: null + customproperty47: null + customproperty48: null + customproperty49: null + customproperty5: null + customproperty50: null + customproperty51: null + customproperty52: null + customproperty53: null + customproperty54: null + customproperty55: null + customproperty56: null + customproperty57: null + customproperty58: null + customproperty59: null + customproperty6: null + customproperty60: null + customproperty7: null + customproperty8: null + customproperty9: null + defaultTimeFrameHrs: null + description: null + displayname: null + endpointkey: 15 + flagexportedtoOIA: false + glossary: null + id: 132 + level: null + maxTimeFrameHrs: null + mininginstance: null + parentroles: null + priviliged: null + requestable: true + risk: null + role_name: test 66 + role_user_accounts: [] + roletype: 3 + showDynamicAttrs: null + sodflag: false + soxcritical: 0 + status: 1 + syscritical: 0 + systemid: null + updatedate: '2017-07-26T03:21:12Z' + updateuser: 1 + /removerole: + post: + tags: + - roles + summary: Remove Role + description: |- + This API removes role from user. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username`, + `rolename` + operationId: removeRole + requestBody: + content: + application/json: + schema: + type: object + properties: + rolename: + type: string + example: RoleTest + username: + type: string + example: johndoe + examples: + Remove Role: + value: + rolename: RoleTest + username: johndoe + responses: + '200': + description: Remove Role + headers: + Date: + schema: + type: string + example: Wed, 24 Oct 2018 21:33:54 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=068b5011-365c-4e03-a926-9b08e439b8e1; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + message: + type: string + example: ' Tasks created. IDs:: 673977 ' + examples: + Remove Role: + value: + message: ' Tasks created. IDs:: 673977 ' + /createEndpoint: + post: + tags: + - endpoints + summary: Create Endpoint + description: |- + This API creates an endpoint in EIC. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + - `endpointname`: Enter the name of the endpoint. Provide a logical name for the endpoint that will help you to easily identify the endpoint. - `displayName`: Enter a name for the endpoint that will be displayed in the user interface. Display Name can be different from Endpoint Name. - `securitysystem:`Select the security system for which you want to create an endpoint. The security system encapsulates the endpoint along with other endpoints sharing the same connections, workflows, or more. + + Optional parameters: + `description`, `ownerType`, `owner`, `resourceOwnerType`, `resourceOwner`, `customproperty` - N is between 1 to 30, `custompropertyLabel` - N is between 1 to 30, `accountNameRule`, `accessquery`, `enableCopyAccess`, `disableNewAccountRequestIfAccountExists`, `disableRemoveAccount`, `disableModifyAccount`, `blockInflightRequest`, `userAccountCorrelationRule`, `connectionconfig` + operationId: createEndpoint + requestBody: + content: + application/json: + schema: + type: object + properties: + accessquery: + type: string + example: access qry + connectionconfig: + type: string + example: '{"conf":[{"ADDUSERTOENT":"TRUE"},{"ADDMEMBERTOENT":"TRUE"}]}' + description: + type: string + example: Create endpoint from API + disableModifyAccount: + type: string + example: 'true' + disableNewAccountRequestIfAccountExists: + type: string + example: 'false' + disableRemoveAccount: + type: string + example: 'false' + displayName: + type: string + example: new-endpoint + enableCopyAccess: + type: string + example: 'false' + endpointname: + type: string + example: Create-an-endpoint + owner: + type: string + example: admin + ownerType: + type: string + example: User + resourceOwnerType: + type: string + example: Usergroup + securitysystem: + type: string + example: connectiontest + userAccountCorrelationRule: + type: string + example: (users.customproperty7) = accounts.name + examples: + Create Endpoint: + value: + accessquery: access qry + connectionconfig: '{"conf":[{"ADDUSERTOENT":"TRUE"},{"ADDMEMBERTOENT":"TRUE"}]}' + description: Create endpoint from API + disableModifyAccount: 'true' + disableNewAccountRequestIfAccountExists: 'false' + disableRemoveAccount: 'false' + displayName: new-endpoint + enableCopyAccess: 'false' + endpointname: Create-an-endpoint + owner: admin + ownerType: User + resourceOwnerType: Usergroup + securitysystem: connectiontest + userAccountCorrelationRule: (users.customproperty7) = accounts.name + responses: + '200': + description: Create Endpoint + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-om.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 11 May 2022 06:58:53 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=b38f75c9-c386-4f8c-b2fc-eaac5e22bd93; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Create Endpoint: + value: + errorCode: '0' + msg: Success + /updateEndpoint: + put: + tags: + - endpoints + summary: Update Endpoint + description: |- + This API updates an endpoint within the Saviynt EIC. + The `Authorization` must have a `Bearer` followed by a `Token`. + Note: From Release v23.9, a new parameter **`requestableRoleType`** is introduced to update the requestable options of a Role for a particular endpoint. + Mandatory parameters: + `endpointname` `roleType` Supports valid case-senstive string values such as "Enabler”, “Transactional”, “EmergencyAccess”, “Enterprise”, and “Application” + Optional parameters: + `securitysystem`, `displayName`, `description`, `ownerType`, `owner`, `resourceOwnerType`, `resourceOwner`, `customproperty` - N is between 1 to 30, `custompropertyLabel` - N is between 1 to 30, `accountNameRule`, `accessquery`, `enableCopyAccess`, `disableNewAccountRequestIfAccountExists`, `disableRemoveAccount`, `disableModifyAccount`, `blockInflightRequest`, `userAccountCorrelationRule`, `createEntTaskforRemoveAcc`, `connectionconfig requestableRoleType requestOption` - Supports valid case-senstive string values such as “None”, “DropDownSingle”, “Table”, and “TableOnlyAdd” `required` - Supports valid boolean values are true and false`requestedQuery/selectedQuery` Supports string values in double quotes + operationId: updateEndpoint + requestBody: + content: + application/json: + schema: + type: object + properties: + connectionconfig: + type: string + example: '{"conf":[{"ADDUSERTOENT":"FALSE"},{"ADDMEMBERTOENT":"FALSE"}]}' + endpointname: + type: string + example: Create-an-endpoint + resourceOwnerType: + type: string + example: User + examples: + Update Endpoint: + value: + connectionconfig: '{"conf":[{"ADDUSERTOENT":"FALSE"},{"ADDMEMBERTOENT":"FALSE"}]}' + endpointname: Create-an-endpoint + resourceOwnerType: User + text/plain: + examples: + Update Endpoint: + value: |- + { + "endpointname": "gcpshruti123", + "requestableRoleType": [ + { + "roleType": "Application", + "requestOption": "Table", + "required": true, + "requestedQuery": "r.displayname='\''testxyz'\''", + "selectedQuery": "r.displayname='\''abcd'\''" + }, + { + "roleType": "Enterprise", + "requestOption": "Table", + "required": true, + "requestedQuery": "r.displayname='\''testxyz'\''", + "selectedQuery": "r.displayname='\''abcd'\''" + } + ] + } + responses: + '200': + description: Update Endpoint / Update Endpoint + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-automation-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 22 Aug 2023 10:46:16 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9fa962e2-8d1b-4244-be4f-1628a7bd15c0; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Update Endpoint: + value: + errorCode: '0' + msg: Success + security: + - bearerAuth: [] + /getEndpoints: + post: + tags: + - endpoints + summary: Get List of Endpoints + description: |- + This API returns list of Endpoints in EIC. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: `connectionType`, `endpointkey`, `endpointname`, `max`, `offset`, `filterCriteria` + **Note**: You must specify the value for `endpointkey` parameter in array. Fr example, `"endpointkey" : [5]`. + operationId: getListOfEndpoints + requestBody: + content: + application/json: + schema: + type: object + properties: + filterCriteria1: + type: object + properties: + customproperty1: + type: string + example: '1' + displayName: + type: string + example: Access Manager + examples: + Get List of Endpoints: + value: + filterCriteria1: + customproperty1: '1' + displayName: Access Manager + responses: + '200': + description: Get List of Endpoints + headers: + Date: + schema: + type: string + example: Thu, 25 Apr 2019 21:45:23 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9f026105-c1df-4fe6-b5b5-7d1924c508d7; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displayCount: + type: number + example: 2 + endpoints: + type: array + items: + type: object + properties: + accountNameRule: + type: string + example: '(users.customproperty7) # (substring(users.username,1,255))' + accountTypeNoDeprovision: + type: string + example: Service + connectionconfig: + type: string + example: + createEntTaskforRemoveAcc: + type: string + example: 'false' + customproperty1: + type: string + example: '1' + description: + type: string + example: Access Management System + disableaccountrequest: + type: string + example: '{"DISABLENEWACCOUNT":"0","DISABLEMODIFYACCOUNT":"0","DISABLEREMOVEACCOUNT":"1"}' + displayName: + type: string + example: Access Manager + enableCopyAccess: + type: string + example: 'false' + endpointname: + type: string + example: Endpoint1 + ownerType: + type: string + example: '2' + ownerkey: + type: string + example: '9' + requestownertype: + type: string + example: '0' + securitySystem: + type: string + example: SecuritySystem1 + status: + type: string + example: '1' + userAccountCorrelationRule: + type: string + example: '(users.customproperty7) = accounts.name ' + example: + - createEntTaskforRemoveAcc: 'false' + customproperty1: '1' + description: Access Management System + disableaccountrequest: '{"DISABLENEWACCOUNT":"0","DISABLEMODIFYACCOUNT":"0","DISABLEREMOVEACCOUNT":"1"}' + displayName: Access Manager + enableCopyAccess: 'false' + endpointname: Endpoint1 + requestownertype: '0' + securitySystem: SecuritySystem1 + status: '1' + - accountNameRule: '(users.customproperty7) # (substring(users.username,1,255))' + accountTypeNoDeprovision: Service + connectionconfig: + createEntTaskforRemoveAcc: 'false' + customproperty1: '1' + description: SecuritySystem2 desc + disableaccountrequest: '{"DISABLENEWACCOUNT":"0","DISABLEMODIFYACCOUNT":"0","DISABLEREMOVEACCOUNT":"0"}' + displayName: Access Manager + enableCopyAccess: 'false' + endpointname: Endpoint2 + ownerType: '2' + ownerkey: '9' + requestownertype: '0' + securitySystem: SecuritySystem2 + status: '1' + userAccountCorrelationRule: '(users.customproperty7) = accounts.name ' + errorCode: + type: string + example: '0' + message: + type: string + example: Success + totalCount: + type: number + example: 2 + examples: + Get List of Endpoints: + value: + displayCount: 2 + endpoints: + - createEntTaskforRemoveAcc: 'false' + customproperty1: '1' + description: Access Management System + disableaccountrequest: '{"DISABLENEWACCOUNT":"0","DISABLEMODIFYACCOUNT":"0","DISABLEREMOVEACCOUNT":"1"}' + displayName: Access Manager + enableCopyAccess: 'false' + endpointname: Endpoint1 + requestownertype: '0' + securitySystem: SecuritySystem1 + status: '1' + - accountNameRule: '(users.customproperty7) # (substring(users.username,1,255))' + accountTypeNoDeprovision: Service + connectionconfig: + createEntTaskforRemoveAcc: 'false' + customproperty1: '1' + description: SecuritySystem2 desc + disableaccountrequest: '{"DISABLENEWACCOUNT":"0","DISABLEMODIFYACCOUNT":"0","DISABLEREMOVEACCOUNT":"0"}' + displayName: Access Manager + enableCopyAccess: 'false' + endpointname: Endpoint2 + ownerType: '2' + ownerkey: '9' + requestownertype: '0' + securitySystem: SecuritySystem2 + status: '1' + userAccountCorrelationRule: '(users.customproperty7) = accounts.name ' + errorCode: '0' + message: Success + totalCount: 2 + /createEntitlementType: + post: + tags: + - entitlement-types + summary: Create Entitlement Type + description: |- + This API creates Entitlement Type in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `entitlementname`, + `endpointname` + Optional params: + `entitlementdescription`, + `customproperty` - customproperty 1 to 5, + `workflow` + operationId: createEntitlementType + requestBody: + content: + application/json: + schema: + type: object + properties: + customproperty1: + type: string + example: cp1 + endpointname: + type: string + example: Endpoint1 + entitlementdescription: + type: string + example: entitlementdescription + entitlementname: + type: string + example: testEnt8 + workflow: + type: string + example: SampleManagerApproval + examples: + Create Entitlement Type: + value: + customproperty1: cp1 + endpointname: Endpoint1 + entitlementdescription: entitlementdescription + entitlementname: testEnt8 + workflow: SampleManagerApproval + responses: + '200': + description: Create Entitlement Type + headers: + Date: + schema: + type: string + example: Wed, 17 Oct 2018 17:15:15 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9997fcf7-e1f7-4170-8db1-cd6cbe844ad7; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Create Entitlement Type: + value: + errorCode: '0' + msg: Success + /updateEntitlementType: + put: + tags: + - entitlement-types + summary: Update Entitlement Type + description: "This API updates Entitlement Type in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n\t`entitlementname`,\r\n\t`endpointname`,\r\n\t\r\nOptional params:\r\n\t`entitlementdescription`,\r\n\t`workflow`,\r\n\t`customproperty`,\r\n\t`availableQueryServiceAccount`,\r\n\t`selectedQueryServiceAccount`, \r\n\t`arsRequestableEntitlementQuery`, \r\n\t`arsSelectedEntitlementQuery` , \r\n\t`createTaskAction` - it can be one value or list of values. The values can be [\"noAction\",\"removeTaskForExistingEntitlements\", \"enableRollback\"],\r\n\t`requestDatesConfJson` , \r\n\t`startDateInRevokeRequest` , \r\n\t`startEndDateInRequest` ,\r\n\t`allowRemoveAllEntitlementInRequest` , \r\n\t`orderindex` , \r\n\t`requiredinrequest` ,\r\n\t`hiearchyrequired` , \r\n\t`requestoption`\r\n\t\r\n\t\r\n`requestoption` param values can be - \r\nSHOW_BUT_NOTREUESTABLESINGLE/ \r\nSHOW_BUT_NOTREUESTABLEMULTIPLE/ \r\nNONE/ \r\nSINGLE/ \r\nMULTIPLE/ \r\nTABLE/ \r\nFREEFORMTEXT/ \r\nTABLENOREMOVE/ \r\nRADIOBUTN/ \r\nCHECKBOXN/ \r\nREADONLYTABLE/ \r\nNONE_BUT_CREATETASK" + operationId: updateEntitlementType + requestBody: + content: + application/json: + schema: + type: object + properties: + allowRemoveAllEntitlementInRequest: + type: string + example: 'false' + arsRequestableEntitlementQuery: + type: string + example: ev.status=1 and ev.customproperty1='TRUE' + arsSelectedEntitlementQuery: + type: string + example: testsel + availableQueryServiceAccount: + type: string + example: test qry + createTaskAction: + type: array + items: + type: string + example: noAction + example: + - noAction + - removeTaskForExistingEntitlements + - bhav + - enableRollback + createTaskAction1: + type: string + example: removeTaskForExistingEntitlements + customproperty1: + type: string + example: cp1 + customproperty9: + type: string + example: cp9 + endpointname: + type: string + example: AD Test + entitlementdescription: + type: string + example: entitlementdescription + entitlementname: + type: string + example: testEnt81 + hiearchyrequired: + type: string + example: 'false' + orderindex: + type: string + example: '2' + requestDatesConfJson: + type: string + example: test date + requestoption: + type: string + example: TABLENOREMOVE + requiredinrequest: + type: string + example: 'false' + selectedQueryServiceAccount: + type: string + example: service acc qry + startDateInRevokeRequest: + type: string + example: 'false' + startEndDateInRequest: + type: string + example: 'false' + workflow: + type: string + example: SampleManagerApproval + examples: + Update Entitlement Type: + value: + allowRemoveAllEntitlementInRequest: 'false' + arsRequestableEntitlementQuery: ev.status=1 and ev.customproperty1='TRUE' + arsSelectedEntitlementQuery: testsel + availableQueryServiceAccount: test qry + createTaskAction: + - noAction + - removeTaskForExistingEntitlements + - bhav + - enableRollback + createTaskAction1: removeTaskForExistingEntitlements + customproperty1: cp1 + customproperty9: cp9 + endpointname: AD Test + entitlementdescription: entitlementdescription + entitlementname: testEnt81 + hiearchyrequired: 'false' + orderindex: '2' + requestDatesConfJson: test date + requestoption: TABLENOREMOVE + requiredinrequest: 'false' + selectedQueryServiceAccount: service acc qry + startDateInRevokeRequest: 'false' + startEndDateInRequest: 'false' + workflow: SampleManagerApproval + responses: + '200': + description: Update Entitlement Type + headers: + Date: + schema: + type: string + example: Thu, 18 Oct 2018 23:58:33 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=be1dce8e-3b83-4471-8867-6b40a7544cfc; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Update Entitlement Type: + value: + errorCode: '0' + msg: Success + /getEntitlementTypes: + get: + tags: + - entitlement-types + summary: Get List of Entitlement Types + description: |- + This API returns list of Entitlement Types in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `entitlementname`, + `max`, + `offset`, + `endpointname` + operationId: getListOfEntitlementTypes + parameters: + - name: entitlementname + in: query + schema: + type: string + example: testEnt81 + - name: max + in: query + schema: + type: string + example: '4' + - name: offset + in: query + schema: + type: string + example: '2' + - name: endpointname + in: query + schema: + type: string + example: System1 + responses: + '200': + description: Get Entitlement Types + headers: + Date: + schema: + type: string + example: Wed, 24 Oct 2018 00:14:18 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=7ffb93c9-3cc5-4a72-85fc-436adde79bb8; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displayCount: + type: number + example: 1 + entitlementTypeDetails: + type: array + items: + type: object + properties: + ars_req_ent_sqlquerey: + type: string + example: ev.status=1 and ev.customproperty1='TRUE' + ars_select_ent_sqlquerey: + type: string + example: testsel + availableQueryServiceAccount: + type: string + example: test qry + certifiable: + type: string + example: 'true' + createTaskAction: + type: string + example: '{"taskActions":["enableRollback","removeTaskForExistingEntitlements","noAction"]}' + customproperty1_label: + type: string + example: cp1 + customproperty9_label: + type: string + example: cp9 + displayName: + type: string + example: testEnt81 + endpoint: + type: string + example: AD Test + entitlementdescription: + type: string + example: entitlementdescription + entitlementname: + type: string + example: testEnt81 + hiearchyrequired: + type: string + example: '0' + orderindex: + type: string + example: '2' + recon: + type: string + example: 'true' + requestDatesConfJson: + type: string + example: test date + requestoption: + type: string + example: Request Form Table No Remove + requiredinrequest: + type: string + example: 'false' + securitysystem: + type: string + example: AD Test + selectedQueryServiceAccount: + type: string + example: service acc qry + showonchild: + type: string + example: 'false' + workflow: + type: string + example: SampleManagerApproval + example: + - ars_req_ent_sqlquerey: ev.status=1 and ev.customproperty1='TRUE' + ars_select_ent_sqlquerey: testsel + availableQueryServiceAccount: test qry + certifiable: 'true' + createTaskAction: '{"taskActions":["enableRollback","removeTaskForExistingEntitlements","noAction"]}' + customproperty1_label: cp1 + customproperty9_label: cp9 + displayName: testEnt81 + endpoint: AD Test + entitlementdescription: entitlementdescription + entitlementname: testEnt81 + hiearchyrequired: '0' + orderindex: '2' + recon: 'true' + requestDatesConfJson: test date + requestoption: Request Form Table No Remove + requiredinrequest: 'false' + securitysystem: AD Test + selectedQueryServiceAccount: service acc qry + showonchild: 'false' + workflow: SampleManagerApproval + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + totalCount: + type: number + example: 1 + examples: + Get Entitlement Types: + value: + displayCount: 1 + entitlementTypeDetails: + - ars_req_ent_sqlquerey: ev.status=1 and ev.customproperty1='TRUE' + ars_select_ent_sqlquerey: testsel + availableQueryServiceAccount: test qry + certifiable: 'true' + createTaskAction: '{"taskActions":["enableRollback","removeTaskForExistingEntitlements","noAction"]}' + customproperty1_label: cp1 + customproperty9_label: cp9 + displayName: testEnt81 + endpoint: AD Test + entitlementdescription: entitlementdescription + entitlementname: testEnt81 + hiearchyrequired: '0' + orderindex: '2' + recon: 'true' + requestDatesConfJson: test date + requestoption: Request Form Table No Remove + requiredinrequest: 'false' + securitysystem: AD Test + selectedQueryServiceAccount: service acc qry + showonchild: 'false' + workflow: SampleManagerApproval + errorCode: '0' + msg: Success + totalCount: 1 + /createDynamicAttribute: + post: + tags: + - dynamic-attributes + summary: Create Dynamic Attribute + description: |- + This API creates dynamic attributes in EIC. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `securitysystem` + `endpoint` + `updateuser` + `dynamicattributes` - `attributename`, `requesttype`(ACCOUNT/PROPOSED ENTITLEMENT OWNER/ENTITLEMENT OWNER ATTESTATION/ROLE/SERVICE ACCOUNT) + Optional params: + `dynamicattributes` - other dynamic attribute parameters: + - `attributetype`: Specify the attribute type based on which you want to filter and display the dynamic attributes.The various types of attribute types are: Single select from Sql Query, ENUM, Password, Boolean (True,False), String, Check Box, Date, and so on. - `attributename`: Specify the dynamic attribute name to be used for filtering out and calling the respective attribute to be displayed. - `Attribute Group`: Attribute Group provides you an option to group or categorize and display the dynamic attributes in the Access Requests request form. - `Order Index`: Specify the sequence where you want to display the dynamic attributes. You can specify values such as 0,1, 2, 3 and so on. Order index with lower values is displayed first and those with higher values are displayed later. - `attributelable`: Specify the name of the attribute, which you want to display in the Access Requests request form. You can apply the following font styling to the label: + - `##SavBoldStart##Attribute_Name##SavBoldEnd##` + - `##SavUnderlineStart##Attribute_Name##SavItalicEnd##` + - `##SavUnderlineStart##Attribute_Name##UnderlineEnd##` + - `##SavAnchorStart####SavUrlStart##https://exampleorg.com##SavUrlEnd####SavUrlTextStart##URL_Text##SavUrlTextEnd####SavAnchorEnd##` + operationId: createDynamicAttribute + requestBody: + content: + application/json: + schema: + type: object + properties: + dynamicattributes: + type: array + items: + type: object + properties: + Parentattribute: + type: string + example: '' + accountscolumn: + type: string + example: '' + actionstring: + type: string + example: '' + actiontoperformwhenparentattributechanges: + type: string + example: '' + attributegroup: + type: string + example: '' + attributelable: + type: string + example: '' + attributename: + type: string + example: air5 + attributetype: + type: string + example: BOOLEAN + attributevalue: + type: string + example: '' + defaultvalue: + type: string + example: '' + descriptionascsv: + type: string + example: '' + editable: + type: string + example: 'true' + hideoncreate: + type: string + example: 'false' + hideonupdate: + type: string + example: 'false' + orderindex: + type: string + example: '' + regex: + type: string + example: '' + requesttype: + type: string + example: SERVICE ACCOUNT + required: + type: string + example: 'false' + showonchild: + type: string + example: 'false' + example: + - Parentattribute: '' + accountscolumn: '' + actionstring: '' + actiontoperformwhenparentattributechanges: '' + attributegroup: '' + attributelable: '' + attributename: air5 + attributetype: BOOLEAN + attributevalue: '' + defaultvalue: '' + descriptionascsv: '' + editable: 'true' + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '' + regex: '' + requesttype: SERVICE ACCOUNT + required: 'false' + showonchild: 'false' + endpoint: + type: string + example: System1 + securitysystem: + type: string + example: System1 + username: + type: string + example: admin + examples: + Create Dynamic Attribute: + value: + dynamicattributes: + - Parentattribute: '' + accountscolumn: '' + actionstring: '' + actiontoperformwhenparentattributechanges: '' + attributegroup: '' + attributelable: '' + attributename: air5 + attributetype: BOOLEAN + attributevalue: '' + defaultvalue: '' + descriptionascsv: '' + editable: 'true' + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '' + regex: '' + requesttype: SERVICE ACCOUNT + required: 'false' + showonchild: 'false' + endpoint: System1 + securitysystem: System1 + username: admin + responses: + '200': + description: Create Dynamic Attribute + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 05 Aug 2019 23:01:56 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4181ffdf-3cb5-4d06-b138-86eda5746db2; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Create Dynamic Attribute: + value: + errorcode: '0' + msg: Success + security: + - bearerAuth: [] + /updateDynamicAttribute: + put: + tags: + - dynamic-attributes + summary: Update Dynamic Attribute + description: |- + This API updates dynamic attributes in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `securitysystem` + `endpoint` + `updateuser` + `dynamicattributes` - `attributename` + Optional params: + - `dynamicattributes` - other attributes of dynamic attributes - `attributetype`(BOOLEAN/NUMBER/STRING/ENUM/MULTIPLE SELECT FROM LIST/MULTIPLE SELECT FROM SQL QUERY/SINGLE SELECT FROM SQL QUERY/PASSWORD/LARGE TEXT/CHECK BOX/DATE) - `requesttype`(ACCOUNT/PROPOSED ENTITLEMENT OWNER/ENTITLEMENT OWNER ATTESTATION/ROLE/SERVICE ACCOUNT) - `attributelable`: Specify the name of the attribute, which you want to display in the Access Requests request form. You can apply following font styling to the label: + - **##SavBoldStart##**_**Attribute_Name**_**##SavBoldEnd##** + - **##SavItalicStart##**_**Attribute_Name**_**##SavItalicEnd##** + - **##SavUnderlineStart##**_**Attribute_Name**_**##SavItalicEnd##** + - **##SavUrlStart##**_**Attribute_Name**_**##SavUrlEnd##** + - **##SavAnchorStart####SavUrlStart##**[https://exampleorg.com##SavUrlEnd####SavUrlTextStart##]_**URL_Text**_**##SavUrlTextEnd####SavAnchorEnd##** + operationId: updateDynamicAttribute + requestBody: + content: + application/json: + schema: + type: object + properties: + dynamicattributes: + type: array + items: + type: object + properties: + Parentattribute: + type: string + example: '' + accountscolumn: + type: string + example: customproperty1 + actionstring: + type: string + example: '' + actiontoperformwhenparentattributechanges: + type: string + example: '' + attributegroup: + type: string + example: '' + attributelable: + type: string + example: '' + attributename: + type: string + example: air5 + attributetype: + type: string + example: BOOLEAN + attributevalue: + type: string + example: '' + defaultvalue: + type: string + example: '' + descriptionascsv: + type: string + example: '' + editable: + type: string + example: 'true' + hideoncreate: + type: string + example: 'false' + hideonupdate: + type: string + example: 'false' + orderindex: + type: string + example: '' + regex: + type: string + example: '' + requesttype: + type: string + example: SERVICE ACCOUNT + required: + type: string + example: 'false' + showonchild: + type: string + example: 'false' + example: + - Parentattribute: '' + accountscolumn: customproperty1 + actionstring: '' + actiontoperformwhenparentattributechanges: '' + attributegroup: '' + attributelable: '' + attributename: air5 + attributetype: BOOLEAN + attributevalue: '' + defaultvalue: '' + descriptionascsv: '' + editable: 'true' + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '' + regex: '' + requesttype: SERVICE ACCOUNT + required: 'false' + showonchild: 'false' + endpoint: + type: string + example: System1 + securitysystem: + type: string + example: System1 + username: + type: string + example: admin + examples: + Update Dynamic Attribute: + value: + dynamicattributes: + - Parentattribute: '' + accountscolumn: customproperty1 + actionstring: '' + actiontoperformwhenparentattributechanges: '' + attributegroup: '' + attributelable: '' + attributename: air5 + attributetype: BOOLEAN + attributevalue: '' + defaultvalue: '' + descriptionascsv: '' + editable: 'true' + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '' + regex: '' + requesttype: SERVICE ACCOUNT + required: 'false' + showonchild: 'false' + endpoint: System1 + securitysystem: System1 + username: admin + responses: + '200': + description: Update Dynamic Attribute + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 05 Aug 2019 23:16:14 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=b8fbc39c-e05e-400f-9e0a-ab41b5dac1cf; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Update Dynamic Attribute: + value: + errorcode: '0' + msg: Success + /fetchDynamicAttribute: + get: + tags: + - dynamic-attributes + summary: Fetch Dynamic Attributes + description: |- + This API fetches the dynamic attributes in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `securitysystem` + `endpoint` + `dynamicattributes` + `max`, `offset`, + `requesttype` - can be ['ACCOUNT', 'PROPOSED ENTITLEMENT OWNER', 'ENTITLEMENT OWNER ATTESTATION', 'ROLE', 'SERVICE ACCOUNT','USER'], + `loggedinuser` + operationId: fetchDynamicAttributes + requestBody: + content: + application/json: + schema: + type: object + properties: + dynamicattributes: + type: array + items: + type: string + example: parent + example: + - parent + - child + endpoint: + type: array + items: + type: string + example: System1 + example: + - System1 + max: + type: string + example: '2' + offset: + type: string + example: '0' + securitysystem: + type: array + items: + type: string + example: System1 + example: + - System1 + examples: + Fetch Dynamic Attributes: + value: + dynamicattributes: + - parent + - child + endpoint: + - System1 + max: '2' + offset: '0' + securitysystem: + - System1 + responses: + '200': + description: Fetch Dynamic Attributes + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 05 Aug 2019 22:57:45 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=08e761fa-47af-42d0-8faa-8be801f4914a; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 2 + dynamicattributes: + type: array + items: + type: object + properties: + accountscolumn: + type: string + example: customproperty11 + actiontoperformwhenparentattributechanges: + type: string + example: Mapping + attributelable: + type: string + example: Select Parent + attributename: + type: string + example: parent + attributetype: + type: string + example: SQL MULTISELECT + attributevalue: + type: string + example: select 'ERS' as ID,'ers desc' as description UNION select 'FALCON' as ID, 'falcon desc' as description + editable: + type: string + example: 'true' + endpoint: + type: string + example: System1 + hideoncreate: + type: string + example: 'false' + hideonupdate: + type: string + example: 'false' + orderindex: + type: string + example: '1' + parentattribute: + type: string + example: parent + requesttype: + type: string + example: ACCOUNT + required: + type: string + example: 'false' + securitysystem: + type: string + example: System1 + showonchild: + type: string + example: 'false' + example: + - accountscolumn: customproperty11 + actiontoperformwhenparentattributechanges: Mapping + attributelable: Select Parent + attributename: parent + attributetype: SQL MULTISELECT + attributevalue: select 'ERS' as ID,'ers desc' as description UNION select 'FALCON' as ID, 'falcon desc' as description + editable: 'true' + endpoint: System1 + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '1' + requesttype: ACCOUNT + required: 'false' + securitysystem: System1 + showonchild: 'false' + - accountscolumn: customproperty12 + actiontoperformwhenparentattributechanges: Mapping + attributelable: Select Child + attributename: child + attributetype: SQL ENUM + attributevalue: select customername as ID, CUSTOMPROPERTY1 as description from customer where customproperty12 in (${parent}) + editable: 'true' + endpoint: System1 + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '2' + parentattribute: parent + requesttype: ACCOUNT + required: 'false' + securitysystem: System1 + showonchild: 'false' + errorcode: + type: string + example: '0' + msg: + type: string + example: success + totalcount: + type: number + example: 2 + examples: + Fetch Dynamic Attributes: + value: + displaycount: 2 + dynamicattributes: + - accountscolumn: customproperty11 + actiontoperformwhenparentattributechanges: Mapping + attributelable: Select Parent + attributename: parent + attributetype: SQL MULTISELECT + attributevalue: select 'ERS' as ID,'ers desc' as description UNION select 'FALCON' as ID, 'falcon desc' as description + editable: 'true' + endpoint: System1 + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '1' + requesttype: ACCOUNT + required: 'false' + securitysystem: System1 + showonchild: 'false' + - accountscolumn: customproperty12 + actiontoperformwhenparentattributechanges: Mapping + attributelable: Select Child + attributename: child + attributetype: SQL ENUM + attributevalue: select customername as ID, CUSTOMPROPERTY1 as description from customer where customproperty12 in (${parent}) + editable: 'true' + endpoint: System1 + hideoncreate: 'false' + hideonupdate: 'false' + orderindex: '2' + parentattribute: parent + requesttype: ACCOUNT + required: 'false' + securitysystem: System1 + showonchild: 'false' + errorcode: '0' + msg: success + totalcount: 2 + /deleteDynamicAttribute: + delete: + tags: + - dynamic-attributes + summary: Delete Dynamic Attribute + description: |- + This API deletes dynamic attributes in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `securitysystem` + `endpoint` + `updateuser` + `dynamicattributes` - attributename list + operationId: deleteDynamicAttribute + requestBody: + content: + application/json: + schema: + type: object + properties: + dynamicattributes: + type: string + example: air5 + endpoint: + type: string + example: System1 + securitysystem: + type: string + example: System1 + username: + type: string + example: admin + examples: + Delete Dynamic Attribute: + value: + dynamicattributes: air5 + endpoint: System1 + securitysystem: System1 + username: admin + responses: + '200': + description: Delete Dynamic Attribute + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 05 Aug 2019 23:01:25 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=3ee29348-d2d9-4f82-9d8a-2d21efbcc76f; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Delete Dynamic Attribute: + value: + errorcode: '0' + msg: success + /deleteEntitlementType: + delete: + tags: + - entitlement-types + summary: Delete Entitlement Types + description: |- + This API deletes entitlement types in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `updateuser` + `entTypeQuery` or `entitlementtypekey` (If both are passed then entitlementtypekey will be considered) + operationId: deleteEntitlementTypes + requestBody: + content: + application/json: + schema: + type: object + properties: + entitlementtypekey: + type: array + items: + type: string + example: '400' + example: + - '400' + updateuser: + type: string + example: admin + examples: + Delete Entitlement Types: + value: + entitlementtypekey: + - '400' + updateuser: admin + responses: + '200': + description: Delete Entitlement Types + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-utl-1.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 28 Feb 2022 06:46:18 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8e8359be-0048-4924-af98-6a728a3f0b20; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + entitlementtypes: + type: array + items: + type: object + properties: + '400': + type: string + example: entitlement type deleted successfully + example: + - '400': entitlement type deleted successfully + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Delete Entitlement Types: + value: + entitlementtypes: + - '400': entitlement type deleted successfully + errorcode: '0' + msg: success + /createSecuritySystem: + post: + tags: + - systems + summary: Create Security System + description: |- + This API creates Security System in EIC. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `systemname` `displayName` + Optional params: + `hostname` `port` `accessAddWorkflow` `accessRemoveWorkflow` `addServiceAccountWorkflow` `removeServiceAccountWorkflow` `connectionparameters` `automatedProvisioning provisioningTries` + **Note:** From Release v23.1, you can specify `provisioningTries` between 1 to 20 based on your requirement. + operationId: createSecuritySystem + requestBody: + content: + application/json: + schema: + type: object + properties: + accessAddWorkflow: + type: string + example: One_Level_Manager_Approval + accessRemoveWorkflow: + type: string + example: One_Level_Manager_Approval + addServiceAccountWorkflow: + type: string + example: One_Level_Manager_Approval + automatedProvisioning: + type: string + example: 'true' + connectionparameters: + type: string + example: '{"conn params":"test"}' + displayName: + type: string + example: sys3Disp + hostname: + type: string + example: https://test.test_test + port: + type: string + example: '1000' + removeServiceAccountWorkflow: + type: string + example: One_Level_Manager_Approval + systemname: + type: string + example: sys3 + examples: + Create Security System: + value: + accessAddWorkflow: One_Level_Manager_Approval + accessRemoveWorkflow: One_Level_Manager_Approval + addServiceAccountWorkflow: One_Level_Manager_Approval + automatedProvisioning: 'true' + connectionparameters: '{"conn params":"test"}' + displayName: sys3Disp + hostname: https://test.test_test + port: '1000' + removeServiceAccountWorkflow: One_Level_Manager_Approval + systemname: sys3 + text/plain: + examples: + Create Security System: + value: "{\n\t\"systemname\" : \"sys3\",\n\t\"displayName\" : \"sys3Disp\",\n\t\"hostname\":\"https://test.test_test\",\n\t\"port\" : \"1000\",\n\t\"accessAddWorkflow\": \"One_Level_Manager_Approval\",\n\t\"accessRemoveWorkflow\" : \"One_Level_Manager_Approval\",\n\t\"addServiceAccountWorkflow\" : \"One_Level_Manager_Approval\",\n\t\"removeServiceAccountWorkflow\" : \"One_Level_Manager_Approval\",\n\t\"connectionparameters\" : \"{\\\"conn params\\\":\\\"test\\\"}\",\n\t\"automatedProvisioning\" : \"true\",\n \"provisioning\"\n}\n" + responses: + '200': + description: Create Security System + headers: + Date: + schema: + type: string + example: Fri, 19 Oct 2018 18:46:26 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=677c34fb-3a1c-4e5c-ad5d-a041a4b63a33; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Create Security System: + value: + errorCode: '0' + msg: Success + /updateSecuritySystem: + put: + tags: + - systems + summary: Update Security System + description: |- + This API updates Security system in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `systemname` + Optional params: + `displayName`, `hostname`, `port`, `accessAddWorkflow`, `accessRemoveWorkflow`, `addServiceAccountWorkflow`, `removeServiceAccountWorkflow` `connectionparameters` `automatedProvisioning` `connectionname` `provisioningConnection` `serviceDeskConnection` `provisioningcomments` `action` - "enable" or "disable", `defaultSystem`, `reconApplication` `provisioningTries` + **Note:** From Release v23.1, you can specify `provisioningTries` between 1 to 20 based on your requirement. + operationId: updateSecuritySystem + requestBody: + content: + application/json: + schema: + type: object + properties: + accessAddWorkflow: + type: string + example: SampleManagerApproval + accessRemoveWorkflow: + type: string + example: SampleManagerApproval + action: + type: string + example: enable + addServiceAccountWorkflow: + type: string + example: SampleManagerApproval + automatedProvisioning: + type: string + example: 'true' + connectionname: + type: string + example: CN_DDF + connectionparameters: + type: string + example: '{"conn params":"test1"}' + defaultSystem: + type: string + example: 'true' + displayName: + type: string + example: sys1Disp + hostname: + type: string + example: https://test_test.test + port: + type: string + example: '1001' + provisioningConnection: + type: string + example: SAP_HANA + provisioningcomments: + type: string + example: prov comm + reconApplication: + type: string + example: 'true' + removeServiceAccountWorkflow: + type: string + example: SampleManagerApproval + serviceDeskConnection: + type: string + example: CN_Saviynt + systemname: + type: string + example: sys1 + examples: + Update Security System: + value: + accessAddWorkflow: SampleManagerApproval + accessRemoveWorkflow: SampleManagerApproval + action: enable + addServiceAccountWorkflow: SampleManagerApproval + automatedProvisioning: 'true' + connectionname: CN_DDF + connectionparameters: '{"conn params":"test1"}' + defaultSystem: 'true' + displayName: sys1Disp + hostname: https://test_test.test + port: '1001' + provisioningConnection: SAP_HANA + provisioningcomments: prov comm + reconApplication: 'true' + removeServiceAccountWorkflow: SampleManagerApproval + serviceDeskConnection: CN_Saviynt + systemname: sys1 + responses: + '200': + description: Update Security System + headers: + Date: + schema: + type: string + example: Fri, 19 Oct 2018 21:44:25 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=92293297-5e25-49b9-9ef5-f4ca43717451; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Update Security System: + value: + errorCode: '0' + msg: Success + /getSecuritySystems: + get: + tags: + - systems + summary: Get List of Security Systems + description: |- + This API returns list of Security Systems in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `systemname`, + `max`,`offset`, + `connectionname`, + `connectionType` + operationId: getListOfSecuritySystems + parameters: + - name: systemname + in: query + schema: + type: string + example: System1 + - name: max + in: query + schema: + type: string + example: '4' + - name: offset + in: query + schema: + type: string + example: '0' + - name: connectionname + in: query + schema: + type: string + example: CN_SERP_ECC_A53 + - name: connectionType + in: query + schema: + type: string + example: SAP + requestBody: + content: + text/plain: + examples: + Get List of Security Systems: + value: '' + responses: + '200': + description: Get Security Systems + headers: + Date: + schema: + type: string + example: Fri, 19 Oct 2018 23:52:41 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=abcf5ae8-c240-469f-a8d4-5d2570f772cf; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displayCount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + securitySystemDetails: + type: array + items: + type: object + properties: + accessAddWorkflow: + type: string + example: UserGrpWF + accessRemoveWorkflow: + type: string + example: SampleManagerApproval + automatedProvisioning: + type: string + example: 'true' + createdBy: + type: string + example: '1' + defaultSystem: + type: string + example: 'false' + displayName: + type: string + example: System1-DisplayName + endpoints: + type: string + example: '[System1, Access]' + instantprovision: + type: string + example: 'false' + policyRule: + type: string + example: BBB + reconApplication: + type: string + example: 'true' + status: + type: string + example: enabled + systemname: + type: string + example: System1 + updatedBy: + type: string + example: '1' + useopenconnector: + type: string + example: 'false' + example: + - accessAddWorkflow: UserGrpWF + accessRemoveWorkflow: SampleManagerApproval + automatedProvisioning: 'true' + createdBy: '1' + defaultSystem: 'false' + displayName: System1-DisplayName + endpoints: '[System1, Access]' + instantprovision: 'false' + policyRule: BBB + reconApplication: 'true' + status: enabled + systemname: System1 + updatedBy: '1' + useopenconnector: 'false' + totalCount: + type: number + example: 1 + examples: + Get Security Systems: + value: + displayCount: 1 + errorCode: '0' + msg: Success + securitySystemDetails: + - accessAddWorkflow: UserGrpWF + accessRemoveWorkflow: SampleManagerApproval + automatedProvisioning: 'true' + createdBy: '1' + defaultSystem: 'false' + displayName: System1-DisplayName + endpoints: '[System1, Access]' + instantprovision: 'false' + policyRule: BBB + reconApplication: 'true' + status: enabled + systemname: System1 + updatedBy: '1' + useopenconnector: 'false' + totalCount: 1 + /deleteSecuritySystem: + delete: + tags: + - systems + summary: Delete Security System + description: |- + This API deletes Security System in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `updateuser` + `systemQuery` or `systemkey` (If both are passed then systemkey will be considered) + operationId: deleteSecuritySystem + requestBody: + content: + application/json: + schema: + type: object + properties: + systemkey: + type: array + items: + type: string + example: '9' + example: + - '9' + - '10' + updateuser: + type: string + example: admin + examples: + Delete Security System: + value: + systemkey: + - '9' + - '10' + updateuser: admin + text/plain: + examples: + Delete Security System: + value: '' + responses: + '200': + description: Delete Security System + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-utl-1.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 28 Feb 2022 06:42:36 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8e8359be-0048-4924-af98-6a728a3f0b20; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + securitysystems: + type: array + items: + type: object + properties: + '9': + type: string + example: Securitysystem deleted + '10': + type: string + example: Securitysystem deleted + example: + - '9': Securitysystem deleted + - '10': Securitysystem deleted + examples: + Delete Security System: + value: + errorcode: '0' + msg: success + securitysystems: + - '9': Securitysystem deleted + - '10': Securitysystem deleted + /createUpdateUserGroup: + post: + tags: + - groups + summary: Create/Update UserGroup + description: |- + This API create or update usergroup in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `usergroup`, + `username` + Optional params: + `user_groupdescription`, + `users` - + 1. `username` (mandatory), + 2. `updateType` - ADD/REMOVE (optional), + `entitlements` - + 1. `endpoint` (mandatory), + 2. `entitlement_type` (mandatory), + 3. `entitlement_value` (mandatory), + 4. `updateType` ADD/REMOVE (optional), + `owners` - + 1. `username` (mandatory), + 2. `updateType` - ADD/REMOVE/SETRANK (optional), + 3. `rank` (optional) + operationId: createUpdateUsergroup + requestBody: + content: + application/json: + schema: + type: object + properties: + entitlements: + type: array + items: + type: object + properties: + endpoint: + type: string + example: Oracle + entitlement_type: + type: string + example: OEBS-Responsibility + entitlement_value: + type: string + example: FIXED_ASSET_INQUIRY_TECH_IN + updateType: + type: string + example: ADD + example: + - endpoint: Oracle + entitlement_type: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_TECH_IN + updateType: ADD + - endpoint: Oracle + entitlement_type: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_SOFT_IN + updateType: REMOVE + owners: + type: array + items: + type: object + properties: + rank: + type: string + example: '2' + updateType: + type: string + example: ADD + username: + type: string + example: G000706 + example: + - rank: '2' + updateType: ADD + username: G000706 + - updateType: REMOVE + username: G000526 + - rank: '2' + updateType: SETRANK + username: U009075 + user_groupdescription: + type: string + example: ADOwnerGroupdesc + usergroup: + type: string + example: ADOwnerGroup + username: + type: string + example: admin + users: + type: array + items: + type: object + properties: + updateType: + type: string + example: ADD + username: + type: string + example: U003961 + example: + - updateType: ADD + username: U003961 + - updateType: REMOVE + username: M0014 + examples: + Create/Update UserGroup: + value: + entitlements: + - endpoint: Oracle + entitlement_type: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_TECH_IN + updateType: ADD + - endpoint: Oracle + entitlement_type: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_SOFT_IN + updateType: REMOVE + owners: + - rank: '2' + updateType: ADD + username: G000706 + - updateType: REMOVE + username: G000526 + - rank: '2' + updateType: SETRANK + username: U009075 + user_groupdescription: ADOwnerGroupdesc + usergroup: ADOwnerGroup + username: admin + users: + - updateType: ADD + username: U003961 + - updateType: REMOVE + username: M0014 + responses: + '200': + description: Create/Update UserGroup + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 22 Jun 2021 18:33:36 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=1eae9a2d-290d-44de-bcf9-3d74760832f7; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '1' + msg: + type: string + example: ' user U003961 already present in usergroup. user M0014 does not exist in usergroup. entitlement FIXED_ASSET_INQUIRY_TECH_IN already present in usergroup. entitlement FIXED_ASSET_INQUIRY_SOFT_IN does not exist in usergroup. owner G000706 is already present. Owner U009075 does not exist in usergroup. owner G000526 is not present.' + usergroupkey: + type: string + example: '2' + examples: + Create/Update UserGroup: + value: + errorCode: '1' + msg: ' user U003961 already present in usergroup. user M0014 does not exist in usergroup. entitlement FIXED_ASSET_INQUIRY_TECH_IN already present in usergroup. entitlement FIXED_ASSET_INQUIRY_SOFT_IN does not exist in usergroup. owner G000706 is already present. Owner U009075 does not exist in usergroup. owner G000526 is not present.' + usergroupkey: '2' + /addRemoveUserFromUserGroup: + post: + tags: + - groups + summary: Add/Remove User From UserGroup + description: "This API is used to add or remove user from a usergroup in SSM\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params: \r\n\r\n`username` - User which needs to be added/ removed,\r\n\r\n`user_groupname` - Group name to be added/removed,\r\n\t\r\n`actionType` (0/1) - 0:Add and 1:Remove" + operationId: addRemoveUserFromUsergroup + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + actionType: + type: string + example: '0' + user_groupname: + type: string + example: TEST USER GROUP + username: + type: string + example: bharell + responses: + '200': + description: Add/Remove User From UserGroup + headers: + Date: + schema: + type: string + example: Tue, 11 Sep 2018 01:24:07 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a3914d7a-7ab2-4354-9de2-4fb0258322f9; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: saved successfully + examples: + Add/Remove User From UserGroup: + value: + errorCode: '0' + message: saved successfully + /deleteUserGroup: + post: + tags: + - groups + summary: Delete UserGroup + description: |- + This API delete usergroup in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username`, + `usergroup` + operationId: deleteUsergroup + requestBody: + content: + application/json: + schema: + type: object + properties: + usergroup: + type: string + example: testApi2 + username: + type: string + example: smarquez + examples: + Delete UserGroup: + value: + usergroup: testApi2 + username: smarquez + responses: + '200': + description: Delete UserGroup + headers: + Date: + schema: + type: string + example: Sat, 29 Dec 2018 01:43:15 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4df14cd0-0217-4b9e-8908-99c221e39ede; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Delete UserGroup: + value: + errorCode: '0' + msg: Success + /fetchUserGroup: + post: + tags: + - groups + summary: Get List of UserGroups + description: |- + This API returns list of UserGroups in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `usergroupkey`, + `usergroupname`, + `usergroupdescription`,`groupid`, + `max (default value is 5)`, + `offset (default value is 0)` + operationId: getListOfUsergroups + parameters: + - name: systemname + in: query + schema: + type: string + example: amigopod + - name: offset + in: query + schema: + type: string + example: '0' + - name: connectionname + in: query + schema: + type: string + example: CN_SERP_ECC_A53 + - name: connectionType + in: query + schema: + type: string + example: SAP + requestBody: + content: + application/json: + schema: + type: object + properties: + usergroupkey: + type: string + example: '1' + usergroupname: + type: string + example: AdminGroup + examples: + Get List of UserGroups: + value: + usergroupkey: '1' + usergroupname: AdminGroup + responses: + '200': + description: Fetch UserGroups - SUCCESS / Get List of UserGroups - usergroupkey + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 22 Jun 2021 18:08:29 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=1eae9a2d-290d-44de-bcf9-3d74760832f7; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 1 + errorcode: + type: number + example: 0 + msg: + type: string + example: success + totalcount: + type: number + example: 1 + usergroups: + type: array + items: + type: object + properties: + entitlements: + type: array + items: + type: object + properties: + description: + type: string + example: '' + displayname: + type: string + example: '' + entitlement_value: + type: string + example: Report Writer (Report_Writer) + entitlement_valuekey: + type: number + example: 1 + example: + - description: '' + displayname: '' + entitlement_value: Report Writer (Report_Writer) + entitlement_valuekey: 1 + - description: '' + displayname: '' + entitlement_value: Job and Position Administrator (Job_and_Position_Administrator) + entitlement_valuekey: 2 + - description: '' + displayname: '' + entitlement_value: Organization Administrator (Organization_Administrator) + entitlement_valuekey: 3 + - description: '' + displayname: '' + entitlement_value: Setup Administrator (Setup_Administrator) + entitlement_valuekey: 4 + - description: '' + displayname: '' + entitlement_value: Compensation Administrator (Compensation_Administrator) + entitlement_valuekey: 5 + - description: '' + displayname: '' + entitlement_value: Benefits Administrator (Benefits_Administrator) + entitlement_valuekey: 6 + - description: '' + displayname: '' + entitlement_value: Payroll Interface Administrator (Payroll_Interface_Administrator) + entitlement_valuekey: 7 + - description: '' + displayname: '' + entitlement_value: Costing Administrator (Costing_Administrator) + entitlement_valuekey: 8 + - description: '' + displayname: '' + entitlement_value: Training Administrator (Inactive) (Training_Administrator) + entitlement_valuekey: 9 + - description: '' + displayname: '' + entitlement_value: Talent Administrator (Employee_Review_Administrator) + entitlement_valuekey: 10 + - description: '' + displayname: '' + entitlement_value: Business Process Administrator (Business_Process_Administrator) + entitlement_valuekey: 11 + - description: '' + displayname: '' + entitlement_value: Finance Administrator (Finance_Administrator) + entitlement_valuekey: 12 + - description: '' + displayname: '' + entitlement_value: Customer Administrator (Customer_Administrator) + entitlement_valuekey: 13 + groupid: + type: string + example: '' + owners: + type: array + items: {} + example: [] + risk: + type: string + example: '' + user_groupdescription: + type: string + example: USERAPPROVAL + user_groupname: + type: string + example: USERAPPROVAL + usergroupkey: + type: number + example: 1 + users: + type: array + items: + type: object + properties: + city: + type: string + example: '' + email: + type: string + example: '' + firstname: + type: string + example: adminfname + lastname: + type: string + example: adminlname + userkey: + type: number + example: 1 + username: + type: string + example: admin + example: + - city: '' + email: '' + firstname: adminfname + lastname: adminlname + userkey: 1 + username: admin + - city: San Francisco + email: lmcneil@workday.net + firstname: Logan + lastname: McNeil + userkey: 12444 + username: lmcneil + - city: San Francisco + email: smorgan@workday.net + firstname: Steve + lastname: Morgan + userkey: 12445 + username: smorgan + - city: San Francisco + email: oliverr@sav.net + firstname: Oliver + lastname: Reynolds + userkey: 12446 + username: Executive Management + example: + - entitlements: + - description: '' + displayname: '' + entitlement_value: Report Writer (Report_Writer) + entitlement_valuekey: 1 + - description: '' + displayname: '' + entitlement_value: Job and Position Administrator (Job_and_Position_Administrator) + entitlement_valuekey: 2 + - description: '' + displayname: '' + entitlement_value: Organization Administrator (Organization_Administrator) + entitlement_valuekey: 3 + - description: '' + displayname: '' + entitlement_value: Setup Administrator (Setup_Administrator) + entitlement_valuekey: 4 + - description: '' + displayname: '' + entitlement_value: Compensation Administrator (Compensation_Administrator) + entitlement_valuekey: 5 + - description: '' + displayname: '' + entitlement_value: Benefits Administrator (Benefits_Administrator) + entitlement_valuekey: 6 + - description: '' + displayname: '' + entitlement_value: Payroll Interface Administrator (Payroll_Interface_Administrator) + entitlement_valuekey: 7 + - description: '' + displayname: '' + entitlement_value: Costing Administrator (Costing_Administrator) + entitlement_valuekey: 8 + - description: '' + displayname: '' + entitlement_value: Training Administrator (Inactive) (Training_Administrator) + entitlement_valuekey: 9 + - description: '' + displayname: '' + entitlement_value: Talent Administrator (Employee_Review_Administrator) + entitlement_valuekey: 10 + - description: '' + displayname: '' + entitlement_value: Business Process Administrator (Business_Process_Administrator) + entitlement_valuekey: 11 + - description: '' + displayname: '' + entitlement_value: Finance Administrator (Finance_Administrator) + entitlement_valuekey: 12 + - description: '' + displayname: '' + entitlement_value: Customer Administrator (Customer_Administrator) + entitlement_valuekey: 13 + groupid: '' + owners: [] + risk: '' + user_groupdescription: USERAPPROVAL + user_groupname: USERAPPROVAL + usergroupkey: 1 + users: + - city: '' + email: '' + firstname: adminfname + lastname: adminlname + userkey: 1 + username: admin + - city: San Francisco + email: lmcneil@workday.net + firstname: Logan + lastname: McNeil + userkey: 12444 + username: lmcneil + - city: San Francisco + email: smorgan@workday.net + firstname: Steve + lastname: Morgan + userkey: 12445 + username: smorgan + - city: San Francisco + email: oliverr@sav.net + firstname: Oliver + lastname: Reynolds + userkey: 12446 + username: Executive Management + examples: + Fetch UserGroups - SUCCESS: + value: + displaycount: 1 + errorcode: 0 + msg: success + totalcount: 1 + usergroups: + - entitlements: + - description: '' + displayname: '' + entitlement_value: Report Writer (Report_Writer) + entitlement_valuekey: 1 + - description: '' + displayname: '' + entitlement_value: Job and Position Administrator (Job_and_Position_Administrator) + entitlement_valuekey: 2 + - description: '' + displayname: '' + entitlement_value: Organization Administrator (Organization_Administrator) + entitlement_valuekey: 3 + - description: '' + displayname: '' + entitlement_value: Setup Administrator (Setup_Administrator) + entitlement_valuekey: 4 + - description: '' + displayname: '' + entitlement_value: Compensation Administrator (Compensation_Administrator) + entitlement_valuekey: 5 + - description: '' + displayname: '' + entitlement_value: Benefits Administrator (Benefits_Administrator) + entitlement_valuekey: 6 + - description: '' + displayname: '' + entitlement_value: Payroll Interface Administrator (Payroll_Interface_Administrator) + entitlement_valuekey: 7 + - description: '' + displayname: '' + entitlement_value: Costing Administrator (Costing_Administrator) + entitlement_valuekey: 8 + - description: '' + displayname: '' + entitlement_value: Training Administrator (Inactive) (Training_Administrator) + entitlement_valuekey: 9 + - description: '' + displayname: '' + entitlement_value: Talent Administrator (Employee_Review_Administrator) + entitlement_valuekey: 10 + - description: '' + displayname: '' + entitlement_value: Business Process Administrator (Business_Process_Administrator) + entitlement_valuekey: 11 + - description: '' + displayname: '' + entitlement_value: Finance Administrator (Finance_Administrator) + entitlement_valuekey: 12 + - description: '' + displayname: '' + entitlement_value: Customer Administrator (Customer_Administrator) + entitlement_valuekey: 13 + groupid: '' + owners: [] + risk: '' + user_groupdescription: USERAPPROVAL + user_groupname: USERAPPROVAL + usergroupkey: 1 + users: + - city: '' + email: '' + firstname: adminfname + lastname: adminlname + userkey: 1 + username: admin + - city: San Francisco + email: lmcneil@workday.net + firstname: Logan + lastname: McNeil + userkey: 12444 + username: lmcneil + - city: San Francisco + email: smorgan@workday.net + firstname: Steve + lastname: Morgan + userkey: 12445 + username: smorgan + - city: San Francisco + email: oliverr@sav.net + firstname: Oliver + lastname: Reynolds + userkey: 12446 + username: Executive Management + Get List of UserGroups - usergroupkey: + value: + displaycount: 1 + errorcode: 0 + msg: success + totalcount: 1 + usergroups: + - entitlements: + - description: Fixed Assets Inquiry - Tech IN + displayname: '' + entitlement_value: FIXED_ASSET_INQUIRY_TECH_IN + entitlement_valuekey: 3 + groupid: '' + owners: + - city: '' + comments: '' + email: example@saviynt.com + firstname: Lilith + lastname: Larionova + rank: 1 + userkey: 301254 + username: zz003487 + risk: '' + user_groupdescription: Group admin + user_groupname: AdminGroup + usergroupkey: 1 + users: + - city: Los Angeles + email: example@saviynt.com + firstname: margar'etm-anager + lastname: margaretm'a:nager + userkey: 317375 + username: margaret'manager + - city: Los Angeles + email: example@saviynt.com + firstname: Stacy + lastname: Sponsor + userkey: 317378 + username: stacysponsor + '412': + description: Get List of UserGroups - FAIL + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 15 Jun 2020 20:52:09 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=dd76fe8b-d8b4-4f34-9f59-e87d073dceb4; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 1 + msg: + type: string + example: user group not found with groupid 100 + examples: + Get List of UserGroups - FAIL: + value: + errorcode: 1 + msg: user group not found with groupid 100 + /createOrganization: + post: + tags: + - organizations + summary: Create Organization + description: |- + This API creates an organization in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `organizationname`, `username` - user who is creating the organization + Optional params: + Organization Detail attributes can be passed like `parentorganization`, `primarycontact`, `customproperty<1 to 20>`, `status` etc. + `organizationtype` - Type of Organization. Possible values: DATA SECURITY / GROUPING / REQUEST RULES + `roles` - List of roles with params - 1. `rolename` + `rules` - List of rules with params - 1. `name` 2. `type` - BUISNESS / TECH / USERUPDATE / NEWUSER / REMOVEUSER / UPDATE_ENTITLEMENT / NEW_ENTITLEMENT / REMOVE_ENTITLEMENT/REQUEST + `entitlements` - List of entitlements with params - 1. `entitlementvalue` 2. `entitlementtype` 3. `endpoint` + `users` - List of users with params - 1. `username` + `endpoints` - + 1. `endpointname` 2. `cp(1..5)` + `owners` - 1. `owner` 2. `rank` 3. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY) + `attributes` - 1. `attributegroupname` 2. `attributes` 3. `value` 4. `attributevalues` + operationId: createOrganization + requestBody: + content: + application/json: + schema: + type: object + properties: + attributes: + type: array + items: + type: object + properties: + attributegroupname: + type: string + example: dfdf + attributes: + type: string + example: street,pincode + attributevalues: + type: object + properties: + pincode: + type: string + example: '123456' + street: + type: string + example: treee + value: + type: string + example: group val + example: + - attributegroupname: dfdf + attributes: street,pincode + attributevalues: + pincode: '123456' + street: treee + value: group val + comments: + type: string + example: comment + customproperty10: + type: string + example: cp10 + customproperty5: + type: string + example: cp5 + endpoints: + type: array + items: + type: object + properties: + cp1: + type: string + example: cp1 + cp2: + type: string + example: cp2 + cp3: + type: string + example: cp3 + cp4: + type: string + example: cp4 + cp5: + type: string + example: cp5 + endpointname: + type: string + example: Office365 + example: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: Office365 + - endpointname: Salesforce + entitlements: + type: array + items: + type: object + properties: + endpoint: + type: string + example: Office365 + entitlementtype: + type: string + example: O365-ADGroup + entitlementvalue: + type: string + example: AzureADSP + example: + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: AzureADSP + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: DepartmentDynamicGroup + location: + type: string + example: los angeles + organizationname: + type: string + example: TestOrg5 + organizationtype: + type: string + example: request rules + owners: + type: array + items: + type: object + properties: + owner: + type: string + example: admin + rank: + type: number + example: 2 + example: + - owner: admin + rank: 2 + - owner: awsadmin + rank: 2 + parentorganization: + type: string + example: Globex + primarycontact: + type: string + example: awsadmin + roles: + type: array + items: + type: object + properties: + rolename: + type: string + example: ADT_AdmitSuperv_MCL + example: + - rolename: ADT_AdmitSuperv_MCL + - rolename: ADT_AdmitSuperv_MVH + status: + type: string + example: ACTIVE + username: + type: string + example: awsadmin + users: + type: array + items: + type: object + properties: + username: + type: string + example: '1000003' + example: + - username: '1000003' + - username: '1000005' + examples: + Create Organization: + value: + attributes: + - attributegroupname: dfdf + attributes: street,pincode + attributevalues: + pincode: '123456' + street: treee + value: group val + comments: comment + customproperty10: cp10 + customproperty5: cp5 + endpoints: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: Office365 + - endpointname: Salesforce + entitlements: + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: AzureADSP + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: DepartmentDynamicGroup + location: los angeles + organizationname: TestOrg5 + organizationtype: request rules + owners: + - owner: admin + rank: 2 + - owner: awsadmin + rank: 2 + parentorganization: Globex + primarycontact: awsadmin + roles: + - rolename: ADT_AdmitSuperv_MCL + - rolename: ADT_AdmitSuperv_MVH + status: ACTIVE + username: awsadmin + users: + - username: '1000003' + - username: '1000005' + responses: + '200': + description: createOrganization / Create Organization 2 + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 30 Dec 2020 02:37:06 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2e50304d-88ee-406e-a9dc-db97315cfe66; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Create Organization 2: + value: + errorCode: '0' + msg: Success + createOrganization: + value: + errorCode: '0' + msg: Success + /updateOrganization: + put: + tags: + - organizations + summary: Update Organization + description: |- + This API updates an organization in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `organizationname`, `username` - user who is updating the organization + Optional params: + `updatedorgname` - param to update organization name + Organization Detail attributes can be passed like `organizationtype`, `parentorganization`, `primarycontact`, `customproperty<1 to 20>` etc. + _**Note**_: organization status update is not allowed. + `endpoints` - List of endpoints with params - + 1. `endpointname` 2. `updatetype` - ADD/REMOVE + + `roles` - List of roles with params - + 1. `rolename` 2. `updatetype` - ADD/REMOVE + + `rules` - List of rules with params - + 1. `name` 2. `type` - BUISNESS/TECH/USERUPDATE/NEWUSER/REMOVEUSER/UPDATE_ENTITLEMENT/NEW_ENTITLEMENT/REMOVE_ENTITLEMENT/REQUEST 3. `updatetype` - ADD/REMOVE + + `entitlements` - List of entitlements with params - + 1. `entitlementvalue` 2. `entitlementtype` 3. `endpoint` 4. `updatetype` - ADD/REMOVE + + `users` - List of users with params - + 1. `username` 2. `updatetype` - ADD/REMOVE + + `owners` - + 1. `owner` 2. `rank` 3. `updatetype`(add/update/remove) 4. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY) + + `attributes` - + 1. `attributegroupname` 2. `attributes` 3. `value` 4. `attributevalues` 5. `updatetype`(addgroup/deletegroup/updategroup) + operationId: updateOrganization + requestBody: + content: + application/json: + schema: + type: object + properties: + attributes: + type: array + items: + type: object + properties: + attributegroupname: + type: string + example: dfdf + attributes: + type: string + example: street,pincode + attributevalues: + type: object + properties: + pincode: + type: string + example: '1234567' + street: + type: string + example: treee1 + updatetype: + type: string + example: updategroup + value: + type: string + example: group val + example: + - attributegroupname: dfdf + attributes: street,pincode + attributevalues: + pincode: '1234567' + street: treee1 + updatetype: updategroup + value: group val + comments: + type: string + example: comment + customproperty10: + type: string + example: cp10 + customproperty5: + type: string + example: cp5 + endpoints: + type: array + items: + type: object + properties: + cp1: + type: string + example: cp1 + cp2: + type: string + example: cp2 + cp3: + type: string + example: cp3 + cp4: + type: string + example: cp4 + cp5: + type: string + example: cp5 + endpointname: + type: string + example: CyberArk + updatetype: + type: string + example: add + example: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: CyberArk + updatetype: add + - endpointname: Salesforce + updatetype: remove + entitlements: + type: array + items: + type: object + properties: + endpoint: + type: string + example: Office365 + entitlementtype: + type: string + example: O365-ADGroup + entitlementvalue: + type: string + example: DepartmentDynamicGroup + updatetype: + type: string + example: remove + example: + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: DepartmentDynamicGroup + updatetype: remove + location: + type: string + example: los angeles + organizationname: + type: string + example: TestOrg5 + organizationtype: + type: string + example: request rules + owners: + type: array + items: + type: object + properties: + owner: + type: string + example: '1000003' + rank: + type: number + example: 2 + updatetype: + type: string + example: add + example: + - owner: '1000003' + rank: 2 + updatetype: add + - owner: awsadmin + rank: 2 + updatetype: remove + parentorganization: + type: string + example: Globex + primarycontact: + type: string + example: awsadmin + roles: + type: array + items: + type: object + properties: + rolename: + type: string + example: ADT_AdmitSuperv_MVH + updatetype: + type: string + example: remove + example: + - rolename: ADT_AdmitSuperv_MVH + updatetype: remove + status: + type: string + example: ACTIVE + username: + type: string + example: awsadmin + users: + type: array + items: + type: object + properties: + updatetype: + type: string + example: add + username: + type: string + example: '1000005' + example: + - updatetype: add + username: '1000005' + examples: + Update Organization: + value: + attributes: + - attributegroupname: dfdf + attributes: street,pincode + attributevalues: + pincode: '1234567' + street: treee1 + updatetype: updategroup + value: group val + comments: comment + customproperty10: cp10 + customproperty5: cp5 + endpoints: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: CyberArk + updatetype: add + - endpointname: Salesforce + updatetype: remove + entitlements: + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: DepartmentDynamicGroup + updatetype: remove + location: los angeles + organizationname: TestOrg5 + organizationtype: request rules + owners: + - owner: '1000003' + rank: 2 + updatetype: add + - owner: awsadmin + rank: 2 + updatetype: remove + parentorganization: Globex + primarycontact: awsadmin + roles: + - rolename: ADT_AdmitSuperv_MVH + updatetype: remove + status: ACTIVE + username: awsadmin + users: + - updatetype: add + username: '1000005' + responses: + '200': + description: Update Organization + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 30 Dec 2020 03:14:25 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=3efde15c-25dd-4b66-b61d-a1a9303caee1; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Update Organization: + value: + errorCode: '0' + msg: Success + /getOrganization: + get: + tags: + - organizations + summary: Get Organization + description: |- + This API returns a list of organizations in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `organizationname`, `max`, `offset` + `filtercriteria` - organizationname,organizationtype(possible values - Data Security, Request Rules, Grouping, 1, 2, 3),status("ACTIVE"/"INACTIVE"),updateuser(username),createuser(username),parentorganization,customproperty<1-20>,description,primarycontact(username),vendormanager(username),location,risk,score + ***OR*** + `orgQuery`(Example : c.organizationname like '%example_orgname%') + operationId: getOrganization + requestBody: + content: + application/json: + schema: + type: object + properties: + max: + type: string + example: '2' + offset: + type: string + example: '0' + orgQuery: + type: string + example: c.organizationname like '%TestOrg5%' + examples: + Get Organization: + value: + max: '2' + offset: '0' + orgQuery: c.organizationname like '%TestOrg5%' + responses: + '200': + description: Get Organization / Get Organization 2 + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 30 Dec 2020 04:19:30 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=406488b2-e5a1-4a1b-8c87-ccf8177ef29e; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + organizations: + type: array + items: + type: object + properties: + createdate: + type: string + example: '2019-08-20 18:31:38' + createuser: + type: string + example: admin + customproperty17: + type: string + example: Compliance + description: + type: string + example: testorg + endpoints: + type: array + items: {} + example: [] + entitlements: + type: array + items: {} + example: [] + location: + type: string + example: Bangalore + organizationname: + type: string + example: testorg + organizationtype: + type: string + example: Data Security + parentorganization: + type: string + example: orgNameSav + primaryvendorcontact: + type: string + example: lmcneil + risk: + type: string + example: '0' + roles: + type: array + items: {} + example: [] + rules: + type: array + items: {} + example: [] + score: + type: string + example: '0' + status: + type: string + example: Active + updatedate: + type: string + example: '2020-07-23 20:19:59' + updateuser: + type: string + example: admin + users: + type: array + items: {} + example: [] + example: + - createdate: '2019-08-20 18:31:38' + createuser: admin + customproperty17: Compliance + description: testorg + endpoints: [] + entitlements: [] + location: Bangalore + organizationname: testorg + organizationtype: Data Security + parentorganization: orgNameSav + primaryvendorcontact: lmcneil + risk: '0' + roles: [] + rules: [] + score: '0' + status: Active + updatedate: '2020-07-23 20:19:59' + updateuser: admin + users: [] + totalcount: + type: number + example: 1 + examples: + Get Organization: + value: + displaycount: 1 + errorCode: '0' + msg: Success + organizations: + - createdate: '2019-08-20 18:31:38' + createuser: admin + customproperty17: Compliance + description: testorg + endpoints: [] + entitlements: [] + location: Bangalore + organizationname: testorg + organizationtype: Data Security + parentorganization: orgNameSav + primaryvendorcontact: lmcneil + risk: '0' + roles: [] + rules: [] + score: '0' + status: Active + updatedate: '2020-07-23 20:19:59' + updateuser: admin + users: [] + totalcount: 1 + Get Organization 2: + value: + displaycount: 1 + errorCode: '0' + msg: Success + organizations: + - attributes: + - attributegroupname: dfdf + attributes: + pincode: '1234567' + street: treee1 + value: group val + comments: comment + createdate: '2020-12-30 02:37:00' + createuser: admin + customproperty10: cp10 + customproperty5: cp5 + enddate: '2021-01-30 00:00:00' + endpoints: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: Office365 + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: CyberArk + entitlements: + - customproperty1: 'true' + description: '' + entitlement_glossary: '' + entitlementtypekey: O365-ADGroup + entitlementvalue: AzureADSP + systemname: Office365 + eventsource: '11' + location: los angeles + organizationkey: '23' + organizationname: TestOrg5 + organizationowners: + - city: Los Angeles + comments: CN=admin,OU=SaviyntPoC,DC=corpAD,DC=saviynt,DC=com + email: example@saviynt.com + enddate: 12-29-9999 00:00:00 + firstname: Saviynt + lastname: AdminUser + policy: 1 + rank: 2 + userkey: 2 + username: admin + - city: Puteaux + comments: '' + email: example@saviynt.com + enddate: '' + firstname: Patricia + lastname: Bathilde + policy: 1 + rank: 2 + userkey: 301258 + username: '1000003' + organizationtype: Request Rules + parentorganization: Globex + primaryvendorcontact: awsadmin + risk: '0' + roles: + - rolename: ADT_AdmitSuperv_MCL + rules: [] + savCreateDate: '2020-12-30 02:37:00' + savUpdateDate: '2020-12-30 02:37:00' + score: '0' + startdate: '2020-12-29 00:00:00' + status: Active + updatedate: '2020-12-30 03:13:57' + updateuser: admin + users: + - city: Puteaux + companyname: Saviynt France + costcenter: '36100' + departmentNumber: '' + departmentname: '' + email: example@saviynt.com + firstname: Patricia + jobcode: '45200' + jobcodedesc: '' + lastname: Bathilde + manager: margaret'manager + status: Active + username: '1000003' + - city: Puteaux + companyname: Saviynt France + costcenter: '3428' + departmentNumber: '' + departmentname: '' + email: example@saviynt.com + firstname: Peggy + jobcode: '' + jobcodedesc: Sr. Technology Sales Engineer + lastname: Bouabbache + manager: ADAMSL + status: Active + username: '1000005' + totalcount: 1 + /deleteOrganization: + post: + tags: + - organizations + summary: Delete Organization + description: |- + This API deletes organization in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `organizationname`, + `username` + operationId: deleteOrganization + requestBody: + content: + application/json: + schema: + type: object + properties: + organizationname: + type: string + example: testorg1 + username: + type: string + example: admin + examples: + Delete Organization: + value: + organizationname: testorg1 + username: admin + responses: + '200': + description: Delete Organization + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 23 Jul 2020 19:37:04 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=94589b88-cb05-4e05-a11d-dc62e85bb238; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Delete Organization: + value: + errorcode: '0' + msg: success + /getConnections: + post: + tags: + - connections + summary: Get List of Connections + description: "This API returns list of Connections in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nOptional params:\r\n`max`,`offset`,\r\n`connectiontype`,\r\n`connectionname`" + operationId: getListOfConnections + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + connectionname: + type: string + example: AD Test + connectiontype: + type: string + example: AD + responses: + '200': + description: Get Connections + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 00:27:49 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ea1c1da4-ed84-4efb-821d-bb31d05a0efb; Path=/ + content: + application/json: + schema: + type: object + properties: + ConnectionList: + type: array + items: + type: object + properties: + CONNECTIONDESCRIPTION: + type: string + example: '' + CONNECTIONNAME: + type: string + example: AD Test + CONNECTIONTYPE: + type: string + example: AD + CREATEDBY: + type: string + example: admin( ADMIN) + CREATEDON: + type: string + example: '2017-03-23T00:48:28Z' + STATUS: + type: number + example: 1 + UPDATEDBY: + type: string + example: admin(ADMIN ADMIN) + UPDATEDON: + type: string + example: '2017-08-18T04:18:19Z' + example: + - CONNECTIONDESCRIPTION: '' + CONNECTIONNAME: AD Test + CONNECTIONTYPE: AD + CREATEDBY: admin( ADMIN) + CREATEDON: '2017-03-23T00:48:28Z' + STATUS: 1 + UPDATEDBY: admin(ADMIN ADMIN) + UPDATEDON: '2017-08-18T04:18:19Z' + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + examples: + Get Connections: + value: + ConnectionList: + - CONNECTIONDESCRIPTION: '' + CONNECTIONNAME: AD Test + CONNECTIONTYPE: AD + CREATEDBY: admin( ADMIN) + CREATEDON: '2017-03-23T00:48:28Z' + STATUS: 1 + UPDATEDBY: admin(ADMIN ADMIN) + UPDATEDON: '2017-08-18T04:18:19Z' + errorCode: '0' + msg: Successful + /getConnectionDetails: + post: + tags: + - connections + summary: Get Connections Details + description: "This API returns connection details in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n`connectiontype` or `connectionname`(if both are passed then connectionkey will be considered)" + operationId: getConnectionsDetails + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + connectionkey: + type: string + example: '120' + connectionname: + type: string + example: Workday + responses: + '200': + description: Get Connections Details - Success + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 12 Jun 2020 01:23:52 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=17fcc497-2c98-45ca-bbe1-437de13f1ad3; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + connectionattributes: + type: object + properties: + ACCOUNTS_IMPORT_JSON: + type: string + example: '' + CHANGEPASSJSON: + type: string + COMBINEDCREATEREQUEST: + type: string + example: '' + CONNECTIONJSON: + type: string + example: "{\r\n\t\"authentications\": {\r\n\t\t\"login\": {\r\n\t\t\t\"authType\": \"basic\",\r\n\t\t\t\"properties\": {\r\n\t\t\t\t\"SOAP_ENDPOINT\": \"https://wd2-impl-services1.workday.com/ccx/service/saviynt_pt1/Human_Resources/34.0\",\r\n\t\t\t\t\"USERNAME\": \"ISU001@saviynt_pt1\",\r\n\t\t\t\t\"PASSWORD\": \"S@v1ynt@321\",\r\n\t\t\t\t\"PASSWORD_TYPE\": \"PasswordText\",\r\n\t\t\t\t\"REQUESTPARAMS\": {\r\n\t\t\t\t\t\"CONTENT-TYPE\": \"text/xml;charset=UTF-8\",\r\n\t\t\t\t\t\"Connection\": \"Keep-Alive\",\r\n\t\t\t\t\t\"Keep-Alive\": \"timeout=600, max=1000\"\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}" + CREATEACCOUNTJSON: + type: string + example: '' + DATA_TO_IMPORT: + type: string + example: '' + DATEFORMAT: + type: string + example: '' + DELETEACCOUNTJSON: + type: string + example: '' + DISABLEACCOUNTJSON: + type: string + example: '' + ENABLEACCOUNTJSON: + type: string + example: '' + GRANTACCESSJSON: + type: string + example: '' + HR_IMPORT_JSON: + type: string + example: "{\r\n \"REQUESTXML1\": \"${USERNAME}${PASSWORD}hVovDsRjkofd3OphNZ83kg==2017-07-27T22:14:20.415Zfalsefalsefalse${PAGE_NUMBER}${PAGE_SIZE}falsetruefalsetruefalsetruetruetruefalsetruetruetruetruetruetruetruetruetruetruetruetruefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsetruefalsefalsefalsefalsefalsefalsefalsefalsetruetruetruetruetruetruetruetruetruetrue\",\r\n \"USERMAPPING1\": \"CITY:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Municipality,COMPANYNAME:Worker_Data.Employment_Data.Worker_Job_Data.Position_Organizations_Data.Position_Organization_Data.Organization_Data.Organization_Name,COSTCENTER:Worker_Data.Employment_Data.Worker_Job_Data.Position_Organizations_Data.Position_Organization_Data.Organization_Data.Organization_Code,COUNTRY:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Address_Data.Country_Reference.ID(@type=='ISO_3166-1_Alpha-3_Code'),CUSTOMPROPERTY16:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Job_Profile_Summary_Data.Job_Family_Reference.ID(@type=='Job_Family_ID'),CUSTOMPROPERTY18:Worker_Data.Personal_Data.Name_Data.Preferred_Name_Data.Name_Detail_Data.Last_Name,CUSTOMPROPERTY20:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Pay_Rate_Type_Reference.ID(@type=='Pay_Rate_Type_ID'),CUSTOMPROPERTY21:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Name,CUSTOMPROPERTY22:Worker_Data.User_ID,EMAIL:Worker_Data.Personal_Data.Contact_Data.Email_Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Email_Address,EMPLOYEEID:Worker_Data.Worker_ID,FIRSTNAME:Worker_Data.Personal_Data.Name_Data.Legal_Name_Data.Name_Detail_Data.First_Name,JOBCODE:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Job_Profile_Summary_Data.Job_Profile_Reference.ID(@type=='Job_Profile_ID'),JOBCODEDESC:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Job_Profile_Summary_Data.Job_Profile_Name,LASTNAME:Worker_Data.Personal_Data.Name_Data.Legal_Name_Data.Name_Detail_Data.Last_Name,LOCATION:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Location_Reference.ID(@type=='Location_ID'),CUSTOMPROPERTY30:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Location_Reference.ID(@type=='Location_ID'),LOCATIONDESC:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Location_Type_Reference.ID(@type=='Location_Type_ID'), MIDDLENAME:Worker_Data.Personal_Data.Name_Data.Legal_Name_Data.Name_Detail_Data.Middle_Name,PHONENUMBER:Worker_Data.Personal_Data.Contact_Data.Phone_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').@Formatted_Phone,PREFEREDFIRSTNAME:Worker_Data.Personal_Data.Name_Data.Preferred_Name_Data.Name_Detail_Data.First_Name,REGIONCODE:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Postal_Code,STARTDATE:Worker_Data.Employment_Data.Worker_Status_Data.Hire_Date,STATE:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Country_Region_Descriptor,STATUSKEY:Worker_Data.Employment_Data.Worker_Status_Data.Active,STREET:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Address_Line_Data(@Type=='ADDRESS_LINE_1'),TITLE:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Title,USERNAME:Worker_Data.Worker_ID,OWNER:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Manager_as_of_last_detected_manager_change_Reference.ID(@type=='Employee_ID')\",\r\n \"PREFIX1\": \"wd\",\r\n \"RESPONSETOTALRESULTS1\": \"Body.Get_Workers_Response.Response_Results.Total_Results\",\r\n \"RESPONSEPAGERESULTS1\": \"Body.Get_Workers_Response.Response_Results.Page_Results\",\r\n \"RESPONSEDATAPATH1\": \"Body.Get_Workers_Response.Response_Data.Worker\"\r\n}" + PAGE_SIZE: + type: string + example: '' + PASSWORD: + type: string + example: y//A5/5dsRuThK42K5e8rA== + PASSWORD_MAX_LENGTH: + type: string + example: '' + PASSWORD_MIN_LENGTH: + type: string + example: '' + PASSWORD_NOOFCAPSALPHA: + type: string + example: '' + PASSWORD_NOOFDIGITS: + type: string + example: '' + PASSWORD_NOOFSPLCHARS: + type: string + example: '' + PASSWORD_TYPE: + type: string + example: PasswordText + RESPONSEPATH_PAGERESULTS: + type: string + example: '' + RESPONSEPATH_TOTALRESULTS: + type: string + example: '' + RESPONSEPATH_USERLIST: + type: string + example: '' + REVOKEACCESSJSON: + type: string + example: '' + SOAP_ENDPOINT: + type: string + example: https://wd2-impl-services1.workday.com/ccx/service/saviynt_pt1/Human_Resources/34.0 + UPDATEACCOUNTJSON: + type: string + example: '' + UPDATEUSERJSON: + type: string + example: '' + USERNAME: + type: string + example: ISU001@saviynt_pt1 + connectionkey: + type: number + example: 120 + connectionname: + type: string + example: Workday + connectiontype: + type: string + example: Workday-SOAP + createdby: + type: string + example: admin(null null) + createdon: + type: string + example: '2020-03-12T11:49:15Z' + defaultsavroles: + type: string + example: '' + description: + type: string + example: Workday + emailtemplate: + type: string + example: '' + errorcode: + type: number + example: 0 + msg: + type: string + example: success + status: + type: number + example: 1 + updatedby: + type: string + example: admin(adminfname adminlname) + examples: + Get Connections Details - Success: + value: + connectionattributes: + ACCOUNTS_IMPORT_JSON: '' + CHANGEPASSJSON: null + COMBINEDCREATEREQUEST: '' + CONNECTIONJSON: "{\r\n\t\"authentications\": {\r\n\t\t\"login\": {\r\n\t\t\t\"authType\": \"basic\",\r\n\t\t\t\"properties\": {\r\n\t\t\t\t\"SOAP_ENDPOINT\": \"https://wd2-impl-services1.workday.com/ccx/service/saviynt_pt1/Human_Resources/34.0\",\r\n\t\t\t\t\"USERNAME\": \"ISU001@saviynt_pt1\",\r\n\t\t\t\t\"PASSWORD\": \"S@v1ynt@321\",\r\n\t\t\t\t\"PASSWORD_TYPE\": \"PasswordText\",\r\n\t\t\t\t\"REQUESTPARAMS\": {\r\n\t\t\t\t\t\"CONTENT-TYPE\": \"text/xml;charset=UTF-8\",\r\n\t\t\t\t\t\"Connection\": \"Keep-Alive\",\r\n\t\t\t\t\t\"Keep-Alive\": \"timeout=600, max=1000\"\r\n\t\t\t\t}\r\n\t\t\t}\r\n\t\t}\r\n\t}\r\n}" + CREATEACCOUNTJSON: '' + DATA_TO_IMPORT: '' + DATEFORMAT: '' + DELETEACCOUNTJSON: '' + DISABLEACCOUNTJSON: '' + ENABLEACCOUNTJSON: '' + GRANTACCESSJSON: '' + HR_IMPORT_JSON: "{\r\n \"REQUESTXML1\": \"${USERNAME}${PASSWORD}hVovDsRjkofd3OphNZ83kg==2017-07-27T22:14:20.415Zfalsefalsefalse${PAGE_NUMBER}${PAGE_SIZE}falsetruefalsetruefalsetruetruetruefalsetruetruetruetruetruetruetruetruetruetruetruetruefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsefalsetruefalsefalsefalsefalsefalsefalsefalsefalsetruetruetruetruetruetruetruetruetruetrue\",\r\n \"USERMAPPING1\": \"CITY:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Municipality,COMPANYNAME:Worker_Data.Employment_Data.Worker_Job_Data.Position_Organizations_Data.Position_Organization_Data.Organization_Data.Organization_Name,COSTCENTER:Worker_Data.Employment_Data.Worker_Job_Data.Position_Organizations_Data.Position_Organization_Data.Organization_Data.Organization_Code,COUNTRY:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Address_Data.Country_Reference.ID(@type=='ISO_3166-1_Alpha-3_Code'),CUSTOMPROPERTY16:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Job_Profile_Summary_Data.Job_Family_Reference.ID(@type=='Job_Family_ID'),CUSTOMPROPERTY18:Worker_Data.Personal_Data.Name_Data.Preferred_Name_Data.Name_Detail_Data.Last_Name,CUSTOMPROPERTY20:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Pay_Rate_Type_Reference.ID(@type=='Pay_Rate_Type_ID'),CUSTOMPROPERTY21:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Name,CUSTOMPROPERTY22:Worker_Data.User_ID,EMAIL:Worker_Data.Personal_Data.Contact_Data.Email_Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Email_Address,EMPLOYEEID:Worker_Data.Worker_ID,FIRSTNAME:Worker_Data.Personal_Data.Name_Data.Legal_Name_Data.Name_Detail_Data.First_Name,JOBCODE:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Job_Profile_Summary_Data.Job_Profile_Reference.ID(@type=='Job_Profile_ID'),JOBCODEDESC:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Job_Profile_Summary_Data.Job_Profile_Name,LASTNAME:Worker_Data.Personal_Data.Name_Data.Legal_Name_Data.Name_Detail_Data.Last_Name,LOCATION:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Location_Reference.ID(@type=='Location_ID'),CUSTOMPROPERTY30:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Location_Reference.ID(@type=='Location_ID'),LOCATIONDESC:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Site_Summary_Data.Location_Type_Reference.ID(@type=='Location_Type_ID'), MIDDLENAME:Worker_Data.Personal_Data.Name_Data.Legal_Name_Data.Name_Detail_Data.Middle_Name,PHONENUMBER:Worker_Data.Personal_Data.Contact_Data.Phone_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').@Formatted_Phone,PREFEREDFIRSTNAME:Worker_Data.Personal_Data.Name_Data.Preferred_Name_Data.Name_Detail_Data.First_Name,REGIONCODE:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Postal_Code,STARTDATE:Worker_Data.Employment_Data.Worker_Status_Data.Hire_Date,STATE:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Country_Region_Descriptor,STATUSKEY:Worker_Data.Employment_Data.Worker_Status_Data.Active,STREET:Worker_Data.Personal_Data.Contact_Data.Address_Data(Usage_Data->Type_Data->Type_Reference->ID=='WORK').Address_Line_Data(@Type=='ADDRESS_LINE_1'),TITLE:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Business_Title,USERNAME:Worker_Data.Worker_ID,OWNER:Worker_Data.Employment_Data.Worker_Job_Data.Position_Data.Manager_as_of_last_detected_manager_change_Reference.ID(@type=='Employee_ID')\",\r\n \"PREFIX1\": \"wd\",\r\n \"RESPONSETOTALRESULTS1\": \"Body.Get_Workers_Response.Response_Results.Total_Results\",\r\n \"RESPONSEPAGERESULTS1\": \"Body.Get_Workers_Response.Response_Results.Page_Results\",\r\n \"RESPONSEDATAPATH1\": \"Body.Get_Workers_Response.Response_Data.Worker\"\r\n}" + PAGE_SIZE: '' + PASSWORD: y//A5/5dsRuThK42K5e8rA== + PASSWORD_MAX_LENGTH: '' + PASSWORD_MIN_LENGTH: '' + PASSWORD_NOOFCAPSALPHA: '' + PASSWORD_NOOFDIGITS: '' + PASSWORD_NOOFSPLCHARS: '' + PASSWORD_TYPE: PasswordText + RESPONSEPATH_PAGERESULTS: '' + RESPONSEPATH_TOTALRESULTS: '' + RESPONSEPATH_USERLIST: '' + REVOKEACCESSJSON: '' + SOAP_ENDPOINT: https://wd2-impl-services1.workday.com/ccx/service/saviynt_pt1/Human_Resources/34.0 + UPDATEACCOUNTJSON: '' + UPDATEUSERJSON: '' + USERNAME: ISU001@saviynt_pt1 + connectionkey: 120 + connectionname: Workday + connectiontype: Workday-SOAP + createdby: admin(null null) + createdon: '2020-03-12T11:49:15Z' + defaultsavroles: '' + description: Workday + emailtemplate: '' + errorcode: 0 + msg: success + status: 1 + updatedby: admin(adminfname adminlname) + /deleteConnection: + delete: + tags: + - connections + summary: Delete Connections + description: |- + This API deletes Connections in SSM. The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `updateuser` + `connectionQuery` or `connectionkey` (If both are passed then connectionkey will be considered) + operationId: deleteConnections + requestBody: + content: + application/json: + schema: + type: object + properties: + connectionkey: + type: array + items: + type: string + example: '8' + example: + - '8' + updateuser: + type: string + example: admin + examples: + Delete Connections: + value: + connectionkey: + - '8' + updateuser: admin + text/plain: + examples: + Delete Connections: + value: '' + responses: + '200': + description: Delete Connections + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-utl-1.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 28 Feb 2022 06:36:31 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8e8359be-0048-4924-af98-6a728a3f0b20; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + connections: + type: array + items: + type: object + properties: + '8': + type: string + example: Connection Deleted Sucessfully + example: + - '8': Connection Deleted Sucessfully + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Delete Connections: + value: + connections: + - '8': Connection Deleted Sucessfully + errorcode: '0' + msg: success + /createDataset: + post: + tags: + - datasets + summary: createDataset + description: |- + This API is used to create a new dataset. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + `datasetname` + `displayname` + `attributeConfig` + Optional parameters: + `datasetowner` + `description` + operationId: createdataset + requestBody: + content: + application/json: + schema: + type: object + properties: + attributeConfig: + type: string + example: carno, locationCode, city, state, country + datasetname: + type: string + example: LatestCar + description: + type: string + example: Type + displayname: + type: string + example: new BMW + examples: + createDataset: + value: + attributeConfig: carno, locationCode, city, state, country + datasetname: LatestCar + description: Type + displayname: new BMW + responses: + '200': + description: createDataset + headers: + Date: + schema: + type: string + example: Wed, 08 Jun 2022 07:08:42 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bacb63b3-3fde-4778-9b1b-86e8a94492d5; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + examples: + createDataset: + value: + errorCode: 0 + msg: Success + /getDatasetValues: + get: + tags: + - datasets + summary: getDatasetValues + description: |- + This API is used to get the DatasetValues. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + `datasetname` + operationId: getdatasetvalues + requestBody: + content: + text/plain: + examples: + getDatasetValues: + value: "{\r\n\"datasetname\": \"Latest_Car\",\r\n}" + responses: + '200': + description: getDatasetValues + headers: + Cache-Control: + schema: + type: string + example: private + Date: + schema: + type: string + example: Wed, 08 Jun 2022 07:19:09 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9395297d-c31d-4172-8c7c-4ce9801bd356; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + examples: + getDatasetValues: + value: + errorCode: 0 + msg: Success + /updateDatasetValues: + post: + tags: + - datasets + summary: updateDatasetValues + description: |- + This API is used to update the values of the DatasetValues. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + `datasetname` + `updateattributes` + operationId: updatedatasetvalues + requestBody: + content: + application/json: + schema: + type: object + properties: + datasetname: + type: string + example: Latest_Car + locationCode: + type: string + example: '10' + updateattributes: + type: object + properties: + city: + type: string + example: ABC + examples: + updateDatasetValues: + value: + datasetname: Latest_Car + locationCode: '10' + updateattributes: + city: ABC + responses: + '200': + description: updateDatasetValues + headers: + Date: + schema: + type: string + example: Wed, 08 Jun 2022 06:17:29 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bacb63b3-3fde-4778-9b1b-86e8a94492d5; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + examples: + updateDatasetValues: + value: + errorCode: 0 + msg: Success + /deleteDataset: + post: + tags: + - datasets + summary: deleteDataset + description: |- + This API is used to delete a dataset. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + `datasetname` + operationId: deletedataset + requestBody: + content: + text/plain: + examples: + deleteDataset: + value: "{\r\n \"datasetname\": \"Latest_Car\",\r\n}" + responses: + '200': + description: deleteDataset + headers: + Date: + schema: + type: string + example: Wed, 08 Jun 2022 06:24:34 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bacb63b3-3fde-4778-9b1b-86e8a94492d5; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + examples: + deleteDataset: + value: + errorCode: '0' + msg: Successful + /uploadDatasetCSV: + post: + tags: + - datasets + summary: uploadDatasetCSV + description: |- + This API is used to upload the CSV file for a dataset. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + `datasetValuefile` + `datasetname` + **Note**: The `datasetValuefile` must be CSV. + operationId: uploaddatasetcsv + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + datasetValuefile: + type: string + example: ((.csv)) + datasetname: + type: string + example: Latest_Car + responses: + '200': + description: uploadDatasetCSV + headers: + Date: + schema: + type: string + example: Wed, 08 Jun 2022 06:31:38 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bacb63b3-3fde-4778-9b1b-86e8a94492d5; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 1 + msg: + type: string + example: Unexpected error occurred + examples: + uploadDatasetCSV: + value: + errorCode: 1 + msg: Unexpected error occurred + /updateDataset: + post: + tags: + - datasets + summary: updateDataset + description: |- + This API is used to update the Dataset details. + The `Authorization` must have a `Bearer` followed by a `Token`. + Mandatory parameters: + `datasetname` + operationId: updatedataset + requestBody: + content: + application/json: + schema: + type: object + properties: + datasetname: + type: string + example: Latest_Car + datasetowner: + type: string + example: ARFCU1 + description: + type: string + example: Type_kill + displayname: + type: string + example: daddy_ghgh_1 + examples: + updateDataset: + value: + datasetname: Latest_Car + datasetowner: ARFCU1 + description: Type_kill + displayname: daddy_ghgh_1 + responses: + '200': + description: updateDataset + headers: + Date: + schema: + type: string + example: Wed, 08 Jun 2022 06:37:31 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bacb63b3-3fde-4778-9b1b-86e8a94492d5; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '1' + msg: + type: string + example: Unexpected error occurred + examples: + updateDataset: + value: + errorCode: '1' + msg: Unexpected error occurred + /fetchControlList: + post: + tags: + - analytics + summary: Fetch List of Analytics + description: 'This operation fetches a list of Analytic Controls by `Category` or `Application` ("EndpointName"). Optional params: `application`, `category`, `max`, `offset` The `Authorization` must have `Bearer` followed by `Token`.' + operationId: fetchListOfAnalytics + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + application: + type: string + example: System1 + category: + type: string + example: '' + examples: + Fetch List of Analytics: + value: + application: System1 + category: '' + responses: + '200': + description: Fetch Control List + headers: + Date: + schema: + type: string + example: Thu, 02 Aug 2018 20:55:52 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=afec35e6-c751-41ba-9a31-835c8d692589; Path=/ + content: + application/json: + schema: + type: object + properties: + controls: + type: array + items: + type: object + properties: + analyticsId: + type: number + example: 45 + analyticsName: + type: string + example: Test 1 + application: + type: string + example: System1 + category: + type: string + example: Certification + conflictCount: + type: number + example: 14 + controlid: + type: number + example: null + description: + type: string + example: '' + lastRun: + type: string + example: 05-01-2017 21:10:03 + recommendations: + type: string + example: '' + risk: + type: string + example: High + example: + - analyticsId: 45 + analyticsName: Test 1 + application: System1 + category: Certification + conflictCount: 14 + controlid: null + description: '' + lastRun: 05-01-2017 21:10:03 + recommendations: '' + risk: High + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Fetch Control List: + value: + controls: + - analyticsId: 45 + analyticsName: Test 1 + application: System1 + category: Certification + conflictCount: 14 + controlid: null + description: '' + lastRun: 05-01-2017 21:10:03 + recommendations: '' + risk: High + errorCode: '0' + msg: Success + /fetchControlDetails: + post: + tags: + - analytics + summary: Fetch Analytics Details + description: "This web service API is used to fetch the details of analytics controls.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`controlId` - this is the ANALYTICSKEY\r\n\r\nOptional params:\r\n`max`, `offset`" + operationId: fetchAnalyticsDetails + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + controlId: + type: string + example: '2' + responses: + '200': + description: Fetch Control Details + headers: + Date: + schema: + type: string + example: Thu, 02 Aug 2018 21:52:00 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4e247b2e-285e-4d3a-82bb-c2c32fbb212a; Path=/ + content: + application/json: + schema: + type: object + properties: + controlDetails: + type: array + items: + type: object + properties: + NAME: + type: string + example: '0002570' + STATUS: + type: string + example: active + example: + - NAME: '0002570' + STATUS: active + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Fetch Control Details: + value: + controlDetails: + - NAME: '0002570' + STATUS: active + errorCode: '0' + msg: Success + security: + - bearerAuth: [] + /runAnalyticsControls: + post: + tags: + - analytics + summary: Run Analytics Controls + description: |- + This API is used to run analytics job. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `jobgroup`, + `jobname`, + `analyticsCategories` (start and end with ###) + Optional params: + `analyticsApplications` + `analyticssubcategories` (start and end with ###) + operationId: runAnalyticsControls + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticsid: + type: string + example: '6' + jobgroup: + type: string + example: Analytics + jobname: + type: string + example: AnalyticsESJob + examples: + Run Analytics Controls ES: + value: + analyticsid: '6' + jobgroup: Analytics + jobname: AnalyticsESJob + application/x-www-form-urlencoded: + schema: + type: object + properties: + analyticsCategories: + type: string + example: '###Usage###' + analyticssubcategories: + type: string + example: '###testsub###' + jobgroup: + type: string + example: Analytics + jobname: + type: string + example: AnalyticsJob + examples: + Run Analytics Controls: + value: + analyticsCategories: '###Usage###' + analyticssubcategories: '###testsub###' + jobgroup: Analytics + jobname: AnalyticsJob + responses: + '200': + description: Run Analytics Controls / Run Analytics Controls with analyticssubcategories / Run Analytics Controls ES + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 20 Aug 2019 06:46:14 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=1653a088-9c42-4c30-851d-6eee26acb660; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Job started successfully + examples: + Run Analytics Controls: + value: + errorCode: '0' + msg: Job started successfully + Run Analytics Controls ES: + value: + errorCode: '0' + msg: Job started successfully + Run Analytics Controls with analyticssubcategories: + value: + errorCode: '0' + msg: Job started successfully + /fetchRuntimeControlsData: + post: + tags: + - analytics + summary: Fetch Runtime Controls Data + description: "This API is used to fetch runtime analytics data from SSM.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nMandatory params: \n`analyticsid` ***OR*** `analyticsname`,\n`attributes` - runtime control params. \nSample : For this query - select * from users where manager = ${manager} and username = ${username}\n\"attributes\":{\n\t\"manager\":\"4\",\n\t\"username\":\"johndoe\"\n}\n\nOptional params:\n`max`,\n`offset`,\n`loggedinuser`" + operationId: fetchRuntimeControlsData + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticsid: + type: string + example: '82' + attributes: + type: object + properties: + manager: + type: string + example: '4' + username: + type: string + example: johndoe + loggedinuser: + type: string + example: admin + max: + type: string + example: '10' + offset: + type: string + example: '0' + examples: + Fetch Runtime Controls Data: + value: + analyticsid: '82' + attributes: + manager: '4' + username: johndoe + loggedinuser: admin + max: '10' + offset: '0' + responses: + '200': + description: Fetch Runtime Controls Data + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 02 Jan 2020 23:09:09 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=d14c2c8d-a9e4-4e9d-b742-fb816b21f8c5; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 1 + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + result: + type: array + items: + type: object + properties: + FIRSTNAME: + type: string + example: John + USERNAME: + type: string + example: johndoe + example: + - FIRSTNAME: John + USERNAME: johndoe + total: + type: number + example: 1 + examples: + Fetch Runtime Controls Data: + value: + displaycount: 1 + errorCode: 0 + msg: Success + result: + - FIRSTNAME: John + USERNAME: johndoe + total: 1 + /fetchRuntimeControlsDataV2: + post: + tags: + - analytics + summary: Fetch Runtime Controls Data V2 + description: "This API is used to fetch runtime analytics data from ES.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nMandatory params: \n`analyticsid` ***OR*** `analyticsname`((if both are passed then analyticsid will be considered),\n`attributes` - runtime control params. \nSample : For this query - SELECT u.username, u.firstname, u.lastname, u.email, u.manager AS 'USERCONTEXT',u.statuskey FROM users u WHERE u.statuskey is not null and u.statuskey not in (${statuskey}) and u.MANAGER is not null;\n\"attributes\":{\n\t\"statuskey\": \"0\"\n}\n\nOptional params:\n`max`,\n`offset`,\n`requestor`" + operationId: fetchRuntimeControlsDataV2 + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticsid: + type: string + example: '121601' + analyticsname: + type: string + example: Direct Reports Runtime1 + attributes: + type: object + properties: + statuskey: + type: string + example: '0' + max: + type: string + example: '10' + offset: + type: string + example: '15' + requestor: + type: string + example: admin + examples: + Fetch Runtime Controls Data V2: + value: + analyticsid: '121601' + analyticsname: Direct Reports Runtime1 + attributes: + statuskey: '0' + max: '10' + offset: '15' + requestor: admin + responses: + '200': + description: Fetch Runtime Controls Data V2 + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 17 Jun 2021 22:51:50 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=c4c6e980-1b35-43d6-b41f-6cdf07ac4a8c; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 10 + errorcode: + type: string + example: '0' + msg: + type: string + example: success + results: + type: array + items: + type: object + properties: + USERCONTEXT: + type: string + example: '3' + email: + type: string + example: example@saviynt.com + firstname: + type: string + example: amelia + lastname: + type: string + example: caputo + statuskey: + type: string + example: '1' + username: + type: string + example: '1000045' + example: + - USERCONTEXT: '3' + email: example@saviynt.com + firstname: amelia + lastname: caputo + statuskey: '1' + username: '1000045' + - USERCONTEXT: '3' + email: example@saviynt.com + firstname: angelo + lastname: ferentz + statuskey: '1' + username: '1000046' + - USERCONTEXT: '4' + email: example@saviynt.com + firstname: Gerard + lastname: Meranville + statuskey: '1' + username: '1000047' + - USERCONTEXT: '320156' + email: example@saviynt.com + firstname: Daniele + lastname: Marc + statuskey: '1' + username: '1000060' + - USERCONTEXT: '317299' + email: example@saviynt.com + firstname: Jocelyne + lastname: Capelle + statuskey: '1' + username: '1000092' + - USERCONTEXT: '3' + email: example@saviynt.com + firstname: Don + lastname: Goodliffe + statuskey: '1' + username: '1000129' + - USERCONTEXT: '320156' + email: example@saviynt.com + firstname: Dimitri + lastname: Dautel + statuskey: '1' + username: '1000132' + - USERCONTEXT: '317203' + email: example@saviynt.com + firstname: Valerie + lastname: Lavaud + statuskey: '1' + username: '1000137' + - USERCONTEXT: '317342' + email: example@saviynt.com + firstname: Cecile + lastname: Talmon + statuskey: '1' + username: '1000170' + - USERCONTEXT: '1' + email: example@saviynt.com + firstname: Helene + lastname: Diot + statuskey: '1' + username: '1000246' + totalcount: + type: number + example: 28433 + examples: + Fetch Runtime Controls Data V2: + value: + displaycount: 10 + errorcode: '0' + msg: success + results: + - USERCONTEXT: '3' + email: example@saviynt.com + firstname: amelia + lastname: caputo + statuskey: '1' + username: '1000045' + - USERCONTEXT: '3' + email: example@saviynt.com + firstname: angelo + lastname: ferentz + statuskey: '1' + username: '1000046' + - USERCONTEXT: '4' + email: example@saviynt.com + firstname: Gerard + lastname: Meranville + statuskey: '1' + username: '1000047' + - USERCONTEXT: '320156' + email: example@saviynt.com + firstname: Daniele + lastname: Marc + statuskey: '1' + username: '1000060' + - USERCONTEXT: '317299' + email: example@saviynt.com + firstname: Jocelyne + lastname: Capelle + statuskey: '1' + username: '1000092' + - USERCONTEXT: '3' + email: example@saviynt.com + firstname: Don + lastname: Goodliffe + statuskey: '1' + username: '1000129' + - USERCONTEXT: '320156' + email: example@saviynt.com + firstname: Dimitri + lastname: Dautel + statuskey: '1' + username: '1000132' + - USERCONTEXT: '317203' + email: example@saviynt.com + firstname: Valerie + lastname: Lavaud + statuskey: '1' + username: '1000137' + - USERCONTEXT: '317342' + email: example@saviynt.com + firstname: Cecile + lastname: Talmon + statuskey: '1' + username: '1000170' + - USERCONTEXT: '1' + email: example@saviynt.com + firstname: Helene + lastname: Diot + statuskey: '1' + username: '1000246' + totalcount: 28433 + /fetchControlListES: + get: + tags: + - analytics + summary: Fetch List of Analytics ES + description: 'This method fetches a list of Analytic Controls in Elastic and support the usage of GET and POST methods. It is recommended to use the POST method. Optional params: `searchcriteria`: analytics params to search. Example: {"analyticsid": "9","risk": "Medium","category": "Usage","status": "Active","analyticsname":"testESQuery","owner":"awsadmin","usergroup":"MTSTrade_Approver_BusinessOwner","tags":"Tagname","description":"desc","recommendations":"comm"}, `max`, `offset` `loggedinuser` _**Note**_: Security is based on owner, delegate, ROLE_ADMIN, SAV_ROLE''s analytics ES category. The `Authorization` must have `Bearer` followed by `Token`.' + operationId: fetchListOfAnalyticsEs + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticsid: + type: string + example: '1707' + max: + type: string + example: '100' + offset: + type: string + example: '0' + examples: + Fetch List of Analytics ES: + value: + analyticsid: '1707' + max: '100' + offset: '0' + responses: + '200': + description: Fetch List of Analytics ES / GET - Fetchlist / Post-FetchControlListES + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://23-monthly-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 14 Feb 2023 11:56:05 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=569eb221-ee36-4281-803f-90651013a781; Version=1; Path=";Path=/;HttpOnly;"; Secure + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displaycount: + type: string + example: '1' + errorcode: + type: string + example: '0' + msg: + type: string + example: Success + result: + type: array + items: + type: object + properties: + actionJson: + type: string + example: '{"sendEmail":"false","saveToDBElastic":{"version":"v2","checked":"true"},"saveToFile":"false"}' + allowedAction: + type: string + example: 1:Accept,2:Revoke,3:Further Review + analyticsEsIndex: + type: string + example: testapi1 + analyticsEsIndexType: + type: string + example: analytics + analyticsName: + type: string + example: testESQuery1 + analyticsid: + type: string + example: '8' + analyticstype: + type: string + example: ESQUERY + baseCount: + type: string + example: '1' + category: + type: string + example: Usage + createDate: + type: string + example: '2019-07-31 23:23:57' + description: + type: string + example: desc + emailTemplate: + type: string + example: Actionable Email + enableArchival: + type: string + example: 'true' + noOfHistoryToKeep: + type: string + example: '2' + recommendations: + type: string + example: recommend + risk: + type: string + example: Medium + securityContext: + type: string + example: User + status: + type: string + example: Active + subcategory: + type: string + example: SubCat1 + tags: + type: string + example: TagName,TagName2 + example: + - allowedAction: 1:Accept,2:Revoke,3:Further Review + analyticsEsIndex: testapi1 + analyticsEsIndexType: analytics + analyticsName: testESQuery1 + analyticsid: '8' + analyticstype: ESQUERY + baseCount: '1' + category: Usage + createDate: '2019-07-31 23:23:57' + description: desc + emailTemplate: Actionable Email + enableArchival: 'true' + noOfHistoryToKeep: '2' + recommendations: recommend + risk: Medium + securityContext: User + status: Active + subcategory: SubCat1 + tags: TagName,TagName2 + totalcount: + type: string + example: '1' + examples: + Fetch List of Analytics ES: + value: + displaycount: '1' + errorcode: '0' + msg: Success + result: + - allowedAction: 1:Accept,2:Revoke,3:Further Review + analyticsEsIndex: testapi1 + analyticsEsIndexType: analytics + analyticsName: testESQuery1 + analyticsid: '8' + analyticstype: ESQUERY + baseCount: '1' + category: Usage + createDate: '2019-07-31 23:23:57' + description: desc + emailTemplate: Actionable Email + enableArchival: 'true' + noOfHistoryToKeep: '2' + recommendations: recommend + risk: Medium + securityContext: User + status: Active + subcategory: SubCat1 + tags: TagName,TagName2 + totalcount: '1' + GET - Fetchlist: + value: + displaycount: '1' + errorcode: '0' + msg: Success + result: + - actionJson: '{"sendEmail":"false","saveToDBElastic":{"version":"v2","checked":"true"},"saveToFile":"false"}' + allowedAction: 1:Accept,2:Revoke,3:Further Review + analyticsName: sqllv2sw + analyticsid: '1707' + analyticstype: SQL + category: Information Refresh + createDate: '2023-02-13 07:07:04' + description: crf + enableArchival: 'false' + noOfHistoryToKeep: '6' + risk: Medium + securityContext: None + status: Active + totalcount: '1' + Post-FetchControlListES: + value: + displaycount: '1' + errorcode: '0' + msg: Success + result: + - actionJson: '{"sendEmail":"false","saveToDBElastic":{"version":"v2","checked":"true"},"saveToFile":"false"}' + allowedAction: 1:Accept,2:Revoke,3:Further Review + analyticsName: sqllv2sw + analyticsid: '1707' + analyticstype: SQL + category: Information Refresh + createDate: '2023-02-13 07:07:04' + description: crf + enableArchival: 'false' + noOfHistoryToKeep: '6' + risk: Medium + securityContext: None + status: Active + totalcount: '1' + /fetchControlAttributes: + post: + tags: + - analytics + summary: Fetch Control Attributes + description: 'This API is used for fetching the details of dynamic attributes associated with an analytics control. This can be used for both Elasticsearch and Database analytics. The `Authorization` must have `Bearer` followed by `Token`. Mandatory params: `analyticstype`(ES/DB) `analyticsname` _**OR**_ `id`' + operationId: fetchControlAttributes + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticstype: + type: string + example: DB + id: + type: string + example: '61' + max: + type: string + example: '1' + offset: + type: string + example: '0' + examples: + Fetch Control Attributes: + value: + analyticstype: DB + id: '61' + max: '1' + offset: '0' + responses: + '200': + description: Fetch Control Attributes + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 17 Jun 2021 20:50:04 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=c48e8f16-db71-4e0a-abc0-cde79d9a3bd0; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + attributesList: + type: array + items: + type: object + properties: + attributeDefaultValue: + type: string + example: '''Enter Account ID here''' + attributeKey: + type: number + example: 145 + attributeLabel: + type: string + example: AWS Accounts + attributeName: + type: string + example: AWS Accounts + attributeValue: + type: string + example: '' + format: + type: string + example: String + orderIndex: + type: + - number + - 'null' + example: null + example: + - attributeDefaultValue: '''Enter Account ID here''' + attributeKey: 145 + attributeLabel: AWS Accounts + attributeName: AWS Accounts + attributeValue: '' + format: String + orderIndex: null + errorcode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Fetch Control Attributes: + value: + attributesList: + - attributeDefaultValue: '''Enter Account ID here''' + attributeKey: 145 + attributeLabel: AWS Accounts + attributeName: AWS Accounts + attributeValue: '' + format: String + orderIndex: null + errorcode: '0' + msg: Success + /fetchControlDetailsES: + post: + tags: + - analytics + summary: Fetch Control Details ES + description: |- + This API performs the action specified under the `Default_Action_For_Analytics` parameter and retrieves records starting from the offset. This API can return the response even if the `offset` parameter is set beyond 1000. Now, the response of this API displays an additional offset attribute. Starting with Release v24.1, the behavior of this API has been modified as follows: - **For newly created analytics controls:** You can swiftly execute and retrieve the history of newly created analytics controls. + - **For previously existing analytics controls:** To expedite fetching the run history of previously existing analytics controls, you must initially run the control on the Analytics Configuration List page within the user interface. Subsequently, you can use the API to fetch the run history. + + The `Authorization` must have `Bearer` followed by `Token`. **Mandatory** **params:** - `controlId` - this is the ANALYTICSKEY + + - `offset`\- Specify the value from where the records must be retrieved + + **Optional params:** `max` + operationId: fetchControlDetailsEs + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticsid: + type: string + example: '18' + offset: + type: string + example: '1001' + examples: + Fetch Control Details ES: + value: + analyticsid: '18' + offset: '1001' + responses: + '200': + description: Fetch Control Details ES / Fetch Control Details ES / Offset value set < 1000 / Offset value set > 1000 / max parameter set / Removed max parameter + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://23-monthly-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 19 May 2023 13:07:50 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=95e2ccfc-648b-49c0-a56a-24ef46e6d2a0; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + attributeDefaultValue: + type: string + example: '''Enter Account ID here''' + attributeKey: + type: number + example: 145 + attributeLabel: + type: string + example: AWS Accounts + attributeName: + type: string + example: AWS Accounts + attributeValue: + type: string + example: '' + format: + type: string + example: String + orderIndex: + type: number + security: + - bearerAuth: [] + /createUserRequest: + post: + tags: + - request-user + summary: Create User Request + description: 'This API call can be used for creating update/create user request in the EIC. The `Authorization` must have `Bearer` followed by `Token`. Optional params: `statuskey` - Values:1/0, 0 - Inactive, 1 - Active `User params` can be passed. Example: email, manager, username, firstname, lastname, preferedFirstName, customproperty<1 to 40> `Roles`- Specifies the rolename (#### separated) that will be assigned to the newly created user `requestor`' + operationId: createUserRequest + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + Roles: + type: string + example: ADT_AuthCert_MEE####ADT_AuthCert_MVH + email: + type: string + example: john24.doe24@saviynt.com + firstname: + type: string + example: john24 + lastname: + type: string + example: doe24 + username: + type: string + example: john24.doe24 + responses: + '200': + description: Create User Request + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 22 Jun 2021 21:05:20 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4e8655c6-92aa-4398-a444-70b14298be21; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + jbpmid: + type: string + example: AutoApprovalWF.3820118 + msg: + type: string + example: Successful + requestid: + type: string + example: '3820118' + requestkey: + type: string + example: '4137' + examples: + Create User Request: + value: + errorCode: '0' + jbpmid: AutoApprovalWF.3820118 + msg: Successful + requestid: '3820118' + requestkey: '4137' + '412': + description: Create User Request - Failure + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 12 Jun 2020 00:42:48 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8712d5fe-f281-4ee0-a8eb-5d980cd9c619; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '1' + msg: + type: string + example: firstname cannot be null or blank + examples: + Create User Request - Failure: + value: + errorCode: '1' + msg: firstname cannot be null or blank + /uploadUserRequest: + post: + tags: + - request-user + summary: Bulk Upload Users + description: |- + This API is used to create and update users using bulk upload. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `file` - Provide the CSV file and select the key field type as File. + Optional params: + `delimiter` - tab, pipe, comma. Default value is comma. + `zeroDayProvisioning` - YES/NO. Default value is NO. + `generateSystemUsername` - YES/NO. Default value is NO. + `generateEmail` - YES/NO. Default value is NO. + `checkrules` - YES/NO. Default value is NO. + `checkruleforcustomjar`\- YES/NO. Default value is NO. This option helps in checking whether a pre-validation is required while uploading users, on the basis of the logic defined in the Saviynt validation framework extension (JAR) file. + `expirepasswordfornewuser`\- YES/NO. Default value is NO. + `userReconcillationField` - Text field. + `userpreprocessorconfigjson` - Text field. + operationId: bulkUploadUsers + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + delimiter: + type: string + example: comma + file: + type: string + format: binary + generateEmail: + type: string + example: 'yes' + generateSystemUsername: + type: string + example: 'yes' + zeroDayProvisioning: + type: string + example: 'yes' + responses: + '200': + description: Bulk Upload Users + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-utl-1.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 08 Mar 2022 06:43:26 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4c3f02c3-e29c-487b-8efd-ebf6cde3cce8; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: Bulk Upload Request Submitted + examples: + Bulk Upload Users: + value: + errorcode: '0' + msg: Bulk Upload Request Submitted + /updateUserRequest: + put: + tags: + - request-user + summary: Update User Request + description: |- + This API call can be used for updating user request in the EIC. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username` - user who has to be modified. + Optional params: + `updateuser` - Username who is updating the request, + `User's dynamic attribute` can be passed. + Example: "firstname": "fn", + "entity": \[ + "Atlanta" + \] + operationId: updateUserRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + designation: + type: string + example: desc + entity: + type: array + items: + type: string + example: Atlanta + example: + - Atlanta + firstname: + type: string + example: fn + lastname: + type: string + example: Nayal + manager: + type: string + example: gbana5 + updateuser: + type: string + example: admin + username: + type: string + example: johndoe + examples: + Update User Request: + value: + designation: desc + entity: + - Atlanta + firstname: fn + lastname: Nayal + manager: gbana5 + updateuser: admin + username: johndoe + responses: + '200': + description: Create User Request / Update User Request + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 20 Aug 2019 05:49:33 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=20da155c-412b-4ba8-b442-aa1fe977bcb0; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + errorcode: + type: string + example: '0' + jbpmid: + type: string + example: SampleManagerApproval.3100001 + msg: + type: string + example: Successful + requestid: + type: string + example: '4960001' + requestkey: + type: string + example: '3746' + examples: + Create User Request: + value: + errorCode: '0' + jbpmid: SampleManagerApproval.3100001 + msg: Successful + Update User Request: + value: + errorcode: '0' + msg: success + requestid: '4960001' + requestkey: '3746' + /getrequestableusers: + get: + tags: + - request-user + summary: Get Requestable Users + description: |- + This API fetches the list of user for whom the requestor can request. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `requestor` + Optional params: + `max`, `offset` + operationId: getRequestableUsers + requestBody: + content: + application/json: + schema: + type: object + properties: + max: + type: string + example: '2' + requestor: + type: string + example: jdwad + examples: + Get Requestable Users: + value: + max: '2' + requestor: jdwad + responses: + '200': + description: Get Requestable User + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 06 Aug 2019 18:47:26 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=47c1c225-2f8e-4f9f-957d-e68d6dd77c0f; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 2 + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + totalcount: + type: number + example: 151543 + users: + type: array + items: + type: object + properties: + city: + type: string + example: Miami + companyname: + type: string + example: '' + costcenter: + type: string + example: '' + departmentname: + type: string + example: '' + departmentnumber: + type: string + example: '' + displayname: + type: string + example: Ln, Fn + email: + type: string + example: fn.ln@saviynt.com + enddate: + type: string + example: '2018-12-03 07:40:21' + firstname: + type: string + example: fn + jobCode: + type: string + example: '' + jobcodedesc: + type: string + example: jobdesc + lastname: + type: string + example: ln + lastsyncdate: + type: string + example: '' + location: + type: string + example: '' + manager: + type: string + example: acook + region: + type: string + example: '' + secmanager: + type: string + example: '' + startdate: + type: string + example: '' + statuskey: + type: string + example: Active + systemusername: + type: string + example: admin + username: + type: string + example: admin + vendormanager: + type: string + example: '' + example: + - city: Miami + companyname: '' + costcenter: '' + departmentname: '' + departmentnumber: '' + displayname: Ln, Fn + email: fn.ln@saviynt.com + enddate: '2018-12-03 07:40:21' + firstname: fn + jobCode: '' + jobcodedesc: jobdesc + lastname: ln + lastsyncdate: '' + location: '' + manager: acook + region: '' + secmanager: '' + startdate: '' + statuskey: Active + systemusername: admin + username: admin + vendormanager: '' + - city: New York + companyname: '' + costcenter: '' + departmentname: '' + departmentnumber: '' + displayname: '' + email: awsadmin@saviynt.com + enddate: '' + firstname: aws + jobCode: '' + jobcodedesc: jobdesc + lastname: admin + lastsyncdate: '' + location: '' + manager: acook + region: '' + secmanager: '' + startdate: '' + statuskey: Active + systemusername: aadmin + username: awsadmin + vendormanager: '' + examples: + Get Requestable User: + value: + displaycount: 2 + errorCode: '0' + msg: Success + totalcount: 151543 + users: + - city: Miami + companyname: '' + costcenter: '' + departmentname: '' + departmentnumber: '' + displayname: Ln, Fn + email: fn.ln@saviynt.com + enddate: '2018-12-03 07:40:21' + firstname: fn + jobCode: '' + jobcodedesc: jobdesc + lastname: ln + lastsyncdate: '' + location: '' + manager: acook + region: '' + secmanager: '' + startdate: '' + statuskey: Active + systemusername: admin + username: admin + vendormanager: '' + - city: New York + companyname: '' + costcenter: '' + departmentname: '' + departmentnumber: '' + displayname: '' + email: awsadmin@saviynt.com + enddate: '' + firstname: aws + jobCode: '' + jobcodedesc: jobdesc + lastname: admin + lastsyncdate: '' + location: '' + manager: acook + region: '' + secmanager: '' + startdate: '' + statuskey: Active + systemusername: aadmin + username: awsadmin + vendormanager: '' + /createEnterpriseRoleRequest: + post: + tags: + - request-role + summary: Create Role Request + description: 'This API call can be used for creating a new role and assigning an owner to the role. The `Authorization` must have `Bearer` followed by `Token`. Mandatory params: `roletype` - Use the roletype as "ENTERPRISE" to Create Enterprise Role Request. (supported roletypes - ENABLER/ TRANSACTIONAL/ FIREFIGHTER/ ENTERPRISE/ APPLICATION), `role_name`, `requestor`, `owner` 1. `ownerName` 2. `rank`<1 to 27>, Optional params: `customproperty<1 to 60>`, `endpointname`, `defaulttimeframe`, `description`, `displayname`, `glossary`, `risk`, `level`, `soxcritical`, `syscritical`, `priviliged`, `confidentiality`, `requestable`, `showDynamicAttrs, checksod:`Set this parameter to evaluate Segregation of Duties (SOD) violations. By default, the parameter is set to false.' + operationId: createRoleRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + confidentiality: + type: string + example: critical + customproperty10: + type: string + example: test api + defaulttimeframe: + type: string + example: '343' + description: + type: string + example: jdfkd + displayname: + type: string + example: dist name + endpointname: + type: string + example: Workday + glossary: + type: string + example: glossary + level: + type: string + example: '1231' + owner: + type: string + example: awsadmin + priviliged: + type: string + example: critical + requestable: + type: string + example: 'false' + requestor: + type: string + example: admin + risk: + type: string + example: high + role_name: + type: string + example: createEntRoleAPI101 + roletype: + type: string + example: ENTERPRISE + showDynamicAttrs: + type: string + example: 'false' + soxcritical: + type: string + example: high + syscritical: + type: string + example: high + examples: + Create Role Request: + value: + confidentiality: critical + customproperty10: test api + defaulttimeframe: '343' + description: jdfkd + displayname: dist name + endpointname: Workday + glossary: glossary + level: '1231' + owner: awsadmin + priviliged: critical + requestable: 'false' + requestor: admin + risk: high + role_name: createEntRoleAPI101 + roletype: ENTERPRISE + showDynamicAttrs: 'false' + soxcritical: high + syscritical: high + responses: + '200': + description: Create Role Request / Create Role Request with Role Properties + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 23 Jun 2021 00:23:50 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4e000aa2-f7a0-47be-8ac7-098ffe8800d6; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: Role TestRoleEnt123 Sent For Approval and requestid is 3820001 + requestid: + type: string + example: '3820001' + requestkey: + type: string + example: '4135' + examples: + Create Role Request: + value: + errorCode: '0' + message: Role TestRoleEnt123 Sent For Approval and requestid is 3820001 + requestid: '3820001' + requestkey: '4135' + Create Role Request with Role Properties: + value: + errorCode: '0' + message: Role createEntRoleAPI101 Sent For Approval and requestid is 3820417 + requestid: '3820417' + requestkey: '4142' + /updateEnterpriseRoleRequest: + post: + tags: + - request-role + summary: Update Role Request + description: |- + This API call can be used to update the enterprise role that was already created in the Saviynt Security Manager. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `roletype` Use the roletype as "ENTERPRISE" to Update Enterprise Role Request. (supported roletypes are - ENABLER/ TRANSACTIONAL/ FIREFIGHTER/ ENTERPRISE/ APPLICATION), + `role_name` + Optional params: + `customproperty<1 to 60>`, `endpointname`, + `entitlements` - + 1. `entitlement_value` 2. `entitlementType` 3. `endpoint` 4. `updateType` - ADD/REMOVE + + `owner` - + 1. `ownerName` 2. `updateType` - ADD/REMOVE 3. `rank`<1 to 27> + + `defaulttimeframe`, `description`, `displayname`, `glossary`, `risk`, `level`, `soxcritical`, `syscritical`, `priviliged`, `confidentiality`, `requestable`, `showDynamicAttrs, checksod:`Set this parameter to evaluate Segregation of Duties (SOD) violations. By default, the parameter is set to false. + _**Note**_ : If config for auto approve is _**ON**_ then request will not be created + operationId: updateRoleRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + customproperty36: + type: string + example: cp36modified + endpointname: + type: string + example: Workday + entitlements: + type: array + items: + type: object + properties: + endpoint: + type: string + example: Oracle + entitlementType: + type: string + example: OEBS-Responsibility + entitlement_value: + type: string + example: FIXED_ASSET_INQUIRY_TECH_IN + updateType: + type: string + example: ADD + example: + - endpoint: Oracle + entitlementType: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_TECH_IN + updateType: ADD + - endpoint: Oracle + entitlementType: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_SOFT_IN + updateType: ADD + owner: + type: array + items: + type: object + properties: + ownerName: + type: string + example: G000526 + updateType: + type: string + example: REMOVE + example: + - ownerName: G000526 + updateType: REMOVE + - ownerName: U003961 + updateType: ADD + requestor: + type: string + example: admin + role_name: + type: string + example: TestRoleEnt123 + roletype: + type: string + example: ENTERPRISE + examples: + Update Role Request: + value: + customproperty36: cp36modified + endpointname: Workday + entitlements: + - endpoint: Oracle + entitlementType: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_TECH_IN + updateType: ADD + - endpoint: Oracle + entitlementType: OEBS-Responsibility + entitlement_value: FIXED_ASSET_INQUIRY_SOFT_IN + updateType: ADD + owner: + - ownerName: G000526 + updateType: REMOVE + - ownerName: U003961 + updateType: ADD + requestor: admin + role_name: TestRoleEnt123 + roletype: ENTERPRISE + responses: + '200': + description: Update Role Request + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 22 Jun 2021 21:02:44 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4e8655c6-92aa-4398-a444-70b14298be21; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: ' Role TestRoleEnt123 Sent For Approval and requestid is 3820057' + requestid: + type: string + example: '3820057' + requestkey: + type: string + example: '4136' + examples: + Update Role Request: + value: + errorCode: '0' + message: ' Role TestRoleEnt123 Sent For Approval and requestid is 3820057' + requestid: '3820057' + requestkey: '4136' + /getUserRequestableEntitlements: + post: + tags: + - request-access + summary: Get User Requestable Entitlements + description: "This API returns list of entitlements in an application that the user can request based on the existing access and entitlement map exclusion.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params: `username`, `endpointname`\r\n\r\nOptional params: \r\n\r\n`max`,`offset`\r\n\r\n`entitlementtype`, \r\n\r\n`entitlementResponseFields` - Entitlement_value attributes required in the reponse, \r\n\r\n`endpointResponseFields` - Endpoint attributes required in the response,\r\n\r\n`includeinflightrequests` - If `includeinflightrequests` is true, API will also consider Entitlement requests in flight (requests that are submitted but not yet approved/rejected),\r\n\r\n`allowAssignedEntitlement` - if `allowAssignedEntitlement` is true, API will consider the entitlements (and excluded entitlements) that are assigned to the user as requestable." + operationId: getUserRequestableEntitlements + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: System1 + endpointResponseFields: + type: array + items: + type: string + example: customproperty5 + example: + - customproperty5 + - securitysystem + - description + - displayName + entitlementResponseFields: + type: array + items: + type: string + example: customproperty1 + example: + - customproperty1 + - access + - status + entitlementtype: + type: string + example: Access + includeinflightrequests: + type: string + example: 'true' + username: + type: string + example: '188837' + examples: + Get User Requestable Entitlements: + value: + endpoint: System1 + endpointResponseFields: + - customproperty5 + - securitysystem + - description + - displayName + entitlementResponseFields: + - customproperty1 + - access + - status + entitlementtype: Access + includeinflightrequests: 'true' + username: '188837' + responses: + '200': + description: Get User Requestable Entitlements + headers: + Date: + schema: + type: string + example: Mon, 10 Sep 2018 17:36:59 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=557c2642-9ea4-44ea-886f-d30f489a4010; Path=/ + content: + application/json: + schema: + type: object + properties: + countofEntitlements: + type: number + example: 1215 + endpointDetails: + type: array + items: + type: object + properties: + customproperty5: + type: string + example: 'true' + displayName: + type: string + example: System1-DisplayName + securitysystem: + type: string + example: System1 + example: + - customproperty5: 'true' + displayName: System1-DisplayName + securitysystem: System1 + entitlementDetails: + type: array + items: + type: object + properties: + access: + type: string + example: Select + customproperty1: + type: string + example: test + entitlementType: + type: string + example: Access + entitlement_value: + type: string + example: Analyst + requestable: + type: string + example: '1' + status: + type: string + example: '1' + example: + - access: Select + customproperty1: test + entitlementType: Access + entitlement_value: Analyst + requestable: '1' + status: '1' + - access: Select + customproperty1: test + entitlementType: Access + entitlement_value: Absence Administrator + requestable: '1' + status: '1' + - access: Select + customproperty1: test + entitlementType: Access + entitlement_value: Absence Calculations Administrator + requestable: '1' + status: '1' + - customproperty1: Eng + entitlementType: Access + entitlement_value: Absence Partner + requestable: '1' + status: '1' + - customproperty1: Eng + entitlementType: Access + entitlement_value: Accountant + requestable: '0' + status: '1' + - customproperty1: Eng + entitlementType: Access + entitlement_value: AccountantTwo + requestable: '1' + status: '1' + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + examples: + Get User Requestable Entitlements: + value: + countofEntitlements: 1215 + endpointDetails: + - customproperty5: 'true' + displayName: System1-DisplayName + securitysystem: System1 + entitlementDetails: + - access: Select + customproperty1: test + entitlementType: Access + entitlement_value: Analyst + requestable: '1' + status: '1' + - access: Select + customproperty1: test + entitlementType: Access + entitlement_value: Absence Administrator + requestable: '1' + status: '1' + - access: Select + customproperty1: test + entitlementType: Access + entitlement_value: Absence Calculations Administrator + requestable: '1' + status: '1' + - customproperty1: Eng + entitlementType: Access + entitlement_value: Absence Partner + requestable: '1' + status: '1' + - customproperty1: Eng + entitlementType: Access + entitlement_value: Accountant + requestable: '0' + status: '1' + - customproperty1: Eng + entitlementType: Access + entitlement_value: AccountantTwo + requestable: '1' + status: '1' + errorCode: '0' + message: SUCCESS + /validateEntitlementRequestData: + post: + tags: + - request-access + summary: Validate Entitlement Request Data + description: |- + This API checks if a user is allowed to request for the entitlements given in a list based on the existing access and entitlement map exclusion. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username`, + `endpoint`, + `entitlementList` - List of entitlementtypes and entitlements that needs to be checked. + Optional params: + `includeinflightrequests` - If `includeinflightrequests` is true, API will also consider Entitlement requests in flight (requests that are submitted but not yet approved/rejected). + operationId: validateEntitlementRequestData + requestBody: + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: System1 + entitlementList: + type: array + items: + type: object + properties: + entitlementtype: + type: string + example: Access + entitlementvalue: + type: string + example: Analyst + example: + - entitlementtype: Access + entitlementvalue: Analyst + - entitlementtype: Access + entitlementvalue: Accountant + - entitlementtype: Access + entitlementvalue: Absence Calculations Administrator + - entitlementtype: Access + entitlementvalue: Absence Partner + - entitlementtype: Access + entitlementvalue: 'AM: Admin' + - entitlementtype: Access + entitlementvalue: Action Plan Owner Group111 + - entitlementtype: Access111 + entitlementvalue: Action Plan Owner Group + includeinflightrequests: + type: string + example: 'true' + username: + type: string + example: '188836' + examples: + Validate Entitlement Request Data: + value: + endpoint: System1 + entitlementList: + - entitlementtype: Access + entitlementvalue: Analyst + - entitlementtype: Access + entitlementvalue: Accountant + - entitlementtype: Access + entitlementvalue: Absence Calculations Administrator + - entitlementtype: Access + entitlementvalue: Absence Partner + - entitlementtype: Access + entitlementvalue: 'AM: Admin' + - entitlementtype: Access + entitlementvalue: Action Plan Owner Group111 + - entitlementtype: Access111 + entitlementvalue: Action Plan Owner Group + includeinflightrequests: 'true' + username: '188836' + responses: + '200': + description: Validate Entitlement RequestData + headers: + Date: + schema: + type: string + example: Mon, 10 Sep 2018 17:43:21 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2e3ccada-bcfa-4ce5-a357-cdc7fa300c4b; Path=/ + content: + application/json: + schema: + type: object + properties: + endpoint: + type: string + example: System1 + errorCode: + type: string + example: '1' + message: + type: string + example: Failure + username: + type: string + example: '188836' + validationResults: + type: array + items: + type: object + properties: + entitlementtype: + type: string + example: Access + entitlementvalue: + type: string + example: Analyst + failurereason: + type: string + example: Entitlement already assigned to User + requestable: + type: string + example: '1' + example: + - entitlementtype: Access + entitlementvalue: Analyst + requestable: '1' + - entitlementtype: Access + entitlementvalue: Accountant + failurereason: Entitlement already assigned to User + requestable: '0' + - entitlementtype: Access + entitlementvalue: Absence Calculations Administrator + failurereason: Entitlement already requested + requestable: '0' + - entitlementtype: Access + entitlementvalue: Absence Partner + failurereason: Excluded Entitlement for an Entitlement already requested + requestable: '0' + - entitlementtype: Access + entitlementvalue: 'AM: Admin' + failurereason: Excluded Entitlement + requestable: '0' + - entitlementtype: Access + entitlementvalue: Action Plan Owner Group111 + failurereason: Invalid Entitlement + requestable: '0' + - entitlementtype: Access111 + entitlementvalue: Action Plan Owner Group + failurereason: Invalid Entitlement + requestable: '0' + examples: + Validate Entitlement RequestData: + value: + endpoint: System1 + errorCode: '1' + message: Failure + username: '188836' + validationResults: + - entitlementtype: Access + entitlementvalue: Analyst + requestable: '1' + - entitlementtype: Access + entitlementvalue: Accountant + failurereason: Entitlement already assigned to User + requestable: '0' + - entitlementtype: Access + entitlementvalue: Absence Calculations Administrator + failurereason: Entitlement already requested + requestable: '0' + - entitlementtype: Access + entitlementvalue: Absence Partner + failurereason: Excluded Entitlement for an Entitlement already requested + requestable: '0' + - entitlementtype: Access + entitlementvalue: 'AM: Admin' + failurereason: Excluded Entitlement + requestable: '0' + - entitlementtype: Access + entitlementvalue: Action Plan Owner Group111 + failurereason: Invalid Entitlement + requestable: '0' + - entitlementtype: Access111 + entitlementvalue: Action Plan Owner Group + failurereason: Invalid Entitlement + requestable: '0' + /createrequest: + post: + tags: + - request-access + summary: Request to Create Entitlement Based Role + description: |- + This API is used to create role of roletype "Entitlement", such as AzureAD/Unix Group in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `accesstype` - roles, `roletype` - 6, `requesttype` - create, `entitlementtype`, `endpoint`, `securitysystem` `role_name customproperty22` + Optional params: + `requestor`, `displayname`, `description`, `grouptype`, `enablemail`, `enablesecurity`, `soxcritical`, `syscritical`, `priviliged`, `confidentiality`, + Note: From v23.8 onwards, the acceptable value for soxcritical, syscritical, priviliged and confidentiality will be critical, high, medium, low, and very low. + `requestable`, `comments`, `owner` - + 1. `ownername` - mandatory 2. `rank` 3. `updatetype` - optional, value can be 'add' + + `entitlements` - + 1. `entitlement_value` - mandatory 2. `updatetype` - optional, value can be 'add' + + `parententitlements` - + 1. `entitlement_value` - mandatory 2. `entitlementType` 3. `updatetype` - add/remove + operationId: requestToCreateEntitlementBasedRole + requestBody: + content: + application/json: + schema: + type: object + properties: + accesstype: + type: string + example: roles + confidentiality: + type: string + example: Low + customproperty22: + type: string + example: Global + description: + type: string + example: adGroupAshok300600 Description + displayname: + type: string + example: adGroupAshok300600 Display + endpoint: + type: string + example: AD_Rashid + entitlementtype: + type: string + example: memberof + priviliged: + type: string + example: Medium + requestor: + type: string + example: admin + requesttype: + type: string + example: Create + role_name: + type: string + example: CN=adGroupAshok300600,OU=DocTeamOU,OU=SaviyntTeams,DC=saviyntlabs,DC=org + roletype: + type: string + example: '6' + securitysystem: + type: string + example: AD_Rashid + soxcritical: + type: string + example: Critical + syscritical: + type: string + example: High + examples: + Request to Create Entitlement Based Role: + value: + accesstype: roles + confidentiality: Low + customproperty22: Global + description: adGroupAshok300600 Description + displayname: adGroupAshok300600 Display + endpoint: AD_Rashid + entitlementtype: memberof + priviliged: Medium + requestor: admin + requesttype: Create + role_name: CN=adGroupAshok300600,OU=DocTeamOU,OU=SaviyntTeams,DC=saviyntlabs,DC=org + roletype: '6' + securitysystem: AD_Rashid + soxcritical: Critical + syscritical: High + responses: + '200': + description: Request to Create AzureAD Group / new json + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://release-2022-0-qe.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Mon, 17 Jul 2023 06:25:28 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ae9de3e2-4c6d-48dd-b197-9b8caf147d97; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + requestid: + type: string + example: '3110105' + requestkey: + type: string + example: '3924' + examples: + Request to Create AzureAD Group: + value: + errorCode: 0 + msg: Success + requestid: '3110105' + requestkey: '3924' + new json: + value: + errorCode: 0 + msg: Success + requestid: '6960781' + requestkey: '17731' + security: + - bearerAuth: [] + /createOrganizationRequest: + post: + tags: + - request-organization + summary: Create Organization Request + description: "This API call can be used to create new organization requests.\r\nThe Create Organization request is shown in Request History.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`organizationname`\r\n\r\nOptional params:\r\n\r\n`comments`, `organizationname`, `username`, `description`, `primarycontact`, `comments`, `customproperty(1..28)`, `organizationtype`(data security/grouping/request rules/company), `parentorganization`(organization name), `startdate`(MM-dd-yyyy format), `enddate`(MM-dd-yyyy format),\r\n\r\n\r\n`endpoints` - \r\n\r\n1. `endpointname`\r\n2. `cp(1..5)`\r\n\r\n`roles` - \r\n1. `rolename`\r\n\r\n`rules` - \r\n1. `name`\r\n2. `type`\r\n\r\n`entitlements` -\r\n1. `entitlementvalue`\r\n2. `entitlementtype`\r\n3. `endpoint`\r\n\r\n`owners` -\r\n1. `owner`\r\n2. `rank`\r\n3. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY)\r\n\r\n`attributes` -\r\n1. `attributegroupname`\r\n2. `attributes`\r\n3. `value`\r\n4. `attributevalues`\r\n\r\n`dynamicattrsvalidation`(can be true/false, default : true) - If true, dynamic attributes will be validated based on the conditions defined." + operationId: createOrganizationRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + attributes: + type: array + items: + type: object + properties: + attributegroupname: + type: string + example: dfdf + attributes: + type: string + example: street,pincode + attributevalues: + type: object + properties: + pincode: + type: string + example: '123456' + street: + type: string + example: treee + value: + type: string + example: group val + example: + - attributegroupname: dfdf + attributes: street,pincode + attributevalues: + pincode: '123456' + street: treee + value: group val + comments: + type: string + example: comment + customproperty10: + type: string + example: cp10 + customproperty5: + type: string + example: cp5 + description: + type: string + example: desc + enddate: + type: string + example: 12-31-2020 + endpoints: + type: array + items: + type: object + properties: + cp1: + type: string + example: cp1 + cp2: + type: string + example: cp2 + cp3: + type: string + example: cp3 + cp4: + type: string + example: cp4 + cp5: + type: string + example: cp5 + endpointname: + type: string + example: Office365 + example: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: Office365 + - endpointname: Salesforce + entitlements: + type: array + items: + type: object + properties: + endpoint: + type: string + example: Office365 + entitlementtype: + type: string + example: O365-ADGroup + entitlementvalue: + type: string + example: AzureADSP + example: + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: AzureADSP + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: DepartmentDynamicGroup + organizationname: + type: string + example: TestOrg1 + organizationtype: + type: string + example: request rules + owners: + type: array + items: + type: object + properties: + owner: + type: string + example: admin + rank: + type: number + example: 2 + example: + - owner: admin + rank: 2 + - owner: awsadmin + rank: 2 + parentorganization: + type: string + example: Globex + primarycontact: + type: string + example: awsadmin + roles: + type: array + items: + type: object + properties: + rolename: + type: string + example: ADT_AdmitSuperv_MCL + example: + - rolename: ADT_AdmitSuperv_MCL + - rolename: ADT_AdmitSuperv_MVH + rules: + type: array + items: + type: object + properties: + name: + type: string + example: TestJobNA + type: + type: string + example: REQUEST + example: + - name: TestJobNA + type: REQUEST + startdate: + type: string + example: 09-21-2020 + username: + type: string + example: awsadmin + users: + type: array + items: + type: object + properties: + username: + type: string + example: '1000003' + example: + - username: '1000003' + - username: '1000005' + examples: + Create Organization Request: + value: + attributes: + - attributegroupname: dfdf + attributes: street,pincode + attributevalues: + pincode: '123456' + street: treee + value: group val + comments: comment + customproperty10: cp10 + customproperty5: cp5 + description: desc + enddate: 12-31-2020 + endpoints: + - cp1: cp1 + cp2: cp2 + cp3: cp3 + cp4: cp4 + cp5: cp5 + endpointname: Office365 + - endpointname: Salesforce + entitlements: + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: AzureADSP + - endpoint: Office365 + entitlementtype: O365-ADGroup + entitlementvalue: DepartmentDynamicGroup + organizationname: TestOrg1 + organizationtype: request rules + owners: + - owner: admin + rank: 2 + - owner: awsadmin + rank: 2 + parentorganization: Globex + primarycontact: awsadmin + roles: + - rolename: ADT_AdmitSuperv_MCL + - rolename: ADT_AdmitSuperv_MVH + rules: + - name: TestJobNA + type: REQUEST + startdate: 09-21-2020 + username: awsadmin + users: + - username: '1000003' + - username: '1000005' + responses: + '202': + description: Create Organization Request + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 30 Dec 2020 01:24:05 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2e50304d-88ee-406e-a9dc-db97315cfe66; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Organization Create Request Successfully Created; + requestId: + type: string + example: '3121470' + examples: + Create Organization Request: + value: + errorCode: '0' + msg: Organization Create Request Successfully Created; + requestId: '3121470' + /updateOrganizationRequest: + put: + tags: + - request-organization + summary: Update Organization Request + description: |- + This API call can be used to create update organization requests. The Update Organization request is shown in Request History. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `organizationname` + Optional params: + `comments`, `organizationname`, `username`, `description`, `primarycontact`, `comments`, `customproperty(1..28)`, `organizationtype`(data security/grouping/request rules/company), `parentorganization`(organization name), `startdate`(MM-dd-yyyy format), `enddate`(MM-dd-yyyy format), + `endpoints` - + 1. `endpointname` 2. `cp(1..5)` 3. `updatetype`(add/update/remove) + `roles` - 1. `rolename` 2. `updatetype`(add/update/remove) + `rules` - 1. `name` 2. `type` + `entitlements` - 1. `entitlementvalue` 2. `entitlementtype` 3. `endpoint` 4. `updatetype`(add/update/remove) + `owners` - 1. `owner` 2. `rank` 3. `updatetype`(add/update/remove) 4. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY) + `attributes` - 1. `attributegroupname` 2. `attributes` 3. `value` 4. `attributevalues` 5. `updatetype`(addgroup/deletegroup/updategroup) + `dynamicattrsvalidation`(can be true/false, default : true) - If true, dynamic attributes will be validated based on the conditions defined. + operationId: updateOrganizationRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + attributes: + type: array + items: + type: object + properties: + attributes: + type: string + example: street,pincode + attributevalues: + type: object + properties: + pincode: + type: string + example: '123456' + street: + type: string + example: treee + groupname: + type: string + example: dfdf + updatetype: + type: string + example: deletegroup + value: + type: string + example: group val + example: + - attributes: street,pincode + attributevalues: + pincode: '123456' + street: treee + groupname: dfdf + updatetype: deletegroup + value: group val + - attributes: street,pincode + attributevalues: + pincode: '1234561' + street: treee1 + groupname: dfdf1 + updatetype: addgroup + value: group val1 + comments: + type: string + example: comment + customproperty10: + type: string + example: cp10update + customproperty5: + type: string + example: cp5update + description: + type: string + example: desc + enddate: + type: string + example: 09-30-2020 + endpoints: + type: array + items: + type: object + properties: + endpointname: + type: string + example: AWS + updatetype: + type: string + example: remove + example: + - endpointname: AWS + updatetype: remove + - endpointname: CyberArk + updatetype: add + organizationname: + type: string + example: Orgreq2291RE3 + organizationtype: + type: string + example: request rules + parentorganization: + type: string + example: Hooli + primarycontact: + type: string + example: awsadmin + startdate: + type: string + example: 09-21-2020 + username: + type: string + example: awsadmin + examples: + Update Organization Request: + value: + attributes: + - attributes: street,pincode + attributevalues: + pincode: '123456' + street: treee + groupname: dfdf + updatetype: deletegroup + value: group val + - attributes: street,pincode + attributevalues: + pincode: '1234561' + street: treee1 + groupname: dfdf1 + updatetype: addgroup + value: group val1 + comments: comment + customproperty10: cp10update + customproperty5: cp5update + description: desc + enddate: 09-30-2020 + endpoints: + - endpointname: AWS + updatetype: remove + - endpointname: CyberArk + updatetype: add + organizationname: Orgreq2291RE3 + organizationtype: request rules + parentorganization: Hooli + primarycontact: awsadmin + startdate: 09-21-2020 + username: awsadmin + responses: + '202': + description: Update Organization Request + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 30 Dec 2020 00:01:10 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=7549fdc2-5b63-4909-af5b-ca004151e186; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Organization Update Request Created; + requestId: + type: string + example: '3120673' + examples: + Update Organization Request: + value: + errorCode: '0' + msg: Organization Update Request Created; + requestId: '3120673' + /createautoapprovedrequest: + post: + tags: + - request-access + summary: Create Auto-approved Request + description: "This API call can be used to auto-approve requests for a particular endpoint and security system. These requests can be used to create, update, or delete types of entitlement requests.\r\nThe auto-approved request is shown in Request History.\r\n\r\nNote: There should be a workflow with grant access already created with ‘AUTOAPPROVAL’ name and the workflow should be added to externalconfig.properties file with below details:\r\nsav.autoapprovalwfname=AUTOAPPROVAL.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`username`,\r\n`requestor`,\r\n`requestaccess` - [endpoint,securitysystem, requesttype, accountname]\r\n\r\nOptional params:\r\n`comments`,\r\n`requestaccess` - [entitlement (entitlement.ADD, entitlement.REMOVE), requestaccessattr]" + operationId: createAutoApprovedRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + comments: + type: string + example: add comment + requestaccess: + type: array + items: + type: object + properties: + accountname: + type: string + example: dbailey + endpoint: + type: string + example: System1 + entitlement: + type: object + properties: + ADD: + type: array + items: + type: string + example: entitlementtype2####entitlementvalue2 + example: + - entitlementtype2####entitlementvalue2 + REMOVE: + type: array + items: + type: string + example: entitlementtype1####entitlementvalue1 + example: + - entitlementtype1####entitlementvalue1 + requestaccessattr: + type: array + items: + type: string + example: DynamicAttr1####dynamicAttrValue1 + example: + - DynamicAttr1####dynamicAttrValue1 + - DynamicAttr2####dynamicAttrValue2 + requesttype: + type: string + example: '2' + securitysystem: + type: string + example: System1 + example: + - accountname: dbailey + endpoint: System1 + entitlement: + ADD: + - entitlementtype2####entitlementvalue2 + REMOVE: + - entitlementtype1####entitlementvalue1 + requestaccessattr: + - DynamicAttr1####dynamicAttrValue1 + - DynamicAttr2####dynamicAttrValue2 + requesttype: '2' + securitysystem: System1 + requestor: + type: string + example: admin + username: + type: string + example: dbailey + examples: + Create Auto-approved Request: + value: + comments: add comment + requestaccess: + - accountname: dbailey + endpoint: System1 + entitlement: + ADD: + - entitlementtype2####entitlementvalue2 + REMOVE: + - entitlementtype1####entitlementvalue1 + requestaccessattr: + - DynamicAttr1####dynamicAttrValue1 + - DynamicAttr2####dynamicAttrValue2 + requesttype: '2' + securitysystem: System1 + requestor: admin + username: dbailey + responses: + '200': + description: Create Auto-approved Request + headers: + Date: + schema: + type: string + example: Fri, 17 Aug 2018 19:25:44 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=6c10284a-9630-47f5-867e-4670bb62fe38; Path=/ + content: + application/json: + schema: + type: object + properties: + RequestId: + type: string + example: '10122' + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + examples: + Create Auto-approved Request: + value: + RequestId: '10122' + errorCode: '0' + message: SUCCESS + /createbirthrightrequest: + post: + tags: + - request-access + summary: Create Birthright Request + description: |- + This method creates "Request" record for a new user in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Optional params: + `SAVUSERNAME` - in header, + `REQUESTTYPE`, + `REQUESTER`, + `COMMENTS`, + `USERNAME`, + `startdate`, + `enddate`, + `SYSTEMNAME`, + `ENDPOINTS`, + `entitlement`, + `APPROVER`, + `ACCOUNTNAME` + operationId: createBirthrightRequest + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + ACCOUNTNAME: + type: string + example: dbailey + APPROVER: + type: string + example: admin + COMMENTS: + type: string + example: test + ENDPOINTS: + type: string + example: System1 + REQUESTTYPE: + type: string + example: '1' + SYSTEMNAME: + type: string + example: System1 + USERNAME: + type: string + example: dbailey + entitlement: + type: string + example: testent + responses: + '200': + description: Create Birthright Request + headers: + Date: + schema: + type: string + example: Wed, 12 Sep 2018 00:20:37 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=d00e2f97-ae81-4212-b50c-ce527b38af19; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: Success + requestId: + type: string + example: '579652' + examples: + Create Birthright Request: + value: + errorCode: '0' + message: Success + requestId: '579652' + /updateRequest: + post: + tags: + - request-access + summary: Add Approver to existing Request + description: |- + This API can be used to add approver to existing request in `SSM`. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `requestkey` - comma seprated requestkeys + `requestor` - user who is updating the request + Optional params: + `updateapprover` - username of the new approver + `originalassignee` - username of old approver + `removeoriginalassignee` - true/false(default), if false then the original assignee will remain one of the approvers, If `originalassignee` is not passed then `requestor` will be considered as original assignee. + `comments`, + `allowreassign` - true/false (default is false) + operationId: addApproverToExistingRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + comments: + type: string + example: test multiple requestkey + dynamicattributes: + type: array + items: + type: object + properties: + attribute: + type: string + example: Organization + value: + type: string + example: test str + example: + - attribute: Organization + value: test str + entitlements: + type: array + items: + type: object + properties: + action: + type: string + example: add + comments: + type: string + example: test api 1 + entitlementtype: + type: string + example: Security-Groups + entitlementvalue: + type: string + example: Absence Administrator (Absence_Administrator) + example: + - action: add + comments: test api 1 + entitlementtype: Security-Groups + entitlementvalue: Absence Administrator (Absence_Administrator) + - action: add + comments: test api 2 + entitlementtype: Security-Groups + entitlementvalue: Absence Calculations Administrator (Absence_Calculations_Administrator) + requestkey: + type: string + example: '58' + requestor: + type: string + example: lmcneil + updateapprover: + type: string + example: approvername + examples: + Add Approver to existing Request: + value: + requestkey: '3363' + requestor: dbailey + updateapprover: johndoea + Add Comments to existing Request: + value: + addcomments: 'true' + comments: test add comment multi123 + requestkey: 4134,4129 + requestor: admin + updateapprover: U125555 + Add Dynamic Attributes and Entitlements to existing Request: + value: + comments: test multiple requestkey + dynamicattributes: + - attribute: Organization + value: test str + entitlements: + - action: add + comments: test api 1 + entitlementtype: Security-Groups + entitlementvalue: Absence Administrator (Absence_Administrator) + - action: add + comments: test api 2 + entitlementtype: Security-Groups + entitlementvalue: Absence Calculations Administrator (Absence_Calculations_Administrator) + requestkey: '58' + requestor: lmcneil + multipart/form-data: + schema: + type: object + properties: + file: + type: string + format: binary + requestkey: + type: string + example: '3364' + responses: + '200': + description: updateRequest / Add Comments to existing Request / Add Dynamic Attributes and Entitlements to existing Request / updateRequest Attachment + headers: + Content-Length: + schema: + type: string + example: '0' + Date: + schema: + type: string + example: Wed, 24 Apr 2019 23:53:56 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + WWW-Authenticate: + schema: + type: string + example: Bearer error="invalid_token" + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + requestkey: + type: string + example: '86' + examples: + Add Comments to existing Request: + value: + errorCode: '0' + msg: success + Add Dynamic Attributes and Entitlements to existing Request: + value: + errorCode: '0' + msg: success + requestkey: '86' + updateRequest: + value: + errorCode: '0' + msg: Success + updateRequest Attachment: + value: + errorCode: '0' + msg: Success + /fetchRequestHistory: + post: + tags: + - request-history + summary: Fetch Request History (my pending requests) + description: |- + This API call can be used to fetch the request history of all the requests submitted by an user. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username` - loggedinuser in Saviynt + Optional params: + `status` - OPEN/DRAFT/INPROCESS/COMPLETED/EXPIRED/DISCONTINUED. For example: as a list ["open","expired"] or a single status like "open", + `requestkey`, `requestedfor`, `requestedby`, + `sort` - requestsubmittedon/duedate/requestid, + `order` - asc or desc, + `requestid`, `duedatestart`(MM/dd/yyyy), `duedateend`(MM/dd/yyyy), `submitdatestart`(MM/dd/yyyy), `submitdateend`(MM/dd/yyyy), `endpoint`, `securitysystem`, + `firstname` (requestedfor user), + `lastname` (requestedfor user), + `assignee` - list of usernames, + `requesttype` - list of requesttypes, (ADD,UPDATEACCOUNT,NEWACCOUNT,DEL,NEWROLEREQUEST,CREATEROLE,MODIFYROLE,CREATEUSER,UPDATEUSER,EXTENDACCESS etc), + `approvedby` - list of usernames, + `rejectedby` - list of usernames, + `max`, `offset`, + `showentitlementdetails` - true/false, + `entresponsefields` - if `showentitlementdetails` is true, sample - "entresponsefields":["description","soxcritical","customproperty1","syscritical","risk","privileged","status","confidentiality"] + `exactmatch`(true/false) - If true, returns records for which value of requestedfor, firstname, lastname fields matches exactly. + operationId: fetchRequestHistoryMyPendingRequests + requestBody: + content: + application/json: + schema: + type: object + properties: + exactmatch: + type: string + example: 'true' + firstname: + type: string + example: Mary + max: + type: string + example: '1' + username: + type: string + example: admin + examples: + Fetch Request History (my pending requests): + value: + exactmatch: 'true' + firstname: Mary + max: '1' + username: admin + responses: + '200': + description: Fetch Request History (my pending requests) / Fetch Request History (my pending requests) - exactmatch param + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 22 Jun 2021 19:43:55 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9630d501-3b01-42f4-8689-d1b382bdc4b3; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + requests: + type: array + items: + type: object + properties: + assignee: + type: string + example: '' + duedate: + type: string + example: '2017-07-31 06:22:50' + endpointname: + type: string + example: Okta + endpoints: + type: string + example: Okta + reqkey: + type: string + example: '3' + requestandtaskstatus: + type: string + example: Request completed, Task completed + requestedfor: + type: string + example: Abhishek Srinivasan (asrinivasan) + requestid: + type: string + example: '290037' + requestor: + type: string + example: Saviynt AdminUser (admin) + requestsubmittedon: + type: string + example: '2017-07-21 06:22:50' + requesttype: + type: string + example: New Account + status: + type: string + example: 'Completed ' + example: + - assignee: '' + duedate: '2017-07-31 06:22:50' + endpointname: Okta + endpoints: Okta + reqkey: '3' + requestandtaskstatus: Request completed, Task completed + requestedfor: Abhishek Srinivasan (asrinivasan) + requestid: '290037' + requestor: Saviynt AdminUser (admin) + requestsubmittedon: '2017-07-21 06:22:50' + requesttype: New Account + status: 'Completed ' + totalcount: + type: number + example: 3693 + examples: + Fetch Request History (my pending requests): + value: + count: 1 + errorCode: '0' + msg: Successful + requests: + - assignee: '' + duedate: '2017-07-31 06:22:50' + endpointname: Okta + endpoints: Okta + reqkey: '3' + requestandtaskstatus: Request completed, Task completed + requestedfor: Abhishek Srinivasan (asrinivasan) + requestid: '290037' + requestor: Saviynt AdminUser (admin) + requestsubmittedon: '2017-07-21 06:22:50' + requesttype: New Account + status: 'Completed ' + totalcount: 3693 + Fetch Request History (my pending requests) - exactmatch param: + value: + count: 1 + errorCode: '0' + msg: Successful + requests: + - assignee: '' + duedate: '2017-09-03 09:48:06' + endpointname: ActiveDirectory, System + endpoints: ActiveDirectory, System + reqkey: '84' + requestandtaskstatus: '' + requestedfor: Mary Morse (U025357) + requestid: '390110' + requestor: Saviynt AdminUser (admin) + requestsubmittedon: '2017-08-24 09:48:06' + requesttype: Revoke Access + status: 'Completed ' + totalcount: 1 + /fetchRequestHistoryDetails: + post: + tags: + - request-history + summary: Fetch Request History Details + description: "This API call can be used to fetch the request history details of a request.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`requestkey`\r\n\r\nOptional params:\r\n`taskmetadatalength` - Modifies the character limit of provisioning comments and provisioning metadata upto maximum of 10000.\r\n`hideblankapprovername` - If true, prevents printing the firstname/lastname if null in the \"State\" field(Default : false)\r\n \r\n***Note*** - Provisioning comments in the response will be limited to 200 characters. Provisioning metadata in the response will be limited to 400 characters." + operationId: fetchRequestHistoryDetails + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + requestkey: + type: string + example: '387' + responses: + '200': + description: Fetch Request History Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 16 Sep 2021 19:51:20 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=1d2cc8f3-9877-4cd0-99e6-cb2b05841e87; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 8 + errorCode: + type: string + example: '0' + msg: + type: string + example: SUCCESS + requestHistoryDetails: + type: object + properties: + Owner: + type: array + items: + type: object + properties: + Access: + type: string + example: Account Operators + Approve Date: + type: string + example: '' + Assignee: + type: string + example: Saviynt AdminUser (admin) + Business Justification: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: + type: string + example: Office365 + Entitlement Type: + type: string + example: AADGroup + Entitlement value: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: + type: string + example: Request for Access + Start Date: + type: string + example: '2018-08-23 06:12:25' + State: + type: string + example: Rejected (Saviynt AdminUser(admin)) + endpointname: + type: string + example: Office365 + example: + - Access: Account Operators + Approve Date: '' + Assignee: Saviynt AdminUser (admin) + Business Justification: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: Office365 + Entitlement Type: AADGroup + Entitlement value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: Request for Access + Start Date: '2018-08-23 06:12:25' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: Office365 + - Access: ProjectManager + Approve Date: '' + Assignee: Saviynt AdminUser (admin) + Business Justification: 'Approval Request for Update Role Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: '' + Entitlement Type: '' + Request Type: Update Role + Start Date: '2018-08-23 06:12:26' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: '' + Owners Manager: + type: array + items: + type: object + properties: + Access: + type: string + example: Account Operators + Approve Date: + type: string + example: '2018-08-23 06:12:25' + Assignee: + type: string + example: aws Rachels (awsadmin) + Business Justification: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: + type: string + example: Office365 + Entitlement Type: + type: string + example: AADGroup + Entitlement value: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: + type: string + example: Request for Access + Start Date: + type: string + example: '2018-08-23 06:11:53' + State: + type: string + example: Rejected (Saviynt AdminUser(admin)) + endpointname: + type: string + example: Office365 + example: + - Access: Account Operators + Approve Date: '2018-08-23 06:12:25' + Assignee: aws Rachels (awsadmin) + Business Justification: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: Office365 + Entitlement Type: AADGroup + Entitlement value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: Request for Access + Start Date: '2018-08-23 06:11:53' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: Office365 + - Access: ProjectManager + Approve Date: '2018-08-23 06:12:26' + Assignee: aws Rachels (awsadmin) + Business Justification: 'Approval Request for Update Role Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: '' + Entitlement Type: '' + Request Type: Update Role + Start Date: '2018-08-23 06:11:53' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: '' + comments: + type: string + dynamicattributes: + type: array + items: {} + example: [] + requestAccessDetails: + type: array + items: + type: object + properties: + Access: + type: string + example: Account Operators + End Date: + type: string + example: '' + Endpoint: + type: string + example: Office365 + Entitlement Type: + type: string + example: AADGroup + Entitlement value: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: + type: string + example: Request for Access + Start Date: + type: string + example: '2018-08-23 06:11:53' + comments: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + endpointname: + type: string + example: Office365 + parentrequestkey: + type: string + example: '724' + request_accesskey: + type: string + example: '725' + requestkey: + type: string + example: '387' + status: + type: string + example: Task Created + example: + - Access: Account Operators + End Date: '' + Endpoint: Office365 + Entitlement Type: AADGroup + Entitlement value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: Request for Access + Start Date: '2018-08-23 06:11:53' + comments: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + endpointname: Office365 + parentrequestkey: '724' + request_accesskey: '725' + requestkey: '387' + status: Task Created + - Access: ProjectManager + End Date: '2018-09-02 06:11:53' + Endpoint: '' + Entitlement Type: '' + Request Type: Update Role + Start Date: '2018-08-23 06:11:53' + comments: 'Approval Request for Update Role Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + endpointname: '' + parentrequestkey: '' + request_accesskey: '724' + requestkey: '387' + status: Task Created + requestId: + type: string + example: '710733' + requestedfor: + type: string + example: admin + requestor: + type: string + example: admin + tabList: + type: array + items: + type: string + example: comments + example: + - comments + - Owner + - Owners Manager + - dynamicattributes + - requestor + - requestedfor + examples: + Fetch Request History Details: + value: + count: 8 + errorCode: '0' + msg: SUCCESS + requestHistoryDetails: + Owner: + - Access: Account Operators + Approve Date: '' + Assignee: Saviynt AdminUser (admin) + Business Justification: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: Office365 + Entitlement Type: AADGroup + Entitlement value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: Request for Access + Start Date: '2018-08-23 06:12:25' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: Office365 + - Access: ProjectManager + Approve Date: '' + Assignee: Saviynt AdminUser (admin) + Business Justification: 'Approval Request for Update Role Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: '' + Entitlement Type: '' + Request Type: Update Role + Start Date: '2018-08-23 06:12:26' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: '' + Owners Manager: + - Access: Account Operators + Approve Date: '2018-08-23 06:12:25' + Assignee: aws Rachels (awsadmin) + Business Justification: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: Office365 + Entitlement Type: AADGroup + Entitlement value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: Request for Access + Start Date: '2018-08-23 06:11:53' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: Office365 + - Access: ProjectManager + Approve Date: '2018-08-23 06:12:26' + Assignee: aws Rachels (awsadmin) + Business Justification: 'Approval Request for Update Role Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + Endpoint: '' + Entitlement Type: '' + Request Type: Update Role + Start Date: '2018-08-23 06:11:53' + State: Rejected (Saviynt AdminUser(admin)) + endpointname: '' + comments: null + dynamicattributes: [] + requestAccessDetails: + - Access: Account Operators + End Date: '' + Endpoint: Office365 + Entitlement Type: AADGroup + Entitlement value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + Request Type: Request for Access + Start Date: '2018-08-23 06:11:53' + comments: 'Entitlement added as part of Modify Role-[ProjectManager] Request Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + endpointname: Office365 + parentrequestkey: '724' + request_accesskey: '725' + requestkey: '387' + status: Task Created + - Access: ProjectManager + End Date: '2018-09-02 06:11:53' + Endpoint: '' + Entitlement Type: '' + Request Type: Update Role + Start Date: '2018-08-23 06:11:53' + comments: 'Approval Request for Update Role Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + endpointname: '' + parentrequestkey: '' + request_accesskey: '724' + requestkey: '387' + status: Task Created + requestId: '710733' + requestedfor: admin + requestor: admin + tabList: + - comments + - Owner + - Owners Manager + - dynamicattributes + - requestor + - requestedfor + /cancelPendingRequest: + post: + tags: + - request-access + summary: Cancel Pending Request + description: |- + This API discontinues an open request in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `requestkey` `requestor` + Optional params: + `comments` + operationId: cancelPendingRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + comments: + type: string + example: testing now + requestkey: + type: string + example: '2973' + requestor: + type: string + example: admin + examples: + Cancel Pending Request: + value: + comments: testing now + requestkey: '2973' + requestor: admin + responses: + '200': + description: Cancel Pending Request + headers: + Date: + schema: + type: string + example: Mon, 08 Oct 2018 19:17:56 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=22600223-b70d-47bf-9f1f-16dabe2506e8; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Cancel Pending Request: + value: + errorCode: '0' + msg: Success + /getPendingRequests: + post: + tags: + - request-access + summary: Get List of Pending Requests for Approver + description: |- + This method returns a list of "Pending Requests" for approver in SSM + The `Authorization` must have `Bearer` followed by `Token`. + Header params: + `SAVUSERNAME` - logged-in user + Optional params: + `requestkey`, + `assignee`, + `max`, + `offset`, + `requestid`, + `requestedfor`, + `requestedby`, + `firstname`, + `lastname`, + `sort` - requestsubmittedon/duedate/requestid/requestkey, + `order` - asc/desc, + `submitdatestart`, + `submitdateend`, + `duedatestart`, + `duedateend`, + `requestcomments`, + `requestorigin`, + `endpoint` - list of endpoints, + `securitysystem` - list of securitysystems, + `assigneeuserkey` - list of assignee userkeys, + `assigneeusername` - list of usernames, + `requesttype` - list of requesttypes, + `entitlementvaluekey` - list of entitlement value keys. + ***Note*** : Searchable dates in the format MM/dd/yyyy. + Sample for list of items - ["value1","value2"] + operationId: getListOfPendingRequestsForApprover + parameters: + - name: savusername + in: header + schema: + type: string + example: admin + requestBody: + content: + application/json: + schema: + type: object + properties: + max: + type: string + example: '2' + examples: + Get List of Pending Requests for Approver: + value: + max: '2' + responses: + '200': + description: Get List of Pending Requests for Approver + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 05 Aug 2019 22:20:02 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=2de0e325-6a67-4357-bce8-65622c086b9a; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + approverejectall: + type: string + example: 'true' + displayCount: + type: number + example: 2 + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + results: + type: array + items: + type: object + properties: + activityname: + type: string + example: 1st UG + assignee: + type: string + example: Shania Marquez (smarquez), Cody Richards(crichards), (USASOQ), Brielle Harrell(bharrell) + duedate: + type: string + example: '2017-10-26 00:10:59' + endpoints: + type: string + example: '' + requestdate: + type: string + example: '2017-10-12 00:10:59' + requestee: + type: string + example: fn ln (admin) + requestid: + type: string + example: '2890001' + requestkey: + type: number + example: 2747 + requestor: + type: string + example: Tabitha Bowers (tbowers) + requesttype: + type: string + example: Enterprise Role Request + sod: + type: string + example: 'false' + example: + - activityname: 1st UG + assignee: Shania Marquez (smarquez), Cody Richards(crichards), (USASOQ), Brielle Harrell(bharrell) + duedate: '2017-10-26 00:10:59' + endpoints: '' + requestdate: '2017-10-12 00:10:59' + requestee: fn ln (admin) + requestid: '2890001' + requestkey: 2747 + requestor: Tabitha Bowers (tbowers) + requesttype: Enterprise Role Request + sod: 'false' + - activityname: 1st UG + assignee: Shania Marquez (smarquez), Cody Richards(crichards) + duedate: '2017-11-06 21:50:50' + endpoints: '' + requestdate: '2017-10-23 21:50:50' + requestee: fn ln (admin) + requestid: '2980254' + requestkey: 2787 + requestor: Tabitha Bowers (tbowers) + requesttype: Enterprise Role Request + sod: 'false' + total: + type: number + example: 586 + examples: + Get List of Pending Requests for Approver: + value: + approverejectall: 'true' + displayCount: 2 + errorCode: '0' + msg: Success + results: + - activityname: 1st UG + assignee: Shania Marquez (smarquez), Cody Richards(crichards), (USASOQ), Brielle Harrell(bharrell) + duedate: '2017-10-26 00:10:59' + endpoints: '' + requestdate: '2017-10-12 00:10:59' + requestee: fn ln (admin) + requestid: '2890001' + requestkey: 2747 + requestor: Tabitha Bowers (tbowers) + requesttype: Enterprise Role Request + sod: 'false' + - activityname: 1st UG + assignee: Shania Marquez (smarquez), Cody Richards(crichards) + duedate: '2017-11-06 21:50:50' + endpoints: '' + requestdate: '2017-10-23 21:50:50' + requestee: fn ln (admin) + requestid: '2980254' + requestkey: 2787 + requestor: Tabitha Bowers (tbowers) + requesttype: Enterprise Role Request + sod: 'false' + total: 586 + /fetchRequestApprovalDetails: + post: + tags: + - request-access + summary: Fetch Request Approval Details + description: "This method returns approval details for a given \"RequestId\" (provided in `requestKey` parameter) and approver (approver provided in `userName` parameter)\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params: \r\n\r\n`requestKey`,\r\n`userName` - approver username\r\n\r\nOptional params:\r\n\r\n`entresponsefields` - It can have syscritical, soxcritical, risk, privileged, confidentiality, status, displayname, description, any customproperty" + operationId: fetchRequestApprovalDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + entresponsefields: + type: array + items: + type: string + example: description + example: + - description + - soxcritical + - customproperty1 + - soxcritical + - risk + - priviliged + - status + - confidentiality + requestKey: + type: string + example: '387' + userName: + type: string + example: admin + examples: + Fetch Request Approval Details: + value: + entresponsefields: + - description + - soxcritical + - customproperty1 + - soxcritical + - risk + - priviliged + - status + - confidentiality + requestKey: '387' + userName: admin + responses: + '200': + description: Fetch Request Approval Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 16 Sep 2021 19:52:52 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=1d2cc8f3-9877-4cd0-99e6-cb2b05841e87; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + ApprovalRequestDetails: + type: object + properties: + AccessHeader: + type: array + items: + type: object + properties: + Count: + type: number + example: 2 + Title: + type: string + example: Modify Role Request + example: + - Count: 2 + Title: Modify Role Request + AccessRequestDetails: + type: array + items: + type: object + properties: + childTasks: + type: array + items: {} + example: [] + childTasksCount: + type: number + example: 0 + dynamicAttributes: + type: array + items: {} + example: [] + modifyTasks: + type: array + items: + type: object + properties: + access: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + type: object + properties: + customproperty1: + type: string + example: '536870912' + description: + type: string + example: '' + displayname: + type: string + example: Account Operators + entitlement_value: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: + type: string + example: NONE + status: + type: string + example: '1' + accesskey: + type: number + example: 53553 + approvalstatus: + type: string + example: REJECTED + approvaltype: + type: string + assignee: + type: array + items: + type: array + items: + type: string + example: aws Rachels (awsadmin) + example: + - aws Rachels (awsadmin) + example: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: + type: string + example: AADGroup + entTypeDisplayName: + type: string + example: AADGroup + entitlement: + type: string + example: AADGroup + parentRequestaccessKey: + example: 724 + anyOf: + - type: number + example: 724 + - type: string + example: '' + reqtype: + type: string + example: RequestAccess + requestaccessComments: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: + type: string + example: '' + requestaccessKey: + type: number + example: 725 + requestaccessStartdate: + type: string + example: '2018-08-23T06:11:53Z' + requestaccessStatus: + type: string + example: Task Created + requestdate: + type: string + example: 08-23-2018 06:11 + role: + type: string + example: ProjectManager + roleDescription: + type: string + roleDisplayName: + type: string + example: ProjectManager + roleRisk: + type: string + example: '' + roleSoxcritical: + type: string + example: '0' + roleSyscritical: + type: string + example: '0' + taskid: + type: number + taskkey: + type: number + example: 1069 + example: + - access: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + customproperty1: '536870912' + description: '' + displayname: Account Operators + entitlement_value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: NONE + status: '1' + accesskey: 53553 + approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: AADGroup + entTypeDisplayName: AADGroup + entitlement: AADGroup + parentRequestaccessKey: 724 + reqtype: RequestAccess + requestaccessComments: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '' + requestaccessKey: 725 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: 08-23-2018 06:11 + taskid: null + taskkey: 1069 + - approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + parentRequestaccessKey: '' + reqtype: UpdateRole + requestaccessComments: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '2018-09-02T06:11:53Z' + requestaccessKey: 724 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: '2018-08-23T06:11:53Z' + role: ProjectManager + roleDescription: null + roleDisplayName: ProjectManager + roleRisk: '' + roleSoxcritical: '0' + roleSyscritical: '0' + taskid: null + taskkey: 1070 + modifyTasksCount: + type: number + example: 2 + parentTasks: + type: object + properties: {} + tasksList: + type: array + items: + type: object + properties: + access: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + type: object + properties: + customproperty1: + type: string + example: '536870912' + description: + type: string + example: '' + displayname: + type: string + example: Account Operators + entitlement_value: + type: string + example: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: + type: string + example: NONE + status: + type: string + example: '1' + accesskey: + type: number + example: 53553 + approvalstatus: + type: string + example: REJECTED + approvaltype: + type: string + assignee: + type: array + items: + type: array + items: + type: string + example: aws Rachels (awsadmin) + example: + - aws Rachels (awsadmin) + example: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: + type: string + example: AADGroup + entTypeDisplayName: + type: string + example: AADGroup + entitlement: + type: string + example: AADGroup + parentRequestaccessKey: + example: 724 + anyOf: + - type: number + example: 724 + - type: string + example: '' + reqtype: + type: string + example: RequestAccess + requestaccessComments: + type: string + example: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: + type: string + example: '' + requestaccessKey: + type: number + example: 725 + requestaccessStartdate: + type: string + example: '2018-08-23T06:11:53Z' + requestaccessStatus: + type: string + example: Task Created + requestdate: + type: string + example: 08-23-2018 06:11 + role: + type: string + example: ProjectManager + roleDescription: + type: string + roleDisplayName: + type: string + example: ProjectManager + roleRisk: + type: string + example: '' + roleSoxcritical: + type: string + example: '0' + roleSyscritical: + type: string + example: '0' + taskid: + type: number + taskkey: + type: number + example: 1069 + example: + - access: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + customproperty1: '536870912' + description: '' + displayname: Account Operators + entitlement_value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: NONE + status: '1' + accesskey: 53553 + approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: AADGroup + entTypeDisplayName: AADGroup + entitlement: AADGroup + parentRequestaccessKey: 724 + reqtype: RequestAccess + requestaccessComments: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '' + requestaccessKey: 725 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: 08-23-2018 06:11 + taskid: null + taskkey: 1069 + - approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + parentRequestaccessKey: '' + reqtype: UpdateRole + requestaccessComments: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '2018-09-02T06:11:53Z' + requestaccessKey: 724 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: '2018-08-23T06:11:53Z' + role: ProjectManager + roleDescription: null + roleDisplayName: ProjectManager + roleRisk: '' + roleSoxcritical: '0' + roleSyscritical: '0' + taskid: null + taskkey: 1070 + tasksListCount: + type: number + example: 2 + typeOfRequest: + type: string + example: MODIFY ROLE + example: + - childTasks: [] + childTasksCount: 0 + dynamicAttributes: [] + modifyTasks: + - access: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + customproperty1: '536870912' + description: '' + displayname: Account Operators + entitlement_value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: NONE + status: '1' + accesskey: 53553 + approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: AADGroup + entTypeDisplayName: AADGroup + entitlement: AADGroup + parentRequestaccessKey: 724 + reqtype: RequestAccess + requestaccessComments: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '' + requestaccessKey: 725 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: 08-23-2018 06:11 + taskid: null + taskkey: 1069 + - approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + parentRequestaccessKey: '' + reqtype: UpdateRole + requestaccessComments: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '2018-09-02T06:11:53Z' + requestaccessKey: 724 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: '2018-08-23T06:11:53Z' + role: ProjectManager + roleDescription: null + roleDisplayName: ProjectManager + roleRisk: '' + roleSoxcritical: '0' + roleSyscritical: '0' + taskid: null + taskkey: 1070 + modifyTasksCount: 2 + parentTasks: {} + tasksList: + - access: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + customproperty1: '536870912' + description: '' + displayname: Account Operators + entitlement_value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: NONE + status: '1' + accesskey: 53553 + approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: AADGroup + entTypeDisplayName: AADGroup + entitlement: AADGroup + parentRequestaccessKey: 724 + reqtype: RequestAccess + requestaccessComments: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '' + requestaccessKey: 725 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: 08-23-2018 06:11 + taskid: null + taskkey: 1069 + - approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + parentRequestaccessKey: '' + reqtype: UpdateRole + requestaccessComments: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '2018-09-02T06:11:53Z' + requestaccessKey: 724 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: '2018-08-23T06:11:53Z' + role: ProjectManager + roleDescription: null + roleDisplayName: ProjectManager + roleRisk: '' + roleSoxcritical: '0' + roleSyscritical: '0' + taskid: null + taskkey: 1070 + tasksListCount: 2 + typeOfRequest: MODIFY ROLE + Comments: + type: string + example: '' + totalCount: + type: number + example: 1 + errorcode: + type: string + example: '0' + msg: + type: string + example: SUCCESS + examples: + Fetch Request Approval Details: + value: + ApprovalRequestDetails: + AccessHeader: + - Count: 2 + Title: Modify Role Request + AccessRequestDetails: + - childTasks: [] + childTasksCount: 0 + dynamicAttributes: [] + modifyTasks: + - access: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + customproperty1: '536870912' + description: '' + displayname: Account Operators + entitlement_value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: NONE + status: '1' + accesskey: 53553 + approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: AADGroup + entTypeDisplayName: AADGroup + entitlement: AADGroup + parentRequestaccessKey: 724 + reqtype: RequestAccess + requestaccessComments: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '' + requestaccessKey: 725 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: 08-23-2018 06:11 + taskid: null + taskkey: 1069 + - approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + parentRequestaccessKey: '' + reqtype: UpdateRole + requestaccessComments: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '2018-09-02T06:11:53Z' + requestaccessKey: 724 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: '2018-08-23T06:11:53Z' + role: ProjectManager + roleDescription: null + roleDisplayName: ProjectManager + roleRisk: '' + roleSoxcritical: '0' + roleSyscritical: '0' + taskid: null + taskkey: 1070 + modifyTasksCount: 2 + parentTasks: {} + tasksList: + - access: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + accessdetails: + customproperty1: '536870912' + description: '' + displayname: Account Operators + entitlement_value: CN=Account Operators,CN=Builtin,DC=corpAD,DC=saviynt,DC=com + soxcritical: NONE + status: '1' + accesskey: 53553 + approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + entTypeDescription: AADGroup + entTypeDisplayName: AADGroup + entitlement: AADGroup + parentRequestaccessKey: 724 + reqtype: RequestAccess + requestaccessComments: 'Entitlement added as part of Modify Role-[ProjectManager] Request

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '' + requestaccessKey: 725 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: 08-23-2018 06:11 + taskid: null + taskkey: 1069 + - approvalstatus: REJECTED + approvaltype: null + assignee: + - - aws Rachels (awsadmin) + - - Saviynt AdminUser (admin) + businessjustification: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + parentRequestaccessKey: '' + reqtype: UpdateRole + requestaccessComments: 'Approval Request for Update Role

Auto Approved CREATED_SNOW::::REQ0010161::::555cfda30f0363007c378f8ce1050e70::::625cfda30f0363007c378f8ce1050ea2:::: null' + requestaccessEnddate: '2018-09-02T06:11:53Z' + requestaccessKey: 724 + requestaccessStartdate: '2018-08-23T06:11:53Z' + requestaccessStatus: Task Created + requestdate: '2018-08-23T06:11:53Z' + role: ProjectManager + roleDescription: null + roleDisplayName: ProjectManager + roleRisk: '' + roleSoxcritical: '0' + roleSyscritical: '0' + taskid: null + taskkey: 1070 + tasksListCount: 2 + typeOfRequest: MODIFY ROLE + Comments: '' + totalCount: 1 + errorcode: '0' + msg: SUCCESS + /fetchRequestAccessAttributes: + post: + tags: + - request-access + summary: Fetch Request Access Attributes + description: |- + This method returns approval history details for a given "RequestAccessKey"(provided in `requestaccesskey` parameter) + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `requestaccesskey` + operationId: fetchRequestAccessAttributes + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + requestaccesskey: + type: string + example: '10' + responses: + '200': + description: Fetch Request Access Attributes + headers: + Date: + schema: + type: string + example: Mon, 06 Aug 2018 23:59:14 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e407de8e-587e-473b-9429-44a7b579cd01; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + result: + type: array + items: + type: object + properties: + ACCOUNTS_COLUMN: + type: string + example: '' + ATTRIBUTEGROUP: + type: string + example: '' + ATTRIBUTELABLE: + type: string + example: '' + ATTRIBUTE_NAME: + type: string + example: ACCOUNTNAME + ATTRIBUTE_OLDVALUE: + type: string + example: '' + ATTRIBUTE_VALUE: + type: string + example: glogan + DESCRIPTION: + type: string + example: '' + example: + - ACCOUNTS_COLUMN: '' + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: '' + ATTRIBUTE_NAME: ACCOUNTNAME + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: glogan + DESCRIPTION: '' + - ACCOUNTS_COLUMN: '' + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: '' + ATTRIBUTE_NAME: ENDPOINT + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: '19' + DESCRIPTION: '' + - ACCOUNTS_COLUMN: customproperty11 + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: Company Affiliation + ATTRIBUTE_NAME: companyAffiliation + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: '' + DESCRIPTION: '' + - ACCOUNTS_COLUMN: customproperty12 + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: Tool + ATTRIBUTE_NAME: tool + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: '' + DESCRIPTION: '' + size: + type: number + example: 4 + examples: + Fetch Request Access Attributes: + value: + errorCode: '0' + msg: successful + result: + - ACCOUNTS_COLUMN: '' + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: '' + ATTRIBUTE_NAME: ACCOUNTNAME + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: glogan + DESCRIPTION: '' + - ACCOUNTS_COLUMN: '' + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: '' + ATTRIBUTE_NAME: ENDPOINT + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: '19' + DESCRIPTION: '' + - ACCOUNTS_COLUMN: customproperty11 + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: Company Affiliation + ATTRIBUTE_NAME: companyAffiliation + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: '' + DESCRIPTION: '' + - ACCOUNTS_COLUMN: customproperty12 + ATTRIBUTEGROUP: '' + ATTRIBUTELABLE: Tool + ATTRIBUTE_NAME: tool + ATTRIBUTE_OLDVALUE: '' + ATTRIBUTE_VALUE: '' + DESCRIPTION: '' + size: 4 + /ApproveRejectDetailRequest: + post: + tags: + - request-approval + summary: Approve/Reject each line item in a request + description: "This API is used to approve/reject requests. Before running this call, first we need to run the API to retrieve request approval details in order to obtain the taskid and taskkey.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`requestKey`,\r\n`approver`,\r\n`approvaldata` (taskid, taskkey, action); action:1/2, 1 - approve, 2 - reject\r\n\r\nOptional params:\r\n`comments`\r\n\r\n***Note***: enableapprovervalidationinapprovalapi flag(with true/false values) can be added in configuration table to enable/disable validations when approver approvers the request.Default value of enableapprovervalidationinapprovalapi flag is null." + operationId: approveRejectEachLineItemInARequest + requestBody: + content: + application/json: + schema: + type: object + properties: + approvaldata: + type: array + items: + type: object + properties: + action: + type: number + example: 1 + taskid: + type: string + example: 90363___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: + type: number + example: 326 + example: + - action: 1 + taskid: 90363___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 326 + - action: 2 + taskid: 90364___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 327 + approver: + type: string + example: admin + comments: + type: string + example: approval comment + requestKey: + type: number + example: 138 + examples: + Approve/Reject each line item in a request: + value: + approvaldata: + - action: 1 + taskid: 90363___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 326 + - action: 2 + taskid: 90364___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 327 + approver: admin + comments: approval comment + requestKey: 138 + responses: + '200': + description: Approve/Reject each line item in a request + headers: + Date: + schema: + type: string + example: Wed, 05 Dec 2018 00:34:28 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e0d762c7-d7f1-4076-a3bd-908d3524fb12; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + approvalResponse: + type: array + items: + type: object + properties: + result: + type: string + example: Accepted + taskid: + type: string + example: 90363___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: + type: number + example: 326 + example: + - result: Accepted + taskid: 90363___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 326 + - result: Accepted + taskid: 90364___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 327 + errorCode: + type: string + example: '0' + msg: + type: string + example: SUCCESSFUL + examples: + Approve/Reject each line item in a request: + value: + approvalResponse: + - result: Accepted + taskid: 90363___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 326 + - result: Accepted + taskid: 90364___43d9e862-7e02-4de3-825e-56aa6a49557e + taskkey: 327 + errorCode: '0' + msg: SUCCESSFUL + /getPendingApprovals: + post: + tags: + - request-approval + summary: Get Pending Approvals + description: |- + This API returns pending approval details for an approver (approver provided in `username` parameter). + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username` + Optional params: + `requestkey`, `max`, `offset`, `requestid`, `requestedfor`, `requestedby`, `firstname`, `lastname`, `sort` - requestdate/duedate/requestid/requestkey, `order` - asc/desc, `submitdatestart`, `submitdateend`, `duedatestart`, `duedateend`, `requestcomments`, `requestorigin`, `endpoint` - list of endpoints, `securitysystem` - list of securitysystems, `assignee` - list of assignees, `assigneeusername` - list of usernames, `requesttype` - list of requesttypes, `entitlementvaluekey` - list of entitlement value keys, `hidecompletedapprovals` - true/ false (default is false). + ***Note*** : Searchable dates in the format MM/dd/yyyy. Sample for list of items - ["value1","value2"] + operationId: getPendingApprovals + requestBody: + content: + application/json: + schema: + type: object + properties: + requestkey: + type: string + example: '3484' + username: + type: string + example: admin + examples: + Get Pending Approvals: + value: + requestkey: '3484' + username: admin + responses: + '200': + description: Get Pending Approvals - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 12 Oct 2021 23:06:25 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=04ad745d-53fb-47d0-bd5b-853fbe05789c; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: SUCCESS + results: + type: array + items: + type: object + properties: + accessRequestCount: + type: number + example: 1 + accessRequestDetails: + type: array + items: + type: object + properties: + accountname: + type: string + example: edwardemployee + childTasks: + type: array + items: + type: object + properties: + Access: + type: string + example: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: + type: string + example: testEntitlementPM + accessdetails: + type: object + properties: + description: + type: string + example: This role is for employees needing access to EP + displayname: + type: string + example: testEntitlementPM + entitlement_value: + type: string + example: testEntitlementPM + approvalstatus: + type: string + example: NEW + approvaltype: + type: string + example: Auto-Approve + assignee: + type: array + items: + type: array + items: + type: string + example: Saviynt AdminUser (admin) + example: + - Saviynt AdminUser (admin) + example: + - - Saviynt AdminUser (admin) + businessjustification: + type: string + example: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: + type: string + entTypeDisplayName: + type: string + example: Access + entitlement: + type: string + example: Access + parentRequestaccessKey: + type: number + example: 6654 + reqtype: + type: string + example: RequestAccess + requestaccessComments: + type: string + example: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: + type: string + example: '' + requestaccessKey: + type: number + example: 6655 + requestaccessStartdate: + type: string + example: '2020-04-23T09:47:56Z' + requestaccessStatus: + type: string + example: Pending Approval + requestdate: + type: string + example: '2020-04-23 09:47:56.0' + taskid: + type: string + example: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: + type: number + example: 12247 + example: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + childTasksCount: + type: number + example: 1 + dynamicAttributes: + type: array + items: {} + example: [] + endpoint: + type: string + example: Amigopod + endpointdisplayname: + type: string + example: Amigopod + modifyTasks: + type: array + items: {} + example: [] + modifyTasksCount: + type: number + example: 0 + parentTasks: + type: object + properties: + accountname: + type: string + example: edwardemployee + approvalstatus: + type: string + example: NEW + endpoint: + type: string + example: Amigopod + endpointdisplayname: + type: string + example: Amigopod + requestedby: + type: string + example: edwardemployee + taskid: + type: string + example: 2220058___311217e8-d3c7-439e-821e-304bfdebc8b4 + taskkey: + type: number + example: 12246 + requestedby: + type: string + example: edwardemployee + tasksList: + type: array + items: + type: object + properties: + Access: + type: string + example: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: + type: string + example: testEntitlementPM + accessdetails: + type: object + properties: + description: + type: string + example: This role is for employees needing access to EP + displayname: + type: string + example: testEntitlementPM + entitlement_value: + type: string + example: testEntitlementPM + approvalstatus: + type: string + example: NEW + approvaltype: + type: string + example: Auto-Approve + assignee: + type: array + items: + type: array + items: + type: string + example: Saviynt AdminUser (admin) + example: + - Saviynt AdminUser (admin) + example: + - - Saviynt AdminUser (admin) + businessjustification: + type: string + example: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: + type: string + entTypeDisplayName: + type: string + example: Access + entitlement: + type: string + example: Access + parentRequestaccessKey: + type: number + example: 6654 + reqtype: + type: string + example: RequestAccess + requestaccessComments: + type: string + example: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: + type: string + example: '' + requestaccessKey: + type: number + example: 6655 + requestaccessStartdate: + type: string + example: '2020-04-23T09:47:56Z' + requestaccessStatus: + type: string + example: Pending Approval + requestdate: + type: string + example: '2020-04-23 09:47:56.0' + taskid: + type: string + example: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: + type: number + example: 12247 + example: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + tasksListCount: + type: number + example: 1 + typeOfRequest: + type: string + example: NEW + example: + - accountname: edwardemployee + childTasks: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + childTasksCount: 1 + dynamicAttributes: [] + endpoint: Amigopod + endpointdisplayname: Amigopod + modifyTasks: [] + modifyTasksCount: 0 + parentTasks: + accountname: edwardemployee + approvalstatus: NEW + endpoint: Amigopod + endpointdisplayname: Amigopod + requestedby: edwardemployee + taskid: 2220058___311217e8-d3c7-439e-821e-304bfdebc8b4 + taskkey: 12246 + requestedby: edwardemployee + tasksList: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + tasksListCount: 1 + typeOfRequest: NEW + activityname: + type: string + example: Auto-Approve + assignee: + type: string + example: Saviynt AdminUser (admin) + comments: + type: string + example: '' + duedate: + type: string + example: '2020-04-26 09:47:56' + endpoints: + type: string + example: Amigopod + requestdate: + type: string + example: '2020-04-23 09:47:56' + requestee: + type: string + example: Edward Employee (edwardemployee) + requestid: + type: string + example: '2210612' + requestkey: + type: number + example: 3484 + requestor: + type: string + example: Edward Employee (edwardemployee) + requesttype: + type: string + example: New Account + example: + - accessRequestCount: 1 + accessRequestDetails: + - accountname: edwardemployee + childTasks: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + childTasksCount: 1 + dynamicAttributes: [] + endpoint: Amigopod + endpointdisplayname: Amigopod + modifyTasks: [] + modifyTasksCount: 0 + parentTasks: + accountname: edwardemployee + approvalstatus: NEW + endpoint: Amigopod + endpointdisplayname: Amigopod + requestedby: edwardemployee + taskid: 2220058___311217e8-d3c7-439e-821e-304bfdebc8b4 + taskkey: 12246 + requestedby: edwardemployee + tasksList: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + tasksListCount: 1 + typeOfRequest: NEW + activityname: Auto-Approve + assignee: Saviynt AdminUser (admin) + comments: '' + duedate: '2020-04-26 09:47:56' + endpoints: Amigopod + requestdate: '2020-04-23 09:47:56' + requestee: Edward Employee (edwardemployee) + requestid: '2210612' + requestkey: 3484 + requestor: Edward Employee (edwardemployee) + requesttype: New Account + totalApprovals: + type: string + example: '1' + examples: + Get Pending Approvals - SUCCESS: + value: + count: 1 + errorCode: '0' + msg: SUCCESS + results: + - accessRequestCount: 1 + accessRequestDetails: + - accountname: edwardemployee + childTasks: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + childTasksCount: 1 + dynamicAttributes: [] + endpoint: Amigopod + endpointdisplayname: Amigopod + modifyTasks: [] + modifyTasksCount: 0 + parentTasks: + accountname: edwardemployee + approvalstatus: NEW + endpoint: Amigopod + endpointdisplayname: Amigopod + requestedby: edwardemployee + taskid: 2220058___311217e8-d3c7-439e-821e-304bfdebc8b4 + taskkey: 12246 + requestedby: edwardemployee + tasksList: + - Access: ACCOUNTNAME|edwardemployee@@ENDPOINT|624@@ + access: testEntitlementPM + accessdetails: + description: This role is for employees needing access to EP + displayname: testEntitlementPM + entitlement_value: testEntitlementPM + approvalstatus: NEW + approvaltype: Auto-Approve + assignee: + - - Saviynt AdminUser (admin) + businessjustification: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + entTypeDescription: null + entTypeDisplayName: Access + entitlement: Access + parentRequestaccessKey: 6654 + reqtype: RequestAccess + requestaccessComments: [04/23/2020 UTC -Edward Employee(edwardemployee)] sdfsdf + requestaccessEnddate: '' + requestaccessKey: 6655 + requestaccessStartdate: '2020-04-23T09:47:56Z' + requestaccessStatus: Pending Approval + requestdate: '2020-04-23 09:47:56.0' + taskid: 2220058___810d1198-74b1-452f-8928-0f97a48ea04c + taskkey: 12247 + tasksListCount: 1 + typeOfRequest: NEW + activityname: Auto-Approve + assignee: Saviynt AdminUser (admin) + comments: '' + duedate: '2020-04-26 09:47:56' + endpoints: Amigopod + requestdate: '2020-04-23 09:47:56' + requestee: Edward Employee (edwardemployee) + requestid: '2210612' + requestkey: 3484 + requestor: Edward Employee (edwardemployee) + requesttype: New Account + totalApprovals: '1' + /approveRejectRequest: + post: + tags: + - request-approval + summary: Approve/Reject entire request + description: "This API is used to approve/reject entire request.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`requestid` or `requestkey` (if both are passed requestkey will be considered),\r\n`reqaction`:1/2, 1 - approve, 2 - reject\r\n\r\nOptional params:\r\n`approver` (if not passed, the token user is used)\r\n`comments`" + operationId: approveRejectEntireRequest + requestBody: + content: + application/json: + schema: + type: object + properties: + approver: + type: string + example: admin + comments: + type: string + example: approval comment + reqaction: + type: string + example: '1' + requestid: + type: string + example: '1490046' + requestkey: + type: string + example: '89' + examples: + Approve/Reject entire request: + value: + approver: admin + comments: approval comment + reqaction: '1' + requestid: '1490046' + requestkey: '89' + responses: + '200': + description: Approve/Reject entire request + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 31 Jul 2020 21:22:40 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=132f53b6-07e3-4845-bf82-e507151d8018; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: success + examples: + Approve/Reject entire request: + value: + errorCode: '0' + message: success + /createtask: + post: + tags: + - arstasks + summary: Create Task - Remove Entitlement + description: |- + Starting with Release v23.9, you can use the createtask API to create remove access tasks for inactive accounts. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `assignmenttype` - ENTITLEMENTS, `tasktype` - DEL, `username`, `endpointname`, `accountname` + Optional params: `comments` `source`(Default : WEBSERVICE) + operationId: createTaskRemoveEntitlement + requestBody: + content: + application/json: + schema: + type: object + properties: + accountname: + type: string + example: 536736@saviyntlive.onmicrosoft.com + assignmenttype: + type: string + example: ENTITLEMENTS + comments: + type: string + example: Test Removal + endpointname: + type: string + example: AzureAD_CONN + entitlementtype: + type: string + example: AADGroup + entitlementvalue: + type: string + example: 15Febmonday1Grp + tasktype: + type: string + example: DEL + username: + type: string + example: 536736@saviyntlive.onmicrosoft.com + examples: + Create Task - Remove Entitlement: + value: + accountname: 536736@saviyntlive.onmicrosoft.com + assignmenttype: ENTITLEMENTS + comments: Test Removal + endpointname: AzureAD_CONN + entitlementtype: AADGroup + entitlementvalue: 15Febmonday1Grp + tasktype: DEL + username: 536736@saviyntlive.onmicrosoft.com + responses: + '200': + description: Remove Entitlement + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-azure.saviyntcloud.com + CF-Cache-Status: + schema: + type: string + example: DYNAMIC + CF-RAY: + schema: + type: string + example: 7faaedb419fe3e2e-BOM + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Encoding: + schema: + type: string + example: gzip + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 22 Aug 2023 11:55:45 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Server: + schema: + type: string + example: cloudflare + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=af07b6fa-7dfb-4cf2-bafa-03210a745cbb; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + Status: + type: string + example: Success + TaskID List: + type: array + items: + type: number + example: 61585 + example: + - 61585 + errorcode: + type: string + example: '0' + examples: + Remove Entitlement: + value: + Status: Success + TaskID List: + - 61585 + errorcode: '0' + security: + - bearerAuth: [] + /completetask: + post: + tags: + - arstasks + summary: Complete Single Task + description: |- + This method closes a single open task in SSM - both in "New" and "InProgress" state. + Mandatory params: + `taskid` - Unique ID of the task. + Optional params: + `provisioning` - true or false, + `targetprovision` - true or false, default : false + `updateuser` - username of user who is updating the task, + `completeassociatedtasks` - true or false, + `emailto`, + `notify` - use this if you want to pick up data from the task, sample - "notify":["USER","requestor","MANAGER"], + `emailbody`, + `subject`, + `from` + The `Authorization` must have `Bearer` followed by `Token`. + operationId: completeSingleTask + requestBody: + content: + application/json: + schema: + type: object + properties: + taskkeytocomplete: + type: array + items: + type: object + properties: + provisioningComments: + type: string + example: comments + taskdata: + type: string + example: password1 + taskid: + type: string + example: '12172' + example: + - provisioningComments: comments + taskdata: password1 + taskid: '12172' + - taskdata: password2 + taskid: '12173' + examples: + Complete Bulk Tasks: + value: + taskkeytocomplete: + - provisioningComments: comments + taskdata: password1 + taskid: '12172' + - taskdata: password2 + taskid: '12173' + application/x-www-form-urlencoded: + schema: + type: object + properties: + provisioning: + type: string + example: 'true' + taskid: + type: string + example: '12212' + examples: + Complete Single Task: + value: + provisioning: 'true' + taskid: '12212' + responses: + '200': + description: Complete Single Task / Complete Task 1 + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 20:25:05 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=c74b47c1-e9fc-4b01-a1c2-6a25f6a1d2d1; Path=/ + content: + application/json: + schema: + type: object + properties: + completedtasks: + type: array + items: + type: number + example: 12212 + example: + - 12212 + errorCode: + type: string + example: '0' + failedtasks: + type: array + items: {} + example: [] + message: + type: string + example: Success + result: + example: ' Taskid12212=true Taskid 12212 = true ' + anyOf: + - type: string + example: ' Taskid12212=true Taskid 12212 = true ' + - type: object + properties: + '12172': + type: string + example: Completed + '12173': + type: string + example: Completed + examples: + Complete Single Task: + value: + completedtasks: + - 12212 + errorCode: '0' + failedtasks: [] + message: Success + result: ' Taskid12212=true Taskid 12212 = true ' + Complete Task 1: + value: + errorCode: '0' + message: Success + result: + '12172': Completed + '12173': Completed + /updateTasks: + post: + tags: + - arstasks + summary: Update Tasks + description: |- + It can update certain params of a task as well as complete a task. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: `taskKeyToUpdate` + Optional params: `updatetype` (if this is set to "completetask" then refer completetask api and pass appropriate params as well), + `comments`, + `provisioningComments`, + `provisioningMetadata`, + `password`, + `status`, + `ticketId`, + `taskownerusergroup`/`taskowneruser`, + `updateuser` - username of user who is updating the task, + `completeassociatedtasks` - true / false, + `emailto`, + `notify` - to pick up data from the task, supported values - "notify":["USER","requestor","MANAGER"], + `from`, + `subject`, + `emailbody` + operationId: updateTasks + requestBody: + content: + application/json: + schema: + type: object + properties: + taskKeyToUpdate: + type: array + items: + type: object + properties: + provisioningMetadata: + type: string + example: test1 + taskid: + type: string + example: '26937' + taskowneruser: + type: string + example: lkrause + taskownerusergroup: + type: string + example: usrgrpname + updatetype: + type: string + example: completetask + example: + - provisioningMetadata: test1 + taskid: '26937' + taskownerusergroup: usrgrpname + updatetype: completetask + - provisioningMetadata: test2 + taskid: '26936' + taskowneruser: lkrause + updateuser: + type: string + example: acook + examples: + Update Tasks: + value: + taskKeyToUpdate: + - provisioningMetadata: test1 + taskid: '26937' + taskownerusergroup: usrgrpname + updatetype: completetask + - provisioningMetadata: test2 + taskid: '26936' + taskowneruser: lkrause + updateuser: acook + responses: + '200': + description: Update Tasks + headers: + Date: + schema: + type: string + example: Tue, 07 Aug 2018 21:18:48 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4d096faf-91b6-4c63-87af-014c2aa174a0; Path=/ + content: + application/json: + schema: + type: object + properties: + '26936': + type: object + properties: + errorCode: + type: string + example: '1' + msg: + type: string + example: Task id not found + '26937': + type: object + properties: + completedtasks: + type: array + items: + type: number + example: 2070 + example: + - 2070 + errorCode: + type: string + example: '0' + failedtasks: + type: array + items: {} + example: [] + msg: + type: string + example: Update successful. completetask Success + result: + type: string + example: ' Taskid2070=true ' + examples: + Update Tasks: + value: + '26936': + errorCode: '1' + msg: Task id not found + '26937': + completedtasks: + - 2070 + errorCode: '0' + failedtasks: [] + msg: Update successful. completetask Success + result: ' Taskid2070=true ' + /discontinueTask: + post: + tags: + - arstasks + summary: Discontinue Tasks + description: |- + This method discontinues open tasks in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `taskkeytodiscontinue`- + 1.`taskid` + Optional params: + `taskkeytodiscontinue`- + 1.`updateuser` - username of user who is updating the task, + 2.`discontinueassociatedtask` - true or false, + 3.`comments` + The `Authorization` must have `Bearer` followed by `Token`. + operationId: discontinueTasks + requestBody: + content: + application/json: + schema: + type: object + properties: + taskkeytodiscontinue: + type: array + items: + type: object + properties: + comments: + type: string + example: test comment + discontinueassociatedtask: + type: string + example: 'true' + taskid: + type: string + example: '12213' + example: + - comments: test comment + discontinueassociatedtask: 'true' + taskid: '12213' + examples: + Discontinue Tasks: + value: + taskkeytodiscontinue: + - comments: test comment + discontinueassociatedtask: 'true' + taskid: '12213' + responses: + '200': + description: Discontinue Tasks + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 15 Oct 2019 18:35:42 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=feebd3a9-e2be-4f12-a216-cf9c5f5937d7; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: Success + result: + type: object + properties: + '12213': + type: string + example: Discontinued + examples: + Discontinue Tasks: + value: + errorcode: '0' + msg: Success + result: + '12213': Discontinued + /discontinueAllPendingTask: + post: + tags: + - arstasks + summary: Discontinue All Pending Tasks + description: "This API can be used to discontinue all pending tasks.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params: \r\n`updateuser`\r\n\r\n`commentsrequest`" + operationId: discontinueAllPendingTasks + requestBody: + content: + application/json: + schema: + type: object + properties: + comments: + type: string + example: discontinue from api + updateuser: + type: string + example: admin + examples: + Discontinue All Pending Tasks: + value: + comments: discontinue from api + updateuser: admin + responses: + '200': + description: Discontinue All Pending Tasks + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 21 Jul 2020 17:51:30 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8a56ec8d-a73d-4fd4-b58d-7cb6d0034075; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 0 + msg: + type: string + example: process started to discontinue all tasks + examples: + Discontinue All Pending Tasks: + value: + errorcode: 0 + msg: process started to discontinue all tasks + /fetchTasks: + post: + tags: + - arstasks + summary: Fetch Task Details + description: "This method returns a `list` of provisioning tasks, that correspond to a particular IT Application (e.g Microsoft Active Directory) modeled in SSM as \"Endpoint\" of a \"Security System\".\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n`TASKSTATUS` - PENDING/PENDINGCREATE/COMPLETED/COMPLETED_AND_DISCONTINUE/DISCONTINUE, \r\n\r\nOptional params:\r\n\r\n`endpoint` - endpoint key,\r\n`endpointname`, `endpointdescription`, \r\n\r\n`securitysystem` - securitysystem key,\r\n\r\n`loggedinusername` - username of user who wants to fetch the tasks,\r\n`upadteuser`, \r\n`requestedby`, \r\n`username`, \r\n`firstname`, \r\n`lastname`,\r\n`account` - accountname, \r\n\r\n`entitlement_value`, \r\n`entitlement_glossary`, \r\n`entitlementowner` - entitlementowner key,\r\n`entitlementtypekey`, \r\n\r\n`requestid`, \r\n`parenttaskid`, \r\n`taskid`, \r\n`taskowneruser` - userkey of owner,\r\n`taskownerusername` - username of owner, \r\n`taskownerusergroup` - usergroup key, \r\n`taskownerusergroupname` - usergroup name, \r\n`max`, `offset`,\r\n`statusint` - List of comma-seperated integer equivalent task status(3 - Complete, 4 - Discontinue and so on)\r\n`source` - List of comma-seperated source types(REQUEST/WEBSERVICE/CERTIFICATION and so on)\r\n`requestkey` - List of comma-seperated requestkeys\r\n`requestaccesskey` - List of comma-seperated requestaccesskey\r\n`tasktype` - List of comma-seperated integer equivalent task types(3 - New Account, 5 - Change Password and so on)\r\n`getEntitlementObj` - Values: true/false, if true returns the entitlement details associated with the task\r\n\r\n`getAccountObj` - Values: true/false, if true returns the account details asociated with the task,\r\n\r\n`taskmetadatalength` - Modifies the charcater limit of provisioning comments and provisioning metadata upto maximum of 10000.\r\n\r\n***Note*** - Provisioning comments in the response will be limited to 200 characters. Provisioning metadata in the response will be limited to 400 characters." + operationId: fetchTaskDetails + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + source: + type: string + example: WEBSERVICE + statusint: + type: string + example: '1' + tasktype: + type: string + example: '5' + responses: + '200': + description: Fetch Task Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 23 Jun 2021 01:37:14 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a6107ac1-0bd0-4e2f-bf9d-aa54c7797c06; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + tasks: + type: array + items: + type: object + properties: + ACCOUNT: + type: string + example: bsimpson5 + COMMENTS: + type: string + example: add a comment + CREATIONDATE: + type: string + example: '2021-01-04 20:27:34' + ENDDATE: + type: string + example: '' + ENDPOINT: + type: string + example: Active Directory Plus + ENDPOINTKEY: + type: string + example: '604' + ENDPOINTNAME: + type: string + example: ActiveDirectoryPlus + ENTITLEMENTTYPE: + type: string + example: '' + ENTITLEMENT_VALUEKEY: + type: string + example: '' + OWNERKEY: + type: string + example: admin + PARENTTASK: + type: string + example: '' + PROVISIONINGCOMMENTS: + type: string + example: '' + PROVISIONINGMETADATA: + type: string + example: '' + REQUESTACCESSKEY: + type: string + example: '' + REQUESTID: + type: string + example: '' + REQUESTKEY: + type: string + example: '' + SECURITYSYSTEM: + type: string + example: Active Directory Plus + STARTDATE: + type: string + example: '' + STATUS: + type: string + example: New + TASKID: + type: string + example: '10642653' + TASKTYPE: + type: string + example: Change Password + UPDATEDATE: + type: string + example: '2021-01-04 20:27:34' + USER: + type: string + example: bsimpson5 + upadteuser: + type: string + example: bsimpson5(2021-01-04 20:27:34) + example: + - ACCOUNT: bsimpson5 + COMMENTS: add a comment + CREATIONDATE: '2021-01-04 20:27:34' + ENDDATE: '' + ENDPOINT: Active Directory Plus + ENDPOINTKEY: '604' + ENDPOINTNAME: ActiveDirectoryPlus + ENTITLEMENTTYPE: '' + ENTITLEMENT_VALUEKEY: '' + OWNERKEY: admin + PARENTTASK: '' + PROVISIONINGCOMMENTS: '' + PROVISIONINGMETADATA: '' + REQUESTACCESSKEY: '' + REQUESTID: '' + REQUESTKEY: '' + SECURITYSYSTEM: Active Directory Plus + STARTDATE: '' + STATUS: New + TASKID: '10642653' + TASKTYPE: Change Password + UPDATEDATE: '2021-01-04 20:27:34' + USER: bsimpson5 + upadteuser: bsimpson5(2021-01-04 20:27:34) + - ACCOUNT: $1V9000-2LO73GT330CI + COMMENTS: add a comment + CREATIONDATE: '2021-02-17 04:27:54' + ENDDATE: '' + ENDPOINT: Active Directory Plus + ENDPOINTKEY: '604' + ENDPOINTNAME: ActiveDirectoryPlus + ENTITLEMENTTYPE: '' + ENTITLEMENT_VALUEKEY: '' + OWNERKEY: admin + PARENTTASK: '' + PROVISIONINGCOMMENTS: '' + PROVISIONINGMETADATA: '' + REQUESTACCESSKEY: '' + REQUESTID: '' + REQUESTKEY: '' + SECURITYSYSTEM: Active Directory Plus + STARTDATE: '' + STATUS: New + TASKID: '10642774' + TASKTYPE: Change Password + UPDATEDATE: '2021-02-17 04:27:54' + USER: '' + upadteuser: admin(2021-02-17 04:27:54) + totalrecords: + type: string + example: '2' + totaltasks: + type: string + example: '2' + examples: + Fetch Task Details: + value: + errorCode: '0' + msg: Successful + tasks: + - ACCOUNT: bsimpson5 + COMMENTS: add a comment + CREATIONDATE: '2021-01-04 20:27:34' + ENDDATE: '' + ENDPOINT: Active Directory Plus + ENDPOINTKEY: '604' + ENDPOINTNAME: ActiveDirectoryPlus + ENTITLEMENTTYPE: '' + ENTITLEMENT_VALUEKEY: '' + OWNERKEY: admin + PARENTTASK: '' + PROVISIONINGCOMMENTS: '' + PROVISIONINGMETADATA: '' + REQUESTACCESSKEY: '' + REQUESTID: '' + REQUESTKEY: '' + SECURITYSYSTEM: Active Directory Plus + STARTDATE: '' + STATUS: New + TASKID: '10642653' + TASKTYPE: Change Password + UPDATEDATE: '2021-01-04 20:27:34' + USER: bsimpson5 + upadteuser: bsimpson5(2021-01-04 20:27:34) + - ACCOUNT: $1V9000-2LO73GT330CI + COMMENTS: add a comment + CREATIONDATE: '2021-02-17 04:27:54' + ENDDATE: '' + ENDPOINT: Active Directory Plus + ENDPOINTKEY: '604' + ENDPOINTNAME: ActiveDirectoryPlus + ENTITLEMENTTYPE: '' + ENTITLEMENT_VALUEKEY: '' + OWNERKEY: admin + PARENTTASK: '' + PROVISIONINGCOMMENTS: '' + PROVISIONINGMETADATA: '' + REQUESTACCESSKEY: '' + REQUESTID: '' + REQUESTKEY: '' + SECURITYSYSTEM: Active Directory Plus + STARTDATE: '' + STATUS: New + TASKID: '10642774' + TASKTYPE: Change Password + UPDATEDATE: '2021-02-17 04:27:54' + USER: '' + upadteuser: admin(2021-02-17 04:27:54) + totalrecords: '2' + totaltasks: '2' + /checkTaskStatus: + post: + tags: + - arstasks + summary: Check Task Status + description: "This API can be used to check the task status. Response can return task status as “New/Complete/In Progress/Discontinued”.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`taskid`" + operationId: checkTaskStatus + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + taskid: + type: string + example: '2700' + responses: + '200': + description: Check Task Status + headers: + Date: + schema: + type: string + example: Wed, 08 Aug 2018 21:03:57 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5c687cd8-1750-4b0d-8d44-b3beb62fba7a; Path=/ + content: + application/json: + schema: + type: object + properties: + Comments: + type: string + example: test comments + ProvisioningComments: + type: string + ProvisioningMetadata: + type: string + Status: + type: string + example: Complete + UpdateDate: + type: string + example: '2018-08-09 03:29:13.0' + UpdateUser: + type: string + example: admin + examples: + Check Task Status: + value: + Comments: test comments + ProvisioningComments: null + ProvisioningMetadata: null + Status: Complete + UpdateDate: '2018-08-09 03:29:13.0' + UpdateUser: admin + /getDelegateUserList: + get: + tags: + - delegates + summary: Get Delegate User List + description: |- + This API returns list of users that are allowed to be added as delegate for a parentuser in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `parentusername` + Optional params: + `max`, `offset`, + `searchCriteria` - example "t*" or "*te*" or "test" to search in username or firstname or lastname for the delegate user + operationId: getDelegateUserList + requestBody: + content: + application/json: + schema: + type: object + properties: + max: + type: string + example: '2' + parentusername: + type: string + example: acook + searchCriteria: + type: string + example: d* + examples: + Get Delegate User List: + value: + max: '2' + parentusername: acook + searchCriteria: d* + responses: + '200': + description: Get Delegate User List + headers: + Date: + schema: + type: string + example: Thu, 06 Dec 2018 22:41:32 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=dab029a9-a0d4-45ff-a6da-52099e4c17b3; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displayCount: + type: string + example: '2' + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + result: + type: array + items: + type: object + properties: + firstname: + type: string + example: Damien + lastname: + type: string + example: Baliey + username: + type: string + example: dbailey + example: + - firstname: Damien + lastname: Baliey + username: dbailey + - firstname: Deanna + lastname: Odonnell + username: dodonnell + totalCount: + type: string + example: '166' + examples: + Get Delegate User List: + value: + displayCount: '2' + errorCode: '0' + msg: Success + result: + - firstname: Damien + lastname: Baliey + username: dbailey + - firstname: Deanna + lastname: Odonnell + username: dodonnell + totalCount: '166' + /createDelegate: + post: + tags: + - delegates + summary: Create Delegate + description: |- + This method creates a new delegate for a parent User. The input parameters of this method contains the details of the Parent User as well as the one to whom the Delegation is carried out. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `userName` - this is user who is creating the delegation, + `name` - name of delegate, + `delegateusername` - this is the user who should be assigned as the delegate of the parent user, + `delegatestartdate` - in format MMDDYYY, + `delegateenddate` - in format MMDDYYY + Optional params: + `parentusername` - this is the parent username, if not passed it will consider `userName` as parentusername, + `description` + operationId: createDelegate + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + delegateenddate: + type: string + example: '08182020' + delegatestartdate: + type: string + example: '07142020' + delegateusername: + type: string + example: U011556 + description: + type: string + example: '' + name: + type: string + example: delegatetest + parentusername: + type: string + example: U013053 + userName: + type: string + example: admin + examples: + Create Delegate: + value: + delegateenddate: '08182020' + delegatestartdate: '07142020' + delegateusername: U011556 + description: '' + name: delegatetest + parentusername: U013053 + userName: admin + responses: + '200': + description: Create Delegate + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 01 Jul 2020 22:39:49 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bb12b0ba-7fc5-48e8-ac65-4e6537207af7; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + delegatekey: + type: string + example: '1' + errorCode: + type: string + example: '0' + msg: + type: string + example: ' Delegate created' + examples: + Create Delegate: + value: + delegatekey: '1' + errorCode: '0' + msg: ' Delegate created' + /fetchDelegatesList: + post: + tags: + - delegates + summary: Fetch Existing Delegates List + description: |- + This API is used to retrieve the list of existing delegates and their details. If any optional parameter is not specified then only active delegates are displayed. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `userName` - this is the parentusername + Optional params: + `max`, `offset`, + `status` - values can be ACTIVE / INACTIVE + operationId: fetchExistingDelegatesList + requestBody: + content: + application/json: + schema: + type: object + properties: + max: + type: string + example: '2' + status: + type: string + example: ACTIVE + userName: + type: string + example: U013053 + examples: + Fetch Existing Delegates List: + value: + max: '2' + status: ACTIVE + userName: U013053 + responses: + '200': + description: Fetch Existing Delegates List + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 01 Jul 2020 22:42:41 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bb12b0ba-7fc5-48e8-ac65-4e6537207af7; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + delegateCount: + type: number + example: 1 + delegateList: + type: array + items: + type: object + properties: + delegateFirstName: + type: string + example: Daniel + delegateLastName: + type: string + example: Schibler + delegatekey: + type: string + example: '1' + delegateusername: + type: string + example: U011556 + description: + type: string + example: '' + enddate: + type: string + example: 08/18/2020 + name: + type: string + example: delegatetest + parentFirstName: + type: string + example: Maureen + parentLastName: + type: string + example: Knauber + parentusername: + type: string + example: U013053 + startdate: + type: string + example: 07/14/2020 + status: + type: string + example: ACTIVE + example: + - delegateFirstName: Daniel + delegateLastName: Schibler + delegatekey: '1' + delegateusername: U011556 + description: '' + enddate: 08/18/2020 + name: delegatetest + parentFirstName: Maureen + parentLastName: Knauber + parentusername: U013053 + startdate: 07/14/2020 + status: ACTIVE + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + totalCount: + type: string + example: '1' + examples: + Fetch Existing Delegates List: + value: + delegateCount: 1 + delegateList: + - delegateFirstName: Daniel + delegateLastName: Schibler + delegatekey: '1' + delegateusername: U011556 + description: '' + enddate: 08/18/2020 + name: delegatetest + parentFirstName: Maureen + parentLastName: Knauber + parentusername: U013053 + startdate: 07/14/2020 + status: ACTIVE + errorCode: '0' + msg: successful + totalCount: '1' + /editDelegate: + post: + tags: + - delegates + summary: Edit Delegate + description: |- + This method is used to edit a specific delegate. The input parameters of this method contain the details of the Parent User as well as the one to whom the Delegation is carried out. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `key` - this is the delegatekey, + `userName` - this is user who is updating the delegation, + `name` - name of delegate, + `delegateusername` - this is the user who should be assigned as the delegate of the parent user, + `delegatestartdate` - in format MMDDYYY, + `delegateenddate` - in format MMDDYYY + Optional params: + `parentusername` - this is the parent username, if not passed it will consider `userName` as parentusername + `description` + operationId: editDelegate + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + delegateenddate: + type: string + example: '10122018' + delegatestartdate: + type: string + example: '09142018' + delegateusername: + type: string + example: acook + description: + type: string + example: test + key: + type: string + example: '27' + name: + type: string + example: delegatetest + parentusername: + type: string + example: dbailey + userName: + type: string + example: admin + examples: + Edit Delegate: + value: + delegateenddate: '10122018' + delegatestartdate: '09142018' + delegateusername: acook + description: test + key: '27' + name: delegatetest + parentusername: dbailey + userName: admin + responses: + '200': + description: Edit Delegate + headers: + Date: + schema: + type: string + example: Thu, 13 Sep 2018 00:17:09 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=3b3657f3-ac68-45b6-91d2-0eb0da5a49f9; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: ' Delegate Updated' + examples: + Edit Delegate: + value: + errorCode: '0' + msg: ' Delegate Updated' + /deleteDelegate: + post: + tags: + - delegates + summary: Delete Delegate + description: |- + This API is used to delete a specific delegate. + + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `userName` - this is the user who is deleting the delegate, + `key` - the is the delegatekey + operationId: deleteDelegate + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + key: + type: string + example: '27' + userName: + type: string + example: admin + examples: + Delete Delegate: + value: + key: '27' + userName: admin + responses: + '200': + description: Delete Delegate + headers: + Date: + schema: + type: string + example: Fri, 03 Aug 2018 00:55:24 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=4aa0bffb-f633-4f9f-8602-ca789a6c5db5; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + examples: + Delete Delegate: + value: + errorCode: '0' + msg: Successful + /fetchAttestationsList: + post: + tags: + - attestations + summary: Fetch Attestation List + description: "This API call can be used to fetch Attestation list from SSM for a given user.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`userName`\r\n\r\nOptional params:\r\n`max`, `offset`" + operationId: fetchAttestationList + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + userName: + type: string + example: dbailey + responses: + '200': + description: Fetch Attestation List + headers: + Date: + schema: + type: string + example: Mon, 06 Aug 2018 14:25:46 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=d4a7290e-77a6-4d23-ae52-024795ce1025; Path=/ + content: + application/json: + schema: + type: object + properties: + attestations: + type: array + items: + type: object + properties: + action: + type: string + example: '' + actions: + type: string + example: '' + att_name: + type: string + example: testAgainET - dbailey (Damien Bailey) + certifier: + type: string + example: dbailey + createdate: + type: string + example: '2018-07-17 13:23:13' + createdt: + type: string + example: '2018-07-17 13:23:13' + enddate: + type: string + example: '2018-07-26 14:00:00' + id: + type: number + example: 368 + reminderstattus: + type: string + example: '' + status: + type: string + example: New + type: + type: string + example: Entitlement Owner + updatedate: + type: string + example: '2018-07-17 13:23:13' + updateuser: + type: string + example: '' + example: + - action: '' + actions: '' + att_name: testAgainET - dbailey (Damien Bailey) + certifier: dbailey + createdate: '2018-07-17 13:23:13' + createdt: '2018-07-17 13:23:13' + enddate: '2018-07-26 14:00:00' + id: 368 + reminderstattus: '' + status: New + type: Entitlement Owner + updatedate: '2018-07-17 13:23:13' + updateuser: '' + - action: '' + actions: '' + att_name: test - dbailey (Damien Bailey) + certifier: dbailey + createdate: '2018-06-19 07:28:09' + createdt: '2018-06-19 07:28:09' + enddate: '2018-06-28 14:00:00' + id: 367 + reminderstattus: '' + status: New + type: Entitlement Owner + updatedate: '2018-06-19 07:28:09' + updateuser: '' + count: + type: number + example: 2 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + examples: + Fetch Attestation List: + value: + attestations: + - action: '' + actions: '' + att_name: testAgainET - dbailey (Damien Bailey) + certifier: dbailey + createdate: '2018-07-17 13:23:13' + createdt: '2018-07-17 13:23:13' + enddate: '2018-07-26 14:00:00' + id: 368 + reminderstattus: '' + status: New + type: Entitlement Owner + updatedate: '2018-07-17 13:23:13' + updateuser: '' + - action: '' + actions: '' + att_name: test - dbailey (Damien Bailey) + certifier: dbailey + createdate: '2018-06-19 07:28:09' + createdt: '2018-06-19 07:28:09' + enddate: '2018-06-28 14:00:00' + id: 367 + reminderstattus: '' + status: New + type: Entitlement Owner + updatedate: '2018-06-19 07:28:09' + updateuser: '' + count: 2 + errorCode: '0' + msg: successful + /fetchAttestationDetails: + post: + tags: + - attestations + summary: Fetch Attestation Details + description: "This API call can be used to fetch Attestation details for a particular attestation from SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`userName` - this is the certifier username, \r\n\r\n`id` - this is the attestation id" + operationId: fetchAttestationDetails + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + id: + type: string + example: '368' + userName: + type: string + example: dbailey + responses: + '200': + description: Fetch Attestation Details + headers: + Date: + schema: + type: string + example: Mon, 06 Aug 2018 14:41:08 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=20e38941-179f-4bef-a46a-7f374c2fe029; Path=/ + content: + application/json: + schema: + type: object + properties: + attestationdetails: + type: array + items: + type: object + properties: + certified: + type: string + example: Completed + certifiedall: + type: string + example: Works For Me + comments: + type: string + example: '' + cp1: + type: string + example: IP + cp2: + type: string + example: '' + cp3: + type: string + example: Activated + cp4: + type: string + example: test + cp5: + type: string + example: C + firstname: + type: string + example: Shania + lastname: + type: string + example: Marquez + totalAccounts: + type: number + example: 3 + updateuser: + type: string + example: acook + username: + type: string + example: smarquez + example: + - certified: Completed + certifiedall: Works For Me + comments: '' + cp1: IP + cp2: '' + cp3: Activated + cp4: test + cp5: C + firstname: Shania + lastname: Marquez + totalAccounts: 3 + updateuser: acook + username: smarquez + complete: + type: string + example: 'Y' + count: + type: number + example: 1 + errorCode: + type: string + example: '0' + locked: + type: string + example: 'N' + msg: + type: string + example: successful + examples: + Fetch Attestation Details: + value: + attestationdetails: + - certified: Completed + certifiedall: Works For Me + comments: '' + cp1: IP + cp2: '' + cp3: Activated + cp4: test + cp5: C + firstname: Shania + lastname: Marquez + totalAccounts: 3 + updateuser: acook + username: smarquez + complete: 'Y' + count: 1 + errorCode: '0' + locked: 'N' + msg: successful + /certifyUserManagerRequests: + post: + tags: + - attestations + summary: Certify UserManager Requests + description: "This API can be used to certify users employment status for user manager attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`verifications` - \r\n\r\n`employee` - Username to whom you want to certify\r\n\r\n`verifier` - Indicates the ‘username’ of the approver/verifier\r\n\t\r\n`action` - Specify the ‘Action’ you want to take for the respective Campaign. Possible values are ‘Works for me’, ‘Does not work for me’, ‘Terminated’, and ‘No response’\r\n \r\n`id` - Indicates the attestation id for which you want to take action specified in the ‘Action’ parameter. \r\n\r\n\r\nOptional params:\r\n\r\n`verifications` -\r\n\r\n`comments` - Specify the comments you want to mention for taking the respective action" + operationId: certifyUsermanagerRequests + requestBody: + content: + application/json: + schema: + type: object + properties: + verifications: + type: array + items: + type: object + properties: + action: + type: string + example: DOESNOTWORKFORME + employee: + type: string + example: dbailey + id: + type: string + example: '13' + verifier: + type: string + example: admin + example: + - action: DOESNOTWORKFORME + employee: dbailey + id: '13' + verifier: admin + examples: + Certify UserManager Requests: + value: + verifications: + - action: DOESNOTWORKFORME + employee: dbailey + id: '13' + verifier: admin + responses: + '200': + description: Certify UserManager Requests + headers: + Date: + schema: + type: string + example: Mon, 06 Aug 2018 15:25:36 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9124cfe4-14fb-43e8-9179-6195545d0aa4; Path=/ + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 1 + errorCode: + type: string + example: '' + msg: + type: string + example: '' + verifications: + type: array + items: + type: object + properties: + employee: + type: string + example: dbailey + errorCode: + type: string + example: '0' + id: + type: string + example: '13' + msg: + type: string + example: Success + example: + - employee: dbailey + errorCode: '0' + id: '13' + msg: Success + examples: + Certify UserManager Requests: + value: + count: 1 + errorCode: '' + msg: '' + verifications: + - employee: dbailey + errorCode: '0' + id: '13' + msg: Success + /fetchAttAccEntDetails: + post: + tags: + - attestations + summary: Fetch Attestation Account Entitlement Details + description: "This API call can be used to get the details, status, and keys for accounts and entitlements within user manager attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`id` - attestation id" + operationId: fetchAttestationAccountEntitlementDetails + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + id: + type: string + example: '19' + responses: + '200': + description: Fetch Attestation Account Entitlement Details + headers: + Date: + schema: + type: string + example: Wed, 12 Sep 2018 06:23:22 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ef915fbd-85f3-4a3b-8605-b4bf7867754e; Path=/ + content: + application/json: + schema: + type: object + properties: + accentdetails: + type: object + properties: + id: + type: number + example: 19 + users: + type: array + items: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accountattkey: + type: number + example: 212330 + accountname: + type: string + example: '188837' + certified: + type: string + example: 'No' + comments: + type: string + example: Revoked on [08/10/17-null null(admin)] d
+ endpoint: + type: string + example: amigopod + entitlements: + type: array + items: + type: object + properties: + entattkey: + type: number + example: 2951 + entcertified: + type: string + example: 'No' + entcomments: + type: string + example: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: + type: string + example: None + entname: + type: string + example: Absence Partner + enttype: + type: string + example: Access + example: + - entattkey: 2951 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Absence Partner + enttype: Access + - entattkey: 2952 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Accountant + enttype: Access + - entattkey: 4096 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt1 + enttype: Access + - entattkey: 4097 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt2 + enttype: Access + - entattkey: 4098 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt3 + enttype: Access + entitlementscount: + type: number + example: 5 + example: + - accountattkey: 212330 + accountname: '188837' + certified: 'No' + comments: Revoked on [08/10/17-null null(admin)] d
+ endpoint: amigopod + entitlements: + - entattkey: 2951 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Absence Partner + enttype: Access + - entattkey: 2952 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Accountant + enttype: Access + - entattkey: 4096 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt1 + enttype: Access + - entattkey: 4097 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt2 + enttype: Access + - entattkey: 4098 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt3 + enttype: Access + entitlementscount: 5 + accountscount: + type: number + example: 1 + employeeattuserkey: + type: number + example: 152371 + employeeusername: + type: string + example: '188837' + firstname: + type: string + example: Mina + lastname: + type: string + example: Naghavi + example: + - accounts: + - accountattkey: 212330 + accountname: '188837' + certified: 'No' + comments: Revoked on [08/10/17-null null(admin)] d
+ endpoint: amigopod + entitlements: + - entattkey: 2951 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Absence Partner + enttype: Access + - entattkey: 2952 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Accountant + enttype: Access + - entattkey: 4096 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt1 + enttype: Access + - entattkey: 4097 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt2 + enttype: Access + - entattkey: 4098 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt3 + enttype: Access + entitlementscount: 5 + accountscount: 1 + employeeattuserkey: 152371 + employeeusername: '188837' + firstname: Mina + lastname: Naghavi + - accounts: + - accountattkey: 25 + accountname: CNLYA9 + certified: 'Yes' + comments: Certified on [08/10/17-null null(admin)]
+ endpoint: Endpoint1 + entitlements: + - entattkey: 3 + entcertified: 'Yes' + entcomments: Certified on [08/10/17-null null(admin)]
+ entcriticality: None + entname: ROLE_USERS + enttype: Role + entitlementscount: 1 + - accountattkey: 151893 + accountname: Liyan.Yang + certified: No Response + comments: '' + endpoint: Global Product Catalogue + entitlements: + - entattkey: 168 + entcertified: No Response + entcomments: '' + entcriticality: None + entname: Technical Viewer + enttype: Roles + - entattkey: 169 + entcertified: No Response + entcomments: '' + entcriticality: None + entname: Support Viewer + enttype: Roles + entitlementscount: 2 + accountscount: 2 + employeeattuserkey: 25 + employeeusername: CNLYA9 + firstname: Liyan + lastname: Yang + userscount: + type: number + example: 2 + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Fetch Attestation Account Entitlement Details: + value: + accentdetails: + id: 19 + users: + - accounts: + - accountattkey: 212330 + accountname: '188837' + certified: 'No' + comments: Revoked on [08/10/17-null null(admin)] d
+ endpoint: amigopod + entitlements: + - entattkey: 2951 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Absence Partner + enttype: Access + - entattkey: 2952 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: Accountant + enttype: Access + - entattkey: 4096 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt1 + enttype: Access + - entattkey: 4097 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt2 + enttype: Access + - entattkey: 4098 + entcertified: 'No' + entcomments: Revoked on [08/10/17-null null(admin)] d
+ entcriticality: None + entname: TestEnt3 + enttype: Access + entitlementscount: 5 + accountscount: 1 + employeeattuserkey: 152371 + employeeusername: '188837' + firstname: Mina + lastname: Naghavi + - accounts: + - accountattkey: 25 + accountname: CNLYA9 + certified: 'Yes' + comments: Certified on [08/10/17-null null(admin)]
+ endpoint: Endpoint1 + entitlements: + - entattkey: 3 + entcertified: 'Yes' + entcomments: Certified on [08/10/17-null null(admin)]
+ entcriticality: None + entname: ROLE_USERS + enttype: Role + entitlementscount: 1 + - accountattkey: 151893 + accountname: Liyan.Yang + certified: No Response + comments: '' + endpoint: Global Product Catalogue + entitlements: + - entattkey: 168 + entcertified: No Response + entcomments: '' + entcriticality: None + entname: Technical Viewer + enttype: Roles + - entattkey: 169 + entcertified: No Response + entcomments: '' + entcriticality: None + entname: Support Viewer + enttype: Roles + entitlementscount: 2 + accountscount: 2 + employeeattuserkey: 25 + employeeusername: CNLYA9 + firstname: Liyan + lastname: Yang + userscount: 2 + errorCode: '0' + msg: Success + /approveRejectAttAccEntDetails: + post: + tags: + - attestations + summary: Approve Reject Attestation Account Details + description: "This API can be used to approve or reject accounts or entitlements for a user manager attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`attid` - attestation id,\r\n\r\n`id` - same as attid,\r\n\r\n`verifier` - Indicates the approver/verifier username verifying the attestation request,\r\n\r\n`accounts` - \r\n\r\n 1.`accattkey` - Indicates the account id which you want to approve/reject\r\n \r\n 2.`userattkey` - Indicates the user id which you want to approve\r\n \r\n 3.`certified` - Select the action you want to perform. For approval, mention ‘Yes’ and for rejecting mention ‘No’\r\n \r\n`entitlements` - \r\n\r\n 1.`accattkey` - Indicates the account id for which you want to approve/reject for the respective entitlement\r\n \r\n 2.`userattkey` - Indicates the user id which you want to approve\r\n \r\n 3.`certified` - Select the action you want to perform. For approval, mention ‘Yes’ and for rejecting mention ‘No’\r\n \r\n 4.`entattkey` - Indicates the entitlement attribute key for which you want to approve/reject the respective entitlement\r\n \r\n\r\nEither accounts or entitlements is mandatory.\r\n\r\nOptional params:\r\n\r\n`users` - \r\n\r\n 1.`userattkey` - Indicates the user id which you want to approve\r\n \r\n 2.`certified` - Specify the ‘Action’. Possible values are ‘Works for me’, ‘Does not work for me’, ‘Terminated’, and ‘No response’\r\n \r\n`comments`" + operationId: approveRejectAttestationAccountDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '3' + certified: + type: string + example: 'Yes' + userattkey: + type: string + example: '141679' + example: + - accattkey: '3' + certified: 'Yes' + userattkey: '141679' + attid: + type: string + example: '12' + comments: + type: string + example: att comment + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '3' + certified: + type: string + example: 'Yes' + entattkey: + type: string + example: '67' + userattkey: + type: string + example: '141679' + example: + - accattkey: '3' + certified: 'Yes' + entattkey: '67' + userattkey: '141679' + users: + type: array + items: + type: object + properties: + certified: + type: string + example: WORKSFORME + userattkey: + type: string + example: '141679' + example: + - certified: WORKSFORME + userattkey: '141679' + verifier: + type: string + example: admin + examples: + Approve Reject Attestation Account Details: + value: + accounts: + - accattkey: '3' + certified: 'Yes' + userattkey: '141679' + attid: '12' + comments: att comment + entitlements: + - accattkey: '3' + certified: 'Yes' + entattkey: '67' + userattkey: '141679' + users: + - certified: WORKSFORME + userattkey: '141679' + verifier: admin + responses: + '200': + description: Approve Reject Attestation Account Details + headers: + Date: + schema: + type: string + example: Wed, 12 Sep 2018 06:37:00 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=b28d72b9-ac35-47ac-ac6e-a98e7f12cbfe; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Approve Reject Attestation Account Details: + value: + errorCode: '0' + msg: Success + /lockAttestation: + post: + tags: + - attestations + summary: Lock Attestation + description: "This API can be used to lock a completed attestation, which is not locked. Once the attestation is locked using lockAttestation, no changes can be made to the attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`verifier` - Indicates the approver/verifier username verifying the attestation request,\r\n\r\n`attid` - Indicates the attestation id\r\n\r\nOptional params:\r\n\r\n`comments`" + operationId: lockAttestation + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + attid: + type: string + example: '19' + comments: + type: string + example: locking comment + verifier: + type: string + example: admin + responses: + '200': + description: Lock Attestation + headers: + Date: + schema: + type: string + example: Mon, 06 Aug 2018 21:48:12 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=6e891410-6048-4462-bec4-3170341a83eb; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + examples: + Lock Attestation: + value: + errorCode: '0' + msg: Successful + /fetchCampaignList: + post: + tags: + - campaigns + summary: Fetch Campaign List + description: |- + This API returns list of all campaign's pending to be certified. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `certifierUsername` + Optional params: + `max`, `offset` + operationId: fetchCampaignList + requestBody: + content: + application/json: + schema: + type: object + properties: + certifierUsername: + type: string + example: admin + max: + type: string + example: '5' + offset: + type: string + example: '0' + examples: + Fetch Campaign List: + value: + certifierUsername: admin + max: '5' + offset: '0' + responses: + '200': + description: Fetch Campaign List + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 05 Aug 2019 21:44:21 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=c0494f59-0217-4467-8651-6cdc0c878b45; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + campaigns: + type: array + items: + type: object + properties: + action: + type: string + example: '' + campaignName: + type: string + example: attachment + campaignOwner: + type: string + example: dbailey (Damien Bailey) + endDate: + type: string + example: '2017-08-06 00:00:00' + id: + type: number + example: 84 + progress: + type: string + example: 0% + reassigned: + type: string + example: N/A + startDate: + type: string + example: '2017-07-14 00:00:00' + status: + type: string + example: In Progress + type: + type: string + example: User Manager + example: + - action: '' + campaignName: attachment + campaignOwner: dbailey (Damien Bailey) + endDate: '2017-08-06 00:00:00' + id: 84 + progress: 0% + reassigned: N/A + startDate: '2017-07-14 00:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: default + campaignOwner: acook (Amaya Cook) + endDate: '2017-08-04 17:00:00' + id: 94 + progress: 0% + reassigned: N/A + startDate: '2017-07-18 17:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: dates1 + campaignOwner: crichards (Cody Richards) + endDate: '2017-08-06 00:00:00' + id: 106 + progress: 0% + reassigned: N/A + startDate: '2017-07-21 00:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: notification + campaignOwner: smarquez (Shania Marquez) + endDate: '2017-09-02 07:00:00' + id: 117 + progress: 41% + reassigned: N/A + startDate: '2017-08-01 07:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: notification2 + campaignOwner: lkrause (Lindsay Krause) + endDate: '2017-09-02 07:00:00' + id: 118 + progress: 53% + reassigned: N/A + startDate: '2017-08-01 07:00:00' + status: In Progress + type: User Manager + count: + type: number + example: 42 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + examples: + Fetch Campaign List: + value: + campaigns: + - action: '' + campaignName: attachment + campaignOwner: dbailey (Damien Bailey) + endDate: '2017-08-06 00:00:00' + id: 84 + progress: 0% + reassigned: N/A + startDate: '2017-07-14 00:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: default + campaignOwner: acook (Amaya Cook) + endDate: '2017-08-04 17:00:00' + id: 94 + progress: 0% + reassigned: N/A + startDate: '2017-07-18 17:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: dates1 + campaignOwner: crichards (Cody Richards) + endDate: '2017-08-06 00:00:00' + id: 106 + progress: 0% + reassigned: N/A + startDate: '2017-07-21 00:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: notification + campaignOwner: smarquez (Shania Marquez) + endDate: '2017-09-02 07:00:00' + id: 117 + progress: 41% + reassigned: N/A + startDate: '2017-08-01 07:00:00' + status: In Progress + type: User Manager + - action: '' + campaignName: notification2 + campaignOwner: lkrause (Lindsay Krause) + endDate: '2017-09-02 07:00:00' + id: 118 + progress: 53% + reassigned: N/A + startDate: '2017-08-01 07:00:00' + status: In Progress + type: User Manager + count: 42 + errorCode: '0' + msg: successful + /fetchCampaignDetails: + post: + tags: + - campaigns + summary: Fetch Campaign Details + description: |- + This API return details of a particular campaign required for employee verification. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + Optional params: + `certifierUsername` + `certkey` + `max` + `offset` + `showCampaignConfig` (True/ False) Returns the campaign configuration details when set to True. + ***Note***: The user attributes in the response is driven by the attributes selected during the campaign launch. + operationId: fetchCampaignDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '232' + examples: + Fetch Campaign Details: + value: + campaignId: '232' + responses: + '200': + description: Fetch Campaign Details + headers: + Date: + schema: + type: string + example: Thu, 25 Apr 2019 20:41:00 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e46e8de2-fe87-4986-8bdb-fb927923a1c1; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + Total Preview Certification: + type: array + items: + type: string + example: testLock2 - dbailey (Damien Bailey) + example: + - testLock2 - dbailey (Damien Bailey) + campaignDetails: + type: array + items: + type: object + properties: + certificationame: + type: string + example: testLock2 - dbailey (Damien Bailey) + certifier: + type: string + example: dlogan + certkey: + type: string + example: '12258' + progress: + type: string + example: 100% + status: + type: string + example: Locked And Task Created + usercount: + type: number + example: 5 + users: + type: array + items: + type: object + properties: + certfied: + type: string + example: WORKSFORME + comment: + type: string + example: '' + comments: + type: string + example: '' + consulted: + type: string + example: 'true' + displayname: + type: string + example: Tabitha Bowers + firstname: + type: string + example: Tabitha + totalaccount: + type: number + example: 5 + updateuser: + type: string + example: dbailey + username: + type: string + example: tbowers + example: + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'true' + displayname: Tabitha Bowers + firstname: Tabitha + totalaccount: 5 + updateuser: dbailey + username: tbowers + - certfied: WORKSFORME + comment: '[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey' + comments: '' + consulted: 'true' + displayname: Ariana Hinton + firstname: Ariana + totalaccount: 1 + updateuser: dbailey + username: 00039016-9acb-495d-8912-7bc289d0af1b + - certfied: WORKSFORME + comment: '[02/26/19-(admin)] test comments for DEWHE0' + comments: '' + consulted: 'false' + displayname: '' + firstname: Mathew + totalaccount: 2 + updateuser: dbailey + username: '194422' + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'false' + displayname: '' + firstname: Shania + totalaccount: 2 + updateuser: dbailey + username: '194445' + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'false' + displayname: '' + firstname: Cody + totalaccount: 1 + updateuser: dbailey + username: '194446' + example: + - certificationame: testLock2 - dbailey (Damien Bailey) + certifier: dlogan + certkey: '12258' + progress: 100% + status: Locked And Task Created + usercount: 5 + users: + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'true' + displayname: Tabitha Bowers + firstname: Tabitha + totalaccount: 5 + updateuser: dbailey + username: tbowers + - certfied: WORKSFORME + comment: '[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey' + comments: '' + consulted: 'true' + displayname: Ariana Hinton + firstname: Ariana + totalaccount: 1 + updateuser: dbailey + username: 00039016-9acb-495d-8912-7bc289d0af1b + - certfied: WORKSFORME + comment: '[02/26/19-(admin)] test comments for DEWHE0' + comments: '' + consulted: 'false' + displayname: '' + firstname: Mathew + totalaccount: 2 + updateuser: dbailey + username: '194422' + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'false' + displayname: '' + firstname: Shania + totalaccount: 2 + updateuser: dbailey + username: '194445' + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'false' + displayname: '' + firstname: Cody + totalaccount: 1 + updateuser: dbailey + username: '194446' + campaignId: + type: string + example: '232' + complete: + type: string + example: 'Yes' + count: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + examples: + Fetch Campaign Details: + value: + Total Preview Certification: + - testLock2 - dbailey (Damien Bailey) + campaignDetails: + - certificationame: testLock2 - dbailey (Damien Bailey) + certifier: dlogan + certkey: '12258' + progress: 100% + status: Locked And Task Created + usercount: 5 + users: + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'true' + displayname: Tabitha Bowers + firstname: Tabitha + totalaccount: 5 + updateuser: dbailey + username: tbowers + - certfied: WORKSFORME + comment: '[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey[02/26/19-(admin)] test comments for dbailey' + comments: '' + consulted: 'true' + displayname: Ariana Hinton + firstname: Ariana + totalaccount: 1 + updateuser: dbailey + username: 00039016-9acb-495d-8912-7bc289d0af1b + - certfied: WORKSFORME + comment: '[02/26/19-(admin)] test comments for DEWHE0' + comments: '' + consulted: 'false' + displayname: '' + firstname: Mathew + totalaccount: 2 + updateuser: dbailey + username: '194422' + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'false' + displayname: '' + firstname: Shania + totalaccount: 2 + updateuser: dbailey + username: '194445' + - certfied: WORKSFORME + comment: '' + comments: '' + consulted: 'false' + displayname: '' + firstname: Cody + totalaccount: 1 + updateuser: dbailey + username: '194446' + campaignId: '232' + complete: 'Yes' + count: 1 + errorCode: '0' + msg: successful + /certifyUserManagerforCampaign: + post: + tags: + - campaigns-user-manager + summary: Certify User Manager for Campaign + description: |- + This API will do employee verification for a particular campaign. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `verifications` - 1. `campaignId` 2. `employee ` - can be one employee or list of employees like - ["jdoe","","smith","john"], 3. `verifier` 4. `action` - Valid actions are WORKSFORME/DOESNOTWORKFORME/NORESPONSE, 5. `certkey` + Optional params: + `comments` in the `verifications` + operationId: certifyUserManagerForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + verifications: + type: array + items: + type: object + properties: + action: + type: string + example: DOESNOTWORKFORME + campaignId: + type: string + example: '228' + certkey: + type: string + example: '15575' + comments: + type: string + example: test comments for acook + employee: + type: string + example: acook + verifier: + type: string + example: dbailey + example: + - action: DOESNOTWORKFORME + campaignId: '228' + certkey: '15575' + comments: test comments for acook + employee: acook + verifier: dbailey + - action: WORKSFORME + campaignId: '228' + certkey: '15576' + comments: test comments for crichards + employee: crichards + verifier: dbailey + examples: + Certify User Manager for Campaign: + value: + verifications: + - action: DOESNOTWORKFORME + campaignId: '228' + certkey: '15575' + comments: test comments for acook + employee: acook + verifier: dbailey + - action: WORKSFORME + campaignId: '228' + certkey: '15576' + comments: test comments for crichards + employee: crichards + verifier: dbailey + responses: + '200': + description: certifyUserManagerforCampaign / Certify User Manager for Campaign + headers: + Date: + schema: + type: string + example: Wed, 05 Dec 2018 19:07:42 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=6e2c9642-a791-42bd-a49d-d5b45b45c647; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 2 + errorCode: + type: string + example: '' + msg: + type: string + example: '' + verifications: + type: array + items: + type: object + properties: + employee: + type: string + example: acook + action: + type: string + example: acook + errorCode: + type: string + example: '0' + id: + type: string + example: '227' + msg: + type: string + example: success + campaignId: + type: string + example: success + verifier: + type: string + example: success + example: + - employee: acook + errorCode: '0' + id: '227' + msg: success + - employee: crichards + errorCode: '0' + id: '227' + msg: success + examples: + Certify User Manager for Campaign: + value: + count: 2 + verifications: + - action: DOESNOTWORKFORME + campaignId: '227' + employee: acook + errorCode: '0' + msg: success + verifier: dbailey + - action: WORKSFORME + campaignId: '227' + employee: crichards + errorCode: '0' + msg: success + verifier: dbailey + certifyUserManagerforCampaign: + value: + count: 2 + errorCode: '' + msg: '' + verifications: + - employee: acook + errorCode: '0' + id: '227' + msg: success + - employee: crichards + errorCode: '0' + id: '227' + msg: success + /fetchCampaignAccEntDetails: + post: + tags: + - campaigns-user-manager + summary: Fetch Account Entitlement Details + description: |- + This API returns user details, account-entitlement details of a particular campaign required for certify/revoke API. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response. If the employmentStatus parameter is passed with this API, then only the match records in the certified field are displayed in the API response. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + Optional params: + `certifierUsername`, + `certkey`, + `max`(default is 100), + `offset`(default is 0), + `returnFlatResponse`(can be true or false) + `employmentStatus` (NORESPONSE/ WORKSFORME/ DOESNOTWORKFORME/ TERMINATED/ ENDDATE_EXTENDED) + ***Note***: The user attributes in the response is driven by the attributes selected during the campaign launch. + operationId: fetchAccountEntitlementDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '64' + examples: + Fetch Account Entitlement Details: + value: + campaignId: '64' + responses: + '200': + description: Fetch Account Entitlement Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 23 Jun 2021 16:03:21 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=c560d6b7-9ec8-4c56-a3b7-ff51d5ca3c98; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignAccountEntDetails: + type: array + items: + type: object + properties: + certificationname: + type: string + example: EPICUserMgrCampQ1Feb1 - admin (Saviynt AdminUser) + certkey: + type: string + example: '29292' + status: + type: string + example: New + usercount: + type: number + example: 1 + users: + type: array + items: + type: object + properties: + accountCount: + type: number + example: 2 + accounts: + type: array + items: + type: object + properties: + accountStatus: + type: string + example: Active + accountname: + type: string + example: '154' + certaccountkey: + type: number + example: 190880 + certfied: + type: string + example: null + certified: + type: string + example: Active + comments: + type: string + example: null + consulted: + type: string + example: 'true' + endpoint: + type: string + example: Epic + entitlementcount: + type: number + example: 3 + entitlements: + type: array + items: + type: object + properties: + certEntitlementkey: + type: number + example: 1469785 + consulted: + type: string + example: 'true' + entStatus: + type: number + example: 1 + entcertified: + type: string + example: null + entcomments: + type: string + entcriticality: + type: number + example: 0 + entname: + type: string + example: T00010 + enttype: + type: string + example: Template + example: + - certEntitlementkey: 1469785 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469786 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - certEntitlementkey: 1469787 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01138 + enttype: Sub-Template + example: + - accountStatus: Active + accountname: '154' + certaccountkey: 190880 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 3 + entitlements: + - certEntitlementkey: 1469785 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469786 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - certEntitlementkey: 1469787 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01138 + enttype: Sub-Template + - accountStatus: Active + accountname: chammersmith + certaccountkey: 190881 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469788 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate + enttype: Sub-Template + - certEntitlementkey: 1469789 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate3 + enttype: Sub-Template + certfied: + type: string + example: WORKSFORME + certuserkey: + type: number + example: 203136 + comment: + type: string + example: '' + consulted: + type: string + example: 'true' + userStatus: + type: number + example: 1 + username: + type: string + example: Chammersmith + example: + - accountCount: 2 + accounts: + - accountStatus: Active + accountname: '154' + certaccountkey: 190880 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 3 + entitlements: + - certEntitlementkey: 1469785 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469786 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - certEntitlementkey: 1469787 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01138 + enttype: Sub-Template + - accountStatus: Active + accountname: chammersmith + certaccountkey: 190881 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469788 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate + enttype: Sub-Template + - certEntitlementkey: 1469789 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate3 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203136 + comment: '' + consulted: 'true' + userStatus: 1 + username: Chammersmith + example: + - certificationname: EPICUserMgrCampQ1Feb1 - admin (Saviynt AdminUser) + certkey: '29292' + status: New + usercount: 1 + users: + - accountCount: 2 + accounts: + - accountStatus: Active + accountname: '154' + certaccountkey: 190880 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 3 + entitlements: + - certEntitlementkey: 1469785 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469786 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - certEntitlementkey: 1469787 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01138 + enttype: Sub-Template + - accountStatus: Active + accountname: chammersmith + certaccountkey: 190881 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469788 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate + enttype: Sub-Template + - certEntitlementkey: 1469789 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate3 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203136 + comment: '' + consulted: 'true' + userStatus: 1 + username: Chammersmith + - certificationname: EPICUserMgrCampQ1Feb1 - U045101 (Siu Han Chung) + certkey: '29293' + status: New + usercount: 1 + users: + - accountCount: 1 + accounts: + - accountStatus: '1' + accountname: '21607' + certaccountkey: 190882 + certfied: null + certified: '1' + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469790 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00274 + enttype: Template + certfied: WORKSFORME + certuserkey: 203137 + comment: '' + consulted: 'true' + userStatus: 1 + username: G000706 + - certificationname: EPICUserMgrCampQ1Feb1 - jwen (Jim Wen) + certkey: '29295' + status: New + usercount: 2 + users: + - accountCount: 1 + accounts: + - accountStatus: '1' + accountname: '63585' + certaccountkey: 190883 + certfied: null + certified: '1' + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469791 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00274 + enttype: Template + certfied: WORKSFORME + certuserkey: 203138 + comment: '' + consulted: 'true' + userStatus: 1 + username: U003961 + - accountCount: 1 + accounts: + - accountStatus: Manually Provisioned + accountname: U024789 + certaccountkey: 190884 + certfied: null + certified: Manually Provisioned + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469792 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01093 + enttype: Template + - certEntitlementkey: 1469793 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate2 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203139 + comment: '' + consulted: 'true' + userStatus: 1 + username: U024789 + - certificationname: EPICUserMgrCampQ1Feb1 - Mr_Manager (Bobby Cox) + certkey: '29296' + status: New + usercount: 2 + users: + - accountCount: 2 + accounts: + - accountStatus: Active + accountname: '166' + certaccountkey: 190885 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469794 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: Epic_Demo_Template + enttype: Template + - certEntitlementkey: 1469795 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - accountStatus: Active + accountname: '1256' + certaccountkey: 190887 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469797 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469798 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01448 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203140 + comment: '' + consulted: 'true' + userStatus: 1 + username: JSMOLTZ + - accountCount: 1 + accounts: + - accountStatus: Active + accountname: '1112' + certaccountkey: 190886 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469798 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01448 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203141 + comment: '' + consulted: 'true' + userStatus: 1 + username: GMADDUX + - certificationname: EPICUserMgrCampQ1Feb1 - 320156 (Le Chang) + certkey: '29297' + status: New + usercount: 1 + users: + - accountCount: 2 + accounts: + - accountStatus: '1' + accountname: '21172' + certaccountkey: 190888 + certfied: null + certified: '1' + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469799 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00274 + enttype: Template + - accountStatus: Active + accountname: G000526 + certaccountkey: 190889 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469800 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate2 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203142 + comment: '' + consulted: 'true' + userStatus: 1 + username: G000526 + campaignId: + type: string + example: '64' + complete: + type: string + example: 'No' + count: + type: number + example: 5 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + examples: + Fetch Account Entitlement Details: + value: + campaignAccountEntDetails: + - certificationname: EPICUserMgrCampQ1Feb1 - admin (Saviynt AdminUser) + certkey: '29292' + status: New + usercount: 1 + users: + - accountCount: 2 + accounts: + - accountStatus: Active + accountname: '154' + certaccountkey: 190880 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 3 + entitlements: + - certEntitlementkey: 1469785 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469786 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - certEntitlementkey: 1469787 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01138 + enttype: Sub-Template + - accountStatus: Active + accountname: chammersmith + certaccountkey: 190881 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469788 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate + enttype: Sub-Template + - certEntitlementkey: 1469789 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate3 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203136 + comment: '' + consulted: 'true' + userStatus: 1 + username: Chammersmith + - certificationname: EPICUserMgrCampQ1Feb1 - U045101 (Siu Han Chung) + certkey: '29293' + status: New + usercount: 1 + users: + - accountCount: 1 + accounts: + - accountStatus: '1' + accountname: '21607' + certaccountkey: 190882 + certfied: null + certified: '1' + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469790 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00274 + enttype: Template + certfied: WORKSFORME + certuserkey: 203137 + comment: '' + consulted: 'true' + userStatus: 1 + username: G000706 + - certificationname: EPICUserMgrCampQ1Feb1 - jwen (Jim Wen) + certkey: '29295' + status: New + usercount: 2 + users: + - accountCount: 1 + accounts: + - accountStatus: '1' + accountname: '63585' + certaccountkey: 190883 + certfied: null + certified: '1' + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469791 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00274 + enttype: Template + certfied: WORKSFORME + certuserkey: 203138 + comment: '' + consulted: 'true' + userStatus: 1 + username: U003961 + - accountCount: 1 + accounts: + - accountStatus: Manually Provisioned + accountname: U024789 + certaccountkey: 190884 + certfied: null + certified: Manually Provisioned + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469792 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01093 + enttype: Template + - certEntitlementkey: 1469793 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate2 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203139 + comment: '' + consulted: 'true' + userStatus: 1 + username: U024789 + - certificationname: EPICUserMgrCampQ1Feb1 - Mr_Manager (Bobby Cox) + certkey: '29296' + status: New + usercount: 2 + users: + - accountCount: 2 + accounts: + - accountStatus: Active + accountname: '166' + certaccountkey: 190885 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469794 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: Epic_Demo_Template + enttype: Template + - certEntitlementkey: 1469795 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00918 + enttype: Sub-Template + - accountStatus: Active + accountname: '1256' + certaccountkey: 190887 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 2 + entitlements: + - certEntitlementkey: 1469797 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00010 + enttype: Template + - certEntitlementkey: 1469798 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01448 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203140 + comment: '' + consulted: 'true' + userStatus: 1 + username: JSMOLTZ + - accountCount: 1 + accounts: + - accountStatus: Active + accountname: '1112' + certaccountkey: 190886 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469798 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T01448 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203141 + comment: '' + consulted: 'true' + userStatus: 1 + username: GMADDUX + - certificationname: EPICUserMgrCampQ1Feb1 - 320156 (Le Chang) + certkey: '29297' + status: New + usercount: 1 + users: + - accountCount: 2 + accounts: + - accountStatus: '1' + accountname: '21172' + certaccountkey: 190888 + certfied: null + certified: '1' + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469799 + consulted: 'true' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: T00274 + enttype: Template + - accountStatus: Active + accountname: G000526 + certaccountkey: 190889 + certfied: null + certified: Active + comments: null + consulted: 'true' + endpoint: Epic + entitlementcount: 1 + entitlements: + - certEntitlementkey: 1469800 + consulted: 'false' + entStatus: 1 + entcertified: null + entcomments: null + entcriticality: 0 + entname: TestSubTemplate2 + enttype: Sub-Template + certfied: WORKSFORME + certuserkey: 203142 + comment: '' + consulted: 'true' + userStatus: 1 + username: G000526 + campaignId: '64' + complete: 'No' + count: 5 + errorCode: '0' + msg: successful + /approverejectCampaignAccEntDetails: + post: + tags: + - campaigns-user-manager + summary: Approve Reject Campaign Account Entitlement Details + description: |- + This API is used to certify/revoke the user's access (account, entitlement) along with employment verification. When an approve or reject action is performed for a line item in a User Manager campaign, then only the latest comment sent through the API is retained in the comments field but all the comments (including actions) are stored in the audit trail/history. + From Release v23.8, this API now supports resetting of actions on roles within a certification. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignid` + `certkey` + `verifier` + `accounts` - + 1. `accattkey` 2. `userattkey` 3. `certified` (Can be Yes/No/Reset) 4. `comments` + + `entitlements` - + 1. `entattkey` 2. `accattkey` 3. `userattkey` 4. `certified` (Can be Yes/No/Reset) 5. `comments` + + `users` - + 1. `userattkey` 2. `certified` 3. `comments` + + Optional params: + `bulkUpdate`(Can be Y or N) + `approveComment` + `rejectComment` + `doesNotBelongToMeComment` + `roleattkey` + `bulkValidations`(If 'Y' the code works as is and all validations happen, if bulkValidations=' N' the code will skip validations for all the records passed) + operationId: approveRejectCampaignAccountEntitlementDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '295938' + certified: + type: string + example: 'YES' + comments: + type: string + example: yash_approve123 + userattkey: + type: string + example: '199968' + example: + - accattkey: '295938' + certified: 'YES' + comments: yash_approve123 + userattkey: '199968' + bulkUpdate: + type: string + example: 'Y' + bulkValidations: + type: string + example: 'N' + campaignid: + type: string + example: '8509' + certkey: + type: string + example: '8841' + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '295938' + certified: + type: string + example: 'YES' + entattkey: + type: string + example: '813182' + userattkey: + type: string + example: '199968' + example: + - accattkey: '295938' + certified: 'YES' + entattkey: '813182' + userattkey: '199968' + roles: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '295938' + certified: + type: string + example: 'YES' + comments: + type: string + example: APPROLECOMMENTS#$ + roleattkey: + type: string + example: '14948' + userattkey: + type: string + example: '199968' + example: + - accattkey: '295938' + certified: 'YES' + comments: APPROLECOMMENTS#$ + roleattkey: '14948' + userattkey: '199968' + - certified: 'NO' + comments: ENTROLECOMMENTS#$ + roleattkey: '14949' + userattkey: '199968' + - certified: 'YES' + comments: FiREROLECOMMENTS#$@ + roleattkey: '14950' + userattkey: '199968' + verifier: + type: string + example: admin + examples: + Approve Reject Campaign Account Entitlement Details: + value: + accounts: + - accattkey: '295938' + certified: 'YES' + comments: yash_approve123 + userattkey: '199968' + bulkUpdate: 'Y' + bulkValidations: 'N' + campaignid: '8509' + certkey: '8841' + entitlements: + - accattkey: '295938' + certified: 'YES' + entattkey: '813182' + userattkey: '199968' + roles: + - accattkey: '295938' + certified: 'YES' + comments: APPROLECOMMENTS#$ + roleattkey: '14948' + userattkey: '199968' + - certified: 'NO' + comments: ENTROLECOMMENTS#$ + roleattkey: '14949' + userattkey: '199968' + - certified: 'YES' + comments: FiREROLECOMMENTS#$@ + roleattkey: '14950' + userattkey: '199968' + verifier: admin + responses: + '200': + description: Approve Reject Campaign Account Entitlement Details / Approve Reject Campaign Account Entitlement Details - new + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://release-2022-0-qe.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 26 Jun 2023 10:31:38 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=6d31db43-01f2-437a-8a04-dbce152ed735; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + users: + type: string + example: Success + examples: + Approve Reject Campaign Account Entitlement Details: + value: + errorCode: '0' + msg: Success + Approve Reject Campaign Account Entitlement Details - new: + value: + errorCode: '0' + msg: Success + users: Success + /lockCampaign: + post: + tags: + - campaigns + summary: Lock Campaign + description: |- + This API is used to lock campaign after validating whether campaign is completed or not. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId`, `verifier` + Optional params: + `certkey`, `lockComments` + operationId: lockCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '227' + examples: + Lock Campaign: + value: + campaignId: '227' + responses: + '200': + description: Lock Campaign + headers: + Date: + schema: + type: string + example: Wed, 05 Dec 2018 20:49:27 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=7958f5b1-8e92-4d46-abaf-fa3ae84a1ee6; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + Total Incomplete certification: + type: array + items: {} + example: [] + Total locked certification: + type: array + items: + type: string + example: testLock1 - smarquez (Shania Marquez) + example: + - testLock1 - smarquez (Shania Marquez) + - testLock1 - crichards (Cody Richards) + errorCode: + type: string + example: '0' + lockedcertkey: + type: array + items: + type: number + example: 12255 + example: + - 12255 + - 12256 + msg: + type: string + example: Success + examples: + Lock Campaign: + value: + Total Incomplete certification: [] + Total locked certification: + - testLock1 - smarquez (Shania Marquez) + - testLock1 - crichards (Cody Richards) + errorCode: '0' + lockedcertkey: + - 12255 + - 12256 + msg: Success + /reassignUserManagerforCampaign: + post: + tags: + - campaigns-user-manager + summary: Reassign UserManager Step 1 for Campaign + description: |- + This API reassigns UserManager for Campaign at Employment Verification Stage in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid` + `certificationname` or `certkey` + `username` + Optional params: + `newassignee` + `comments` + `updateuser` + operationId: reassignUsermanagerStep1ForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignid: + type: string + example: '389' + campaignname: + type: string + example: Campaign_53 + certificationname: + type: string + example: Campaign_53 - awsadmin (aws admin) + certkey: + type: string + example: '68177' + comments: + type: string + example: certifier from API + newassignee: + type: string + example: ahinton + updateuser: + type: string + example: admin + username: + type: array + items: + type: string + example: '194481' + example: + - '194481' + - '295474' + examples: + Reassign UserManager Step 1 for Campaign: + value: + campaignid: '389' + campaignname: Campaign_53 + certificationname: Campaign_53 - awsadmin (aws admin) + certkey: '68177' + comments: certifier from API + newassignee: ahinton + updateuser: admin + username: + - '194481' + - '295474' + responses: + '200': + description: Lock Campaign / Reassign UserManager for Campaign + headers: + Content-Length: + schema: + type: string + example: '0' + Date: + schema: + type: string + example: Wed, 12 Feb 2020 19:41:00 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + WWW-Authenticate: + schema: + type: string + example: Bearer + content: + application/json: + schema: + type: object + properties: + Total Incomplete certification: + type: array + items: {} + example: [] + Total locked certification: + type: array + items: + type: string + example: testLock1 - acook (Amaya Cook) + example: + - testLock1 - acook (Amaya Cook) + - testLock1 - tbowers (Tabitha Bowers) + errorCode: + type: string + example: '0' + errorcode: + type: string + example: '0' + lockedcertkey: + type: array + items: + type: number + example: 12255 + example: + - 12255 + - 12256 + msg: + type: string + example: Success + examples: + Lock Campaign: + value: + Total Incomplete certification: [] + Total locked certification: + - testLock1 - acook (Amaya Cook) + - testLock1 - tbowers (Tabitha Bowers) + errorCode: '0' + lockedcertkey: + - 12255 + - 12256 + msg: Success + Reassign UserManager for Campaign: + value: + errorcode: '0' + msg: success + /consultUserManagerforCampaign: + post: + tags: + - campaign-user-manager + summary: Consult UserManager Step 1 for Campaign + description: |- + This API consults UserManager for Campaign at Employment Verification Stage in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid` + `certificationname` or `certkey` + `newassignee` + `username` + Optional params: + `comments` + `updateuser` + operationId: consultUsermanagerStep1ForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignid: + type: string + example: '389' + campaignname: + type: string + example: Campaign_53 + certificationname: + type: string + example: Campaign_53 - awsadmin (aws admin) + certkey: + type: string + example: '68177' + comments: + type: string + example: certifier from API + newassignee: + type: string + example: ahinton + updateuser: + type: string + example: admin + username: + type: array + items: + type: string + example: '194481' + example: + - '194481' + - '295474' + examples: + Consult UserManager Step 1 for Campaign: + value: + campaignid: '389' + campaignname: Campaign_53 + certificationname: Campaign_53 - awsadmin (aws admin) + certkey: '68177' + comments: certifier from API + newassignee: ahinton + updateuser: admin + username: + - '194481' + - '295474' + responses: + '200': + description: Consult UserManager for Campaign + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Language: + schema: + type: string + example: en-US + Date: + schema: + type: string + example: Wed, 12 Feb 2020 19:34:13 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Consult UserManager for Campaign: + value: + errorcode: '0' + msg: success + /consultCampaignAccEntDetails: + post: + tags: + - campaigns-user-manager + summary: Consult Campaign Account Entitlement Details + description: |- + This API consults User Manager for Campaign at Account and Access Certification Stage in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `newassignee` + `campaignname` or `campaignid` + `certificationname` or `certkey` + `accounts` - 1. `accattkey` 2. `userattkey` 3. `consultassociatedentitlements` + ***OR*** + `entitlements` - 1. `accattkey` 2. `userattkey` 3. `entattkey` + Optional params: + `comments` + `updateuser` + operationId: consultCampaignAccountEntitlementDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '32740' + consultassociatedentitlements: + type: string + example: 'false' + userattkey: + type: string + example: '57463' + example: + - accattkey: '32740' + consultassociatedentitlements: 'false' + userattkey: '57463' + campaignid: + type: string + example: '390' + campaignname: + type: string + example: Campaign_46 + certificationname: + type: string + example: Campaign_46 - awsadmin (aws admin) + certkey: + type: string + example: '68179' + comments: + type: string + example: test2 + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '32735' + entattkey: + type: string + example: '38486' + userattkey: + type: string + example: '57451' + example: + - accattkey: '32735' + entattkey: '38486' + userattkey: '57451' + newassignee: + type: string + example: ahinton + updateuser: + type: string + example: admin + examples: + Consult Campaign Account Entitlement Details: + value: + accounts: + - accattkey: '32740' + consultassociatedentitlements: 'false' + userattkey: '57463' + campaignid: '390' + campaignname: Campaign_46 + certificationname: Campaign_46 - awsadmin (aws admin) + certkey: '68179' + comments: test2 + entitlements: + - accattkey: '32735' + entattkey: '38486' + userattkey: '57451' + newassignee: ahinton + updateuser: admin + responses: + '200': + description: Consult Campaign Account Entitlement Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Language: + schema: + type: string + example: en-US + Date: + schema: + type: string + example: Thu, 13 Feb 2020 00:19:46 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Consult Campaign Account Entitlement Details: + value: + errorcode: '0' + msg: success + /reAssignUserManagerStep2AccEntDetails: + post: + tags: + - campaigns-user-manager + summary: Reassign Certification at Account and Entitlement Level Copy + description: |- + This API reassigns accounts, roles, or entitlements to a different user or certifier. The associated users for accounts, roles, or entitlements that are being reassigned, must be certified in Step 1. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `updateuser` (can be Admin/Campaign Owner/Certifier/Delegate) + `campaignid`- Campaign ID or the primary key of the campaign table. + `certkey`- Certification key or the primary key of the certification table. + `accounts`- List of accounts. (You must provide either accounts/entitlements/roles) + `entitlements`- List of child entitlements. (You must provide either accounts/entitlements/roles) + `roles` - List of roles. (You must provide either accounts/entitlements/roles) + `newassignee`- New certifier or user to whom the certification will be assigned. + `bulkupdate` (can be Y/N) + `bulkvalidation` (can be Y/N) + `bulkConsultAssociatedData` (can be Y/N) This option enables you to specify whether to reassign all accounts, entitlements and roles related to the specified account/entitlement/role. + Optional params: + `campaignname` - Name of the campaign. + `certificationname` - Name of the certification. + `reassignComments`- Comments for reassigning the certification. + operationId: reassignCertificationAtAccountAndEntitlementLevelCopy + requestBody: + content: + application/json: + schema: + type: object + properties: + bulkupdate: + type: string + example: 'y' + bulkvalidation: + type: string + example: 'y' + campaignid: + type: string + example: '10' + certkey: + type: string + example: '15' + comments: + type: string + example: reassigning from API + entitlements: + type: array + items: + type: object + properties: + entattkey: + type: string + example: '146' + example: + - entattkey: '146' + newassignee: + type: string + example: amackenzie + updateuser: + type: string + example: smorgan + examples: + Reassign Certification at Account and Entitlement Level Copy: + value: + bulkupdate: 'y' + bulkvalidation: 'y' + campaignid: '10' + certkey: '15' + comments: reassigning from API + entitlements: + - entattkey: '146' + newassignee: amackenzie + updateuser: smorgan + responses: + '200': + description: Reassign Certification at Account and Entitlement Level + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 17 Jul 2020 23:27:52 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5e661d6e-77c3-43a1-ab94-79f5e87beb79; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '35799' + userattkey: + type: string + example: '25700' + example: + - accattkey: '35799' + userattkey: '25700' + bulkConsultAssociatedData: + type: string + example: 'Y' + bulkUpdate: + type: string + example: 'Y' + bulkValidation: + type: string + example: 'Y' + campaignid: + type: string + example: '405' + campaignname: + type: string + example: um_5.5_bnym_Reconfigure + certificationname: + type: string + example: um_5.5_bnym_Reconfigure - UserManger' (UserManger UserManger) + certkey: + type: string + example: '3471' + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '35800' + entattkey: + type: string + example: '67650' + userattkey: + type: string + example: '25700' + example: + - accattkey: '35800' + entattkey: '67650' + userattkey: '25700' + newassignee: + type: string + example: UM8' + reassignComments: + type: string + example: Tim's Reassign Comment + roles: + type: array + items: + type: object + properties: + roleattkey: + type: string + example: '1818' + userattkey: + type: string + example: '25701' + example: + - roleattkey: '1818' + userattkey: '25701' + updateuser: + type: string + example: UserManger' + examples: + Reassign Certification at Account and Entitlement Level: + value: + accounts: + - accattkey: '35799' + userattkey: '25700' + bulkConsultAssociatedData: 'Y' + bulkUpdate: 'Y' + bulkValidation: 'Y' + campaignid: '405' + campaignname: um_5.5_bnym_Reconfigure + certificationname: um_5.5_bnym_Reconfigure - UserManger' (UserManger UserManger) + certkey: '3471' + entitlements: + - accattkey: '35800' + entattkey: '67650' + userattkey: '25700' + newassignee: UM8' + reassignComments: Tim's Reassign Comment + roles: + - roleattkey: '1818' + userattkey: '25701' + updateuser: UserManger' + /consultEOforCampaign: + post: + tags: + - campaigns-entitlement-owner + summary: Consult EntitlementOwner Step 1 for Campaign + description: |- + This API consults Entitltment Owner for Campaign at Employment Verification Stage in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid` + `certificationname` or `certkey` + `newassignee` + `entitlements` + Optional params: + `comments` + `updateuser` + operationId: consultEntitlementownerStep1ForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignid: + type: string + example: '66' + campaignname: + type: string + example: EPICTemplateOwnerQ1Feb1 + certificationname: + type: string + example: EPICTemplateOwnerQ1Feb1 - U013653 (Chandra Linsley) + certkey: + type: string + example: '29299' + comments: + type: string + example: Consulted via API + entitlements: + type: array + items: + type: string + example: T00274 + example: + - T00274 + - T00010 + newassignee: + type: string + example: '1000012' + updateuser: + type: string + example: admin + examples: + Consult EntitlementOwner Step 1 for Campaign: + value: + campaignid: '66' + campaignname: EPICTemplateOwnerQ1Feb1 + certificationname: EPICTemplateOwnerQ1Feb1 - U013653 (Chandra Linsley) + certkey: '29299' + comments: Consulted via API + entitlements: + - T00274 + - T00010 + newassignee: '1000012' + updateuser: admin + responses: + '200': + description: Consult EntitlementOwner Step 1 for Campaign + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Sat, 12 Sep 2020 00:09:38 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9986fb93-9991-4e3f-9d69-0f1d0d8bbcd7; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: ALLOW-FROM https://ssm-dev-servicenow.saviyntcloud.com/ECM/login/auth + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Consult EntitlementOwner Step 1 for Campaign: + value: + errorcode: '0' + msg: success + /consultEOCampaignAccEntDetails: + post: + tags: + - campaigns-entitlement-owner + summary: Consult EntitlementOwner Step 2 for Campaign + description: |- + This API consults Entitltment Owner for Campaign at Account and Access Certification Stage in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid` + `certificationname` or `certkey` + `newassignee` + `accountentitlements` - 1. `entitlement` 2. `accounts` + Optional params: + `comments` + `updateuser` + operationId: consultEntitlementownerStep2ForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + accountentitlements: + type: array + items: + type: object + properties: + accounts: + type: array + items: + type: string + example: saviyntUser03 + example: + - saviyntUser03 + entitlement: + type: string + example: Ent1 + example: + - accounts: + - saviyntUser03 + entitlement: Ent1 + - accounts: + - Derekautoincrement + entitlement: Accountant + campaignid: + type: string + example: '412' + campaignname: + type: string + example: test_ent_acc_camp_2 + certificationname: + type: string + example: test_ent_acc_camp_2 - awsadmin (firstnametest1 lastnametest1) + certkey: + type: string + example: '136121' + comments: + type: string + example: certifier from API + newassignee: + type: string + example: ahinton + updateuser: + type: string + example: admin + examples: + Consult EntitlementOwner Step 2 for Campaign: + value: + accountentitlements: + - accounts: + - saviyntUser03 + entitlement: Ent1 + - accounts: + - Derekautoincrement + entitlement: Accountant + campaignid: '412' + campaignname: test_ent_acc_camp_2 + certificationname: test_ent_acc_camp_2 - awsadmin (firstnametest1 lastnametest1) + certkey: '136121' + comments: certifier from API + newassignee: ahinton + updateuser: admin + responses: + '200': + description: Consult EntitlementOwner Step 2 for Campaign + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Language: + schema: + type: string + example: en-US + Date: + schema: + type: string + example: Thu, 13 Feb 2020 00:11:04 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Consult EntitlementOwner Step 2 for Campaign: + value: + errorcode: '0' + msg: success + /fetchEntOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-entitlement-owner + summary: Fetch Account Entitlement Details + description: |- + This API returns user details, account-entitlement details of a particular campaign required for certify/revoke API. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + Optional params: + `certkey` + `max` + `offset` + `entitlementmax` + `entitlementoffset` + `accountmax` + `accountoffset` + `entitlement2max` + `entitlement2offset` + `verifier` + operationId: fetchAccountEntitlementDetails1 + requestBody: + content: + application/json: + schema: + type: object + properties: + accountmax: + type: string + example: '2' + accountoffset: + type: string + example: '0' + campaignId: + type: string + example: '178' + certkey: + type: string + example: '33600' + entitlement2max: + type: string + example: '2' + entitlement2offset: + type: string + example: '0' + entitlementmax: + type: string + example: '3' + entitlementoffset: + type: string + example: '0' + max: + type: string + example: '1' + offset: + type: string + example: '0' + verifier: + type: string + example: admin + examples: + Fetch Account Entitlement Details: + value: + accountmax: '2' + accountoffset: '0' + campaignId: '178' + certkey: '33600' + entitlement2max: '2' + entitlement2offset: '0' + entitlementmax: '3' + entitlementoffset: '0' + max: '1' + offset: '0' + verifier: admin + responses: + '200': + description: Fetch Account Entitlement Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 23 Jun 2021 16:23:31 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ddfc7622-1638-4226-b359-43e94dacf6d9; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignAccountEntDetails: + type: array + items: + type: object + properties: + certificationname: + type: string + example: Linux Access Review - U006789 (Constance Bihner) + certkey: + type: string + example: '33600' + entitlementDisplayCount: + type: number + example: 1 + entitlementTotalCount: + type: number + example: 1 + entitlements: + type: array + items: + type: object + properties: + accountdisplaycount: + type: number + example: 2 + accounts: + type: array + items: + type: object + properties: + accountStatus: + type: string + example: '1' + accountname: + type: string + example: admin + certaccountkey: + type: number + example: 192406 + certfied: + type: string + example: NORESPONSE + comment: + type: string + example: null + consulted: + type: string + example: 'no' + endpoint: + type: string + example: SaviyntLinuxServer + lastCertifiedCampaignName: + type: string + example: '' + lastCertifiedDate: + type: string + example: '' + lastCertifiedUser: + type: string + example: '' + systemUserName: + type: string + example: admin + userStatus: + type: string + example: '1' + username: + type: string + example: admin + example: + - accountStatus: '1' + accountname: admin + certaccountkey: 192406 + certfied: NORESPONSE + comment: null + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: admin + userStatus: '1' + username: admin + - accountStatus: '1' + accountname: U037787 + certaccountkey: 192407 + certfied: NORESPONSE + comment: null + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: jwallace + userStatus: '1' + username: U037787 + accounttotalcount: + type: number + example: 10 + certentvalkey: + type: number + example: 1530363 + certfied: + type: string + example: APPROVED + comment: + type: string + example: null + consulted: + type: string + example: 'no' + entitlement2displaycount: + type: number + example: 0 + entitlement2totalcount: + type: number + example: 0 + entitlementStatus: + type: number + example: 1 + entitlementType: + type: string + example: Groups + entitlement_value: + type: string + example: audio + risk: + type: string + example: '' + soxcritical: + type: string + example: '0' + status: + type: string + example: '1' + syscritical: + type: string + example: '0' + example: + - accountdisplaycount: 2 + accounts: + - accountStatus: '1' + accountname: admin + certaccountkey: 192406 + certfied: NORESPONSE + comment: null + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: admin + userStatus: '1' + username: admin + - accountStatus: '1' + accountname: U037787 + certaccountkey: 192407 + certfied: NORESPONSE + comment: null + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: jwallace + userStatus: '1' + username: U037787 + accounttotalcount: 10 + certentvalkey: 1530363 + certfied: APPROVED + comment: null + consulted: 'no' + entitlement2displaycount: 0 + entitlement2totalcount: 0 + entitlementStatus: 1 + entitlementType: Groups + entitlement_value: audio + risk: '' + soxcritical: '0' + status: '1' + syscritical: '0' + status: + type: string + example: In progress + example: + - certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: '33600' + entitlementDisplayCount: 1 + entitlementTotalCount: 1 + entitlements: + - accountdisplaycount: 2 + accounts: + - accountStatus: '1' + accountname: admin + certaccountkey: 192406 + certfied: NORESPONSE + comment: null + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: admin + userStatus: '1' + username: admin + - accountStatus: '1' + accountname: U037787 + certaccountkey: 192407 + certfied: NORESPONSE + comment: null + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: jwallace + userStatus: '1' + username: U037787 + accounttotalcount: 10 + certentvalkey: 1530363 + certfied: APPROVED + comment: null + consulted: 'no' + entitlement2displaycount: 0 + entitlement2totalcount: 0 + entitlementStatus: 1 + entitlementType: Groups + entitlement_value: audio + risk: '' + soxcritical: '0' + status: '1' + syscritical: '0' + status: In progress + campaignId: + type: string + example: '178' + complete: + type: string + example: 'No' + displayCount: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + totalCount: + type: number + example: 1 + examples: + Fetch Account Entitlement Details: + value: + campaignAccountEntDetails: + - certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: '33600' + entitlementDisplayCount: 1 + entitlementTotalCount: 1 + entitlements: + - accountdisplaycount: 2 + accounts: + - accountStatus: '1' + accountname: admin + certaccountkey: 192406 + certfied: NORESPONSE + comment: '' + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: admin + userStatus: '1' + username: admin + - accountStatus: '1' + accountname: U037787 + certaccountkey: 192407 + certfied: NORESPONSE + comment: '' + consulted: 'no' + endpoint: SaviyntLinuxServer + lastCertifiedCampaignName: '' + lastCertifiedDate: '' + lastCertifiedUser: '' + systemUserName: jwallace + userStatus: '1' + username: U037787 + accounttotalcount: 10 + certentvalkey: 1530363 + certfied: APPROVED + comment: '' + consulted: 'no' + entitlement2displaycount: 0 + entitlement2totalcount: 0 + entitlementStatus: 1 + entitlementType: Groups + entitlement_value: audio + risk: '' + soxcritical: '0' + status: '1' + syscritical: '0' + status: In progress + campaignId: '178' + complete: 'No' + displayCount: 1 + errorCode: '0' + msg: successful + totalCount: 1 + /fetchEntOwnerCampaignDetails: + post: + tags: + - campaigns-entitlement-owner + summary: Fetch Entitlement Owner Campaign Details + description: |- + This API return details of a particular Entitlement Owner campaign in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + Optional params: + `max` + `offset` + `entitlementmax` + `entitlementoffset` + `certkey` + `verifier` + operationId: fetchEntitlementOwnerCampaignDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '10' + examples: + Fetch Entitlement Owner Campaign Details: + value: + campaignId: '10' + responses: + '200': + description: Fetch Entitlement Owner Campaign Details - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 23 Jul 2020 15:42:02 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=94589b88-cb05-4e05-a11d-dc62e85bb238; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignDetails: + type: array + items: + type: object + properties: + certificationame: + type: string + example: testent_test - lmcneil (Logan McNeil) + certifier: + type: string + example: lmcneil + certkey: + type: string + example: '6' + entitlement: + type: array + items: + type: object + properties: + certfied: + type: string + example: APPROVED + consulted: + type: string + example: 'no' + endpoint: + type: string + example: Workday + entitlement_value: + type: string + example: 1099 System (1099_System) + totalaccount: + type: number + example: 0 + totalentitlement2: + type: number + example: 0 + updateuser: + type: string + example: admin + example: + - certfied: APPROVED + consulted: 'no' + endpoint: Workday + entitlement_value: 1099 System (1099_System) + totalaccount: 0 + totalentitlement2: 0 + updateuser: admin + entitlementdisplaycount: + type: number + example: 1 + progress: + type: string + example: 100% + status: + type: string + example: Completed + totalentitlement: + type: number + example: 1 + example: + - certificationame: testent_test - lmcneil (Logan McNeil) + certifier: lmcneil + certkey: '6' + entitlement: + - certfied: APPROVED + consulted: 'no' + endpoint: Workday + entitlement_value: 1099 System (1099_System) + totalaccount: 0 + totalentitlement2: 0 + updateuser: admin + entitlementdisplaycount: 1 + progress: 100% + status: Completed + totalentitlement: 1 + - certificationame: testent_test - kkrishnan (Kshama Krishnan)-Reassigned-2020-07-15-234436 + certifier: kkrishnan + certkey: '7' + entitlement: + - certfied: APPROVED + comment: '[07/15/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-Steve Morgan(smorgan)] approveComment' + consulted: 'no' + endpoint: Workday + entitlement_value: Report Writer (Report_Writer) + totalaccount: 0 + totalentitlement2: 0 + updateuser: smorgan + entitlementdisplaycount: 1 + progress: 100% + status: Completed + totalentitlement: 1 + - certificationame: testent_test - mreddy (Mahesh Reddy)-Reassigned-2020-07-16-170550 + certifier: mreddy + certkey: '8' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - rkumar (Rajiv Kumar)-Reassigned-2020-07-16-172607 + certifier: rkumar + certkey: '9' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - abrennan (Abby Brennan)-Reassigned-2020-07-16-201654 + certifier: abrennan + certkey: '11' + entitlementdisplaycount: 0 + progress: 0% + status: New + totalentitlement: 0 + - certificationame: testent_test - abhat (Arjun Bhat)-Reassigned-2020-07-16-202800 + certifier: abhat + certkey: '12' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - abianchi (Angela Bianchi)-Reassigned-2020-07-16-203801 + certifier: abianchi + certkey: '13' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - adubois (Alain DuBois)-Reassigned-2020-07-16-211255 + certifier: adubois + certkey: '14' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - akapoor (Amit Kapoor)-Reassigned-2020-07-16-213238 + certifier: akapoor + certkey: '15' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - amackenzie (Amanda Mackenzie)-Reassigned-2020-07-17-232752 + certifier: amackenzie + certkey: '21' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - badams (Ben Adams)-Reassigned-2020-07-20-165843 + certifier: badams + certkey: '24' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - bkaplan (Brian Kaplan)-Reassigned-2020-07-20-191707 + certifier: bkaplan + certkey: '25' + entitlement: + - certfied: APPROVED + comment: '[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-Steve Morgan(smorgan)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/17/20-Steve Morgan(smorgan)]
reassigning from API[07/20/20-adminfname adminlname(admin)]
reassigning from API[07/20/20-Steve Morgan(smorgan)] approveComment[07/20/20-adminfname adminlname(admin)]
reassigning from API[07/20/20-Steve Morgan(smorgan)] approveComment' + consulted: 'no' + endpoint: Workday + entitlement_value: 1099 Analyst (1099_Analyst) + totalaccount: 0 + totalentitlement2: 0 + updateuser: smorgan + entitlementdisplaycount: 1 + progress: 100% + status: Completed + totalentitlement: 1 + campaignId: + type: string + example: '10' + complete: + type: string + example: 'No' + displayCount: + type: number + example: 12 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + totalCompleteCertification: + type: array + items: + type: string + example: testent_test - lmcneil (Logan McNeil) + example: + - testent_test - lmcneil (Logan McNeil) + - testent_test - kkrishnan (Kshama Krishnan)-Reassigned-2020-07-15-234436 + - testent_test - bkaplan (Brian Kaplan)-Reassigned-2020-07-20-191707 + totalCount: + type: number + example: 12 + examples: + Fetch Entitlement Owner Campaign Details - SUCCESS: + value: + campaignDetails: + - certificationame: testent_test - lmcneil (Logan McNeil) + certifier: lmcneil + certkey: '6' + entitlement: + - certfied: APPROVED + consulted: 'no' + endpoint: Workday + entitlement_value: 1099 System (1099_System) + totalaccount: 0 + totalentitlement2: 0 + updateuser: admin + entitlementdisplaycount: 1 + progress: 100% + status: Completed + totalentitlement: 1 + - certificationame: testent_test - kkrishnan (Kshama Krishnan)-Reassigned-2020-07-15-234436 + certifier: kkrishnan + certkey: '7' + entitlement: + - certfied: APPROVED + comment: '[07/15/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-Steve Morgan(smorgan)] approveComment' + consulted: 'no' + endpoint: Workday + entitlement_value: Report Writer (Report_Writer) + totalaccount: 0 + totalentitlement2: 0 + updateuser: smorgan + entitlementdisplaycount: 1 + progress: 100% + status: Completed + totalentitlement: 1 + - certificationame: testent_test - mreddy (Mahesh Reddy)-Reassigned-2020-07-16-170550 + certifier: mreddy + certkey: '8' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - rkumar (Rajiv Kumar)-Reassigned-2020-07-16-172607 + certifier: rkumar + certkey: '9' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - abrennan (Abby Brennan)-Reassigned-2020-07-16-201654 + certifier: abrennan + certkey: '11' + entitlementdisplaycount: 0 + progress: 0% + status: New + totalentitlement: 0 + - certificationame: testent_test - abhat (Arjun Bhat)-Reassigned-2020-07-16-202800 + certifier: abhat + certkey: '12' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - abianchi (Angela Bianchi)-Reassigned-2020-07-16-203801 + certifier: abianchi + certkey: '13' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - adubois (Alain DuBois)-Reassigned-2020-07-16-211255 + certifier: adubois + certkey: '14' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - akapoor (Amit Kapoor)-Reassigned-2020-07-16-213238 + certifier: akapoor + certkey: '15' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - amackenzie (Amanda Mackenzie)-Reassigned-2020-07-17-232752 + certifier: amackenzie + certkey: '21' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - badams (Ben Adams)-Reassigned-2020-07-20-165843 + certifier: badams + certkey: '24' + entitlementdisplaycount: 0 + progress: 100% + status: Fully Executed + totalentitlement: 0 + - certificationame: testent_test - bkaplan (Brian Kaplan)-Reassigned-2020-07-20-191707 + certifier: bkaplan + certkey: '25' + entitlement: + - certfied: APPROVED + comment: '[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/16/20-Steve Morgan(smorgan)]
reassigning from API[07/16/20-adminfname adminlname(admin)]
reassigning from API[07/17/20-Steve Morgan(smorgan)]
reassigning from API[07/20/20-adminfname adminlname(admin)]
reassigning from API[07/20/20-Steve Morgan(smorgan)] approveComment[07/20/20-adminfname adminlname(admin)]
reassigning from API[07/20/20-Steve Morgan(smorgan)] approveComment' + consulted: 'no' + endpoint: Workday + entitlement_value: 1099 Analyst (1099_Analyst) + totalaccount: 0 + totalentitlement2: 0 + updateuser: smorgan + entitlementdisplaycount: 1 + progress: 100% + status: Completed + totalentitlement: 1 + campaignId: '10' + complete: 'No' + displayCount: 12 + errorCode: '0' + msg: successful + totalCompleteCertification: + - testent_test - lmcneil (Logan McNeil) + - testent_test - kkrishnan (Kshama Krishnan)-Reassigned-2020-07-15-234436 + - testent_test - bkaplan (Brian Kaplan)-Reassigned-2020-07-20-191707 + totalCount: 12 + '412': + description: Fetch Entitlement Owner Campaign Details - FAILURE + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 15 Jun 2020 22:34:38 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8892aa42-facf-43a1-9cff-d4212b9a646d; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '1' + msg: + type: string + example: certification with certkey 12802 not found for camapignId 282 + examples: + Fetch Entitlement Owner Campaign Details - FAILURE: + value: + errorCode: '1' + msg: certification with certkey 12802 not found for camapignId 282 + /getFlatResponseEntOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-entitlement-owner + summary: Fetch Flat Response Entitlement Owner Campaign Details + description: |- + This API return flat details of a particular Entitlement Owner campaign in SSM. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + Optional params: + `max` + `offset` + `entitlementmax` + `entitlementoffset` + `certkey` + operationId: fetchFlatResponseEntitlementOwnerCampaignDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '178' + certkey: + type: string + example: '33600' + entitlementmax: + type: string + example: '5' + entitlementoffset: + type: string + example: '0' + max: + type: string + example: '20' + offset: + type: string + example: '0' + examples: + Fetch Flat Response Entitlement Owner Campaign Details: + value: + campaignId: '178' + certkey: '33600' + entitlementmax: '5' + entitlementoffset: '0' + max: '20' + offset: '0' + responses: + '200': + description: Fetch Flat Response Entitlement Owner Campaign Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 23 Jun 2021 16:24:43 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ddfc7622-1638-4226-b359-43e94dacf6d9; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignAccountEntDetails: + type: array + items: + type: object + properties: + Ent_SOX_CRITICAL: + type: number + example: 0 + Ent_SYS_CRITICAL: + type: number + example: 0 + Ent_entitlement_value: + type: + - string + - 'null' + example: audio + Ent_risk: + type: + - string + - 'null' + Ent_status: + type: number + example: 1 + User_lastCertifiedCampaignName: + type: + - string + - 'null' + User_lastCertifiedDate: + type: + - string + - 'null' + User_lastCertifiedUser: + type: + - string + - 'null' + User_systemUserName: + type: + - string + - 'null' + example: admin + User_username: + type: + - string + - 'null' + example: admin + accComment: + type: + - string + - 'null' + accHistory: + type: + - string + - 'null' + accStatus: + type: + - string + - 'null' + example: '1' + accountCertfied: + type: + - string + - 'null' + example: NORESPONSE + accountCount: + type: + - number + - 'null' + example: 10 + accountname: + type: string + example: admin + certaccountkey: + type: number + example: 192406 + certentval2key: + type: + - number + - 'null' + example: null + certentvalkey: + type: number + example: 1530363 + certificationname: + type: string + example: Linux Access Review - U006789 (Constance Bihner) + certkey: + type: number + example: 33600 + endpoint: + type: string + example: SaviyntLinuxServer + ent2History: + type: + - string + - 'null' + ent2Status: + type: + - number + - 'null' + example: null + ent2certified: + type: + - string + - 'null' + ent2comments: + type: + - string + - 'null' + ent2name: + type: + - string + - 'null' + example: null + entCertfied: + type: string + example: APPROVED + entComment: + type: + - string + - 'null' + example: null + entStatus: + type: + - number + - 'null' + example: 1 + entcriticality: + type: + - number + - 'null' + example: 0 + entitlement2count: + type: + - number + - 'null' + entitlementcount: + type: + - number + - 'null' + example: 1 + enttype: + type: string + example: Groups + history: + type: string + example: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: + type: string + example: In progress + userStatus: + type: + - number + - 'null' + example: + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: admin + User_username: admin + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: admin + certaccountkey: 192406 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: 1 + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: jwallace + User_username: U037787 + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: U037787 + certaccountkey: 192407 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: 1 + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: null + User_username: null + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: svc_aws + certaccountkey: 192408 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: null + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: null + User_username: null + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: aws_service + certaccountkey: 192409 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: null + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: null + User_username: null + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: newtest_mysvc + certaccountkey: 192410 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: null + campaignId: + type: string + example: '178' + complete: + type: string + example: 'No' + count: + type: number + example: 5 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + examples: + Fetch Flat Response Entitlement Owner Campaign Details: + value: + campaignAccountEntDetails: + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: admin + User_username: admin + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: admin + certaccountkey: 192406 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: 1 + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: jwallace + User_username: U037787 + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: U037787 + certaccountkey: 192407 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: 1 + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: null + User_username: null + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: svc_aws + certaccountkey: 192408 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: null + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: null + User_username: null + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: aws_service + certaccountkey: 192409 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: null + - Ent_SOX_CRITICAL: 0 + Ent_SYS_CRITICAL: 0 + Ent_entitlement_value: audio + Ent_risk: null + Ent_status: 1 + User_lastCertifiedCampaignName: null + User_lastCertifiedDate: null + User_lastCertifiedUser: null + User_systemUserName: null + User_username: null + accComment: null + accHistory: null + accStatus: '1' + accountCertfied: NORESPONSE + accountCount: 10 + accountname: newtest_mysvc + certaccountkey: 192410 + certentval2key: null + certentvalkey: 1530363 + certificationname: Linux Access Review - U006789 (Constance Bihner) + certkey: 33600 + endpoint: SaviyntLinuxServer + ent2History: null + ent2Status: null + ent2certified: null + ent2comments: null + ent2name: null + entCertfied: APPROVED + entComment: null + entStatus: 1 + entcriticality: 0 + entitlement2count: null + entitlementcount: 1 + enttype: Groups + history: Belongs to Me on[07/15/20-SSM Admin(ssmadmin)]
+ status: In progress + userStatus: null + campaignId: '178' + complete: 'No' + count: 5 + errorCode: '0' + msg: successful + /lockEntOwnerCampaign: + post: + tags: + - campaigns-entitlement-owner + summary: Lock Campaign + description: |- + This API is used to lock campaign after validating whether Entitlement Owner campaign is completed or not. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + `verifier` + Optional params: + `certkey` + operationId: lockCampaign1 + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '60' + certkey: + type: string + example: '7250' + verifier: + type: string + example: admin01 + examples: + Lock Campaign: + value: + campaignId: '60' + certkey: '7250' + verifier: admin01 + responses: + '200': + description: Lock Campaign - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 15 Jun 2020 22:52:02 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=97722197-fb2c-41ff-bead-b4b6605a9176; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + lockedcertkey: + type: array + items: + type: number + example: 7250 + example: + - 7250 + msg: + type: string + example: Success + totalIncompleteCertification: + type: array + items: {} + example: [] + totalLockedCertification: + type: array + items: + type: string + example: EOCampaign1231_Reconfigure_Reconfigure - admin (admin admin) + example: + - EOCampaign1231_Reconfigure_Reconfigure - admin (admin admin) + examples: + Lock Campaign - SUCCESS: + value: + errorCode: '0' + lockedcertkey: + - 7250 + msg: Success + totalIncompleteCertification: [] + totalLockedCertification: + - EOCampaign1231_Reconfigure_Reconfigure - admin (admin admin) + '412': + description: Lock Campaign - FAILURE + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 15 Jun 2020 23:02:23 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=b3b29e1a-1665-4bda-94b4-65fb77a0b5a9; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '1' + msg: + type: string + example: Active verifier with name admin01 not found + examples: + Lock Campaign - FAILURE: + value: + errorCode: '1' + msg: Active verifier with name admin01 not found + /approverejectEntOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-entitlement-owner + summary: Approve Reject Account Entitlement Details + description: |- + This API is used to certify/revoke the user's access (account, entitlement). When an approve or reject action is performed for a line item in an Entitlement Owner campaign, then only the latest comment sent through the API is retained in the comments field but all the comments (including actions) are stored in the audit trail/history. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignid` + `certkey` + `verifier` + `entitlements` 1. `action`(APPROVED/REJECTED/DECOMMISSIONED/DOESNOTBELONGTOME) 2. `entattkey` 3. `certified`(Can be Yes/No/Reset) 4. `comments` + OR + + `accounts` + 1. `action`(APPROVED/REJECTED) + 2. `accattkey` + 3. `entattkey` + 4. `certified`(Can be Yes/No/Reset) + 5. `comments` + + OR + + `entitlements2` + 1. `action`(APPROVED/REJECTED) + 2. `entattkey` + 3. `ent2attkey` + 4. `certified`(Can be Yes/No/Reset) + 5. `comments` + Optional params: + `bulkUpdate`(Can be Y or N) If set to Y, approveComments or rejectComments will be considered at the global level. If set to 'N' then comments at the individual record/user level is considered. + `approveComment` + `rejectComment` + `doesNotBelongToMeComment` + `bulkValidations`(If 'Y' the code works as is and all validations happen, if bulkValidations=' N' the code will skip validations for all the records passed) + operationId: approveRejectAccountEntitlementDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '25290' + action: + type: string + example: APPROVED + entattkey: + type: string + example: '30897' + example: + - accattkey: '25290' + action: APPROVED + entattkey: '30897' + - accattkey: '25291' + action: REJECTED + entattkey: '30897' + approveComment: + type: string + example: Approve Comment Test123!!@#$%^&* + bulkUpdate: + type: string + example: 'Y' + bulkValidations: + type: string + example: 'Y' + campaignid: + type: string + example: '1112' + certkey: + type: string + example: '5995' + doesNotBelongToMeComment: + type: string + example: DoesNotBelongToMeComment Test 123!!@#$%^& + entitlements2: + type: array + items: + type: object + properties: + action: + type: string + example: APPROVED + comments: + type: string + example: Approve Comment Test123!!@#$%^&* + ent2attkey: + type: string + example: '30906' + entattkey: + type: string + example: '30897' + example: + - action: APPROVED + comments: Approve Comment Test123!!@#$%^&* + ent2attkey: '30906' + entattkey: '30897' + - action: REJECTED + comments: Reject Comment Test123!!@#$%^&* + ent2attkey: '30907' + entattkey: '30897' + rejectComment: + type: string + example: Reject Comment Test123!!@#$%^&* + verifier: + type: string + example: RO_Owner1 + examples: + Approve Reject Account Entitlement Details: + value: + accounts: + - accattkey: '25290' + action: APPROVED + entattkey: '30897' + - accattkey: '25291' + action: REJECTED + entattkey: '30897' + approveComment: Approve Comment Test123!!@#$%^&* + bulkUpdate: 'Y' + bulkValidations: 'Y' + campaignid: '1112' + certkey: '5995' + doesNotBelongToMeComment: DoesNotBelongToMeComment Test 123!!@#$%^& + entitlements2: + - action: APPROVED + comments: Approve Comment Test123!!@#$%^&* + ent2attkey: '30906' + entattkey: '30897' + - action: REJECTED + comments: Reject Comment Test123!!@#$%^&* + ent2attkey: '30907' + entattkey: '30897' + rejectComment: Reject Comment Test123!!@#$%^&* + verifier: RO_Owner1 + responses: + '200': + description: '' + /certifyEntOwnerforCampaign: + post: + tags: + - campaigns-entitlement-owner + summary: Certify Entitlement Owner for Campaign + description: |- + This API will do entitlement verification for a particular campaign. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `verifications` + `camapignId` + `entitlement` 1. `entitlement` 2. `endpoint` 3. `action` + `verifier` + `certkey` + `action(if action param is not passed then entitlement lavel action param will be considered)` + Optional params: + `comments` + operationId: certifyEntitlementOwnerForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + verifications: + type: array + items: + type: object + properties: + action: + type: string + example: decommissioned + campaignId: + type: string + example: '313' + certkey: + type: string + example: '12892' + entitlement: + type: array + items: + type: object + properties: + action: + type: string + example: approved + endpoint: + type: string + example: Oracle DRM + entitlement: + type: string + example: Analytics User + example: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + verifier: + type: string + example: admin + example: + - action: decommissioned + campaignId: '313' + certkey: '12892' + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + verifier: admin + - campaignId: '314' + certkey: '12894' + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + verifier: admin + examples: + Certify Entitlement Owner for Campaign: + value: + verifications: + - action: decommissioned + campaignId: '313' + certkey: '12892' + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + verifier: admin + - campaignId: '314' + certkey: '12894' + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + verifier: admin + responses: + '200': + description: Certify Entitlement Owner for Campaign - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 17 Jun 2020 00:41:09 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=d4e2fef7-422c-49f2-9a0c-de1df0e88e1e; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + count: + type: number + example: 2 + errorCode: + type: string + example: '0' + msg: + type: string + example: success + verifications: + type: array + items: + type: object + properties: + action: + type: string + example: DECOMMISSIONED + campaignId: + type: string + example: '313' + certkey: + type: number + example: 12892 + entitlement: + type: array + items: + type: object + properties: + action: + type: string + example: approved + endpoint: + type: string + example: Oracle DRM + entitlement: + type: string + example: Analytics User + msg: + type: string + example: Success + example: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + msg: Success + verifier: + type: string + example: admin + example: + - action: DECOMMISSIONED + campaignId: '313' + certkey: 12892 + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + msg: Success + verifier: admin + - campaignId: '314' + certkey: 12894 + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + msg: Success + verifier: admin + examples: + Certify Entitlement Owner for Campaign - SUCCESS: + value: + count: 2 + errorCode: '0' + msg: success + verifications: + - action: DECOMMISSIONED + campaignId: '313' + certkey: 12892 + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + msg: Success + verifier: admin + - campaignId: '314' + certkey: 12894 + entitlement: + - action: approved + endpoint: Oracle DRM + entitlement: Analytics User + msg: Success + verifier: admin + /reassignEntOwnerCampaignAccEnt: + post: + tags: + - campaigns-entitlement-owner + summary: Reassign Entitlement Owner for Campaign + description: |- + This API reassigns Entitlement Owner for Campaign in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid`(if both are passed then campaignid will be considered) + `certificationname` or `certkey`(if both are passed then certkey will be considered) + `newassignee` + `entitlements` + Optional params: + `updateuser` + `bulkupdate`(default value 'N') + `bulkvalidation`(default value 'N') + `comments` + operationId: reassignEntitlementOwnerForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + bulkupdate: + type: string + example: 'y' + bulkvalidation: + type: string + example: 'y' + campaignid: + type: string + example: '10' + certkey: + type: string + example: '15' + comments: + type: string + example: reassigning from API + entitlements: + type: array + items: + type: object + properties: + entattkey: + type: string + example: '146' + example: + - entattkey: '146' + newassignee: + type: string + example: amackenzie + updateuser: + type: string + example: smorgan + examples: + Reassign Entitlement Owner for Campaign: + value: + bulkupdate: 'y' + bulkvalidation: 'y' + campaignid: '10' + certkey: '15' + comments: reassigning from API + entitlements: + - entattkey: '146' + newassignee: amackenzie + updateuser: smorgan + responses: + '200': + description: Reassign Application Owner for Campaign + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 17 Jul 2020 23:27:52 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5e661d6e-77c3-43a1-ab94-79f5e87beb79; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Reassign Application Owner for Campaign: + value: + errorcode: '0' + msg: success + /reassignEntOwnerCampaignAccEntDetailsStep2: + post: + tags: + - campaigns-entitlement-owner + summary: Reassign Certification at Account Level + description: |- + This API reassigns accounts or child entitlements to a different user or certifier. The associated entitlements for accounts or child entitlements that are being reassigned, must be certified in Step 1. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `updateuser` (can be Admin/Campaign Owner/Certifier/Delegate) + `campaignid`- Campaign ID or the primary key of the campaign table. + `certkey`- Certification key or the primary key of the certification table. + `accounts`- List of accounts. (You must provide either accounts or entitlements2) + `entitlements2`- List of child entitlements. (You must provide either accounts or entitlements2) + `newassignee`- New certifier or user to whom the certification will be assigned. + `bulkupdate` (can be Y/N) + `bulkvalidation` (can be Y/N) + Optional params: + `comments`- Comments for reassigning the certification. + operationId: reassignCertificationAtAccountLevel + requestBody: + content: + application/json: + schema: + type: object + properties: + bulkupdate: + type: string + example: 'y' + bulkvalidation: + type: string + example: 'y' + campaignid: + type: string + example: '10' + certkey: + type: string + example: '15' + comments: + type: string + example: reassigning from API + entitlements: + type: array + items: + type: object + properties: + entattkey: + type: string + example: '146' + example: + - entattkey: '146' + newassignee: + type: string + example: amackenzie + updateuser: + type: string + example: smorgan + examples: + Reassign Certification at Account Level: + value: + bulkupdate: 'y' + bulkvalidation: 'y' + campaignid: '10' + certkey: '15' + comments: reassigning from API + entitlements: + - entattkey: '146' + newassignee: amackenzie + updateuser: smorgan + responses: + '200': + description: Reassign Certification at Account Level + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 17 Jul 2020 23:27:52 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5e661d6e-77c3-43a1-ab94-79f5e87beb79; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '35678' + entattkey: + type: string + example: '67390' + example: + - accattkey: '35678' + entattkey: '67390' + bulkupdate: + type: string + example: 'N' + bulkvalidation: + type: string + example: 'Y' + campaignid: + type: string + example: '404' + certkey: + type: string + example: '3463' + comments: + type: string + example: reassigning from API + entitlements2: + type: array + items: + type: object + properties: + ent2attkey: + type: string + example: '67397' + entattkey: + type: string + example: '67390' + example: + - ent2attkey: '67397' + entattkey: '67390' + newassignee: + type: string + example: UserManger' + updateuser: + type: string + example: EOUser1' + examples: + Reassign Certification at Account Level: + value: + accounts: + - accattkey: '35678' + entattkey: '67390' + bulkupdate: 'N' + bulkvalidation: 'Y' + campaignid: '404' + certkey: '3463' + comments: reassigning from API + entitlements2: + - ent2attkey: '67397' + entattkey: '67390' + newassignee: UserManger' + updateuser: EOUser1' + /fetchAppOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-application-owner + summary: Fetch Account Entitlement Details + description: |- + This API returns user details, account-entitlement details of a particular campaign required for certify/revoke API. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + Optional params: + `certkey` + `max`(default is 100), + `offset`(default is 0), + `returnFlatResponse`(can be true or false) + operationId: fetchAccountEntitlementDetails2 + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '212' + certkey: + type: string + example: '37564' + max: + type: string + example: '5' + offset: + type: string + example: '0' + examples: + Fetch Account Entitlement Details: + value: + campaignId: '212' + certkey: '37564' + max: '5' + offset: '0' + responses: + '200': + description: Fetch Account Entitlement Details + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 23 Jun 2021 16:27:17 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ddfc7622-1638-4226-b359-43e94dacf6d9; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignAccountEntDetails: + type: array + items: + type: object + properties: + accountcount: + type: number + example: 5 + accounts: + type: array + items: + type: object + properties: + accountStatus: + type: string + example: Manually Provisioned + accountname: + type: string + example: G000526 + certaccountkey: + type: number + example: 227493 + certified: + type: + - string + - 'null' + comments: + type: + - string + - 'null' + displayname: + type: + - string + - 'null' + endpoint: + type: string + example: Banking Application + entitlementcount: + type: number + example: 0 + entitlements: + type: array + items: {} + example: [] + firstname: + type: string + example: Ohjae + lastCertifiedCampaignName: + type: + - string + - 'null' + lastCertifiedUser: + type: + - number + - 'null' + securitySystem: + type: + - string + - 'null' + example: Banking Application + systemUserName: + type: string + example: ohjae_chang-46b4 + userStatus: + type: number + example: 1 + username: + type: string + example: G000526 + example: + - accountStatus: Manually Provisioned + accountname: G000526 + certaccountkey: 227493 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Ohjae + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: ohjae_chang-46b4 + userStatus: 1 + username: G000526 + - accountStatus: Manually Provisioned + accountname: G000706 + certaccountkey: 227494 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: KC + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: kpark + userStatus: 1 + username: G000706 + - accountStatus: Manually Provisioned + accountname: U009768 + certaccountkey: 227499 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Marion + lastCertifiedCampaignName: User Manager Campaign - Azure Applications + lastCertifiedUser: 2 + securitySystem: Banking Application + systemUserName: mdemaria + userStatus: 1 + username: U009768 + - accountStatus: Manually Provisioned + accountname: U011556 + certaccountkey: 227500 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Daniel + lastCertifiedCampaignName: User Manager Campaign - Azure Applications + lastCertifiedUser: 2 + securitySystem: Banking Application + systemUserName: dschibler + userStatus: 1 + username: U011556 + - accountStatus: Manually Provisioned + accountname: sallyfagan@identcentrix.com + certaccountkey: 227502 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Sally + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: sfagan + userStatus: 1 + username: sallyfagan@identcentrix.com + certificationname: + type: string + example: appowner1 - G000526 (Ohjae Chang) + certkey: + type: string + example: '37564' + status: + type: string + example: New + example: + - accountcount: 5 + accounts: + - accountStatus: Manually Provisioned + accountname: G000526 + certaccountkey: 227493 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Ohjae + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: ohjae_chang-46b4 + userStatus: 1 + username: G000526 + - accountStatus: Manually Provisioned + accountname: G000706 + certaccountkey: 227494 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: KC + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: kpark + userStatus: 1 + username: G000706 + - accountStatus: Manually Provisioned + accountname: U009768 + certaccountkey: 227499 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Marion + lastCertifiedCampaignName: User Manager Campaign - Azure Applications + lastCertifiedUser: 2 + securitySystem: Banking Application + systemUserName: mdemaria + userStatus: 1 + username: U009768 + - accountStatus: Manually Provisioned + accountname: U011556 + certaccountkey: 227500 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Daniel + lastCertifiedCampaignName: User Manager Campaign - Azure Applications + lastCertifiedUser: 2 + securitySystem: Banking Application + systemUserName: dschibler + userStatus: 1 + username: U011556 + - accountStatus: Manually Provisioned + accountname: sallyfagan@identcentrix.com + certaccountkey: 227502 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Sally + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: sfagan + userStatus: 1 + username: sallyfagan@identcentrix.com + certificationname: appowner1 - G000526 (Ohjae Chang) + certkey: '37564' + status: New + campaignId: + type: string + example: '212' + complete: + type: string + example: 'No' + count: + type: number + example: 1 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + totalCount: + type: number + example: 1 + examples: + Fetch Account Entitlement Details: + value: + campaignAccountEntDetails: + - accountcount: 5 + accounts: + - accountStatus: Manually Provisioned + accountname: G000526 + certaccountkey: 227493 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Ohjae + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: ohjae_chang-46b4 + userStatus: 1 + username: G000526 + - accountStatus: Manually Provisioned + accountname: G000706 + certaccountkey: 227494 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: KC + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: kpark + userStatus: 1 + username: G000706 + - accountStatus: Manually Provisioned + accountname: U009768 + certaccountkey: 227499 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Marion + lastCertifiedCampaignName: User Manager Campaign - Azure Applications + lastCertifiedUser: 2 + securitySystem: Banking Application + systemUserName: mdemaria + userStatus: 1 + username: U009768 + - accountStatus: Manually Provisioned + accountname: U011556 + certaccountkey: 227500 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Daniel + lastCertifiedCampaignName: User Manager Campaign - Azure Applications + lastCertifiedUser: 2 + securitySystem: Banking Application + systemUserName: dschibler + userStatus: 1 + username: U011556 + - accountStatus: Manually Provisioned + accountname: sallyfagan@identcentrix.com + certaccountkey: 227502 + certified: null + comments: null + displayname: null + endpoint: Banking Application + entitlementcount: 0 + entitlements: [] + firstname: Sally + lastCertifiedCampaignName: null + lastCertifiedUser: null + securitySystem: Banking Application + systemUserName: sfagan + userStatus: 1 + username: sallyfagan@identcentrix.com + certificationname: appowner1 - G000526 (Ohjae Chang) + certkey: '37564' + status: New + campaignId: '212' + complete: 'No' + count: 1 + errorCode: '0' + msg: successful + totalCount: 1 + /approverejectAppOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-application-owner + summary: Approve Reject Account Entitlement Details + description: |- + This API is used to certify/revoke the user's access (account, entitlement). When an approve or reject action is performed for a line item in an Application Owner campaign, then only the latest comment sent through the API is retained in the comments field but all the comments (including actions) are stored in the audit trail/history. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignid` + `certkey` + `verifier` + `entitlements` - 1. `accattkey` 2. `certified` (Can be Yes/No/Reset) 3. `entattkey` 4. `comments` + `accounts` 1. `accattkey` 2. `certified` (Can be Yes/No/Reset) 3. `comments` + Optional params: + `bulkUpdate`(Can be Y or N) + `approveComment` + `rejectComment` + `doesNotBelongToMeComment` + `bulkValidations`(If 'Y' the code works as is and all validations happen, if bulkValidations=' N' the code will skip validations for all the records passed) + operationId: approveRejectAccountEntitlementDetails1 + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '2019316' + certified: + type: string + example: 'No' + comments: + type: string + example: test2 + example: + - accattkey: '2019316' + certified: 'No' + comments: test2 + campaignid: + type: string + example: '305' + certkey: + type: string + example: '12877' + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '2019316' + certified: + type: string + example: 'No' + comments: + type: string + example: test3 + entattkey: + type: string + example: '3534487' + example: + - accattkey: '2019316' + certified: 'No' + comments: test3 + entattkey: '3534487' + verifier: + type: string + example: admin + examples: + Approve Reject Account Entitlement Details: + value: + accounts: + - accattkey: '2019316' + certified: 'No' + comments: test2 + campaignid: '305' + certkey: '12877' + entitlements: + - accattkey: '2019316' + certified: 'No' + comments: test3 + entattkey: '3534487' + verifier: admin + responses: + '200': + description: Approve Reject Account Entitlement Details - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 17 Jun 2020 01:49:25 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=0aa5c121-4762-42ad-977f-ebf55e3f4830; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + accList: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '2019316' + certified: + type: string + example: 'No' + comments: + type: string + example: test2 + msg: + type: string + example: Certification_user_account_status updated successfully + example: + - accattkey: '2019316' + certified: 'No' + comments: test2 + msg: Certification_user_account_status updated successfully + campaignid: + type: string + example: '305' + certkey: + type: string + example: '12877' + entList: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '2019316' + certified: + type: string + example: 'No' + comments: + type: string + example: test3 + entattkey: + type: string + example: '3534487' + msg: + type: string + example: Certification_account_entitlement1_status updated successfully + example: + - accattkey: '2019316' + certified: 'No' + comments: test3 + entattkey: '3534487' + msg: Certification_account_entitlement1_status updated successfully + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + verifier: + type: string + example: admin + examples: + Approve Reject Account Entitlement Details - SUCCESS: + value: + accList: + - accattkey: '2019316' + certified: 'No' + comments: test2 + msg: Certification_user_account_status updated successfully + campaignid: '305' + certkey: '12877' + entList: + - accattkey: '2019316' + certified: 'No' + comments: test3 + entattkey: '3534487' + msg: Certification_account_entitlement1_status updated successfully + errorCode: '0' + msg: Success + verifier: admin + /lockApplicationOwnerCampaign: + post: + tags: + - campaigns-application-owner + summary: Lock Campaign + description: |- + This API is used to lock campaign after validating whether Application Owner campaign is completed or not. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignId` + `verifier` + Optional params: + `certkey` + operationId: lockCampaign2 + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignId: + type: string + example: '305' + verifier: + type: string + example: admin + examples: + Lock Campaign: + value: + campaignId: '305' + verifier: admin + responses: + '200': + description: Lock Campaign - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 17 Jun 2020 02:01:16 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e625d595-9cbd-4097-8ed5-4296282340c4; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + Total Incomplete certification: + type: array + items: {} + example: [] + Total locked certification: + type: array + items: + type: string + example: AOTest0610__1 - AN2022 (ANtest UserAN2022) + example: + - AOTest0610__1 - AN2022 (ANtest UserAN2022) + errorCode: + type: string + example: '0' + lockedcertkey: + type: array + items: + type: number + example: 12877 + example: + - 12877 + msg: + type: string + example: Success + examples: + Lock Campaign - SUCCESS: + value: + Total Incomplete certification: [] + Total locked certification: + - AOTest0610__1 - AN2022 (ANtest UserAN2022) + errorCode: '0' + lockedcertkey: + - 12877 + msg: Success + /consultAppOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-application-owner + summary: Consult AppOwner Account Entitlement Details + description: |- + This API consults Application Owner for Campaign at Account and Access Certification Stage in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid` + `certificationname` or `certkey` + `newassignee` + `accounts` - 1. `accattkey` 2. `consultassociatedentitlements` (optional) + `entitlements` - 1. `accattkey` 2. `entattkey` + Optional params: + `comments` + `updateuser` + operationId: consultAppownerAccountEntitlementDetails + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '2029318' + consultassociatedentitlements: + type: string + example: 'true' + example: + - accattkey: '2029318' + consultassociatedentitlements: 'true' + campaignid: + type: string + example: '306' + certkey: + type: string + example: '12878' + comments: + type: string + example: certifier from API + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '2029319' + entattkey: + type: string + example: '3544409' + example: + - accattkey: '2029319' + entattkey: '3544409' + - accattkey: '2029319' + entattkey: '3544410' + newassignee: + type: string + example: '0000002' + updateuser: + type: string + example: admin + examples: + Consult AppOwner Account Entitlement Details: + value: + accounts: + - accattkey: '2029318' + consultassociatedentitlements: 'true' + campaignid: '306' + certkey: '12878' + comments: certifier from API + entitlements: + - accattkey: '2029319' + entattkey: '3544409' + - accattkey: '2029319' + entattkey: '3544410' + newassignee: '0000002' + updateuser: admin + responses: + '200': + description: Consult AppOwner Account Entitlement Details - SUCCESS + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 17 Jun 2020 03:53:07 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=6cb509b5-f5dc-4b3c-a209-e3a62e5a6920; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=7776000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Consult AppOwner Account Entitlement Details - SUCCESS: + value: + errorcode: '0' + msg: success + /reAssignAppOwnerCampaignAccEntDetails: + post: + tags: + - campaigns-application-owner + summary: Reassign Application Owner for Campaign + description: |- + This API reassigns Entitlement Owner for Campaign in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignname` or `campaignid`(if both are passed then campaignid will be considered) + `certificationname` or `certkey`(if both are passed then certkey will be considered) + `newassignee` + `accounts`(needs to contain accattkey) + `entitlements`(needs to contain entattkey and accattkey) + `roles`(needs to contain roleattkey and accattkey) + Optional params: + `updateuser` + `bulkUpdate`(default value 'N') + `bulkValidation`(default value 'N') + `bulkConsultAssociatedData` + `reassignComments` + operationId: reassignApplicationOwnerForCampaign + requestBody: + content: + application/json: + schema: + type: object + properties: + accounts: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '18' + example: + - accattkey: '18' + bulkConsultAssociatedData: + type: string + example: 'n' + bulkUpdate: + type: string + example: 'y' + bulkValidation: + type: string + example: 'N' + campaignid: + type: string + example: '12' + certkey: + type: string + example: '23' + entitlements: + type: array + items: + type: object + properties: + accattkey: + type: string + example: '18' + entattkey: + type: string + example: '150' + example: + - accattkey: '18' + entattkey: '150' + newassignee: + type: string + example: cgibson + reassignComments: + type: string + example: Reassign Comment + examples: + Reassign Application Owner for Campaign: + value: + accounts: + - accattkey: '18' + bulkConsultAssociatedData: 'n' + bulkUpdate: 'y' + bulkValidation: 'N' + campaignid: '12' + certkey: '23' + entitlements: + - accattkey: '18' + entattkey: '150' + newassignee: cgibson + reassignComments: Reassign Comment + responses: + '200': + description: Reassign Application Owner for Campaign + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 20 Jul 2020 20:58:48 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8a56ec8d-a73d-4fd4-b58d-7cb6d0034075; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: string + example: '0' + msg: + type: string + example: success + examples: + Reassign Application Owner for Campaign: + value: + errorcode: '0' + msg: success + /fetchCertificationList: + post: + tags: + - campaigns + summary: Fetch Certification List + description: |- + This API returns list of all the certifications for a certifier. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `certifierUsername` + Optional params: + `certkey` + `certificationname` + `max`, `offset` + `refreshProgress`(can be 'Y' or 'N') + `status`(can be preview/new/readytosubmit/expired/fullyexecuted/inprogress/lockedandtaskcreated/discontinued/locked) + operationId: fetchCertificationList + requestBody: + content: + application/json: + schema: + type: object + properties: + certifierUsername: + type: string + example: lmcneil + max: + type: string + example: '2' + offset: + type: string + example: '0' + refreshProgress: + type: string + example: 'Y' + status: + type: string + example: new,fullyexecuted,inprogress + examples: + Fetch Certification List: + value: + certifierUsername: lmcneil + max: '2' + offset: '0' + refreshProgress: 'Y' + status: new,fullyexecuted,inprogress + responses: + '200': + description: Fetch Certification List + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 21 Jul 2020 05:13:34 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8a56ec8d-a73d-4fd4-b58d-7cb6d0034075; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + certifications: + type: array + items: + type: object + properties: + campaignKey: + type: number + example: 12 + campaignName: + type: string + example: appownertest_Reconfigure + certificationName: + type: string + example: appownertest_Reconfigure - lmcneil (Logan McNeil) + certifier: + type: string + example: lmcneil (Logan McNeil) + comments: + type: string + example: '' + dueIn: + type: string + example: 56 Days + enddate: + type: string + example: '2020-09-14 22:34:00' + id: + type: number + example: 16 + progress: + type: string + example: 0% + startdate: + type: string + example: '2020-07-16 22:34:00' + status: + type: string + example: New + type: + type: string + example: Application Owner + example: + - campaignKey: 12 + campaignName: appownertest_Reconfigure + certificationName: appownertest_Reconfigure - lmcneil (Logan McNeil) + certifier: lmcneil (Logan McNeil) + comments: '' + dueIn: 56 Days + enddate: '2020-09-14 22:34:00' + id: 16 + progress: 0% + startdate: '2020-07-16 22:34:00' + status: New + type: Application Owner + - campaignKey: 13 + campaignName: appownertest_Reconfigure_Reconfigure + certificationName: appownertest_Reconfigure_Reconfigure - lmcneil (Logan McNeil) + certifier: lmcneil (Logan McNeil) + comments: '' + dueIn: 60 Days + enddate: '2020-09-18 20:42:00' + id: 26 + progress: 0% + startdate: '2020-07-20 20:42:00' + status: New + type: Application Owner + certifierUsername: + type: string + example: lmcneil + displayCount: + type: number + example: 7 + errorCode: + type: string + example: '0' + max: + type: string + example: '2' + msg: + type: string + example: successful + offset: + type: string + example: '0' + refreshProgress: + type: string + example: 'Y' + status: + type: string + example: new,fullyexecuted,inprogress + totalCount: + type: number + example: 7 + examples: + Fetch Certification List: + value: + certifications: + - campaignKey: 12 + campaignName: appownertest_Reconfigure + certificationName: appownertest_Reconfigure - lmcneil (Logan McNeil) + certifier: lmcneil (Logan McNeil) + comments: '' + dueIn: 56 Days + enddate: '2020-09-14 22:34:00' + id: 16 + progress: 0% + startdate: '2020-07-16 22:34:00' + status: New + type: Application Owner + - campaignKey: 13 + campaignName: appownertest_Reconfigure_Reconfigure + certificationName: appownertest_Reconfigure_Reconfigure - lmcneil (Logan McNeil) + certifier: lmcneil (Logan McNeil) + comments: '' + dueIn: 60 Days + enddate: '2020-09-18 20:42:00' + id: 26 + progress: 0% + startdate: '2020-07-20 20:42:00' + status: New + type: Application Owner + certifierUsername: lmcneil + displayCount: 7 + errorCode: '0' + max: '2' + msg: successful + offset: '0' + refreshProgress: 'Y' + status: new,fullyexecuted,inprogress + totalCount: 7 + /discontinueCampaign: + post: + tags: + - campaigns + summary: Discontinue Campaigns and Certifications + description: |- + This API discontinues certification and campaign. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `campaignid` + `verifier` + Optional params: + `certkey` + operationId: discontinueCampaignsAndCertifications + requestBody: + content: + application/json: + schema: + type: object + properties: + campaignid: + type: string + example: '2' + certkey: + type: string + example: '1' + verifier: + type: string + example: admin + examples: + Discontinue Campaigns and Certifications: + value: + campaignid: '2' + certkey: '1' + verifier: admin + responses: + '200': + description: Discontinue Campaigns and Certifications + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 23 Jul 2020 22:56:03 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=94589b88-cb05-4e05-a11d-dc62e85bb238; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignid: + type: string + example: '2' + certkey: + type: string + example: '1' + errorCode: + type: string + example: '0' + msg: + type: string + example: Discontinued + examples: + Discontinue Campaigns and Certifications: + value: + campaignid: '2' + certkey: '1' + errorCode: '0' + msg: Discontinued + /reAssignCertification: + post: + tags: + - campaigns + summary: Reassign Certification + description: |- + This API is used to reassign certification to a different user or certifier. The user making this update must be an administrator, a campaign owner or its delegates. + Note: This is applicable only for User Manager, Entitlement Owner, and Application Owner campaigns. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `updateuser` (can be Admin/Campaign Owner/Delegates) + `campaignid`- Campaign ID or the primary key of the campaign table. + `certkey`- Certification key or the primary key of the certification table. + `newassignee`- New certifier or user to whom the certification will be assigned. + Optional params: + `reassignComments`- Comments for reassigning the certification. + operationId: reassignCertification + requestBody: + content: + application/json: + schema: + type: object + properties: + certifierUsername: + type: string + example: lmcneil + max: + type: string + example: '2' + offset: + type: string + example: '0' + refreshProgress: + type: string + example: 'Y' + status: + type: string + example: new,fullyexecuted,inprogress + examples: + Reassign Certification: + value: + certifierUsername: lmcneil + max: '2' + offset: '0' + refreshProgress: 'Y' + status: new,fullyexecuted,inprogress + responses: + '200': + description: Reassign Certification + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Tue, 21 Jul 2020 05:13:34 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=8a56ec8d-a73d-4fd4-b58d-7cb6d0034075; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + campaignid: + type: string + example: '405' + certkey: + type: string + example: '3468' + newassignee: + type: string + example: SAOwner2' + reassignComments: + type: string + example: Tim's Reassign Comment + updateuser: + type: string + example: CampOwner' + examples: + Reassign Certification: + value: + campaignid: '405' + certkey: '3468' + newassignee: SAOwner2' + reassignComments: Tim's Reassign Comment + updateuser: CampOwner' + /sapSODEvaluation: + post: + tags: + - sod + summary: SoD Evaluation for SAP Functions + description: |- + This API can be used to evaluate SOD for new SAP role that is being requested for a user based on the selected ruleset. (If no ruleset is selected, it uses the default ruleset) + Mandatory params: + `sapRoles` - All the SAP Roles delimited by “###” that will be used for SoD Evaluation (input list should contain existing as well as the new roles that need to be provisioned). + `newsapRoles` - Should contain SAP Roles for which the result should be filtered, e.g. results could be provided only on newly added roles. + `endpoint` - Name of the Endpoint corresponding to the Security System. + Optional params: + `ruleset` - Ruleset name, if not provided, system will use the default ruleset. + `account` - Account name to which the SAP roles will be provisioned. + The `Authorization` must have `Bearer` followed by `Token`. + operationId: sodEvaluationForSapFunctions + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + account: + type: string + example: johndoe + endpoint: + type: string + example: System1 + newsapRoles: + type: string + example: NEW_SAP_ROLE + ruleset: + type: string + example: System1 + sapRoles: + type: string + example: SAP_ROLE1###SAP_ROLE2 + examples: + SoD Evaluation for SAP Functions: + value: + account: johndoe + endpoint: System1 + newsapRoles: NEW_SAP_ROLE + ruleset: System1 + sapRoles: SAP_ROLE1###SAP_ROLE2 + responses: + '200': + description: '' + /sodEvaluation: + post: + tags: + - sod + summary: SoD Evaluation for Non - SAP Functions + description: "This API can be used to evaluate SODs for entitlements with the same name.\n\n**Mandatory Parameters**:\n\n\\* `user` - account name \n\\* entitlement JSON\n\nStartFragment\n\n{\_\_\_\_\n\n\"user\":\_\"soduser971\",\n\n\"entitlementJSON\":\_{\_\n\n\_\"Data\":\_\\[\n\n\_{\n\n\_\"Endpoint\":\_\"SODendpoint2\",\n\n\_\_\"EntitlementType\":\_\"NewPandC\",\n\n\_\_\_\"ExistingEntitlementsKeys\":\_\\[\n\n\_\_\_\_\"635216\",\n\n\_\_\_\_\"635217\",\_\n\n\_\_\_\_\_\"635218\"\_\n\n\_\_\_\_\_\\],\n\n\_\"NewEntitlementsKeys\":\_\\[\n\n\_\"635215\",\n\n\_\"635214\"\_\_\n\n\_\_\_\\]\n\n\_\_\_},\n\n\_\_\_{\n\n\_\_\"Endpoint\":\_\"SODendpoint2\",\n\n\_\_\"EntitlementType\":\_\"NewPandC\",\_\_\_\n\n\_\_\_\"ExistingEntitlementsKeys\":\_\\[\_\_\_\n\n\_\_\_\_\"635216\",\_\_\n\n\_\_\_\_\_\"635217\",\_\_\_\_\n\n\_\_\_\_\_\"635218\"\_\_\_\_\n\n\_\_\_\_\_\_\\],\_\n\n\_\_\_\_\"NewEntitlementsKeys\":\_\\[\_\_\_\_\_\_\_\n\n\_\_\_\_\"635215\",\_\n\n\_\_\_\_\"635214\"\_\_\n\n\_\_\_\_\_\_\\]\_\_\_\_\n\n\_\_\_\_\_\_}\_\n\n\_\_\_\_\_\_\\]\_\n\n\_\_\_}\n\n}\n\nEndFragment\n\n \n \n**HEADERS**\n\nEndFragment\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\n**Optional parameters**:\n\n`Ruleset - ExistingEntitlementsKeys/NewEntitlementsKeys -`These parameters are available from Release v2022.0. \nThe SODEvaluation API takes the input parameters in the following order:\n\n\\* Key of the entitlement \n\\* Name of the entitlement\n\nThe Key of the entitlement takes precedence to check SODs during access request to avoid the failure of duplicate entitlements so that the SOD risks are displayed if exists. If the entitlement key is not passed in the API, then the entitlement name is considered." + operationId: sodEvaluationForNonSapFunctions + requestBody: + content: + application/json: + schema: + type: object + properties: + entitlementJSON: + type: object + properties: + Data: + type: array + items: + type: object + properties: + Endpoint: + type: string + example: SODendpoint2 + EntitlementType: + type: string + example: NewPandC + ExistingEntitlementsKeys: + type: array + items: + type: string + example: '635216' + example: + - '635216' + - '635217' + - '635218' + NewEntitlementsKeys: + type: array + items: + type: string + example: '635215' + example: + - '635215' + - '635214' + example: + - Endpoint: SODendpoint2 + EntitlementType: NewPandC + ExistingEntitlementsKeys: + - '635216' + - '635217' + - '635218' + NewEntitlementsKeys: + - '635215' + - '635214' + - Endpoint: SODendpoint2 + EntitlementType: NewPandC + ExistingEntitlementsKeys: + - '635216' + - '635217' + - '635218' + NewEntitlementsKeys: + - '635215' + - '635214' + user: + type: string + example: soduser971 + examples: + SoD Evaluation for Non - SAP Functions: + value: + entitlementJSON: + Data: + - Endpoint: SODendpoint2 + EntitlementType: NewPandC + ExistingEntitlementsKeys: + - '635216' + - '635217' + - '635218' + NewEntitlementsKeys: + - '635215' + - '635214' + - Endpoint: SODendpoint2 + EntitlementType: NewPandC + ExistingEntitlementsKeys: + - '635216' + - '635217' + - '635218' + NewEntitlementsKeys: + - '635215' + - '635214' + user: soduser971 + responses: + '200': + description: SoD Evaluation for Non - SAP Functions / SoD Evaluation for Non - SAP Functions(riskSODEvaluationByUser) / SOD Evaluation for Non-SAP Duplicate Entitlements + headers: + Date: + schema: + type: string + example: Mon, 19 Sep 2022 12:34:06 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a0746f02-c6f0-4330-8831-bdb012cde87e; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: SUCCESS + result: + anyOf: + - type: object + properties: + SOD: + type: array + items: + type: object + properties: + Assigned_MitigatingControls: + type: array + items: {} + example: [] + Available_MitigatingControls: + type: array + items: {} + example: [] + Description: + type: string + example: '' + Functions: + type: array + items: + type: object + properties: + Description: + type: string + example: '' + Entitlements: + type: array + items: + type: object + properties: + Entitlement: + type: string + example: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: + type: string + example: '' + EntitlementDisplayName: + type: string + example: '' + ParentRole: + type: string + example: '[Accountant]' + Role: + type: string + example: Accountant + example: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: + type: string + example: 'GL: Enter Journal Entry' + example: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + Priority: + type: number + example: 1 + Risk: + type: string + example: 'GL: Enter Journal Entry conflicts with PTP: Create Invoices' + RiskId: + type: number + example: 1762 + example: + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with PTP: Create Invoices' + RiskId: 1762 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with GL: Post Journal Entry' + RiskId: 1763 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Mass Allocate Journal Entries' + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + Priority: 1 + Risk: 'GL: Mass Allocate Journal Entries conflicts with GL: Enter Journal Entry' + RiskId: 1764 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Business Asset Accounting: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'AM: Assets Depreciation' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with AM: Assets Depreciation' + RiskId: 1769 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Mass Allocate Journal Entries' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with GL: Mass Allocate Journal Entries' + RiskId: 1773 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Business Asset Accounting: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'AM: Assets Depreciation' + Priority: 1 + Risk: 'GL: Post Journal Entry conflicts with AM: Assets Depreciation' + RiskId: 1775 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Mass Allocate Journal Entries' + Priority: 1 + Risk: 'GL: Post Journal Entry conflicts with GL: Mass Allocate Journal Entries' + RiskId: 1780 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Payment Printing Event: Create Positive Pay File: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Open Close Periods' + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + Priority: 0 + Risk: 'GL: Open Close Periods conflicts with GL: Enter Journal Entry' + RiskId: 1781 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Payment Printing Event: Create Positive Pay File: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Open Close Periods' + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + Priority: 3 + Risk: 'GL: Open Close Periods conflicts with GL: Post Journal Entry' + RiskId: 1782 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Process: Journals: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'OTC: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Record Intercompany Receipt Event: Record Intercompany Receipt: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'OTC: Enter Customer Receipts' + Priority: 1 + Risk: 'OTC: Enter Journal Entry conflicts with OTC: Enter Customer Receipts' + RiskId: 1821 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Record Intercompany Receipt Event: Record Intercompany Receipt: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'OTC: Enter Customer Receipts' + Priority: 1 + Risk: 'GL: Post Journal Entry conflicts with OTC: Enter Customer Receipts' + RiskId: 1823 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + - Description: '' + Entitlements: + - Entitlement: '[Process: Intercompany Payment/Settlement: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Print Checks' + Priority: 1 + Risk: 'PTP: Create Invoices conflicts with PTP: Print Checks' + RiskId: 1848 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + - Description: '' + Entitlements: + - Entitlement: '[Procurement Mass Close Event: Mass Close Procurement Documents: Initiate, Procurement Roll Forward: Roll Forward Procurement Documents: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Payables Transactions' + Priority: 1 + Risk: 'PTP: Create Invoices conflicts with PTP: Payables Transactions' + RiskId: 1866 + - type: array + items: + type: object + properties: + ACCOUNT: + type: number + example: 2 + ENTLIST: + type: array + items: + type: string + example: 4351776###927###4359855###4359855###Accountant + example: + - 4351776###927###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + MC: + type: string + RISKS: + type: number + example: 1762 + example: + - ACCOUNT: 2 + ENTLIST: + - 4351776###927###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + MC: null + RISKS: 1762 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1763 + - ACCOUNT: 2 + ENTLIST: + - 4351760###891###4359855###4359855###Accountant + - 4351759###891###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4352569###891###4359855###4359855###Accountant + - 4351763###891###4359855###4359855###Accountant + - 4351761###891###4359855###4359855###Accountant + - 4351762###891###4359855###4359855###Accountant + MC: null + RISKS: 1764 + - ACCOUNT: 2 + ENTLIST: + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4352568###942###4359855###4359855###Accountant + MC: null + RISKS: 1769 + - ACCOUNT: 2 + ENTLIST: + - 4351760###891###4359855###4359855###Accountant + - 4351759###891###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4352569###891###4359855###4359855###Accountant + - 4351763###891###4359855###4359855###Accountant + - 4351761###891###4359855###4359855###Accountant + - 4351762###891###4359855###4359855###Accountant + MC: null + RISKS: 1773 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4352568###942###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1775 + - ACCOUNT: 2 + ENTLIST: + - 4351760###891###4359855###4359855###Accountant + - 4351759###891###4359855###4359855###Accountant + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4352569###891###4359855###4359855###Accountant + - 4351763###891###4359855###4359855###Accountant + - 4351761###891###4359855###4359855###Accountant + - 4351762###891###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1780 + - ACCOUNT: 2 + ENTLIST: + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4351764###894###4359855###4359855###Accountant + MC: null + RISKS: 1781 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4351764###894###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1782 + - ACCOUNT: 2 + ENTLIST: + - 4351765###907###4359855###4359855###Accountant + - 4352572###916###4359855###4359855###Accountant + MC: null + RISKS: 1821 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4351765###907###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1823 + - ACCOUNT: 2 + ENTLIST: + - 4351776###927###4359855###4359855###Accountant + - 4352571###956###4359855###4359855###Accountant + MC: null + RISKS: 1848 + - ACCOUNT: 2 + ENTLIST: + - 4351776###960###4359855###4359855###Accountant + - 4351771###960###4359855###4359855###Accountant + - 4351776###927###4359855###4359855###Accountant + - 4351769###960###4359855###4359855###Accountant + MC: null + RISKS: 1866 + - type: object + properties: + SOD: + type: array + items: + type: object + properties: + Assigned_MitigatingControls: + type: array + items: {} + example: [] + Available_MitigatingControls: + type: array + items: {} + example: [] + Description: + type: string + example: RiskDepth2 + Functions: + type: array + items: + type: object + properties: + Description: + type: string + example: test + Entitlements: + type: array + items: {} + example: [] + FunctionName: + type: string + example: FunctionDepthLevel2 + example: + - Description: test + Entitlements: [] + FunctionName: FunctionDepthLevel2 + Priority: + type: number + example: 2 + Risk: + type: string + example: RiskDepth2 + RiskId: + type: number + example: 3215 + example: + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: RiskDepth2 + Functions: + - Description: test + Entitlements: [] + FunctionName: FunctionDepthLevel2 + Priority: 2 + Risk: RiskDepth2 + RiskId: 3215 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: RiskDepth3 + Functions: + - Description: oiu + Entitlements: [] + FunctionName: FunctionDepthLevel3 + Priority: 2 + Risk: RiskDepth3 + RiskId: 3216 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: risk 971 + Functions: + - Description: FA1 + Entitlements: [] + FunctionName: Function971 + Priority: 2 + Risk: Risk971 + RiskId: 3224 + examples: + SOD Evaluation for Non-SAP Duplicate Entitlements: + value: + errorCode: '0' + message: SUCCESS + result: + SOD: + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: RiskDepth2 + Functions: + - Description: test + Entitlements: [] + FunctionName: FunctionDepthLevel2 + Priority: 2 + Risk: RiskDepth2 + RiskId: 3215 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: RiskDepth3 + Functions: + - Description: oiu + Entitlements: [] + FunctionName: FunctionDepthLevel3 + Priority: 2 + Risk: RiskDepth3 + RiskId: 3216 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: risk 971 + Functions: + - Description: FA1 + Entitlements: [] + FunctionName: Function971 + Priority: 2 + Risk: Risk971 + RiskId: 3224 + SoD Evaluation for Non - SAP Functions: + value: + errorCode: '0' + message: SUCCESS + result: + SOD: + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with PTP: Create Invoices' + RiskId: 1762 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with GL: Post Journal Entry' + RiskId: 1763 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Mass Allocate Journal Entries' + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + Priority: 1 + Risk: 'GL: Mass Allocate Journal Entries conflicts with GL: Enter Journal Entry' + RiskId: 1764 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Business Asset Accounting: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'AM: Assets Depreciation' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with AM: Assets Depreciation' + RiskId: 1769 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Mass Allocate Journal Entries' + Priority: 1 + Risk: 'GL: Enter Journal Entry conflicts with GL: Mass Allocate Journal Entries' + RiskId: 1773 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Business Asset Accounting: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'AM: Assets Depreciation' + Priority: 1 + Risk: 'GL: Post Journal Entry conflicts with AM: Assets Depreciation' + RiskId: 1775 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Mass Allocate Journal Entries' + Priority: 1 + Risk: 'GL: Post Journal Entry conflicts with GL: Mass Allocate Journal Entries' + RiskId: 1780 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Payment Printing Event: Create Positive Pay File: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Open Close Periods' + - Description: '' + Entitlements: + - Entitlement: '[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Enter Journal Entry' + Priority: 0 + Risk: 'GL: Open Close Periods conflicts with GL: Enter Journal Entry' + RiskId: 1781 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Payment Printing Event: Create Positive Pay File: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Open Close Periods' + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + Priority: 3 + Risk: 'GL: Open Close Periods conflicts with GL: Post Journal Entry' + RiskId: 1782 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Process: Journals: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'OTC: Enter Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Record Intercompany Receipt Event: Record Intercompany Receipt: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'OTC: Enter Customer Receipts' + Priority: 1 + Risk: 'OTC: Enter Journal Entry conflicts with OTC: Enter Customer Receipts' + RiskId: 1821 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'GL: Post Journal Entry' + - Description: '' + Entitlements: + - Entitlement: '[Record Intercompany Receipt Event: Record Intercompany Receipt: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'OTC: Enter Customer Receipts' + Priority: 1 + Risk: 'GL: Post Journal Entry conflicts with OTC: Enter Customer Receipts' + RiskId: 1823 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + - Description: '' + Entitlements: + - Entitlement: '[Process: Intercompany Payment/Settlement: Modify]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Print Checks' + Priority: 1 + Risk: 'PTP: Create Invoices conflicts with PTP: Print Checks' + RiskId: 1848 + - Assigned_MitigatingControls: [] + Available_MitigatingControls: [] + Description: '' + Functions: + - Description: '' + Entitlements: + - Entitlement: '[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Create Invoices' + - Description: '' + Entitlements: + - Entitlement: '[Procurement Mass Close Event: Mass Close Procurement Documents: Initiate, Procurement Roll Forward: Roll Forward Procurement Documents: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]' + EntitlementDescription: '' + EntitlementDisplayName: '' + ParentRole: '[Accountant]' + Role: Accountant + FunctionName: 'PTP: Payables Transactions' + Priority: 1 + Risk: 'PTP: Create Invoices conflicts with PTP: Payables Transactions' + RiskId: 1866 + SoD Evaluation for Non - SAP Functions(riskSODEvaluationByUser): + value: + errorCode: '0' + message: SUCCESS + result: + - ACCOUNT: 2 + ENTLIST: + - 4351776###927###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + MC: null + RISKS: 1762 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1763 + - ACCOUNT: 2 + ENTLIST: + - 4351760###891###4359855###4359855###Accountant + - 4351759###891###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4352569###891###4359855###4359855###Accountant + - 4351763###891###4359855###4359855###Accountant + - 4351761###891###4359855###4359855###Accountant + - 4351762###891###4359855###4359855###Accountant + MC: null + RISKS: 1764 + - ACCOUNT: 2 + ENTLIST: + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4352568###942###4359855###4359855###Accountant + MC: null + RISKS: 1769 + - ACCOUNT: 2 + ENTLIST: + - 4351760###891###4359855###4359855###Accountant + - 4351759###891###4359855###4359855###Accountant + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4352569###891###4359855###4359855###Accountant + - 4351763###891###4359855###4359855###Accountant + - 4351761###891###4359855###4359855###Accountant + - 4351762###891###4359855###4359855###Accountant + MC: null + RISKS: 1773 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4352568###942###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1775 + - ACCOUNT: 2 + ENTLIST: + - 4351760###891###4359855###4359855###Accountant + - 4351759###891###4359855###4359855###Accountant + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4352569###891###4359855###4359855###Accountant + - 4351763###891###4359855###4359855###Accountant + - 4351761###891###4359855###4359855###Accountant + - 4351762###891###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1780 + - ACCOUNT: 2 + ENTLIST: + - 4351775###890###4359855###4359855###Accountant + - 4351755###890###4359855###4359855###Accountant + - 4351764###894###4359855###4359855###Accountant + MC: null + RISKS: 1781 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4351764###894###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1782 + - ACCOUNT: 2 + ENTLIST: + - 4351765###907###4359855###4359855###Accountant + - 4352572###916###4359855###4359855###Accountant + MC: null + RISKS: 1821 + - ACCOUNT: 2 + ENTLIST: + - 4351768###892###4359855###4359855###Accountant + - 4351758###892###4359855###4359855###Accountant + - 4351765###907###4359855###4359855###Accountant + - 4351766###892###4359855###4359855###Accountant + MC: null + RISKS: 1823 + - ACCOUNT: 2 + ENTLIST: + - 4351776###927###4359855###4359855###Accountant + - 4352571###956###4359855###4359855###Accountant + MC: null + RISKS: 1848 + - ACCOUNT: 2 + ENTLIST: + - 4351776###960###4359855###4359855###Accountant + - 4351771###960###4359855###4359855###Accountant + - 4351776###927###4359855###4359855###Accountant + - 4351769###960###4359855###4359855###Accountant + MC: null + RISKS: 1866 + /addMCRiskAccount: + post: + tags: + - sod + summary: Add Mitigating Control Risk Account + description: |- + This API can be used to create a mitigating control association for a user-account which has SOD violation. + Mandatory params: + `mitigatingControl` - Mitigating control name. + `approver` - User name of the user approving the mitigating control association. + Optional params: + `ruleset` - Ruleset name + `riskname` - Risk name + `endpoint` - Endpoint name + `account` - Account Name, `endpoint` needs to be populated too + `startDate` - MM-dd-yyyy, if left null, current date will be used as start date + `endDate` - MM-dd-yyyy, if left null, 12-31-9999 will be used as end date + The `Authorization` must have `Bearer` followed by `Token`. + operationId: addMitigatingControlRiskAccount + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + account: + type: string + example: johndoe + approver: + type: string + example: dbailey + endDate: + type: string + example: 12-12-2018 + endpoint: + type: string + example: Endpoint1 + mitigatingControl: + type: string + example: P2414 + riskname: + type: string + example: '0105' + ruleset: + type: string + example: Global + startDate: + type: string + example: 09-09-2018 + examples: + Add Mitigating Control Risk Account: + value: + account: johndoe + approver: dbailey + endDate: 12-12-2018 + endpoint: Endpoint1 + mitigatingControl: P2414 + riskname: '0105' + ruleset: Global + startDate: 09-09-2018 + responses: + '200': + description: Add Mitigating Control Risk Account + headers: + Date: + schema: + type: string + example: Thu, 13 Sep 2018 02:09:59 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=f6eb9700-7984-4757-b34b-d3652f6fdfbf; Path=/ + content: + application/json: + schema: + type: object + properties: + message: + type: string + example: Success-Mitigating Control Updated, + examples: + Add Mitigating Control Risk Account: + value: + message: Success-Mitigating Control Updated, + /uploadSODRuleset: + post: + tags: + - sod + summary: Upload SOD Ruleset + description: |- + The **uploadSODRuleset** API uses the Ruleset upload file to import rulesets into the User Interface (UI). + - The ruleset upload file exceeding the size of 10MB is not supported. + - Use only .xls or .xlsx file format for the ruleset upload. Do not use any .zip file. + + **Mandatory parameters:** + `Upload SOD Ruleset` - Select to browse a (.xls) file for upload. Once the file is uploaded, the name of the file that you attached is displayed. + `existingRuleset` - Specify the value as yes if you are using the existing ruleset. + `rulesetName` - Specify the name of the existing ruleset. + **Other Parameters:** + - `deleteExistingMCAssociations` - Specify the value as yes/no if you wish to delete any existing mitigating controls associations. - `deleteExistingFunctionAssociations` - Specify the value as yes to delete the existing function associations, else specify the value as No. - `createmissingEntitlements` - Specify the value as yes to create missing entitlements, else specify the value as No. + operationId: uploadSodRuleset + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + createMissingEntitlements: + type: string + example: 'yes' + deleteExistingFunctionAssociations: + type: string + example: 'no' + deleteExistingMCAssociations: + type: string + example: 'no' + existingRuleset: + type: string + example: 'no' + rulesetName: + type: string + example: Ruleset0210 + uploadfile: + type: string + format: binary + responses: + '200': + description: Upload SOD Ruleset + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 03 Oct 2023 13:39:44 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a08874f2-5a1c-42c1-8cf1-5d9f261a93ca; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + msg: + type: string + example: Background job has started and email will be sent after the upload + examples: + Upload SOD Ruleset: + value: + msg: Background job has started and email will be sent after the upload + security: + - bearerAuth: [] + /getSavSecurityQuestions: + post: + tags: + - security + summary: Fetch Security Questions + description: |- + This API is used to get the Security Questions defined in SSM + Optional params: + `max`,`offset`, `questiongroup` + The `Authorization` must have `Bearer` followed by `Token`. + operationId: fetchSecurityQuestions + requestBody: + content: + application/json: + schema: + type: object + properties: + questiongroup: + type: string + example: Personal + examples: + Fetch Security Questions: + value: + questiongroup: Personal + responses: + '200': + description: Fetch Security Questions1 / Fetch Security Questions2 + headers: + Date: + schema: + type: string + example: Sat, 15 Sep 2018 01:14:54 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=ecb5f969-9dca-4ded-917d-172fba58a9af; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + message: + type: string + example: successful + questions: + type: array + items: + type: object + properties: + question: + type: string + example: What is your mother's maiden name? + questiongroup: + type: string + example: Personal + example: + - question: What is your mother's maiden name? + questiongroup: Personal + - question: What is your first school name? + questiongroup: Personal + - question: What is your first Pet's name? + questiongroup: Personal + - question: What is your favorite food? + questiongroup: Favorites + - question: What is your favorite color? + questiongroup: Favorites + - question: What is your favorite holiday destination? + questiongroup: Favorites + examples: + Fetch Security Questions1: + value: + errorCode: '0' + message: successful + questions: + - question: What is your mother's maiden name? + questiongroup: Personal + - question: What is your first school name? + questiongroup: Personal + - question: What is your first Pet's name? + questiongroup: Personal + - question: What is your favorite food? + questiongroup: Favorites + - question: What is your favorite color? + questiongroup: Favorites + - question: What is your favorite holiday destination? + questiongroup: Favorites + Fetch Security Questions2: + value: + errorCode: '0' + message: successful + questions: + - question: What is your mother's maiden name? + questiongroup: Personal + - question: What is your first school name? + questiongroup: Personal + - question: What is your first Pet's name? + questiongroup: Personal + /fetchSavUserQuestions: + post: + tags: + - security + summary: Fetch User Security Questions + description: |- + This API can be used to fetch the security questions selected by user during registration + Mandatory params: + `username` OR `propertytosearch`- Any user property like email, manager, username, firstname, lastname, preferedFirstName, customproperty + The `Authorization` must have `Bearer` followed by `Token`. + operationId: fetchUserSecurityQuestions + requestBody: + content: + application/json: + schema: + type: object + properties: + email: + type: string + example: john.doe@saviynt.com + propertytosearch: + type: string + example: email + examples: + Fetch User Security Questions: + value: + email: john.doe@saviynt.com + propertytosearch: email + responses: + '200': + description: Fetch User Security Questions Example2 / Fetch User Security Questions Example1 + headers: + Date: + schema: + type: string + example: Fri, 14 Sep 2018 18:01:31 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=aca86828-df27-4607-a7a9-812cafd09992; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + questions: + type: array + items: + type: string + example: What is your favorite food? + example: + - What is your favorite food? + - What is your pet's name? + - What is your mother's maiden name? + - What is your favorite color? + examples: + Fetch User Security Questions Example1: + value: + errorCode: '0' + questions: + - What is your first Pet's name? + - What is your favorite food? + Fetch User Security Questions Example2: + value: + errorCode: '0' + questions: + - What is your favorite food? + - What is your pet's name? + - What is your mother's maiden name? + - What is your favorite color? + /validateSecurityAnswers: + post: + tags: + - security + summary: Validate User Security Answers + description: |- + This API is used to validate the security answers of user with answers entered during registration + Mandatory params: + `answers` - list of questions and answers to be validated + `username` OR `propertytosearch` - Any user property like email, manager, username, firstname, lastname, preferedFirstName, customproperty + The `Authorization` must have `Bearer` followed by `Token`. + operationId: validateUserSecurityAnswers + requestBody: + content: + application/json: + schema: + type: object + properties: + answers: + type: array + items: + type: object + properties: + answer: + type: string + example: kitty + question: + type: string + example: What is your first Pet name? + example: + - answer: kitty + question: What is your first Pet name? + - answer: food + question: What is your favorite food? + email: + type: string + example: john.doe@saviynt.com + propertytosearch: + type: string + example: email + examples: + Validate User Security Answers: + value: + answers: + - answer: kitty + question: What is your first Pet name? + - answer: food + question: What is your favorite food? + email: john.doe@saviynt.com + propertytosearch: email + responses: + '200': + description: Validate Security Answers + headers: + Date: + schema: + type: string + example: Fri, 14 Sep 2018 22:31:39 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=fbc19214-e119-4e8e-947e-6c0a2fb3e809; Path=/ + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + validation: + type: string + example: successful + examples: + Validate Security Answers: + value: + errorCode: '0' + validation: successful + /createSavSecurityQuestions: + post: + tags: + - security + summary: Create Security Questions + description: |- + This API is used to create security questions in Saviynt. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `question` + `endpointfield` + `section` + Optional Params: + `description`, `questionorder`, `answertype` (by default 'FREETEXT'), `answerrequired` (by default 'false'), `answereditable`(by default 'true'), `defaultvalue`, `updateuser` + operationId: createSecurityQuestions + requestBody: + content: + application/json: + schema: + type: object + properties: + answereditable: + type: string + example: 'false' + answerrequired: + type: string + example: 'true' + answertype: + type: string + example: radio + defaultvalue: + type: string + example: sav123 + description: + type: string + example: desc....api + endpointfield: + type: string + example: customproperty29 + question: + type: string + example: what is your employeeid? + questionorder: + type: string + example: '3' + section: + type: string + example: Application Type + updateuser: + type: string + example: awsadmin + examples: + Create Security Questions: + value: + answereditable: 'false' + answerrequired: 'true' + answertype: radio + defaultvalue: sav123 + description: desc....api + endpointfield: customproperty29 + question: what is your employeeid? + questionorder: '3' + section: Application Type + updateuser: awsadmin + responses: + '200': + description: Create Security Questions + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 31 Dec 2020 21:37:41 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e02759e0-a4a0-4963-bd4d-b232621fd21e; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 0 + msg: + type: string + example: Success + examples: + Create Security Questions: + value: + errorcode: 0 + msg: Success + /createSavPasswordPolicy: + post: + tags: + - security + summary: Create Password Policy + description: "This API creates a password policy for your organization.\n\nThe `Authorization` must have a `Bearer` followed by a `Token`.\n\n**Mandatory Parameters**:\n\n- `policyname`: Specify a unique name for the policy. You can include names such as ApplicationPolicy to better identify the type of policy.\n- `expireafter`: Specify length of time until a user password expires and must be changed. You can enter only numeric values.\n \n\n**Optional Parameters**:\n\n- `description`: StartFragmentSpecify an optional description for the policy.\n- `scope`: Specify the application or user you wish to apply the policy to.\n - `APPLICATION`: Specify this option, if you want to assign the password policy to applications and cannot be used to validate passwords when users’ passwords are changed.\n - `USER`: Specify this option, if you want to assign the password policy at the user level. To change or reset user passwords in EIC, at least one password policy with USER scope must be available. This policy is invoked when a user password change or reset is initiated.\n- `regex`: You can specify regular expressions (regex) to define specific password patterns.\n- `maxrepetedcharacters`: Specify the maximum number of duplicate characters that a password can contain. For example, if you specify `2`, then a password is not accepted if any character is repeated more than two times. You can set a value between `1` and `10` numeric characters.\n- `minimumnumericcharacters`: Specify the minimum number of numeric characters that a password must contain. For example: if you specify `3`, then password should have at least 3 numbers. StartFragmentYou can set a value between `1` and `10` numeric characters.\n- `minimumspecialcharacter`: Specify the minimum number of special characters that a password must contain.\n- `minimumalphanumericcharacters`: Specify the minimum number of alphanumeric characters that a password must contain. For example, if minimum alphanumeric characters specified is `8` and if the password specified is 'j`ohn12`' then the password is not accepted as it is short of two characters in this case with the configured value of `8` characters.\n- `minimumuniquecharacters`: Specify the minimum number of unique characters that a password must contain. Unique characters do not take into consideration duplicate characters.\n- `minimumalphabetcharacters`: Specify the minimum number of alphabetic characters that a password must contain.\n- `minimumuppercasecharacters`: Specify the minimum number of uppercase letters that a password must contain. For example, if minimum uppercase characters are specified as 2 and if password specified is John123 then the password is not accepted as only 1 Uppercase letter is specified in this case.\n \n- `minimumlowercasecharacters`: Specify minimum number of lowercase letters that a password must contain. For example, if minimum lowercase characters are specified as 2 and if password specified is JOHn123 then the password is not accepted as only 1 lowercase letter is specified in this case.\n \n- `disallowlastpassword`: Specify the frequency to prevent users from using any previous passwords whose change or reset process was initiated from EIC and not from the target applications. For example, if you specify 10, then users are allowed to reuse a password only after using 10 unique passwords. You can set a value between 1 and 25 numeric characters.\n \n- `useblacklistdictionary`: Specify `YES` to enable the the password blacklist dictionary. A password is rejected if its value matches a term in a dictionary that you configure.\n \n- `blacklistedattributes`: Specify the user attributes query to prevent users from using their user or account information.\n \n- `minimumage`: Specify the minimum period, in hours to limit how frequently users can change the password. For example, if you enter\_2, then the user cannot change the password before\_2\_hours of creating the password.\n \n- `regexdescription`: Specify a custom regular expression error message if the end user password does not match the regex password policy configuration.\n \n- `sendnotification`: Specify `true` to send notifications to end users informing them of their upcoming password expiration. Notification emails can be sent to both user and account passwords.\n \n- notificationemailtemplate:\n- `daystonotify`: Specify the days, before user passwords expire (including service account owners) to send expiry notification email.\n- `primaryidentificationattr`: Specify the parameter to validate the identity of the calling user and make their details visible to the Helpdesk users.\n- `secondaryidentificationattr`: Specify the parameter to validate the identity of the calling user and make their details visible to the Helpdesk users.\n- `resetpasswordnotification`: You can send user password change or password reset notifications to end users. Specify the email template to customize the notification that the user receives.\n \n\n```\n, `minimumage`, `regexdescription`, `sendnotification`, `notificationemailtemplate`, `daystonotify`, `primaryidentificationattr`, `secondaryidentificationattr`, `resetpasswordnotification`\n\n ```\n\n\\-" + operationId: createPasswordPolicy + requestBody: + content: + application/json: + schema: + type: object + properties: + blacklistedattributes: + type: string + example: testkdkdkd + daystonotify: + type: string + example: '150' + description: + type: string + example: desc + disallowlastpassword: + type: string + example: '9' + expireafter: + type: string + example: '100' + maxrepetedcharacters: + type: string + example: '1' + minimumage: + type: string + example: '200' + minimumalphabetcharacters: + type: string + example: '6' + minimumalphanumericcharacters: + type: string + example: '4' + minimumlowercasecharacters: + type: string + example: '8' + minimumnumericcharacters: + type: string + example: '2' + minimumspecialcharacter: + type: string + example: '3' + minimumuniquecharacters: + type: string + example: '5' + minimumuppercasecharacters: + type: string + example: '7' + notificationemailtemplate: + type: string + example: ' failure email template' + policyname: + type: string + example: user password policy API 198 + primaryidentificationattr: + type: array + items: + type: string + example: username + example: + - username + - firstname + regex: + type: string + example: ^[a-zA-Z0-9]{6,14}$ + regexdescription: + type: string + example: regex desc + resetpasswordnotification: + type: string + example: Actionable Email + scope: + type: string + example: APPLICATION + secondaryidentificationattr: + type: array + items: + type: string + example: lastname + example: + - lastname + - email + sendnotification: + type: string + example: 'true' + useblacklistdictionary: + type: string + example: 'NO' + examples: + Create Password Policy: + value: + blacklistedattributes: testkdkdkd + daystonotify: '150' + description: desc + disallowlastpassword: '9' + expireafter: '100' + maxrepetedcharacters: '1' + minimumage: '200' + minimumalphabetcharacters: '6' + minimumalphanumericcharacters: '4' + minimumlowercasecharacters: '8' + minimumnumericcharacters: '2' + minimumspecialcharacter: '3' + minimumuniquecharacters: '5' + minimumuppercasecharacters: '7' + notificationemailtemplate: ' failure email template' + policyname: user password policy API 198 + primaryidentificationattr: + - username + - firstname + regex: ^[a-zA-Z0-9]{6,14}$ + regexdescription: regex desc + resetpasswordnotification: Actionable Email + scope: APPLICATION + secondaryidentificationattr: + - lastname + - email + sendnotification: 'true' + useblacklistdictionary: 'NO' + responses: + '200': + description: Create Password Policy + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Thu, 31 Dec 2020 21:22:20 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e02759e0-a4a0-4963-bd4d-b232621fd21e; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 0 + msg: + type: string + example: success + examples: + Create Password Policy: + value: + errorcode: 0 + msg: success + /changePassword: + post: + tags: + - users + summary: Change User Password + description: |- + This API reset the password for a user in EIC. Considering the input parameters, the value of the new password should be supplied as Password and the Username should correspond to the user whose password is being reset. + The Authorization must have a `Bearer` followed by a `Token`. + **Mandatory Parameters**: + - `username`: Specify the name of the user for whom you need to change the password. - `password`: Type your new password. + + **Optional Parameters**: + - `changePasswordAssociatedAccounts`: Once the change password request is initiated, you can specify `true` to create the corresponding Change Password task. You can specify `false` to only update the user password. The default value is `true`. - `endpoint`: If the `changePasswordAssociatedAccounts` parameter is set to `true` then specify the list of endpoints (comma-separated). - `validateagainstpolicy`: Specify `Y` to ensure that your new password conforms to the USER scope password policy. If you do not want to apply the password policy, then specify `N`. The default value is `Y`. + - `updateUserPassword`: If the `changePasswordAssociatedAccounts` parameter is set to `true` then specify true to update the user password and create the corresponding Change Password task. Specify `false` to create only the Change Password task. The default value is `true`. - `setarstasksource` - Specify `true` to set the source column in the arstasks table with the `changeOwnPasswordFromAPI` value. When the source column in arstasks table is set to the `changeOwnPasswordFromAPI` value then the **pwdLastSet** parameter is not set to **0** for Active Directory (AD). The default value is `false`. + **Note**: If your AD password has expired (**pwdLastSet = 0**), you are forced to choose a new password in EIC on the next login. + operationId: changeUserPassword + requestBody: + content: + application/x-www-form-urlencoded: + schema: + type: object + properties: + changePasswordAssociatedAccounts: + type: string + example: 'true' + endpoint: + type: string + example: Workday + password: + type: string + example: password + setarstasksource: + type: string + example: 'true' + updateUserPassword: + type: string + example: 'false' + username: + type: string + example: john + validateagainstpolicy: + type: string + example: 'Y' + examples: + Change User Password: + value: + changePasswordAssociatedAccounts: 'true' + endpoint: Workday + password: password + setarstasksource: 'true' + updateUserPassword: 'false' + username: john + validateagainstpolicy: 'Y' + responses: + '200': + description: Change User Password 2 + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: http://localhost + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Fri, 31 Jul 2020 21:50:52 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: same-origin + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=132f53b6-07e3-4845-bf82-e507151d8018; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubdomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + X-Frame-Options: + schema: + type: string + example: DENY + content: + application/json: + schema: + type: object + properties: + Status: + type: string + example: Success + TaskIDs: + type: array + items: + type: number + example: 79 + example: + - 79 + errorCode: + type: string + example: '0' + message: + type: string + example: Password updated successfully + examples: + Change User Password 2: + value: + Status: Success + TaskIDs: + - 79 + errorCode: '0' + message: Password updated successfully + /createUpdateTrigger: + post: + tags: + - jobs + summary: Create and Update Trigger + description: |- + This API call can be used to create and update a trigger for a particular "jobgroup" in SSM. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `jobname` + `triggername` + `jobgroup` + `cronexpression` + Optional params: + `valueMap` - sample for triggerChainJob - { "savtriggerorderform": "TESTCONN,WSRETRY", "onFailureForm": "Stop" } + To know more on list of parameters that can be passed in valueMap, see [Parameters for Job Trigger APIs](https://docs.saviyntcloud.com/bundle/EIC-Admin-v23x/page/Content/Chapter10-Job-Control-Panel/Adding-a-new-job.htm) + operationId: createAndUpdateTrigger + requestBody: + content: + application/json: + schema: + type: object + properties: + triggers: + type: array + items: + type: object + properties: + cronexpression: + type: string + example: 0 33 14 * * ? 2060 + jobgroup: + type: string + example: utility + jobname: + type: string + example: TriggerChainJob + triggername: + type: string + example: TriggerchainUI + valueMap: + type: object + properties: + onFailureForm: + type: string + example: Stop + savtriggerorderform: + type: string + example: TESTCONN,WSRETRY + example: + - cronexpression: 0 33 14 * * ? 2060 + jobgroup: utility + jobname: TriggerChainJob + triggername: TriggerchainUI + valueMap: + onFailureForm: Stop + savtriggerorderform: TESTCONN,WSRETRY + - cronexpression: 0 33 14 * * ? 2060 + jobgroup: utility + jobname: TriggerChainJob + triggername: TcAPI + valueMap: + onFailureForm: Continue + savtriggerorderform: TESTCONN,LAMPLM,WSRETRY + - cronexpression: 0 33 14 * * ? 2060 + jobgroup: utility + jobname: JRMRecommentationJob + triggername: PAA_Job + examples: + Create and Update Trigger: + value: + triggers: + - cronexpression: 0 33 14 * * ? 2060 + jobgroup: utility + jobname: TriggerChainJob + triggername: TriggerchainUI + valueMap: + onFailureForm: Stop + savtriggerorderform: TESTCONN,WSRETRY + - cronexpression: 0 33 14 * * ? 2060 + jobgroup: utility + jobname: TriggerChainJob + triggername: TcAPI + valueMap: + onFailureForm: Continue + savtriggerorderform: TESTCONN,LAMPLM,WSRETRY + - cronexpression: 0 33 14 * * ? 2060 + jobgroup: utility + jobname: JRMRecommentationJob + triggername: PAA_Job + responses: + '200': + description: Create and Update Trigger + headers: + Date: + schema: + type: string + example: Fri, 16 Sep 2022 13:03:50 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=131c0e32-9edf-419c-bd4c-77764a92d205; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Success + examples: + Create and Update Trigger: + value: + errorCode: '0' + msg: Success + security: + - bearerAuth: [] + /checkJobStatus: + post: + tags: + - jobs + summary: Check Job Status + description: "This API is used to fetch the status of any job other that Data Import Job.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`jobgroup`,\r\n`jobname`" + operationId: checkJobStatus + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + jobgroup: + type: string + example: Analytics + jobname: + type: string + example: AnalyticsJob + responses: + '200': + description: Check Job Status + headers: + Date: + schema: + type: string + example: Thu, 02 Aug 2018 22:04:59 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=68b0b4c6-5c76-4b74-964f-0a8b12a92c20; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: IN-PROGRESS + examples: + Check Job Status: + value: + errorCode: '0' + msg: IN-PROGRESS + /deleteTrigger: + post: + tags: + - jobs + summary: Delete Trigger + description: "This API call can be used to delete a trigger for a particular \"jobgroup\" in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`jobname`\r\n\r\nOptional params:\r\n\r\n`triggername`\r\n\r\n`jobgroup`" + operationId: deleteTrigger + requestBody: + content: + application/json: + schema: + type: object + properties: + jobgroup: + type: string + example: utility + jobname: + type: string + example: TriggerChainJob + triggername: + type: string + example: TCAPI + examples: + Delete Trigger: + value: + jobgroup: utility + jobname: TriggerChainJob + triggername: TCAPI + responses: + '200': + description: DeleteTriggers + headers: + Date: + schema: + type: string + example: Tue, 07 Aug 2018 18:39:43 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e814071b-eba9-45fe-9edc-38e3e834949a; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + examples: + DeleteTriggers: + value: + errorCode: 0 + msg: Success + /runJobTrigger: + post: + tags: + - jobs + summary: Run Job Trigger + description: |- + This API call can be used to run a job trigger in SSM. + The following cases illustrate different scenarios on the usage of the `analyticsAdvanceQuery` parameter in the API: + Case 1: When you configure the `"analyticsAdvanceQuery"` within the payload, set the "defaultActionForAnalytics" as "true", and then execute the control from the API, it overrides the default action and the advanced query configuration within the job trigger. + Case 2: When you configure the `"analyticsAdvanceQuery"` within the payload, set the "defaultActionForAnalytics" as "false", and then execute the control from the API without performing the default actions configured in the control, it overrides the default action and the advanced query configuration within the job trigger. + Case 3: When you do not configure both the `"analyticsAdvanceQuery"` and the "defaultActionForAnalytics", the default action will depend on the configuration provided in the analytics job trigger. + The following cases illustrate different scenarios on the usage of the `analyticsCategories` parameter in the API: + Case 1: When you set the "defaultActionForAnalytics" as "true" to perform default actions for analytics controls by executing the control from job API, it will override the default action configuration within the job trigger. + Case 2: When you set the "defaultActionForAnalytics" as "false" to not perform default actions for analytics controls by executing the control from job API, it will override the default action configuration within the job trigger. + Case 3: When the defaultActionForAnalytics parameter is not set in the payload, the default action will depend on the configuration provided in the analytics job trigger. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `jobname` + `triggername` + `jobgroup` + Optional params: + `valueMap` + `createJobIfDoesNotExist` - true/false + operationId: runJobTrigger + requestBody: + content: + application/json: + schema: + type: object + properties: + analyticsCategories: + type: string + example: trigger + defaultActionForAnalytics: + type: string + example: 'false' + jobgroup: + type: string + example: Analytics + jobname: + type: string + example: RunAllAnalyticsJob + triggername: + type: string + example: analytics_trigger + examples: + Run Job Trigger: + value: + analyticsCategories: trigger + defaultActionForAnalytics: 'false' + jobgroup: Analytics + jobname: RunAllAnalyticsJob + triggername: analytics_trigger + text/plain: + examples: + Run Job Trigger: + value: |- + { + "jobgroup": "Analytics", + "triggername":"analytics_trigger", + "jobname": "RunAllAnalyticsJob", + "analyticsCategories":"trigger", + } + responses: + '200': + description: Run Job Trigger / Runjobtrigger - class name package / Run Job Trigger - defaultActionForAnalytics set as true / Run Job Trigger - default action for analytics set as false in payload / Run Job Trigger - Not configuring "analyticsAdvanceQuery" and "defaultActionForAnalytics" / Analytics categories with default action set as true / Analytics categories with default action set as false / Analytics categories without adding default action for analytics + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://release-2022-0-qe.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Mon, 15 May 2023 10:33:16 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=02bbf218-c30c-4922-86d9-bfa030def042; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Starting Job + timestamp: + type: string + example: '2020-01-17 07:57:34' + examples: + Analytics categories with default action set as false: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-05-15 10:31:40' + Analytics categories with default action set as true: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-05-15 10:30:06' + Analytics categories without adding default action for analytics: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-05-15 10:33:13' + Run Job Trigger: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2020-01-17 07:57:34' + Run Job Trigger - Not configuring "analyticsAdvanceQuery" and "defaultActionForAnalytics": + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-05-09 06:49:54' + Run Job Trigger - default action for analytics set as false in payload: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-05-09 06:47:26' + Run Job Trigger - defaultActionForAnalytics set as true: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-05-09 06:42:19' + Runjobtrigger - class name package: + value: + errorCode: '0' + msg: Starting Job + timestamp: '2023-04-15 17:18:34' + security: + - bearerAuth: [] + /fetchJobMetadata: + post: + tags: + - jobs + summary: Fetch Job Metadata + description: "This API call return job metadata for the last run of a job in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`jobname`\r\n\r\nOptional params:\r\n\r\n`triggername`\r\n\r\n`jobgroup`\r\n\r\n***Note***: The structure of the result param in response can change based upon the Job History saved in SSM" + operationId: fetchJobMetadata + requestBody: + content: + application/json: + schema: + type: object + properties: + jobname: + type: string + example: TestConnectionsJob + jobstartdate: + type: string + example: '2020-01-17 07:57:34' + triggername: + type: string + example: testconn + examples: + Fetch Job Metadata: + value: + jobname: TestConnectionsJob + jobstartdate: '2020-01-17 07:57:34' + triggername: testconn + responses: + '200': + description: Fetch Job Metadata + headers: + Content-Length: + schema: + type: string + example: '0' + Date: + schema: + type: string + example: Wed, 12 Feb 2020 23:10:32 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + WWW-Authenticate: + schema: + type: string + example: Bearer + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 0 + msg: + type: string + example: Success + result: + type: object + properties: + TestConnectionsJob: + type: object + properties: + EndTime: + type: string + example: Fri Jan 17 07:54:57 UTC 2020 + JobCompleted: + type: string + example: Completed + Result: + type: string + example: '
DBTest000 : Connection Failed
Dbdb2 : Unknown database ''cisco''' + StartTime: + type: string + example: Fri Jan 17 07:54:36 UTC 2020 + examples: + Fetch Job Metadata: + value: + errorCode: 0 + msg: Success + result: + TestConnectionsJob: + EndTime: Fri Jan 17 07:54:57 UTC 2020 + JobCompleted: Completed + Result: '
DBTest000 : Connection Failed
Dbdb2 : Unknown database ''cisco''' + StartTime: Fri Jan 17 07:54:36 UTC 2020 + /createTriggers: + post: + tags: + - jobs + summary: createTrigger + description: This API creates a trigger for a job + operationId: createtrigger + requestBody: + content: + application/json: + schema: + type: array + items: + type: object + properties: + triggers: + type: array + items: + type: object + properties: + cronExp: + type: string + example: 0 33 14 * * ? 2060 + group: + type: string + example: GRAILS_JOBS + jobGroup: + type: string + example: utility + jobName: + type: string + example: AccEntUsageConsildateJob + name: + type: string + example: accEnt11 + valueMap: + type: object + properties: {} + example: + - cronExp: 0 33 14 * * ? 2060 + group: GRAILS_JOBS + jobGroup: utility + jobName: AccEntUsageConsildateJob + name: accEnt11 + valueMap: {} + example: + - triggers: + - cronExp: 0 33 14 * * ? 2060 + group: GRAILS_JOBS + jobGroup: utility + jobName: AccEntUsageConsildateJob + name: accEnt11 + valueMap: {} + examples: + createTrigger: + value: + - triggers: + - cronExp: 0 33 14 * * ? 2060 + group: GRAILS_JOBS + jobGroup: utility + jobName: AccEntUsageConsildateJob + name: accEnt11 + valueMap: {} + responses: + '200': + description: createTrigger + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-sod.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 29 Mar 2023 09:48:22 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=338a2ee3-db96-4858-9aa8-474b37282f91; Path=/; Secure; HttpOnly + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + accEnt11: + type: array + items: + type: string + example: success + example: + - success + examples: + createTrigger: + value: + accEnt11: + - success + security: + - bearerAuth: [] + /resumePauseJobs: + post: + tags: + - jobs + summary: resumePauseJobs + description: |- + Starting with Release v23.10, the resumePauseJobs API enables you to pause jobs based on their job type and job name. + When a job is paused, its status is displayed as Paused on the Job Control Panel page. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `action` + Optional params: + `triggername` + `jobname` + operationId: resumepausejobs + requestBody: + content: + application/json: + schema: + type: object + properties: + action: + type: string + example: RESUME + jobname: + type: string + example: ArchiveJob,TriggerChainJob + triggername: + type: string + example: GDPR + examples: + resumePauseJobs: + value: + action: RESUME + jobname: ArchiveJob,TriggerChainJob + triggername: GDPR + responses: + '200': + description: Pausing Job / Resume Job + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-azure.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Wed, 20 Sep 2023 04:21:46 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: user_name=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + text/plain: + examples: + Pausing Job: + value: Job(s) Paused successfully + Resume Job: + value: Job(s) Resumed successfully + security: + - bearerAuth: [] + /uploadSchemaFile: + post: + tags: + - utils + summary: Upload New File + description: |- + This API call can be used to upload the file in a specific location based on the property `job.ecm.imp.file.path` in InternalConfig.groovy. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `file` - file with any extension (Example - file with .csv/.xlsx extension) + `pathLocation` - Should be set to ***Datafiles*** + operationId: uploadNewFile + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + file: + type: string + format: binary + pathLocation: + type: string + example: SAV + responses: + '200': + description: Upload New File / Upload New File + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://scrum-utl-1.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Date: + schema: + type: string + example: Wed, 13 Oct 2021 18:07:20 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=48f5b083-7ec9-466c-93c0-a508a9ca2701; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: file Save Successfully + examples: + Upload New File: + value: + errorCode: '0' + msg: file Save Successfully + /checkImportStatus: + post: + tags: + - jobs + summary: Check Import Status + description: |- + This API is used to check the status of data import job. + Note: that at a time, only one import job can be run. + The `Authorization` must have `Bearer` followed by `Token` + No params + operationId: checkImportStatus + responses: + '200': + description: Check Import Status + headers: + Date: + schema: + type: string + example: Thu, 02 Aug 2018 20:48:32 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=5f2b0046-3db1-4549-ab13-b6737acab8aa; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + errorMessage: + type: string + example: '' + importStatus: + type: string + example: COMPLETED + examples: + Check Import Status: + value: + errorCode: '0' + errorMessage: '' + importStatus: COMPLETED + /forceComplete: + post: + tags: + - jobs + summary: Force Complete + description: |- + This API is used to terminate data import job. + The `Authorization` must have `Bearer` followed by `Token`. + No params + operationId: forceComplete + responses: + '200': + description: Force Complete + headers: + Date: + schema: + type: string + example: Thu, 02 Aug 2018 20:38:15 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=11cee914-a9c0-411f-9686-451913bef57b; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + errorMessage: + type: string + example: '' + status: + type: string + example: SUCCESS + examples: + Force Complete: + value: + errorCode: '0' + errorMessage: '' + status: SUCCESS + /testConnection: + post: + tags: + - connections + summary: Test Connection + description: |- + This API is used to save and test a connection. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `connectiontype, connectionName` _**OR**_ `connectionkey`(if both are passed connectionkey is considered) + Additional connection parameters can also be passed - + For example, for SAP Import, provide paramters - JCO_ASHOST, JCO_SYSNR, JCO_CLIENT, JCO_USER, PASSWORD, + This API is enhanced to update vaultconnection, and vaultconfiguration connection details. + From Release v23.10, if you specify the key value for header `response` as `standard,`a detailed error message is displayed in the Response that enables you to troubleshoot errors. + operationId: testConnection + requestBody: + content: + application/json: + examples: + Test Connection: + value: "\r\n 'connectiontype=\"AD\"' \\\r\n 'saveconnection=\"Y\"' \\\r\n 'connectionName=\"Active_Directory_DocAdmin\"' \\\r\n 'URL=\"LDAPS://saviyntdc01.saviyntlabs.org:636\"' \\\r\n 'USERNAME=\"username\"' \\\r\n 'PASSWORD=\"password\"' \\\r\n 'defaultSavRole=\"ROLE_UIADMIN,ROLE_TEST\"' \\\r\n 'emailTemplate=\"Email Template Name\"' \\\r\n 'sslCertificate=\"cert1\"'\r\n \"vaultconnection\": \"hashicorp\\\\_dev\",\r\n \"vaultconfiguration\": {\r\n \"path\": \"/secrets/data/kv-dev-intgn1/aob1/-5MAY23-TEST1/\\\\_externalconnection\",\r\n \"keyMapping\": {\r\n \"AUTHTOKEN\": \"\\\\_AUTHTOKEN~#~ENCRYPTED\"\r\n }\r\n }\r\n}" + multipart/form-data: + schema: + type: object + properties: + PASSWORD: + type: string + example: '{{password}}' + URL: + type: string + example: LDAP://3.19.17.34:386 + USERNAME: + type: string + example: CN=Doc Admin,OU=SaviyntAdmins,DC=saviyntlabs,DC=org + connectionName: + type: string + example: Active Directory_Doc + connectiontype: + type: string + example: AD + saveconnection: + type: string + example: 'Y' + responses: + '200': + description: Test Connection-non standard response / Test Connection-non standard failure / Test Connection-standard response success / Test Connection-standard response failure + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://dev-scrum-conn.saviyntcloud.com + CF-Cache-Status: + schema: + type: string + example: DYNAMIC + CF-RAY: + schema: + type: string + example: 85b74bf1891f7f79-MAA + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Encoding: + schema: + type: string + example: gzip + Content-Security-Policy: + schema: + type: string + example: 'base-uri ''self'' ; style-src ''self'' https://fonts.googleapis.com ''unsafe-inline''; script-src ''self'' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ ''unsafe-inline'' ''unsafe-eval''; object-src ''self'' ; media-src ''self'' ; manifest-src ''self'' ; img-src ''self'' https://ssl.google-analytics.com blob: ; frame-src ''self'' https://www.google.com/ ; connect-src ''self'' ; font-src ''self'' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action ''self''; frame-ancestors ''self''; default-src ''self''' + Date: + schema: + type: string + example: Mon, 26 Feb 2024 09:52:42 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Server: + schema: + type: string + example: cloudflare + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=a07b8558-a1c9-4b56-a2c9-40e1d7410061; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + connectionKey: + type: number + example: 1909 + connectionName: + type: string + example: Active Directory_Doc + connectionResult: + type: object + properties: + errors: + type: array + items: + type: object + properties: + errorMessage: + type: string + example: "The connection to the [LDAP://3.19.17.34:386] server was denied. Target Error Message: [javax.naming.CommunicationException: 3.19.17.34:386 [Root exception is java.net.ConnectException: Connection refused (Connection refused)]\n\t]" + example: + - errorMessage: "The connection to the [LDAP://3.19.17.34:386] server was denied. Target Error Message: [javax.naming.CommunicationException: 3.19.17.34:386 [Root exception is java.net.ConnectException: Connection refused (Connection refused)]\n\t]" + connectionStatus: + type: string + example: SUCCESS + connectionType: + type: string + example: AD + errorCode: + type: string + example: '0' + msg: + type: string + example: Connection Successful + examples: + Test Connection-non standard failure: + value: + connectionKey: 1909 + errorCode: '0' + msg: Connection Failed + Test Connection-non standard response: + value: + connectionKey: 1909 + errorCode: '0' + msg: Connection Successful + Test Connection-standard response failure: + value: + connectionKey: 1909 + connectionName: Active Directory_Doc + connectionResult: + errors: + - errorMessage: "The connection to the [LDAP://3.19.17.34:386] server was denied. Target Error Message: [javax.naming.CommunicationException: 3.19.17.34:386 [Root exception is java.net.ConnectException: Connection refused (Connection refused)]\n\t]" + connectionStatus: FAILURE + connectionType: AD + errorCode: '0' + msg: Connection Failed + Test Connection-standard response success: + value: + connectionKey: 1909 + connectionName: Active Directory_Doc + connectionStatus: SUCCESS + connectionType: AD + errorCode: '0' + msg: Connection Successful + security: + - bearerAuth: [] + /importData: + post: + tags: + - utils + summary: Import Application Data + description: "This API is used to run import data job for a specific application\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`\r\n\r\nMandatory params: \r\n\r\n`systemname`,\r\n`connectiontype`,\r\n`connectionName`\r\n\r\nOptional params:\r\n\r\n`fullorincremental` - full/incremental,\r\n`accountsoraccess` - accounts/access\r\n`CREATEUSERS`- Yes/No\r\n\r\nAdditional import parameters can also be passed - \r\n\r\nFor example, \r\n\r\n1. For SAP Import, provide the parameters - JCO_ASHOST, JCO_SYSNR, JCO_CLIENT, JCO_USER, PASSWORD\r\n2. For AWS Import, provide the parameters - AWS_ACCESS_KEY,AWS_ACCESS_SECRET_PASSWORD,AWS_ACCOUNT_ID,CROSS_ACCOUNT_ROLE_ARN" + operationId: importApplicationData + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + connectionName: + type: string + example: System1 + connectiontype: + type: string + example: db + systemname: + type: string + example: System1 + responses: + '200': + description: Import Data + headers: + Date: + schema: + type: string + example: Thu, 02 Aug 2018 20:24:22 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=bf3ead5a-e35f-4d4c-9a91-29c1aef6f2cc; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Import process started successfully.Please use checkImportStatus to get the current status + examples: + Import Data: + value: + errorCode: '0' + msg: Import process started successfully.Please use checkImportStatus to get the current status + /sendEmail: + post: + tags: + - utils + summary: Send Email + description: "This API can be used send an email from SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nNote: Configure SMTP in SSM before using this API. \r\n\r\nMandatory params: \r\n\r\n`to`,\r\n`from`,\r\n`subject`,\r\n`body`\r\n\r\nOptional params:\r\n\r\n`cc`,`bcc`" + operationId: sendEmail + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + body: + type: string + example: test email body + cc: + type: string + example: tim@saviynt.com + from: + type: string + example: john@saviynt.com + subject: + type: string + example: test email subject + to: + type: string + example: john.doe@saviynt.com + responses: + '200': + description: Send Email + headers: + Date: + schema: + type: string + example: Thu, 13 Sep 2018 01:13:37 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=9baa7fd0-b5cf-4442-91cd-9b8c9f1cdd57; Path=/ + content: + application/json: + schema: + type: object + properties: + errorCode: + type: string + example: '0' + msg: + type: string + example: Successful + examples: + Send Email: + value: + errorCode: '0' + msg: Successful + /mobileDashboard: + post: + tags: + - dashboards + summary: Retrieve Dashboard Tiles Data + description: "This API call can be used to fetch details like number of open userrequests, number of attestations, number of delegates, and number of pending approvals for a specific user. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`userName`" + operationId: retrieveDashboardTilesData + requestBody: + content: + multipart/form-data: + schema: + type: object + properties: + userName: + type: string + example: admin + responses: + '200': + description: Mobile Dashboard + headers: + Date: + schema: + type: string + example: Fri, 17 Aug 2018 18:26:09 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=d6a18797-8984-4b41-80b7-d9412911ddde; Path=/ + content: + application/json: + schema: + type: object + properties: + attestations: + type: object + properties: + totalcount: + type: number + example: 148 + delegates: + type: object + properties: + totalcount: + type: number + example: 17 + errorCode: + type: string + example: '0' + msg: + type: string + example: successful + pendingrequests: + type: object + properties: + highcount: + type: number + example: 272 + lowcount: + type: number + example: 43 + mediumcount: + type: number + example: 22 + totalcount: + type: number + example: 337 + userrequests: + type: object + properties: + openrequestcount: + type: number + example: 317 + examples: + Mobile Dashboard: + value: + attestations: + totalcount: 148 + delegates: + totalcount: 17 + errorCode: '0' + msg: successful + pendingrequests: + highcount: 272 + lowcount: 43 + mediumcount: 22 + totalcount: 337 + userrequests: + openrequestcount: 317 + /retrieveDashboardAccountData: + post: + tags: + - dashboards + summary: Retrieve Dashboard Account Data + description: |- + The `Authorization` must have `Bearer` followed by `Token`. + No params + operationId: retrieveDashboardAccountData + responses: + '200': + description: Retrieve Dashboard Account Data + headers: + Date: + schema: + type: string + example: Wed, 12 Sep 2018 05:58:05 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=85364032-2843-44fe-b188-934037e042ae; Path=/ + content: + application/json: + schema: + type: object + properties: + dashboardAccountData: + type: array + items: {} + example: [] + errorCode: + type: string + example: '0' + msg: + type: string + example: SUCCESS + examples: + Retrieve Dashboard Account Data: + value: + dashboardAccountData: [] + errorCode: '0' + msg: SUCCESS + /retrieveDashboardData: + post: + tags: + - dashboards + summary: Retrieve Dashboard Data + description: "The `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nNo params" + operationId: retrieveDashboardData + responses: + '200': + description: Retrieve Dashboard Data + headers: + Date: + schema: + type: string + example: Wed, 12 Sep 2018 05:57:42 GMT + Server: + schema: + type: string + example: Apache-Coyote/1.1 + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=e1889c8f-ee92-454e-b999-fc5b9b560545; Path=/ + content: + application/json: + schema: + type: object + properties: + dashboardData: + type: array + items: {} + example: [] + errorCode: + type: string + example: '0' + msg: + type: string + example: SUCCESS + examples: + Retrieve Dashboard Data: + value: + dashboardData: [] + errorCode: '0' + msg: SUCCESS + /getAccessRecommendations: + post: + tags: + - access-recommendations + summary: Get Access Recommendations + description: |- + This API provides the count and details of all the recommended entitlements associated with that entitlement type and displays relevance scores to requestors while requesting access. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `username`/`userkey`(if both are passed then userkey will be considered) + Optional params: + `endpointname`/`endpointkey`(if both are passed then endpointkey will be considered) + `entitlementtypekey`/`entitlementtype`(if both are passed then entitlementtypekey will be considered) + `entitlement_valuekey` + `max` + `offset` + operationId: getAccessRecommendations + requestBody: + content: + application/json: + schema: + type: object + properties: + endpointkey: + type: string + example: '201' + entitlement_valuekey: + type: string + example: '102' + entitlementtypekey: + type: string + example: '101' + max: + type: string + example: '100' + offset: + type: string + example: '0' + userkey: + type: string + example: '2444562' + examples: + Get Access Recommendations: + value: + endpointkey: '201' + entitlement_valuekey: '102' + entitlementtypekey: '101' + max: '100' + offset: '0' + userkey: '2444562' + responses: + '200': + description: Get Access Recommendations + headers: + Date: + schema: + type: string + example: Thu, 25 Aug 2022 07:40:17 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=cf402d57-9990-4cfe-ac9e-f64463d331c0; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + displaycount: + type: number + example: 1 + errorcode: + type: number + example: 0 + msg: + type: string + example: success + recommendations: + type: array + items: + type: object + properties: + accountkey: + type: number + example: 105923 + accountname: + type: string + example: Devloper2amp + description: + type: string + example: '' + displayname: + type: string + example: '' + endpointkey: + type: number + example: 201 + endpointname: + type: string + example: Aha + entitlement_value: + type: string + example: Aha Feature Editor + entitlement_valuekey: + type: number + example: 102 + entitlementtype: + type: string + example: Aha Features + entitlementtypekey: + type: number + example: 101 + peergroupconfidencepercentage: + type: string + example: '100' + recommended: + type: string + example: 'true' + example: + - accountkey: 105923 + accountname: Devloper2amp + description: '' + displayname: '' + endpointkey: 201 + endpointname: Aha + entitlement_value: Aha Feature Editor + entitlement_valuekey: 102 + entitlementtype: Aha Features + entitlementtypekey: 101 + peergroupconfidencepercentage: '100' + recommended: 'true' + totalcount: + type: number + example: 1 + examples: + Get Access Recommendations: + value: + displaycount: 1 + errorcode: 0 + msg: success + recommendations: + - accountkey: 105923 + accountname: Devloper2amp + description: '' + displayname: '' + endpointkey: 201 + endpointname: Aha + entitlement_value: Aha Feature Editor + entitlement_valuekey: 102 + entitlementtype: Aha Features + entitlementtypekey: 101 + peergroupconfidencepercentage: '100' + recommended: 'true' + totalcount: 1 + /exportTransportPackage: + post: + tags: + - transport + summary: Export Package + description: |- + This API creates a compressed file containing objects specified for T2P migration. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `exportonline`(can be true or false) - Determines if package needs to be exported online, `exportpath`(if exportonline is false) - Local path where export package will be generated, `environmentname`(if exportonline is true) - Name of the environment which can be created at the following path : Admin -> Global Configurations -> Misc -> Transport -> Add New Transport, `objectstoexport` - Supported objects : `savRoles`, `emailTemplate`, `roles`, `analyticsV1`, `analyticsV2`, `globalConfig`, `workflows`, `connection`, `appOnboarding`, `userGroups`, `scanRules`, `organizations`, `securitySystems` + Optional params: + `updateuser` - username of the user exporting the package, `transportmembers`(can be true or false) - option to transport members for selected objects such as SAV role, `transportowner`(can be true or false) - option to transport owners for selected objects, `businessjustification` + operationId: exportPackage + requestBody: + content: + application/json: + schema: + type: object + properties: + businessjustification: + type: string + example: justified... + exportonline: + type: string + example: 'false' + exportpath: + type: string + example: /saviynt_shared/testexport/transportPackage + objectstoexport: + type: object + properties: + emailTemplate: + type: array + items: + type: string + example: Account Password Expiry Email + example: + - Account Password Expiry Email + - Entitlement Expiry Email + savRoles: + type: array + items: + type: string + example: ROLE_ADMIN + example: + - ROLE_ADMIN + transportmembers: + type: string + example: 'true' + transportowner: + type: string + example: 'true' + updateuser: + type: string + example: admin + examples: + Export Package: + value: + businessjustification: justified... + exportonline: 'false' + exportpath: /saviynt_shared/testexport/transportPackage + objectstoexport: + emailTemplate: + - Account Password Expiry Email + - Entitlement Expiry Email + savRoles: + - ROLE_ADMIN + transportmembers: 'true' + transportowner: 'true' + updateuser: admin + responses: + '200': + description: Export Package - Success + headers: + Date: + schema: + type: string + example: Fri, 13 Jan 2023 10:19:11 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=df31896f-d32e-4135-83ce-8d00558893de; Version=1; Path=";Path=/;HttpOnly;"; Secure + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 0 + fileName: + type: string + example: transport_admin_2023-01-13_10-19-11(UTC).zip + msg: + type: string + example: success + msgDescription: + type: string + example: Export Requested. If other requests are currently processing, your export will begin after they complete. You can call /transportPackageStatus API to check the status of your export. + examples: + Export Package - Success: + value: + errorcode: 0 + fileName: transport_admin_2023-01-13_10-19-11(UTC).zip + msg: success + msgDescription: Export Requested. If other requests are currently processing, your export will begin after they complete. You can call /transportPackageStatus API to check the status of your export. + /importTransportPackage: + post: + tags: + - transport + summary: Import Package + description: |- + This API imports a compressed file containing objects specified for T2P migration. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `packagetoimport` - Complete path of the package that needs to be imported + Optional params: + `updateuser` - username of the user importing the package, `businessjustification` + Supported objects: + `savRoles`, `emailTemplate`, `roles`, `analyticsV1`, `analyticsV2`, `globalConfig`, `workflows`, `connection`, `appOnboarding`, `userGroups`, `scanRules`, `organizations`, `securitySystems` + operationId: importPackage + requestBody: + content: + application/json: + schema: + type: object + properties: + businessjustification: + type: string + example: test + packagetoimport: + type: string + example: /saviynt_shared/testexport/transportPackage/transport_admin_2023-01-13_10-19-11(UTC).zip + updateuser: + type: string + example: admin + examples: + Import Package: + value: + businessjustification: test + packagetoimport: /saviynt_shared/testexport/transportPackage/transport_admin_2023-01-13_10-19-11(UTC).zip + updateuser: admin + responses: + '200': + description: Import Package - Success + headers: + Date: + schema: + type: string + example: Fri, 13 Jan 2023 14:33:30 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=36bcab8f-cd96-495d-a7f9-6a4a9197fb38; Version=1; Path=";Path=/;HttpOnly;"; Secure + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorcode: + type: number + example: 0 + msg: + type: string + example: success + msgDescription: + type: string + example: Import Requested. If other requests are currently processing, your import will begin after they complete. You can call /transportPackageStatus API to check the status of your import + requestId: + type: string + example: '2490001' + examples: + Import Package - Success: + value: + errorcode: 0 + msg: success + msgDescription: Import Requested. If other requests are currently processing, your import will begin after they complete. You can call /transportPackageStatus API to check the status of your import + requestId: '2490001' + /transportPackageStatus: + get: + tags: + - transport + summary: Transport Status + description: |- + This API obtains the status of the transport request (import, export, or transfer), and helps in confirming whether the transport was completed successfully or failed. + **Note**: This API returns the status of only those requests that have been processed using the Enhanced Transport feature. + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory params: + `operation` - enter the type of transport request (export, import, or transfer) `filename` - enter the transport package zip file name in full (including the .zip extension) `requestid`(required only if the operation is import) - enter the request ID generated during the submission of the import request + operationId: transportStatus + requestBody: + content: + application/json: + schema: + type: object + properties: + filename: + type: string + example: transport_admin_2023-01-13_13-27-43(UTC).zip + operation: + type: string + example: export + examples: + Transport Status: + value: + filename: transport_admin_2023-01-13_13-27-43(UTC).zip + operation: export + responses: + '200': + description: Transport Status - Blank Request ID / Transport Status - Import / Transport Status - Export + headers: + Cache-Control: + schema: + type: string + example: private + Date: + schema: + type: string + example: Fri, 13 Jan 2023 14:31:19 GMT + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=36bcab8f-cd96-495d-a7f9-6a4a9197fb38; Version=1; Path=";Path=/;HttpOnly;"; Secure + Strict-Transport-Security: + schema: + type: string + example: max-age=15724800; includeSubDomains + Vary: + schema: + type: string + example: Access-Control-Request-Headers + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + errorCode: + type: number + example: 1 + msg: + type: string + example: Invalid request Payload + msgDescription: + type: string + example: Requestid cannot be blank + examples: + Transport Status - Blank Request ID: + value: + errorCode: 1 + msg: Invalid request Payload + msgDescription: Requestid cannot be blank + Transport Status - Export: + value: + errorCode: 0 + msg: Success + msgDescription: The environment package was successfully exported. + Transport Status - Import: + value: + errorCode: 0 + msg: Success + msgDescription: The environment package was successfully imported. + /rules/technical: + get: + tags: + - policies + summary: Fetch Technical Rules + description: |- + Starting with Release v23.11, you can use the REST API to fetch all the technical rules from the target system. Additionally, you can also perform the following actions: + - Use the `ruleId` parameter to fetch a specific technical rule. The response displays details such as rule ID, rule name, description, and other attributes. + - Filter the rules based on `status` and `rulename.` + + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory param: + `ruleId` + Optional param: + `Offset - Specify the pagination.` + operationId: fetchTechnicalRules + parameters: + - name: offset + in: query + schema: + type: string + example: '1' + - name: limit + in: query + schema: + type: string + example: '2' + - name: rulename + in: query + schema: + type: string + example: testrole$4 + responses: + '200': + description: Fetching technical rules / fetching technical rules with offset and limit / Filter Technical Rules based on rulename / Filter Technical Rules based on Status + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Mon, 16 Oct 2023 03:13:44 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=31579556-3aa6-47de-8973-4d8dc9324cf8; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + data: + type: array + items: + type: object + properties: + actions: + type: array + items: + type: object + properties: + object: + type: string + example: Account + objectAttribute: + type: string + example: Assign + objectType: + type: string + example: Active Directory + organization: + type: string + example: '' + example: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: + type: boolean + example: true + conditions: + type: array + items: + type: object + properties: + attribute: + type: string + example: employeeType + closeBracket: + type: string + example: '' + condition: + type: string + example: EQUAL + conditionType: + type: string + example: Basic + nextCondition: + type: string + example: AND + object: + type: string + example: Users + objectValue: + type: string + example: Partner + openBracket: + type: string + example: '' + example: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: + type: boolean + example: false + owners: + type: array + items: {} + example: [] + removeBirthrightAccess: + type: boolean + example: false + ruleDescription: + type: string + example: '' + ruleId: + type: number + example: 2 + ruleName: + type: string + example: Create AD account (external) + ruleType: + type: number + example: 1 + status: + type: string + example: INACTIVE + example: + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 2 + ruleName: Create AD account (external) + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 31 + ruleName: External Create Mailbox + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E3 license for external user with Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 33 + ruleName: External create E3 mailbox birthright + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E3 license for external user with Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 34 + ruleName: External create E3 mailbox + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: CreateAD + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 38 + ruleName: 'Test: Create partner AD user' + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 57 + ruleName: External Mailenableduser + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 58 + ruleName: External Mailenableduser birthright + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=CA_PPM_All_All_Management,OU=CAPPM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=Valmet Intra Denied Partners,OU=Valmet Intra,OU=Sharepoint,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=Azure AD Premium Users,OU=Valmet Mobility Services,OU=Provisioning,OU=Production,OU=PPM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: nixu + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: 'No' + openBracket: '' + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Partner + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 64 + ruleName: Testing Birthright_Rule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 79 + ruleName: Create AD account (external)_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: PM Sales - Reference reader + objectAttribute: Assign + objectType: Sovelia::Entitlement + organization: '' + birthright: true + conditions: + - attribute: customproperty41 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: sovelia + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: 'bulk user account creation ' + ruleId: 86 + ruleName: temp_generic_Entitlement provisioning rule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Create AD account (external)_2 + ruleId: 89 + ruleName: Create AD account (external)_2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: External create mailbox birthright_1 + ruleId: 90 + ruleName: External create mailbox birthright_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_VALMET_CONTACT + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty8 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: + - rank: 1 + username: Erased-on-2023-05-15 05:41:11-965904 + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 95 + ruleName: 'Birthright: Manager user' + ruleType: 1 + status: ACTIVE + - actions: + - object: ROLE_ASSISTANT + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: true + conditions: + - attribute: customproperty56 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: SAVRole + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 108 + ruleName: Assign SAV Role - ROLE_ASSISTANT + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 Valmet employees,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 113 + ruleName: 'Birthright: Internal Users_V1' + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 F1 Shared workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Blue-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 114 + ruleName: Birthright:Blue-collar_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E5 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 115 + ruleName: External create E3 mailbox_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E5 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 116 + ruleName: External create E3 mailbox birthright_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 117 + ruleName: External create mailbox birthright_1_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 Valmet employees,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 118 + ruleName: Re-Hire Valmet internal_V1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 119 + ruleName: External create Temporary EMS-E3 license Birthright + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 120 + ruleName: External create Temporary EMS-E3 license + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 123 + ruleName: 'Birthright: Leased Workforce Partner White-collar' + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.employeeType='Partner' AND a.statuskey=1 AND a.customproperty28 is NULL + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 124 + ruleName: Create AD account (external)_3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.employeeType='Partner' AND a.statuskey=1 AND a.customproperty28 is NULL + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 125 + ruleName: Re-Hire Valmet external_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Blue-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: ABCDE_Update_test1 + ruleId: 129 + ruleName: 'Birthright: Leased Workforce Partner Blue-collar' + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Blue-Collar + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 130 + ruleName: Re-Hire Leased Workforce Partner Blue-collar + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 131 + ruleName: Re-Hire Leased Workforce Partner White-collar + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_VALMET_CONTACT + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: valmetcontactrole3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 143 + ruleName: TempValmetContactForUsersTech + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Basware IA + organization: '' + - object: 1641 Reviewers + objectAttribute: Assign + objectType: Basware IA::Groups + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: bas1014 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: 'radu temp ' + ruleId: 186 + ruleName: 'radu basw temp ' + ruleType: 1 + status: INACTIVE + - actions: + - object: Valmet Technologies Oy (115) Guest Manager + objectAttribute: Assign + objectType: Travel Bookings::Access right + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: TB + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 190 + ruleName: Mihai Temp + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Workstation Admin Groups + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: add111 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: used by Nixu support + ruleId: 193 + ruleName: TempProvAccess + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=Power Apps per user,OU=Power Platform,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Power Platform::memberOf + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Power Apps per user + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 195 + ruleName: anthonytemp + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Saviynt + organization: '' + - object: ROLE_ENDUSER + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty16 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ENABLED + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 205 + ruleName: Re-Hire Valmet internal Saviynt Access + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Vegas AD + organization: '' + - object: '"CN=Idefix,OU=TenantGroups,OU=Vegas,DC=vegas,DC=aut,DC=valmet,DC=com"' + objectAttribute: Assign + objectType: Vegas AD::memberOf + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: vegasadadd + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 207 + ruleName: Add vegas AD account + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_ENDUSER + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty16 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ENABLED + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 209 + ruleName: Re-Hire Valmet internal Saviynt Access 2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AzureAD_SS + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Det + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 212 + ruleName: TestDetective_Rule1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AWS Administrators + organization: '' + birthright: false + conditions: + - attribute: id + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: enterpriserole111 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 213 + ruleName: enterpriserole111 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AWS Developers + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Det + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 216 + ruleName: TestTeschnical_Rule2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AzureAD + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Joy + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 217 + ruleName: TestDet_Rule1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Camp_RO_Role4 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test16 + openBracket: '' + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test61 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 218 + ruleName: testmay16 + ruleType: 1 + status: INACTIVE + - actions: + - object: AADAccesstask + objectAttribute: Assign + objectType: AzureAD::AADGroup + organization: '' + - object: aadGroup13 + objectAttribute: Assign + objectType: AzureAD::AADGroup + organization: '' + birthright: false + conditions: + - attribute: city + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Ben + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 219 + ruleName: TestDet_Rule3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: NewADEP + organization: '' + - object: '"CN=Group_CONN_QA_22,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: NewADEP::memberOf + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.firstname like '%test%' and a.city='bangalore' + detective: false + owners: + - rank: 1 + username: aaa_wabuarvaca_auar_prid + - rank: 1 + username: fluw_webuervece_uuer_prud + - rank: 1 + username: Tessting_User + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 221 + ruleName: Advancetechrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP + organization: '' + - object: Comp_UM_Ent1Val1 + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP::Comp_UM_Ent + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Employee + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Rule_18255475-1d33-4229-aa4d-119434c4c451 + ruleId: 227 + ruleName: Rule_18255475-1d33-4229-aa4d-119434c4c451 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: C13596338_Endpoint + organization: '' + - object: C13596338_Ent1_vnnC + objectAttribute: Assign + objectType: C13596338_Endpoint::entType1 + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Cpvw_C13596338 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: Rule_0aa2a532-2270-49e2-8832-9d6b698bc4a8 + ruleId: 229 + ruleName: Rule_0aa2a532-2270-49e2-8832-9d6b698bc4a8 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP + organization: '' + - object: Comp_UM_Ent1Val1 + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP::Comp_UM_Ent + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Employee + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Rule_a2c147cd-bdaa-4048-8df0-8a0209a188cc + ruleId: 246 + ruleName: Rule_a2c147cd-bdaa-4048-8df0-8a0209a188cc + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: C13596338_Endpoint + organization: '' + - object: C13596338_Ent1_lctA + objectAttribute: Assign + objectType: C13596338_Endpoint::entType1 + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: zSQW_C13596338 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: Rule_dc278dc8-9501-40c2-abbb-4c47e01b4e79 + ruleId: 247 + ruleName: Rule_dc278dc8-9501-40c2-abbb-4c47e01b4e79 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Test_EndPoint + organization: '' + - object: ${user.city} + objectAttribute: Assign + objectType: Test_EndPoint::enttype + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: testdynamicattr + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 254 + ruleName: techrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '0708' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: AD0708_CREATEACCOUNT + ruleId: 257 + ruleName: AD0708_CREATEACCOUNT + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + - object: '"CN=Group_CONN_QA_8,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: AD0708::memberOf + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Raichur + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: AD_RemoveAccount_Rule_CONN + ruleId: 259 + ruleName: AD_RemoveAccount_Rule_CONN + ruleType: 1 + status: INACTIVE + - actions: + - object: Access control system of saviynt + objectAttribute: Assign + objectType: okta_qa_10598::OktaGroup + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: customproperty13 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Saviynt + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: Tech Rule for Active Candidates group + ruleId: 279 + ruleName: Tech Rule for Active Candidates group + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AC_EP + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: ( + - attribute: jobCode + closeBracket: ) + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ('100-7000','330-165','400-1040','400-1042','400-1043') + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 281 + ruleName: ADFS_Rule20 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=CoMPass SBL Budgeting,OU=Domain Groups,OU=Compass,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=CNOP_XIA_REP,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: customproperty12 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: RehireBefore90 + openBracket: '' + - attribute: customproperty4 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: RehireActive + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 282 + ruleName: Rehire_BirthRight_Group_Assignment + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Reference Data + organization: '' + - object: '509162' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '615081' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '501522' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '621552' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: BSTuser + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 299 + ruleName: Reference + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=RAU_R&D_OPTIFEEDTEAM,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: customproperty25 + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: SS-6070 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 310 + ruleName: SS-6070TR + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=SA Valmet Managers,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: GREATER THAN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: dadasd + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 318 + ruleName: AAAAORGANISATIONTEST + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: testsup + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: test + ruleId: 326 + ruleName: test_TechRule_SUP + ruleType: 1 + status: INACTIVE + - actions: + - object: ARS1.2#####test12####123 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: fdvfdvfv + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 327 + ruleName: fdfdf + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD_INTGN3085_17aug + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: NIT_UserSSM_15sep + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: SS_Test_14sep + ruleId: 328 + ruleName: SS_Test_14sep + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: SalesForce_CONN_QA + organization: '' + birthright: true + conditions: + - attribute: jobcodedesc + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: AFS + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 329 + ruleName: TestManish + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: SS_testinstantprovisioning + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: NIT_UserSSM_14sep + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: check instatnt + ruleId: 332 + ruleName: SS_Rule_testinstantprov + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: NewADEP + organization: '' + - object: '"CN=Group_CONN_QA_28,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: NewADEP::memberOf + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Instantprovuser + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 333 + ruleName: newtechrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"REST_Users_,comma,test"' + organization: '' + - object: '"CN=ServiceAccount_LogonRestriction,OU=Common Accounts,OU=Groups,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory - Service Accounts::memberOf + organization: '' + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"comma,test,rule"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Test + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: sabitestcomma + ruleId: 341 + ruleName: sabitestcomma + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.,5"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: false + conditions: + - attribute: displayname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 345 + ruleName: testtech1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"AR,S1.3,test"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"AR,S1.,5"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.username ='admin' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 346 + ruleName: testtech2 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: dfdf + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 347 + ruleName: testtech3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"A,R,S,test"' + organization: '' + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: hjgfgh + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 352 + ruleName: techa1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: customproperty1 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Test123 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 354 + ruleName: ManishTechRuleCommaSeparated + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: rest2109 + organization: '' + - object: Support + objectAttribute: Assign + objectType: rest2109::Group + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: city1234 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: SS-6087-1 + ruleId: 356 + ruleName: SS-6087-1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Support + objectAttribute: Assign + objectType: rest2109::Group + organization: '' + birthright: true + conditions: + - attribute: street + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: street123 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: SS-6087-2 + ruleId: 357 + ruleName: SS-6087-2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"A,R,S1.10"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test + openBracket: ( + - attribute: displayname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test + openBracket: '' + - attribute: id + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: OR + object: Users + objectValue: '1' + openBracket: '' + - attribute: firstname + closeBracket: ) + condition: DOES NOT CONTAIN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: gfbfgbg + openBracket: '' + - attribute: city + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: OR + object: Users + objectValue: mysore + openBracket: '' + - attribute: manager + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: admin + openBracket: '' + - attribute: secondaryManager + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: systemadmin + openBracket: '' + - attribute: customproperty21 + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: testtech1_test1 + ruleId: 368 + ruleName: importretesttech1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: lastname + closeBracket: '' + condition: NOT EQUALS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: gffnhfnnn + openBracket: (( + - attribute: middlename + closeBracket: '' + condition: DOES NOT CONTAIN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: thyjgjj + openBracket: '' + - attribute: email + closeBracket: )) + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test@ + openBracket: '' + - attribute: startdate + closeBracket: '' + condition: GREATER THAN + conditionType: Basic + nextCondition: OR + object: Users + objectValue: '2023-08-10' + openBracket: '' + - attribute: enddate + closeBracket: '' + condition: LESS THAN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '2023-10-10' + openBracket: '' + - attribute: manager + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: admin + openBracket: '' + detective: true + owners: + - rank: 5 + username: systemadmin + - rank: 3 + username: admin + removeBirthrightAccess: true + ruleDescription: importretesttech2desc + ruleId: 369 + ruleName: importretesttech2 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' )) + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 370 + ruleName: importretesttech3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: true + conditions: + - attribute: secondaryManager + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: systemadmin + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: test + ruleId: 371 + ruleName: importretesttech4 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' AND a.secondaryManager='systemmadmin')) + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: testdec + ruleId: 372 + ruleName: importretesttech5 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' AND a.secondaryManager='958317 ')) + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 375 + ruleName: importretesttech6 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: bangalore4322 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test123453322 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 385 + ruleName: technicaltrigger1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.7 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: true + conditions: + - attribute: costcenter + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '122233221' + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 386 + ruleName: technicaltrigger2 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.12 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: jobCode + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test55225656 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 387 + ruleName: technicaltrigger3 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.2 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Mysore445442112 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 388 + ruleName: technicaltrigger4 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.2 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: costcenter + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '445452121' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 389 + ruleName: technicaltrigger5 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"$CN=$APAC_Applic,ation_Support,OU=Exc,hange,OU=Applicati,ons,OU=Gr,oups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=$Asia_BI_Readers_Confidential,OU=Exchange,$OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=$AD_Appr,overs,OU=Exchange,OU=Applica,tions,OU=Groups,OU=Roo,t2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: specialcharacter9 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: specialcharactert91 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 400 + ruleName: testrole$1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: $ARS1.13 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1$.14 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1.15 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.username ='charactertest87' AND a.lastname ='charactertest871' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 401 + ruleName: testrole$2 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: $ARS1.13 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1$.14 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1.5 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: specialcharactertest4 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: specialcharactertestlast4 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 403 + ruleName: testrole$4 + ruleType: 1 + status: ACTIVE + page: + type: object + properties: + count: + type: number + example: 84 + limit: + type: number + example: 100 + next: + type: string + example: https://qe-eictrunk-aws.saviyntcloud.com/ECM/api/v5/getTechnicalRules?offset=1&limit=100 + offset: + type: number + example: 0 + prev: + type: string + example: '' + total: + type: number + example: 84 + examples: + Fetching technical rules: + value: + data: + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 2 + ruleName: Create AD account (external) + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 31 + ruleName: External Create Mailbox + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E3 license for external user with Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 33 + ruleName: External create E3 mailbox birthright + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E3 license for external user with Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 34 + ruleName: External create E3 mailbox + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: CreateAD + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 38 + ruleName: 'Test: Create partner AD user' + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 57 + ruleName: External Mailenableduser + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 58 + ruleName: External Mailenableduser birthright + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=CA_PPM_All_All_Management,OU=CAPPM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=Valmet Intra Denied Partners,OU=Valmet Intra,OU=Sharepoint,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=Azure AD Premium Users,OU=Valmet Mobility Services,OU=Provisioning,OU=Production,OU=PPM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: nixu + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: 'No' + openBracket: '' + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Partner + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 64 + ruleName: Testing Birthright_Rule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 79 + ruleName: Create AD account (external)_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: PM Sales - Reference reader + objectAttribute: Assign + objectType: Sovelia::Entitlement + organization: '' + birthright: true + conditions: + - attribute: customproperty41 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: sovelia + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: 'bulk user account creation ' + ruleId: 86 + ruleName: temp_generic_Entitlement provisioning rule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Create AD account (external)_2 + ruleId: 89 + ruleName: Create AD account (external)_2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: External create mailbox birthright_1 + ruleId: 90 + ruleName: External create mailbox birthright_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_VALMET_CONTACT + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty8 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: + - rank: 1 + username: Erased-on-2023-05-15 05:41:11-965904 + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 95 + ruleName: 'Birthright: Manager user' + ruleType: 1 + status: ACTIVE + - actions: + - object: ROLE_ASSISTANT + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: true + conditions: + - attribute: customproperty56 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: SAVRole + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 108 + ruleName: Assign SAV Role - ROLE_ASSISTANT + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 Valmet employees,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 113 + ruleName: 'Birthright: Internal Users_V1' + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 F1 Shared workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Blue-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 114 + ruleName: Birthright:Blue-collar_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E5 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 115 + ruleName: External create E3 mailbox_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E5 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 116 + ruleName: External create E3 mailbox birthright_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 117 + ruleName: External create mailbox birthright_1_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 Valmet employees,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 118 + ruleName: Re-Hire Valmet internal_V1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 119 + ruleName: External create Temporary EMS-E3 license Birthright + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 120 + ruleName: External create Temporary EMS-E3 license + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 123 + ruleName: 'Birthright: Leased Workforce Partner White-collar' + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.employeeType='Partner' AND a.statuskey=1 AND a.customproperty28 is NULL + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 124 + ruleName: Create AD account (external)_3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.employeeType='Partner' AND a.statuskey=1 AND a.customproperty28 is NULL + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 125 + ruleName: Re-Hire Valmet external_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Blue-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: ABCDE_Update_test1 + ruleId: 129 + ruleName: 'Birthright: Leased Workforce Partner Blue-collar' + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Blue-Collar + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 130 + ruleName: Re-Hire Leased Workforce Partner Blue-collar + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 131 + ruleName: Re-Hire Leased Workforce Partner White-collar + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_VALMET_CONTACT + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: valmetcontactrole3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 143 + ruleName: TempValmetContactForUsersTech + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Basware IA + organization: '' + - object: 1641 Reviewers + objectAttribute: Assign + objectType: Basware IA::Groups + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: bas1014 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: 'radu temp ' + ruleId: 186 + ruleName: 'radu basw temp ' + ruleType: 1 + status: INACTIVE + - actions: + - object: Valmet Technologies Oy (115) Guest Manager + objectAttribute: Assign + objectType: Travel Bookings::Access right + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: TB + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 190 + ruleName: Mihai Temp + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Workstation Admin Groups + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: add111 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: used by Nixu support + ruleId: 193 + ruleName: TempProvAccess + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=Power Apps per user,OU=Power Platform,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Power Platform::memberOf + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Power Apps per user + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 195 + ruleName: anthonytemp + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Saviynt + organization: '' + - object: ROLE_ENDUSER + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty16 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ENABLED + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 205 + ruleName: Re-Hire Valmet internal Saviynt Access + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Vegas AD + organization: '' + - object: '"CN=Idefix,OU=TenantGroups,OU=Vegas,DC=vegas,DC=aut,DC=valmet,DC=com"' + objectAttribute: Assign + objectType: Vegas AD::memberOf + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: vegasadadd + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 207 + ruleName: Add vegas AD account + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_ENDUSER + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty16 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ENABLED + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 209 + ruleName: Re-Hire Valmet internal Saviynt Access 2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AzureAD_SS + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Det + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 212 + ruleName: TestDetective_Rule1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AWS Administrators + organization: '' + birthright: false + conditions: + - attribute: id + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: enterpriserole111 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 213 + ruleName: enterpriserole111 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AWS Developers + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Det + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 216 + ruleName: TestTeschnical_Rule2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AzureAD + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Joy + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 217 + ruleName: TestDet_Rule1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Camp_RO_Role4 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test16 + openBracket: '' + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test61 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 218 + ruleName: testmay16 + ruleType: 1 + status: INACTIVE + - actions: + - object: AADAccesstask + objectAttribute: Assign + objectType: AzureAD::AADGroup + organization: '' + - object: aadGroup13 + objectAttribute: Assign + objectType: AzureAD::AADGroup + organization: '' + birthright: false + conditions: + - attribute: city + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Ben + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 219 + ruleName: TestDet_Rule3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: NewADEP + organization: '' + - object: '"CN=Group_CONN_QA_22,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: NewADEP::memberOf + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.firstname like '%test%' and a.city='bangalore' + detective: false + owners: + - rank: 1 + username: aaa_wabuarvaca_auar_prid + - rank: 1 + username: fluw_webuervece_uuer_prud + - rank: 1 + username: Tessting_User + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 221 + ruleName: Advancetechrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP + organization: '' + - object: Comp_UM_Ent1Val1 + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP::Comp_UM_Ent + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Employee + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Rule_18255475-1d33-4229-aa4d-119434c4c451 + ruleId: 227 + ruleName: Rule_18255475-1d33-4229-aa4d-119434c4c451 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: C13596338_Endpoint + organization: '' + - object: C13596338_Ent1_vnnC + objectAttribute: Assign + objectType: C13596338_Endpoint::entType1 + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Cpvw_C13596338 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: Rule_0aa2a532-2270-49e2-8832-9d6b698bc4a8 + ruleId: 229 + ruleName: Rule_0aa2a532-2270-49e2-8832-9d6b698bc4a8 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP + organization: '' + - object: Comp_UM_Ent1Val1 + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP::Comp_UM_Ent + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Employee + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Rule_a2c147cd-bdaa-4048-8df0-8a0209a188cc + ruleId: 246 + ruleName: Rule_a2c147cd-bdaa-4048-8df0-8a0209a188cc + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: C13596338_Endpoint + organization: '' + - object: C13596338_Ent1_lctA + objectAttribute: Assign + objectType: C13596338_Endpoint::entType1 + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: zSQW_C13596338 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: Rule_dc278dc8-9501-40c2-abbb-4c47e01b4e79 + ruleId: 247 + ruleName: Rule_dc278dc8-9501-40c2-abbb-4c47e01b4e79 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Test_EndPoint + organization: '' + - object: ${user.city} + objectAttribute: Assign + objectType: Test_EndPoint::enttype + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: testdynamicattr + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 254 + ruleName: techrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '0708' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: AD0708_CREATEACCOUNT + ruleId: 257 + ruleName: AD0708_CREATEACCOUNT + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + - object: '"CN=Group_CONN_QA_8,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: AD0708::memberOf + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Raichur + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: AD_RemoveAccount_Rule_CONN + ruleId: 259 + ruleName: AD_RemoveAccount_Rule_CONN + ruleType: 1 + status: INACTIVE + - actions: + - object: Access control system of saviynt + objectAttribute: Assign + objectType: okta_qa_10598::OktaGroup + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: customproperty13 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Saviynt + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: Tech Rule for Active Candidates group + ruleId: 279 + ruleName: Tech Rule for Active Candidates group + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AC_EP + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: ( + - attribute: jobCode + closeBracket: ) + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ('100-7000','330-165','400-1040','400-1042','400-1043') + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 281 + ruleName: ADFS_Rule20 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=CoMPass SBL Budgeting,OU=Domain Groups,OU=Compass,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=CNOP_XIA_REP,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: customproperty12 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: RehireBefore90 + openBracket: '' + - attribute: customproperty4 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: RehireActive + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 282 + ruleName: Rehire_BirthRight_Group_Assignment + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Reference Data + organization: '' + - object: '509162' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '615081' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '501522' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '621552' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: BSTuser + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 299 + ruleName: Reference + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=RAU_R&D_OPTIFEEDTEAM,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: customproperty25 + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: SS-6070 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 310 + ruleName: SS-6070TR + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=SA Valmet Managers,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: GREATER THAN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: dadasd + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 318 + ruleName: AAAAORGANISATIONTEST + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: testsup + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: test + ruleId: 326 + ruleName: test_TechRule_SUP + ruleType: 1 + status: INACTIVE + - actions: + - object: ARS1.2#####test12####123 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: fdvfdvfv + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 327 + ruleName: fdfdf + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD_INTGN3085_17aug + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: NIT_UserSSM_15sep + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: SS_Test_14sep + ruleId: 328 + ruleName: SS_Test_14sep + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: SalesForce_CONN_QA + organization: '' + birthright: true + conditions: + - attribute: jobcodedesc + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: AFS + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 329 + ruleName: TestManish + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: SS_testinstantprovisioning + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: NIT_UserSSM_14sep + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: check instatnt + ruleId: 332 + ruleName: SS_Rule_testinstantprov + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: NewADEP + organization: '' + - object: '"CN=Group_CONN_QA_28,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: NewADEP::memberOf + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Instantprovuser + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 333 + ruleName: newtechrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"REST_Users_,comma,test"' + organization: '' + - object: '"CN=ServiceAccount_LogonRestriction,OU=Common Accounts,OU=Groups,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory - Service Accounts::memberOf + organization: '' + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"comma,test,rule"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Test + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: sabitestcomma + ruleId: 341 + ruleName: sabitestcomma + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.,5"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: false + conditions: + - attribute: displayname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 345 + ruleName: testtech1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"AR,S1.3,test"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"AR,S1.,5"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.username ='admin' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 346 + ruleName: testtech2 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: dfdf + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 347 + ruleName: testtech3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"A,R,S,test"' + organization: '' + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: hjgfgh + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 352 + ruleName: techa1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: customproperty1 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Test123 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 354 + ruleName: ManishTechRuleCommaSeparated + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: rest2109 + organization: '' + - object: Support + objectAttribute: Assign + objectType: rest2109::Group + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: city1234 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: SS-6087-1 + ruleId: 356 + ruleName: SS-6087-1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Support + objectAttribute: Assign + objectType: rest2109::Group + organization: '' + birthright: true + conditions: + - attribute: street + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: street123 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: SS-6087-2 + ruleId: 357 + ruleName: SS-6087-2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"A,R,S1.10"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test + openBracket: ( + - attribute: displayname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test + openBracket: '' + - attribute: id + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: OR + object: Users + objectValue: '1' + openBracket: '' + - attribute: firstname + closeBracket: ) + condition: DOES NOT CONTAIN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: gfbfgbg + openBracket: '' + - attribute: city + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: OR + object: Users + objectValue: mysore + openBracket: '' + - attribute: manager + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: admin + openBracket: '' + - attribute: secondaryManager + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: systemadmin + openBracket: '' + - attribute: customproperty21 + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: testtech1_test1 + ruleId: 368 + ruleName: importretesttech1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: lastname + closeBracket: '' + condition: NOT EQUALS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: gffnhfnnn + openBracket: (( + - attribute: middlename + closeBracket: '' + condition: DOES NOT CONTAIN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: thyjgjj + openBracket: '' + - attribute: email + closeBracket: )) + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test@ + openBracket: '' + - attribute: startdate + closeBracket: '' + condition: GREATER THAN + conditionType: Basic + nextCondition: OR + object: Users + objectValue: '2023-08-10' + openBracket: '' + - attribute: enddate + closeBracket: '' + condition: LESS THAN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '2023-10-10' + openBracket: '' + - attribute: manager + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: admin + openBracket: '' + detective: true + owners: + - rank: 5 + username: systemadmin + - rank: 3 + username: admin + removeBirthrightAccess: true + ruleDescription: importretesttech2desc + ruleId: 369 + ruleName: importretesttech2 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' )) + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 370 + ruleName: importretesttech3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: true + conditions: + - attribute: secondaryManager + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: systemadmin + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: test + ruleId: 371 + ruleName: importretesttech4 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' AND a.secondaryManager='systemmadmin')) + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: testdec + ruleId: 372 + ruleName: importretesttech5 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' AND a.secondaryManager='958317 ')) + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 375 + ruleName: importretesttech6 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: bangalore4322 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test123453322 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 385 + ruleName: technicaltrigger1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.7 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: true + conditions: + - attribute: costcenter + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '122233221' + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 386 + ruleName: technicaltrigger2 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.12 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: jobCode + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test55225656 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 387 + ruleName: technicaltrigger3 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.2 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Mysore445442112 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 388 + ruleName: technicaltrigger4 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: ARS1.2 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Camp_SA_EnterpriseRole + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: costcenter + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '445452121' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 389 + ruleName: technicaltrigger5 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"$CN=$APAC_Applic,ation_Support,OU=Exc,hange,OU=Applicati,ons,OU=Gr,oups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=$Asia_BI_Readers_Confidential,OU=Exchange,$OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=$AD_Appr,overs,OU=Exchange,OU=Applica,tions,OU=Groups,OU=Roo,t2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: specialcharacter9 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: specialcharactert91 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 400 + ruleName: testrole$1 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: $ARS1.13 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1$.14 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1.15 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.username ='charactertest87' AND a.lastname ='charactertest871' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 401 + ruleName: testrole$2 + ruleType: 1 + status: ACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: $ARS1.13 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1$.14 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1.5 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: specialcharactertest4 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: specialcharactertestlast4 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 403 + ruleName: testrole$4 + ruleType: 1 + status: ACTIVE + page: + count: 84 + limit: 100 + next: https://qe-eictrunk-aws.saviyntcloud.com/ECM/api/v5/getTechnicalRules?offset=1&limit=100 + offset: 0 + prev: '' + total: 84 + Filter Technical Rules based on Status: + value: + data: + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 2 + ruleName: Create AD account (external) + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 31 + ruleName: External Create Mailbox + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E3 license for external user with Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 33 + ruleName: External create E3 mailbox birthright + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E3 license for external user with Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E3 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 34 + ruleName: External create E3 mailbox + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: CreateAD + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 38 + ruleName: 'Test: Create partner AD user' + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 57 + ruleName: External Mailenableduser + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=CA_PPM_All_All_Management,OU=CAPPM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=Valmet Intra Denied Partners,OU=Valmet Intra,OU=Sharepoint,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=Azure AD Premium Users,OU=Valmet Mobility Services,OU=Provisioning,OU=Production,OU=PPM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: nixu + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: 'No' + openBracket: '' + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Partner + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 64 + ruleName: Testing Birthright_Rule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 79 + ruleName: Create AD account (external)_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: PM Sales - Reference reader + objectAttribute: Assign + objectType: Sovelia::Entitlement + organization: '' + birthright: true + conditions: + - attribute: customproperty41 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: sovelia + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: 'bulk user account creation ' + ruleId: 86 + ruleName: temp_generic_Entitlement provisioning rule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Create AD account (external)_2 + ruleId: 89 + ruleName: Create AD account (external)_2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: External create mailbox birthright_1 + ruleId: 90 + ruleName: External create mailbox birthright_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 F1 Shared workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Blue-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 114 + ruleName: Birthright:Blue-collar_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E5 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 116 + ruleName: External create E3 mailbox birthright_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 117 + ruleName: External create mailbox birthright_1_V1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=Temporary EMS-E3 license,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: 'No' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 120 + ruleName: External create Temporary EMS-E3 license + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.employeeType='Partner' AND a.statuskey=1 AND a.customproperty28 is NULL + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 124 + ruleName: Create AD account (external)_3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.employeeType='Partner' AND a.statuskey=1 AND a.customproperty28 is NULL + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 125 + ruleName: Re-Hire Valmet external_1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Blue-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: ABCDE_Update_test1 + ruleId: 129 + ruleName: 'Birthright: Leased Workforce Partner Blue-collar' + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=O365 E1 External users without Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Blue-Collar + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 130 + ruleName: Re-Hire Leased Workforce Partner Blue-collar + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: Account + objectAttribute: Assign + objectType: Lotus Notes + organization: '' + - object: Notes ID + objectAttribute: Assign + objectType: Lotus Notes::Notes ID + organization: '' + - object: Account + objectAttribute: Assign + objectType: Office Software New + organization: '' + - object: '"CN=M365 E3 External users with Valmet workstation,OU=MS License Assignment,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Office Software New::memberOf + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty28 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Leased Workforce + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: employeeclass + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: White-Collar + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 131 + ruleName: Re-Hire Leased Workforce Partner White-collar + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Basware IA + organization: '' + - object: 1641 Reviewers + objectAttribute: Assign + objectType: Basware IA::Groups + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: bas1014 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: 'radu temp ' + ruleId: 186 + ruleName: 'radu basw temp ' + ruleType: 1 + status: INACTIVE + - actions: + - object: Valmet Technologies Oy (115) Guest Manager + objectAttribute: Assign + objectType: Travel Bookings::Access right + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: TB + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 190 + ruleName: Mihai Temp + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Workstation Admin Groups + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: add111 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: used by Nixu support + ruleId: 193 + ruleName: TempProvAccess + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=Power Apps per user,OU=Power Platform,OU=Systems,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Power Platform::memberOf + organization: '' + birthright: false + conditions: + - attribute: customproperty60 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Power Apps per user + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 195 + ruleName: anthonytemp + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Saviynt + organization: '' + - object: ROLE_ENDUSER + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty16 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ENABLED + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 205 + ruleName: Re-Hire Valmet internal Saviynt Access + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Vegas AD + organization: '' + - object: '"CN=Idefix,OU=TenantGroups,OU=Vegas,DC=vegas,DC=aut,DC=valmet,DC=com"' + objectAttribute: Assign + objectType: Vegas AD::memberOf + organization: '' + birthright: false + conditions: + - attribute: customproperty64 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: vegasadadd + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 207 + ruleName: Add vegas AD account + ruleType: 1 + status: INACTIVE + - actions: + - object: ROLE_ENDUSER + objectAttribute: Assign + objectType: Saviynt::SAVRole + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Employee + openBracket: '' + - attribute: customproperty16 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ENABLED + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 209 + ruleName: Re-Hire Valmet internal Saviynt Access 2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AWS Administrators + organization: '' + birthright: false + conditions: + - attribute: id + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: enterpriserole111 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 213 + ruleName: enterpriserole111 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AWS Developers + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Det + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 216 + ruleName: TestTeschnical_Rule2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AzureAD + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Joy + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 217 + ruleName: TestDet_Rule1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Camp_RO_Role4 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test16 + openBracket: '' + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test61 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 218 + ruleName: testmay16 + ruleType: 1 + status: INACTIVE + - actions: + - object: AADAccesstask + objectAttribute: Assign + objectType: AzureAD::AADGroup + organization: '' + - object: aadGroup13 + objectAttribute: Assign + objectType: AzureAD::AADGroup + organization: '' + birthright: false + conditions: + - attribute: city + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Ben + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 219 + ruleName: TestDet_Rule3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: NewADEP + organization: '' + - object: '"CN=Group_CONN_QA_22,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: NewADEP::memberOf + organization: '' + birthright: true + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.firstname like '%test%' and a.city='bangalore' + detective: false + owners: + - rank: 1 + username: aaa_wabuarvaca_auar_prid + - rank: 1 + username: fluw_webuervece_uuer_prud + - rank: 1 + username: Tessting_User + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 221 + ruleName: Advancetechrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP + organization: '' + - object: Comp_UM_Ent1Val1 + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP::Comp_UM_Ent + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Employee + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Rule_18255475-1d33-4229-aa4d-119434c4c451 + ruleId: 227 + ruleName: Rule_18255475-1d33-4229-aa4d-119434c4c451 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: C13596338_Endpoint + organization: '' + - object: C13596338_Ent1_vnnC + objectAttribute: Assign + objectType: C13596338_Endpoint::entType1 + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Cpvw_C13596338 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: Rule_0aa2a532-2270-49e2-8832-9d6b698bc4a8 + ruleId: 229 + ruleName: Rule_0aa2a532-2270-49e2-8832-9d6b698bc4a8 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP + organization: '' + - object: Comp_UM_Ent1Val1 + objectAttribute: Assign + objectType: AssuredCompliance_UM_EP::Comp_UM_Ent + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Employee + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: Rule_a2c147cd-bdaa-4048-8df0-8a0209a188cc + ruleId: 246 + ruleName: Rule_a2c147cd-bdaa-4048-8df0-8a0209a188cc + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: C13596338_Endpoint + organization: '' + - object: C13596338_Ent1_lctA + objectAttribute: Assign + objectType: C13596338_Endpoint::entType1 + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: zSQW_C13596338 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: Rule_dc278dc8-9501-40c2-abbb-4c47e01b4e79 + ruleId: 247 + ruleName: Rule_dc278dc8-9501-40c2-abbb-4c47e01b4e79 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Test_EndPoint + organization: '' + - object: ${user.city} + objectAttribute: Assign + objectType: Test_EndPoint::enttype + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: testdynamicattr + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 254 + ruleName: techrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '0708' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: AD0708_CREATEACCOUNT + ruleId: 257 + ruleName: AD0708_CREATEACCOUNT + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + - object: '"CN=Group_CONN_QA_8,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: AD0708::memberOf + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Raichur + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: AD_RemoveAccount_Rule_CONN + ruleId: 259 + ruleName: AD_RemoveAccount_Rule_CONN + ruleType: 1 + status: INACTIVE + - actions: + - object: Access control system of saviynt + objectAttribute: Assign + objectType: okta_qa_10598::OktaGroup + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: '' + - attribute: customproperty13 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Saviynt + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: Tech Rule for Active Candidates group + ruleId: 279 + ruleName: Tech Rule for Active Candidates group + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AC_EP + organization: '' + birthright: true + conditions: + - attribute: statuskey + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '1' + openBracket: ( + - attribute: jobCode + closeBracket: ) + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: ('100-7000','330-165','400-1040','400-1042','400-1043') + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 281 + ruleName: ADFS_Rule20 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=CoMPass SBL Budgeting,OU=Domain Groups,OU=Compass,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + - object: '"CN=CNOP_XIA_REP,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: customproperty12 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: RehireBefore90 + openBracket: '' + - attribute: customproperty4 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: RehireActive + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 282 + ruleName: Rehire_BirthRight_Group_Assignment + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: Reference Data + organization: '' + - object: '509162' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '615081' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '501522' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + - object: '621552' + objectAttribute: Assign + objectType: Reference Data::Supplier + organization: '' + birthright: true + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: BSTuser + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 299 + ruleName: Reference + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=RAU_R&D_OPTIFEEDTEAM,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: false + conditions: + - attribute: customproperty25 + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: SS-6070 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 310 + ruleName: SS-6070TR + ruleType: 1 + status: INACTIVE + - actions: + - object: '"CN=SA Valmet Managers,OU=Exchange,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: GREATER THAN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: dadasd + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 318 + ruleName: AAAAORGANISATIONTEST + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD0708 + organization: '' + birthright: false + conditions: + - attribute: firstname + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: testsup + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: test + ruleId: 326 + ruleName: test_TechRule_SUP + ruleType: 1 + status: INACTIVE + - actions: + - object: ARS1.2#####test12####123 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: fdvfdvfv + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 327 + ruleName: fdfdf + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: AD_INTGN3085_17aug + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: NIT_UserSSM_15sep + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: SS_Test_14sep + ruleId: 328 + ruleName: SS_Test_14sep + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: SalesForce_CONN_QA + organization: '' + birthright: true + conditions: + - attribute: jobcodedesc + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: AFS + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 329 + ruleName: TestManish + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: SS_testinstantprovisioning + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: NIT_UserSSM_14sep + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: check instatnt + ruleId: 332 + ruleName: SS_Rule_testinstantprov + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: NewADEP + organization: '' + - object: '"CN=Group_CONN_QA_28,OU=Groups,OU=CONNQA,OU=SaviyntTeams,DC=saviyntlabs,DC=org"' + objectAttribute: Assign + objectType: NewADEP::memberOf + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Instantprovuser + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 333 + ruleName: newtechrule + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"REST_Users_,comma,test"' + organization: '' + - object: '"CN=ServiceAccount_LogonRestriction,OU=Common Accounts,OU=Groups,OU=IDM,OU=Applications,OU=Groups,OU=Root2,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory - Service Accounts::memberOf + organization: '' + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"comma,test,rule"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Test + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: sabitestcomma + ruleId: 341 + ruleName: sabitestcomma + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.,5"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: false + conditions: + - attribute: displayname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 345 + ruleName: testtech1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"AR,S1.3,test"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"AR,S1.,5"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: a.username ='admin' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 346 + ruleName: testtech2 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: dfdf + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 347 + ruleName: testtech3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"A,R,S,test"' + organization: '' + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: '' + object: Users + objectValue: hjgfgh + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 352 + ruleName: techa1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: customproperty1 + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: Test123 + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: true + ruleDescription: '' + ruleId: 354 + ruleName: ManishTechRuleCommaSeparated + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: rest2109 + organization: '' + - object: Support + objectAttribute: Assign + objectType: rest2109::Group + organization: '' + birthright: true + conditions: + - attribute: city + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: city1234 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: SS-6087-1 + ruleId: 356 + ruleName: SS-6087-1 + ruleType: 1 + status: INACTIVE + - actions: + - object: Support + objectAttribute: Assign + objectType: rest2109::Group + organization: '' + birthright: true + conditions: + - attribute: street + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: street123 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: true + ruleDescription: SS-6087-2 + ruleId: 357 + ruleName: SS-6087-2 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"A,R,S1.10"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test + openBracket: ( + - attribute: displayname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test + openBracket: '' + - attribute: id + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: OR + object: Users + objectValue: '1' + openBracket: '' + - attribute: firstname + closeBracket: ) + condition: DOES NOT CONTAIN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: gfbfgbg + openBracket: '' + - attribute: city + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: OR + object: Users + objectValue: mysore + openBracket: '' + - attribute: manager + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: admin + openBracket: '' + - attribute: secondaryManager + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: systemadmin + openBracket: '' + - attribute: customproperty21 + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: test + openBracket: '' + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: testtech1_test1 + ruleId: 368 + ruleName: importretesttech1 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"Ente,rpris,etest"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: lastname + closeBracket: '' + condition: NOT EQUALS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: gffnhfnnn + openBracket: (( + - attribute: middlename + closeBracket: '' + condition: DOES NOT CONTAIN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: thyjgjj + openBracket: '' + - attribute: email + closeBracket: )) + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: test@ + openBracket: '' + - attribute: startdate + closeBracket: '' + condition: GREATER THAN + conditionType: Basic + nextCondition: OR + object: Users + objectValue: '2023-08-10' + openBracket: '' + - attribute: enddate + closeBracket: '' + condition: LESS THAN + conditionType: Basic + nextCondition: AND + object: Users + objectValue: '2023-10-10' + openBracket: '' + - attribute: manager + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: admin + openBracket: '' + detective: true + owners: + - rank: 5 + username: systemadmin + - rank: 3 + username: admin + removeBirthrightAccess: true + ruleDescription: importretesttech2desc + ruleId: 369 + ruleName: importretesttech2 + ruleType: 1 + status: INACTIVE + - actions: + - object: '"AR,S1.1"' + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: '"Cam,p_UM_Enterpri,seRole"' + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' )) + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 370 + ruleName: importretesttech3 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' AND a.secondaryManager='systemmadmin')) + detective: true + owners: [] + removeBirthrightAccess: false + ruleDescription: testdec + ruleId: 372 + ruleName: importretesttech5 + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + birthright: false + conditions: + - conditionType: Advanced + queryForAdvancedCondition: (( a.username like '%test%' AND a.displayname like 'test1234%' AND a.manager ='930573' AND a.secondaryManager='958317 ')) + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 375 + ruleName: importretesttech6 + ruleType: 1 + status: INACTIVE + page: + count: 65 + limit: 100 + next: https://qe-eictrunk-aws.saviyntcloud.com/ECM/api/v5/getTechnicalRules?offset=1&limit=100 + offset: 0 + prev: '' + total: 65 + Filter Technical Rules based on rulename: + value: + data: + - actions: + - object: Account + objectAttribute: Assign + objectType: ARS + organization: '' + - object: $ARS1.13 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1$.14 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: ARS1.5 + objectAttribute: Assign + objectType: ARS::"A,RS,1" + organization: '' + - object: Enterprise1 + objectAttribute: Assign + objectType: Enterprises Roles + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: AND + object: Users + objectValue: specialcharactertest4 + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: EQUALS + conditionType: Basic + nextCondition: '' + object: Users + objectValue: specialcharactertestlast4 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 403 + ruleName: testrole$4 + ruleType: 1 + status: ACTIVE + page: + count: 1 + limit: 100 + next: https://qe-eictrunk-aws.saviyntcloud.com/ECM/api/v5/getTechnicalRules?offset=1&limit=100 + offset: 0 + prev: '' + total: 1 + fetching technical rules with offset and limit: + value: + data: + - actions: + - object: Account + objectAttribute: Assign + objectType: Active Directory + organization: '' + - object: '"CN=Domain Users,CN=Users,DC=vstage,DC=co"' + objectAttribute: Assign + objectType: Active Directory::memberof + organization: '' + birthright: true + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: statuskey + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: '1' + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 2 + ruleName: Create AD account (external) + ruleType: 1 + status: INACTIVE + - actions: + - object: Account + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"' + organization: '' + - object: Office 365 E1 license for external user without Valmet workstation + objectAttribute: Assign + objectType: '"O365, Outlook & Skype"::Product' + organization: '' + birthright: false + conditions: + - attribute: employeeType + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: AND + object: Users + objectValue: Partner + openBracket: '' + - attribute: customproperty29 + closeBracket: '' + condition: EQUAL + conditionType: Basic + nextCondition: '' + object: Users + objectValue: E1 + openBracket: '' + detective: false + owners: [] + removeBirthrightAccess: false + ruleDescription: '' + ruleId: 31 + ruleName: External Create Mailbox + ruleType: 1 + status: INACTIVE + page: + count: 2 + limit: 2 + next: https://qe-eictrunk-aws.saviyntcloud.com/ECM/api/v5/getTechnicalRules?offset=2&limit=2 + offset: 1 + prev: '' + total: 84 + security: + - bearerAuth: [] + put: + tags: + - policies + summary: Update Technical Rules + description: |- + Starting with Release v23.11, you can use the REST API to update the existing technical rules in a readable and organized manner. + The `Authorization` must have `Bearer` followed by `Token`. + **Mandatory params:** + - `ruleName` + - `detective` + - `birthright` + - `conditions` + - `actions` + - `removeBirthrightAccess` + + **Optional params:** + - `ruleDescription` + - `status` + - `organization` + - `owners` + operationId: updateTechnicalRules + requestBody: + content: + application/json: + schema: + type: object + properties: + actions: + type: array + items: + type: object + properties: + object: + type: string + example: Account + objectAttribute: + type: string + example: Assign + objectType: + type: string + example: EO_EP1 + organization: + type: string + example: '' + example: + - object: Account + objectAttribute: Assign + objectType: EO_EP1 + organization: '' + - object: EO_EP1_ParentEnt1 + objectAttribute: Assign + objectType: EO_EP1::EO_EP1_EntType + organization: '' + birthright: + type: boolean + example: true + conditions: + type: array + items: + type: object + properties: + attribute: + type: string + example: username + closeBracket: + type: string + example: '' + condition: + type: string + example: CONTAINS + conditionType: + type: string + example: Basic + nextCondition: + type: string + example: OR + object: + type: string + example: Users + objectValue: + type: string + example: dhruv + openBracket: + type: string + example: '' + example: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: dhruv + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: uv + openBracket: '' + - attribute: city + closeBracket: '' + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: noida,banglore + openBracket: '' + detective: + type: boolean + example: true + owners: + type: array + items: + type: object + properties: + rank: + type: number + example: 1 + username: + type: string + example: '100121' + example: + - rank: 1 + username: '100121' + removeBirthrightAccess: + type: boolean + example: true + ruleDescription: + type: string + example: This API is updated + ruleId: + type: number + example: 0 + ruleName: + type: string + example: TESTRULEoct17 + ruleType: + type: number + example: 1 + status: + type: string + example: ACTIVE + examples: + Update Technical Rules: + value: + actions: + - object: Account + objectAttribute: Assign + objectType: EO_EP1 + organization: '' + - object: EO_EP1_ParentEnt1 + objectAttribute: Assign + objectType: EO_EP1::EO_EP1_EntType + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: dhruv + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: uv + openBracket: '' + - attribute: city + closeBracket: '' + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: noida,banglore + openBracket: '' + detective: true + owners: + - rank: 1 + username: '100121' + removeBirthrightAccess: true + ruleDescription: This API is updated + ruleId: 0 + ruleName: TESTRULEoct17 + ruleType: 1 + status: ACTIVE + responses: + '200': + description: Update Technical Rules + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 17 Oct 2023 04:28:03 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=0064cc70-9384-4e6a-9d3c-1477afa41749; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + msg: + type: string + example: Rule Updated Successfully + examples: + Update Technical Rules: + value: + msg: Rule Updated Successfully + post: + tags: + - policies + summary: Create Technical Rules + description: |- + Starting with Release v23.11, you can use this REST API to effortlessly create new technical rules. + The `Authorization` must have `Bearer` followed by `Token`. + **Mandatory params:** + - `ruleName` - `detective` - `birthright` - `conditions` - `actions` - `removeBirthrightAccess` + + **Optional params:** + - `ruleDescription` - `status` - `organization` - `owners` - `ruletype` + operationId: createTechnicalRules + requestBody: + content: + application/json: + schema: + type: object + properties: + actions: + type: array + items: + type: object + properties: + object: + type: string + example: Account + objectAttribute: + type: string + example: Assign + objectType: + type: string + example: EO_EP1 + organization: + type: string + example: '' + example: + - object: Account + objectAttribute: Assign + objectType: EO_EP1 + organization: '' + - object: EO_EP1_ParentEnt1 + objectAttribute: Assign + objectType: EO_EP1::EO_EP1_EntType + organization: '' + birthright: + type: boolean + example: true + conditions: + type: array + items: + type: object + properties: + attribute: + type: string + example: username + closeBracket: + type: string + example: '' + condition: + type: string + example: CONTAINS + conditionType: + type: string + example: Basic + nextCondition: + type: string + example: OR + object: + type: string + example: Users + objectValue: + type: string + example: dhruv + openBracket: + type: string + example: '' + example: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: dhruv + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: ra + openBracket: '' + - attribute: city + closeBracket: '' + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: noida,banglore + openBracket: '' + detective: + type: boolean + example: true + owners: + type: array + items: + type: object + properties: + rank: + type: number + example: 1 + username: + type: string + example: '100121' + example: + - rank: 1 + username: '100121' + removeBirthrightAccess: + type: boolean + example: true + ruleDescription: + type: string + example: Will use this to import rule using api + ruleId: + type: number + example: 0 + ruleName: + type: string + example: TESTRULEoct17 + ruleType: + type: number + example: 1 + status: + type: string + example: ACTIVE + examples: + Create Technical Rules: + value: + actions: + - object: Account + objectAttribute: Assign + objectType: EO_EP1 + organization: '' + - object: EO_EP1_ParentEnt1 + objectAttribute: Assign + objectType: EO_EP1::EO_EP1_EntType + organization: '' + birthright: true + conditions: + - attribute: username + closeBracket: '' + condition: CONTAINS + conditionType: Basic + nextCondition: OR + object: Users + objectValue: dhruv + openBracket: '' + - attribute: lastname + closeBracket: '' + condition: STARTS WITH + conditionType: Basic + nextCondition: AND + object: Users + objectValue: ra + openBracket: '' + - attribute: city + closeBracket: '' + condition: IN + conditionType: Basic + nextCondition: '' + object: Users + objectValue: noida,banglore + openBracket: '' + detective: true + owners: + - rank: 1 + username: '100121' + removeBirthrightAccess: true + ruleDescription: Will use this to import rule using api + ruleId: 0 + ruleName: TESTRULEoct17 + ruleType: 1 + status: ACTIVE + responses: + '200': + description: Creating Technical Rules + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 17 Oct 2023 03:53:20 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: CCSRF-TOKEN=efdfc76b-c70a-407c-9658-af64d79246d6; HttpOnly; Secure; SameSite=Strict; Path=/; + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + application/json: + schema: + type: object + properties: + msg: + type: string + example: Rule Insterted Successfully + examples: + Creating Technical Rules: + value: + msg: Rule Insterted Successfully + security: + - bearerAuth: [] + delete: + tags: + - policies + summary: Delete Technical Rules + description: |- + Starting with Release v23.11, you can use the REST API to delete an inactive technical rules from the target system by specifying the `ruleId` parameter. + **Note:** + - You can only delete an inactive technical rules. + - You cannot delete technical rules if: + + - the Rule is active. + + - the ID does not exist. + + - the user who perform the delete process is not a ROLE_ADMIN. + + + The `Authorization` must have `Bearer` followed by `Token`. + Mandatory param: + `ruleId` + operationId: deleteTechnicalRules + parameters: + - name: id + in: query + schema: + type: string + example: '117' + responses: + '200': + description: Delete Technical Rules + headers: + Access-Control-Allow-Credentials: + schema: + type: string + example: 'true' + Access-Control-Allow-Origin: + schema: + type: string + example: https://qe-eictrunk-aws.saviyntcloud.com + Cache-Control: + schema: + type: string + example: post-check=0, pre-check=0 + Content-Security-Policy: + schema: + type: string + example: base-uri 'self' ; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://ssl.google-analytics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' 'unsafe-eval'; object-src 'self' ; media-src 'self' ; manifest-src 'self' ; img-src 'self' https://ssl.google-analytics.com ; frame-src 'self' https://www.google.com/ ; connect-src 'self' ; font-src 'self' https://fonts.googleapis.com https://www.google.com https://www.unpkg.com https://fonts.gstatic.com ; form-action 'self'; frame-ancestors 'self'; default-src 'self' + Date: + schema: + type: string + example: Tue, 17 Oct 2023 11:30:02 GMT + Expires: + schema: + type: string + example: Sun, 7 May 1995 12:00:00 GMT + Permissions-Policy: + schema: + type: string + example: script-src 'self'; camera 'none' + Referrer-Policy: + schema: + type: string + example: origin + Set-Cookie: + schema: + type: string + example: user_name=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ + Strict-Transport-Security: + schema: + type: string + example: max-age=31536000; includeSubDomains + X-Content-Type-Options: + schema: + type: string + example: nosniff + content: + text/plain: + examples: + Delete Technical Rules: + value: Rule deleted Successfully +components: + securitySchemes: + bearerAuth: + type: http + scheme: bearer + bearerFormat: JWT +x-ignoredHeaderParameters: + - Accept + - User-Agent + - Cache-Control + - Content-Length + - Server + - X-Frame-Options \ No newline at end of file diff --git a/dist/saviynt-rest-api-5.0-collection.json b/dist/saviynt-rest-api-5.0-collection.json new file mode 100644 index 0000000..a2d6f64 --- /dev/null +++ b/dist/saviynt-rest-api-5.0-collection.json @@ -0,0 +1,34160 @@ +{ + "item": [ + { + "name": "api", + "description": "", + "item": [ + { + "name": "login", + "description": "", + "item": [ + { + "id": "758c4867-e5f1-42ba-9634-59a190630416", + "name": "Get Authorization Token", + "request": { + "name": "Get Authorization Token", + "description": { + "content": "The `Bearer Authentication scheme` is dedicated to the authentication using a token and is described by the [RFC6750]. Even if this scheme comes from an OAuth2 specification, you can still use it as a way to exchange between a client and a server.\nThe SSM API currently requires the HTTP authentication scheme `Bearer` for authentication. All requests must have a valid `Token` specified in the HTTP Authorization header with the `Bearer` scheme.\n> https://example.saviyntcloud.com/ECM/api/login \n\nA `POST` request by passing 'username' and 'password' in `json` text in the `body`, will return a `Token` in the response which can be passed in a `header` variable for subsequent requests", + "type": "text/plain" + }, + "url": { + "path": [ + "api", + "login" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"username\": \"\",\n \"password\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "7f4c2793-ae19-41d3-995e-989cb89d2e90", + "name": "Get Token", + "originalRequest": { + "url": { + "path": [ + "api", + "login" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"username\": \"\",\n \"password\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Length", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + } + ], + "body": "{\n \"access_token\": \"\",\n \"expires_in\": \"\",\n \"refresh_token\": \"\",\n \"roles\": [\n \"\",\n \"\"\n ],\n \"token_type\": \"\",\n \"username\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + } + ] + }, + { + "name": "oauth", + "description": "", + "item": [ + { + "name": "access_token", + "description": "", + "item": [ + { + "id": "9aa48d6b-db13-40d5-a4a9-a51243264984", + "name": "Refresh Authorization Token", + "request": { + "name": "Refresh Authorization Token", + "description": { + "content": "Saviynt Enterprise Identity Cloud (EIC) supports OAuth2.0 . OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications. For more information refer link below.\n**Note**_**:**_ If grails.plugin.springsecurity.rest.refreshtoken.storage.jwt.expiration is set to some value in Config.groovy, refresh token will expire based on this config in api/login api. This will generate a new refresh token if another config - grails.plugin.springsecurity.rest.refreshtoken.new is set to true in Config.groovy. For blank or null, it will return the same Refresh token as passed in oauth/access_token api\n[OAuth 2.0 documentation](https://oauth.net/2/)", + "type": "text/plain" + }, + "url": { + "path": [ + "oauth", + "access_token" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "grant_type", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "refresh_token", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "e2ce859e-407b-43da-92f3-b0b10aa25e24", + "name": "Refresh Token", + "originalRequest": { + "url": { + "path": [ + "oauth", + "access_token" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "grant_type", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "refresh_token", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + } + ], + "body": "{\n \"access_token\": \"\",\n \"expires_in\": \"\",\n \"refresh_token\": \"\",\n \"roles\": [\n \"\",\n \"\"\n ],\n \"token_type\": \"\",\n \"username\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + } + ] + }, + { + "name": "createUser", + "description": "", + "item": [ + { + "id": "bbac0acd-0342-44b4-8b42-c5540d9e66ce", + "name": "Create User", + "request": { + "name": "Create User", + "description": { + "content": "This API onboard or create a new user.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional Parameters:\n`validateagainstpolicy` - Values: Y/N, default is Y. Checks for the password policy,\n`statuskey` - Values:1/0, 0 - Inactive, 1 - Active (default),\n`allowpastdate` - true / false (default). If true, allows startdate to be less than current date,\n`User params` like username, firstname, preferedFirstName, lastname, middlename, street, city, comments, statuskey, startdate(MM-dd-yyyy), enddate(MM-dd-yyyy), manager (manager username), password, location, jobCode, jobDescription, employeeType, departmentNumber, title, state, companyname, costcenter, departmentname, employeeclass, entity, jobcodedesc, locationdesc, locationnumber, siteid, orgunitid, region, regioncode, owner, employeeid, lastsyncdate, createdate, email, phonenumber, job_function, country, displayname, enabled(can be \"1\"/\"true\" or \"0\"/\"false\"), passwordExpired(can be \"1\"/\"true\" or \"0\"/\"false\"), accountExpired(can be \"1\"/\"true\" or \"0\"/\"false\"), accountLocked(can be \"1\"/\"true\" or \"0\"/\"false\"), secondaryManager, createdBy, termDate, vendorManager, secondaryPhone, secondaryEmail, customproperty<1-50>, hcp<1-5>, ecp<1-5>, customer(pass the organization name),\n`securityQuestions` -\nExample: \"securityQuestions\":\\[ { \"securityQuestion\":\"What is your first Pet's name?\", \"securityAnswer\":\"kitty\" }, { \"securityQuestion\":\"What is your favorite food?\", \"securityAnswer\":\"food\" } \\],\n`checkrules` - true/ false (default : true), if true, then rules will be evaluated immediately, if false rules will be evaluated by a job. If checkrulesforapi configuration(true/false/null) is set in the configuration table, then it will take precendence over checkrules parameter.\n`inlineruleevaluation` - true/ false (default is true), if true then rules will be evaluated immediately, if false rules will be evaluated by a job.\n_**Note**_ - CreateUser API will not invoke workflow based on the _**User Modification Workflow**_ configuration. Please use createUserRequest API instead.\n_**Note**_ - Both `checkrules` and `inlineruleevaluation` need to be set as true for the user update rules to be evaluated immediately.\n`batchidentifier` - When inlineruleevaluation=false, this Rule Run Unique Identifier can be set and user update rules can be processed later by calling /api/processrules API\n_**It's highly recommended to pass inlineruleevaluation:\"false\" for bulk load and call processrules api to evaluate and run the rules after the load is done.**_", + "type": "text/plain" + }, + "url": { + "path": [ + "createUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountExpired\": \"\",\n \"accountLocked\": \"\",\n \"allowpastdate\": \"\",\n \"enabled\": \"\",\n \"enddate\": \"\",\n \"firstname\": \"\",\n \"passwordExpired\": \"\",\n \"startdate\": \"\",\n \"statuskey\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "519b8aa0-e3ec-473f-850f-b09c178b8fd9", + "name": "Create User", + "originalRequest": { + "url": { + "path": [ + "createUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountExpired\": \"\",\n \"accountLocked\": \"\",\n \"allowpastdate\": \"\",\n \"enabled\": \"\",\n \"enddate\": \"\",\n \"firstname\": \"\",\n \"passwordExpired\": \"\",\n \"startdate\": \"\",\n \"statuskey\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateUser", + "description": "", + "item": [ + { + "id": "080796be-1750-4653-8ea0-b7973da258a0", + "name": "Update User", + "request": { + "name": "Update User", + "description": { + "content": "This method updates a specific \"user\" record in SSM, based on the input parameter `username` of the relevant user. \n\nAll the input parameters it requires are attributes which could be updated for the relevant user record. The attributes which are supplied with valid values as input to the method, will get updated, if the operation is successfully executed.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nMandatory params:\n\n`username`\n\n***OR***\n\n`propertytosearch`\n\n***Note*** - If both params are passed, propertytosearch will take precedence.\n\nOptional params:\n\n`validateagainstpolicy` - Values: Y/N, default is Y. Checks for the password policy,\n\n`allowpastdate` - true / false (default). If true, allows startdate to be less than current date,\n\n`statuskey` - Values:1/0, 0 - Inactive, 1 - Active,\n\n`updatedusername` - update username,\n\n`User params` like\n firstname, \n preferedFirstName,\n lastname,\n middlename,\n street,\n city,\n comments,\n statuskey,\n startdate(MM-dd-yyyy),\n enddate(MM-dd-yyyy),\n manager (manager username),\n password,\n location,\n jobCode,\n jobDescription,\n employeeType,\n systemUserName,\n departmentNumber,\n title,\n state,\n companyname,\n costcenter,\n departmentname,\n employeeclass,\n entity,\n jobcodedesc,\n locationdesc,\n locationnumber,\n siteid,\n orgunitid,\n region,\n regioncode,\n owner,\n employeeid,\n lastsyncdate,\n createdate,\n email,\n phonenumber,\n job_function,\n country,\n displayname,\n enabled(can be \"1\"/\"true\" or \"0\"/\"false\"),\n passwordExpired(can be \"1\"/\"true\" or \"0\"/\"false\"),\n\taccountExpired(can be \"1\"/\"true\" or \"0\"/\"false\"),\n\taccountLocked(can be \"1\"/\"true\" or \"0\"/\"false\"),\n secondaryManager,\n createdBy,\n termDate,\n vendorManager,\n secondaryPhone,\n secondaryEmail,\n customproperty<1-50>,\n hcp<1-5>,\n ecp<1-5>,\n customer(pass the organization name),\n \n `securityQuestions` - \n\nExample: \n\"securityQuestions\":[\n\t\t{\n\t\t\t\"securityQuestion\":\"What is your first Pet's name?\",\n\t\t\t\"securityAnswer\":\"kitty\"\n\t\t},\n\t\t{\n\t\t\t\"securityQuestion\":\"What is your favorite food?\",\n\t\t\t\"securityAnswer\":\"food\"\n\t\t}\n\t\t],\n\t\t\n`checkrules` - true/ false (default : true), if true, then rules will be evaluated immediately, if false rules will be evaluated by a job. If checkrulesforapi configuration(true/false/null) is set in the configuration table, then it will take precendence over checkrules parameter.\n\n`inlineruleevaluation` - true/ false (default is true), if true then rules will be evaluated immediately, if false rules will be evaluated by a job.\n\n***Note*** - UpdateUser API will not invoke workflow based on the ***User Modification Workflow*** configuration. Please use updateUserRequest API instead.\n\n***Note*** - Both `checkrules` and `inlineruleevaluation` need to be set as true for the user update rules to be evaluated immediately.\n\n`batchidentifier` - When inlineruleevaluation=false, this Rule Run Unique Identifier can be set and user update rules can be processed later by calling /api/processrules API\n\n***Note*** - This API supports PUT HTTP method along with POST.\n\n***It's highly recommended to pass inlineruleevaluation:\"false\" for bulk load and call processrules api to evaluate and run the rules after the load is done.***", + "type": "text/plain" + }, + "url": { + "path": [ + "updateUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"customproperty1\": \"\",\n \"email\": \"\",\n \"employeeType\": \"\",\n \"firstname\": \"\",\n \"jobcodedesc\": \"\",\n \"lastname\": \"\",\n \"manager\": \"\",\n \"middlename\": \"\",\n \"preferedFirstName\": \"\",\n \"propertytosearch\": \"\",\n \"statuskey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "53c9a7e1-6d58-4b0e-9b6c-9972ab4f9b02", + "name": "Update User / Update User - Inactive Manager / Update User - propertytosearch param", + "originalRequest": { + "url": { + "path": [ + "updateUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"customproperty1\": \"\",\n \"email\": \"\",\n \"employeeType\": \"\",\n \"firstname\": \"\",\n \"jobcodedesc\": \"\",\n \"lastname\": \"\",\n \"manager\": \"\",\n \"middlename\": \"\",\n \"preferedFirstName\": \"\",\n \"propertytosearch\": \"\",\n \"statuskey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getUser", + "description": "", + "item": [ + { + "id": "f232ec73-f227-4351-9763-7b881e8dcfbf", + "name": "Get User Details", + "request": { + "name": "Get User Details", + "description": { + "content": "This method returns a `List` of Users in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nOptional params:\r\n\r\n`username` - Specify the username for which you want to get the user attribute details,\r\n\r\n`responsefields` - User attributes which you want to see in the response(for encrypted values, mention ecp<1-5>, and for hashed values, mention hcp<1-5>),\r\n\r\n`max`,\r\n\r\n`offset`,\r\n\r\n`sort`,\r\n\r\n`order` - asc/desc,\r\n\r\n`manager` - username,\r\n\r\n`secondarymanager` - userkey *OR* `secondaryManager` - username\r\n\r\n`showsecurityanswers` - \"0\"/\"1\" to display encrypted security answers for the user \r\n\r\n \r\n\r\n\r\n`filtercriteria` - User fields based on which you want to get the user attribute details(including userkey),\r\n\r\n***OR***\r\n\r\n`searchCriteria` - search for a user based on the string passed (eg - “\\*ab\\*” or “\\*ab” or “ab\\*”) in their firstname, lastname, displayname and username only, example - \"ab*\" - This will return all users with firstname or lastname or username starting with \"ab\"\r\n\r\n***OR***\r\n\r\n`advsearchcriteria` - search for a user based on the string passed (eg - “\\*ab\\*” or “\\*ab” or “ab\\*”), example - {\"username\":\"a*\", \"firstname\":\"*b\"} - This will return all users with username starting with \"a\" AND firstname ending with \"b\". Exact match search is applicable for types boolean, users, customer. Date can be entered in format - yyyy-MM-dd.\r\n\r\n***OR***\r\n\r\n`userQuery` - Sample: “userQuery”:”user.customproperty1='abc' or user.displayname like '%display%'”.\r\n\r\n***Note*** - By default, if no responsefields param is passed, required attrs that will always return are username, email, statuskey, firstname, lastname, employeeid along with other attributes with nonblank values only.", + "type": "text/plain" + }, + "url": { + "path": [ + "getUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"filtercriteria\": {\n \"username\": \"\"\n },\n \"showsecurityanswers\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "83ecb986-2e4f-46ef-b391-a9246a6d0829", + "name": "Get User Details / Get User Details 2", + "originalRequest": { + "url": { + "path": [ + "getUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"filtercriteria\": {\n \"username\": \"\"\n },\n \"showsecurityanswers\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalcount\": \"\",\n \"userlist\": [\n {\n \"firstname\": \"\",\n \"statuskey\": \"\",\n \"userKey\": \"\",\n \"username\": \"\"\n },\n {\n \"firstname\": \"\",\n \"statuskey\": \"\",\n \"userKey\": \"\",\n \"username\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "user", + "description": "", + "item": [ + { + "id": "6bbe3914-55a3-4433-9c45-3a06ee02a820", + "name": "Get List of Users", + "request": { + "name": "Get List of Users", + "description": { + "content": "This API returns the user information from SSM. This API will return only the user attributes which are not null or blank.\r\n\r\nYou can search for a user based on any parameters given below and not only the username.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`q`\r\n\r\nOptional params:\r\n`offset`,\r\n`max`,\r\n`sort`,\r\n`order`,\r\n`countonly`,\r\n`fields`\r\n`showsecurityanswers` - \"0\"/\"1\" to display encrypted security answers for the user", + "type": "text/plain" + }, + "url": { + "path": [ + "user" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "q", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "fields", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "sort", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "order", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "0415ff58-cd4f-470e-8ee4-be49029f53f0", + "name": "Get User", + "originalRequest": { + "url": { + "path": [ + "user" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "q", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "fields", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "sort", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "order", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"offset\": \"\",\n \"order\": \"\",\n \"results\": [\n {\n \"Last Name\": \"\",\n \"User Name\": \"\",\n \"firstname\": \"\"\n },\n {\n \"Last Name\": \"\",\n \"User Name\": \"\",\n \"firstname\": \"\"\n }\n ],\n \"sort\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "addremoveuserfromrole", + "description": "", + "item": [ + { + "id": "d6259e2f-d042-4e8a-819c-956c7cf222dc", + "name": "Add/Remove User from SAV ROLE", + "request": { + "name": "Add/Remove User from SAV ROLE", + "description": { + "content": "This method grants/removes membership of a \"user\" to one or more roles in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`username` - Username for the user to whom the roles are to be granted,\r\n\r\n`rolename` - comma separated values with names of roles that need to be granted,\r\n\r\n`operation` (0/1) - 0:Remove and 1:Add", + "type": "text/plain" + }, + "url": { + "path": [ + "addremoveuserfromrole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [] + }, + "auth": null + }, + "response": [ + { + "id": "e19054b9-2c1f-4a39-93d7-d1e913fbf57b", + "name": "Add Remove User from Sav Role - Success / Add/Remove User from SAV ROLE - Failure", + "originalRequest": { + "url": { + "path": [ + "addremoveuserfromrole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getAccessDetailsForUser", + "description": "", + "item": [ + { + "id": "9619ef25-5fcc-48e3-84b3-45cb7ed4098c", + "name": "Get Access Details For User", + "request": { + "name": "Get Access Details For User", + "description": { + "content": "This API call can be used to get the user details, account details, and details of all the entitlements the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`username`\r\n\r\nOptional params:\r\n`endpoint`, `max`, `offset`, `entitlementtype`\r\n\r\n***Note*** - This API supports GET HTTP method along with POST.", + "type": "text/plain" + }, + "url": { + "path": [ + "getAccessDetailsForUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "09324f1f-a821-4fca-8781-928be51231a4", + "name": "Get Access Details For User", + "originalRequest": { + "url": { + "path": [ + "getAccessDetailsForUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"Accountdetails\": [\n {\n \"createdon\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty30\": \"\",\n \"description\": \"\",\n \"endpoint\": \"\",\n \"name\": \"\",\n \"status\": \"\"\n },\n {\n \"createdon\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty30\": \"\",\n \"description\": \"\",\n \"endpoint\": \"\",\n \"name\": \"\",\n \"status\": \"\"\n }\n ],\n \"Entitlementdetails\": [\n {\n \"access\": \"\",\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty20\": \"\",\n \"customproperty3\": \"\",\n \"customproperty8\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementOwner\": [\n \"\",\n \"\"\n ],\n \"entitlementType\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"module\": \"\",\n \"priviliged\": \"\",\n \"requestForm\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"access\": \"\",\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty20\": \"\",\n \"customproperty3\": \"\",\n \"customproperty8\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementOwner\": [\n \"\",\n \"\"\n ],\n \"entitlementType\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"module\": \"\",\n \"priviliged\": \"\",\n \"requestForm\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"UserDetails\": {\n \"Company Name\": \"\",\n \"Create Date\": \"\",\n \"customproperty1\": \"\",\n \"Department Name\": \"\",\n \"Job Function\": \"\",\n \"Last Name\": \"\",\n \"Orgunit ID\": \"\",\n \"User Name\": \"\",\n \"accountExpired\": \"\",\n \"accountLocked\": \"\",\n \"city\": \"\",\n \"comments\": \"\",\n \"country\": \"\",\n \"createdBy\": \"\",\n \"customproperty10\": \"\",\n \"customproperty11\": \"\",\n \"customproperty12\": \"\",\n \"customproperty13\": \"\",\n \"customproperty14\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty21\": \"\",\n \"customproperty22\": \"\",\n \"customproperty23\": \"\",\n \"customproperty24\": \"\",\n \"customproperty25\": \"\",\n \"customproperty26\": \"\",\n \"customproperty27\": \"\",\n \"customproperty28\": \"\",\n \"customproperty29\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty31\": \"\",\n \"customproperty32\": \"\",\n \"customproperty33\": \"\",\n \"customproperty34\": \"\",\n \"customproperty35\": \"\",\n \"customproperty36\": \"\",\n \"customproperty37\": \"\",\n \"customproperty38\": \"\",\n \"customproperty39\": \"\",\n \"customproperty4\": \"\",\n \"customproperty40\": \"\",\n \"customproperty5\": \"\",\n \"customproperty6\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"departmentNumber\": \"\",\n \"displayname\": \"\",\n \"doNotDisturbDelegate\": \"\",\n \"email\": \"\",\n \"employeeType\": \"\",\n \"employeeclass\": \"\",\n \"employeeid\": \"\",\n \"enabled\": \"\",\n \"encryptedSecurityAnswers\": \"\",\n \"enddate\": \"\",\n \"failedTries\": \"\",\n \"firstname\": \"\",\n \"jobCode\": \"\",\n \"jobcodedesc\": \"\",\n \"lastsyncdate\": \"\",\n \"location\": \"\",\n \"locationdesc\": \"\",\n \"locationnumber\": \"\",\n \"manager\": \"\",\n \"middlename\": \"\",\n \"owner\": \"\",\n \"owneronTerminate\": \"\",\n \"passwordExpired\": \"\",\n \"preferedFirstName\": \"\",\n \"secondaryManager\": \"\",\n \"startdate\": \"\",\n \"statuskey\": \"\",\n \"street\": \"\",\n \"systemUserName\": \"\",\n \"termDate\": \"\",\n \"title\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\",\n \"vendorManager\": \"\"\n },\n \"entitlementsCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalEntitlementCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getEntDetailsforUsers", + "description": "", + "item": [ + { + "id": "43579189-c5d0-470a-a1ac-7893464b889e", + "name": "Get Flat Response Entitlement Details For User", + "request": { + "name": "Get Flat Response Entitlement Details For User", + "description": { + "content": "This API call can be used to get a flat response consisting of user details, account details, and details of all the entitlements the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params:\r\n`username`, `entitlementType`, `entitlement_value`, `endpoint`, `userQuery`, `accountQuery`, `entQuery`, `accEntQuery`, `max`(default - 100), `offset`(default - 0)", + "type": "text/plain" + }, + "url": { + "path": [ + "getEntDetailsforUsers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"accEntQuery\": \"\",\n \"accountQuery\": \"\",\n \"endpoint\": \"\",\n \"entQuery\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"userQuery\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "715b5ee2-977e-4316-92d4-d3e6ab60e368", + "name": "Get Entitlement Details For User - Flat response", + "originalRequest": { + "url": { + "path": [ + "getEntDetailsforUsers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"accEntQuery\": \"\",\n \"accountQuery\": \"\",\n \"endpoint\": \"\",\n \"entQuery\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"userQuery\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"accessDetails\": [\n {\n \"accountdisplayname\": \"\",\n \"accountkey\": \"\",\n \"accountname\": \"\",\n \"accountstatus\": \"\",\n \"endpointDisplayname\": \"\",\n \"endpointkey\": \"\",\n \"endpointname\": \"\",\n \"entdescription\": \"\",\n \"entdisplayname\": \"\",\n \"entitlementType\": \"\",\n \"entitlementTypeDisplayname\": \"\",\n \"entitlementTypeRequestForm\": \"\",\n \"entitlementTypekey\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"entstatus\": \"\",\n \"securitysystemdisplayname\": \"\",\n \"securitysystemkey\": \"\",\n \"systemname\": \"\",\n \"userkey\": \"\",\n \"username\": \"\",\n \"userstatus\": \"\"\n },\n {\n \"accountdisplayname\": \"\",\n \"accountkey\": \"\",\n \"accountname\": \"\",\n \"accountstatus\": \"\",\n \"endpointDisplayname\": \"\",\n \"endpointkey\": \"\",\n \"endpointname\": \"\",\n \"entdescription\": \"\",\n \"entdisplayname\": \"\",\n \"entitlementType\": \"\",\n \"entitlementTypeDisplayname\": \"\",\n \"entitlementTypeRequestForm\": \"\",\n \"entitlementTypekey\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"entstatus\": \"\",\n \"securitysystemdisplayname\": \"\",\n \"securitysystemkey\": \"\",\n \"systemname\": \"\",\n \"userkey\": \"\",\n \"username\": \"\",\n \"userstatus\": \"\"\n }\n ],\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getRoleDetailsforUsers", + "description": "", + "item": [ + { + "id": "0a544750-4c98-438c-bb71-f23e155f062b", + "name": "Get Flat Response Role Details For User", + "request": { + "name": "Get Flat Response Role Details For User", + "description": { + "content": "This API call can be used to get a flat response consisting of user details and details of all the roles the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params:\r\n`rolename`, `roletype`, `username`, `userQuery`, `roleQuery`, `roleUserAccQuery`, `max`(default - 100), `offset`(default - 0)", + "type": "text/plain" + }, + "url": { + "path": [ + "getRoleDetailsforUsers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"offset\": \"\",\n \"roleQuery\": \"\",\n \"roleUserAccQuery\": \"\",\n \"rolename\": \"\",\n \"roletype\": \"\",\n \"userQuery\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "e20d6dd7-cd19-4cfd-bba0-0a56a63fa385", + "name": "Get Role Details For User - Flat response", + "originalRequest": { + "url": { + "path": [ + "getRoleDetailsforUsers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"offset\": \"\",\n \"roleQuery\": \"\",\n \"roleUserAccQuery\": \"\",\n \"rolename\": \"\",\n \"roletype\": \"\",\n \"userQuery\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"roleDetails\": [\n {\n \"roledescription\": \"\",\n \"roledisplayname\": \"\",\n \"rolekey\": \"\",\n \"rolename\": \"\",\n \"rolestatus\": \"\",\n \"roletype\": \"\",\n \"userkey\": \"\",\n \"username\": \"\",\n \"userstatus\": \"\"\n },\n {\n \"roledescription\": \"\",\n \"roledisplayname\": \"\",\n \"rolekey\": \"\",\n \"rolename\": \"\",\n \"rolestatus\": \"\",\n \"roletype\": \"\",\n \"userkey\": \"\",\n \"username\": \"\",\n \"userstatus\": \"\"\n }\n ],\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "authenticateUser", + "description": "", + "item": [ + { + "id": "8b8e3dc3-a773-4e3a-a907-65ac52195069", + "name": "Authenticate User", + "request": { + "name": "Authenticate User", + "description": { + "content": "This API call can be used to authenticate the user in SSM\nThe `Authorization` must have `Bearer` followed by `Token` \nMandatory Params:\n`username`,\n`password`", + "type": "text/plain" + }, + "url": { + "path": [ + "authenticateUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "password", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "16124e00-345e-4cd7-b012-d05c0969e96c", + "name": "Authenticate User Failure / Authenticate User Success", + "originalRequest": { + "url": { + "path": [ + "authenticateUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "password", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "validateUserData", + "description": "", + "item": [ + { + "id": "b080a0a3-17f0-4505-b4d5-c8af36175423", + "name": "Validate User Data", + "request": { + "name": "Validate User Data", + "description": { + "content": "This API will validate the attribute values of an existing user.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username`\nOptional params:\nuser properties like `customproperty<1-50>`, `hcp<1-5>`, `ecp<1-5>`, `firstname`, `lastname`, `statuskey`, `manager` etc.", + "type": "text/plain" + }, + "url": { + "path": [ + "validateUserData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"ecp1\": \"\",\n \"firstname\": \"\",\n \"hcp1\": \"\",\n \"lastname\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "55fd856c-2244-4c8f-bc01-0c0277955684", + "name": "Validate User Data", + "originalRequest": { + "url": { + "path": [ + "validateUserData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"ecp1\": \"\",\n \"firstname\": \"\",\n \"hcp1\": \"\",\n \"lastname\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"validationResult\": {\n \"ecp1\": \"\",\n \"firstname\": \"\",\n \"hcp1\": \"\",\n \"lastname\": \"\"\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getSavRoles", + "description": "", + "item": [ + { + "id": "c1d4deae-34d0-4591-89c2-3923553cc203", + "name": "Get SavRoles", + "request": { + "name": "Get SavRoles", + "description": { + "content": "StartFragment\n\nThis API returns the SavRoles of an user in SSM.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nOptional params:\n\n`max`,`offset`,`username`\n\nEndFragment", + "type": "text/plain" + }, + "url": { + "path": [ + "getSavRoles" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"Get SavRoles\": {\n \"value\": \"\"\n }\n }\n}" + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "25b5004a-f9cd-4d0d-a549-5866885b9dd7", + "name": "Get SavRoles", + "originalRequest": { + "url": { + "path": [ + "getSavRoles" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"Get SavRoles\": {\n \"value\": \"\"\n }\n }\n}" + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-XSS-Protection", + "value": "" + } + ], + "body": "{\n \"savroles\": [\n {\n \"CUSTOMPROPERTY1\": \"\",\n \"CUSTOMPROPERTY10\": \"\",\n \"CUSTOMPROPERTY11\": \"\",\n \"CUSTOMPROPERTY12\": \"\",\n \"CUSTOMPROPERTY13\": \"\",\n \"CUSTOMPROPERTY14\": \"\",\n \"CUSTOMPROPERTY15\": \"\",\n \"CUSTOMPROPERTY16\": \"\",\n \"CUSTOMPROPERTY17\": \"\",\n \"CUSTOMPROPERTY18\": \"\",\n \"CUSTOMPROPERTY19\": \"\",\n \"CUSTOMPROPERTY2\": \"\",\n \"CUSTOMPROPERTY20\": \"\",\n \"CUSTOMPROPERTY3\": \"\",\n \"CUSTOMPROPERTY4\": \"\",\n \"CUSTOMPROPERTY5\": \"\",\n \"CUSTOMPROPERTY6\": \"\",\n \"CUSTOMPROPERTY7\": \"\",\n \"CUSTOMPROPERTY8\": \"\",\n \"CUSTOMPROPERTY9\": \"\",\n \"HOMEPAGE\": \"\",\n \"ISOOTB\": \"\",\n \"READONLY\": \"\",\n \"ROLEDESCRIPTION\": \"\",\n \"ROLENAME\": \"\",\n \"STATUSKEY\": \"\",\n \"UPDATEDATE\": \"\",\n \"UPDATEUSER\": \"\"\n },\n {\n \"CUSTOMPROPERTY1\": \"\",\n \"CUSTOMPROPERTY10\": \"\",\n \"CUSTOMPROPERTY11\": \"\",\n \"CUSTOMPROPERTY12\": \"\",\n \"CUSTOMPROPERTY13\": \"\",\n \"CUSTOMPROPERTY14\": \"\",\n \"CUSTOMPROPERTY15\": \"\",\n \"CUSTOMPROPERTY16\": \"\",\n \"CUSTOMPROPERTY17\": \"\",\n \"CUSTOMPROPERTY18\": \"\",\n \"CUSTOMPROPERTY19\": \"\",\n \"CUSTOMPROPERTY2\": \"\",\n \"CUSTOMPROPERTY20\": \"\",\n \"CUSTOMPROPERTY3\": \"\",\n \"CUSTOMPROPERTY4\": \"\",\n \"CUSTOMPROPERTY5\": \"\",\n \"CUSTOMPROPERTY6\": \"\",\n \"CUSTOMPROPERTY7\": \"\",\n \"CUSTOMPROPERTY8\": \"\",\n \"CUSTOMPROPERTY9\": \"\",\n \"HOMEPAGE\": \"\",\n \"ISOOTB\": \"\",\n \"READONLY\": \"\",\n \"ROLEDESCRIPTION\": \"\",\n \"ROLENAME\": \"\",\n \"STATUSKEY\": \"\",\n \"UPDATEDATE\": \"\",\n \"UPDATEUSER\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getAccounts", + "description": "", + "item": [ + { + "id": "1d906874-61ba-4191-9c1f-ff30cafba685", + "name": "Get Account Details", + "request": { + "name": "Get Account Details", + "description": { + "content": "This method returns a `List` of \"Accounts\" in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params: `username`, `endpoint`, `max`, `offset`, `accountQuery`, `advsearchcriteria` - accountKey,description,comments,accounttype,status,customproperty1-customproperty56,accountID,displayName,name,creator (username),updateuser (username),validfromDate validthrough,createdon,lastlogondate,lastpasswordchange,updatedate,orphan (true/false), accountowner - with fields 1. type - user/ usergroup (mandatory), 2. value - username/ usergroup name (mandatory), 3. rank - 1 to 5 (optional)\nSample - \"advsearchcriteria\":{ \"status\":\"ACTIVE\",\"name\":\"john\\*\",\"createdon\":\"2016-12-13\",\"customproperty12\":\"\\*Ro\\*\",\"orphan\":\"true\",\"accountowner\": \\[ { \"type\": \"user\", \"value\": \"janedoe\", \"rank\": \"1\" } \\]},\nDate can be searched with 'yyyy-MM-dd', dates and boolean are exact match.\n**Note**: Any OR conditions must be used within parenthesis. For example:\n{ \"accountQuery\":\"(acc.status='1' or acc.comments like '%a%')\", \"username\":\"admin\" }", + "type": "text/plain" + }, + "url": { + "path": [ + "getAccounts" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountQuery\": \"\",\n \"advsearchcriteria\": {\n \"accountowner\": [\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"name\": \"\",\n \"status\": \"\"\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "cadbd52d-5829-40d0-9456-628b96d311e7", + "name": "Get Account Details", + "originalRequest": { + "url": { + "path": [ + "getAccounts" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountQuery\": \"\",\n \"advsearchcriteria\": {\n \"accountowner\": [\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"name\": \"\",\n \"status\": \"\"\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"Accountdetails\": [\n {\n \"accountID\": \"\",\n \"accountKey\": \"\",\n \"accountclass\": \"\",\n \"accountowner\": [\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"accounttype\": \"\",\n \"comments\": \"\",\n \"createdon\": \"\",\n \"creator\": \"\",\n \"customproperty1\": \"\",\n \"customproperty11\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty26\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty6\": \"\",\n \"customproperty7\": \"\",\n \"endpoint\": \"\",\n \"endpointKey\": \"\",\n \"lastpasswordchange\": \"\",\n \"name\": \"\",\n \"status\": \"\",\n \"updatedate\": \"\",\n \"userKey\": \"\",\n \"username\": \"\"\n },\n {\n \"accountID\": \"\",\n \"accountKey\": \"\",\n \"accountclass\": \"\",\n \"accountowner\": [\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"accounttype\": \"\",\n \"comments\": \"\",\n \"createdon\": \"\",\n \"creator\": \"\",\n \"customproperty1\": \"\",\n \"customproperty11\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty26\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty6\": \"\",\n \"customproperty7\": \"\",\n \"endpoint\": \"\",\n \"endpointKey\": \"\",\n \"lastpasswordchange\": \"\",\n \"name\": \"\",\n \"status\": \"\",\n \"updatedate\": \"\",\n \"userKey\": \"\",\n \"username\": \"\"\n }\n ],\n \"displaycount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"total\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "exportAccount", + "description": "", + "item": [ + { + "id": "e7c82018-99d6-4e82-9125-8a2f30e043df", + "name": "Export Account", + "request": { + "name": "Export Account", + "description": { + "content": "This API call can be used to fetch all the existing accounts in a particular endpoint and security system along with the account attributes.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params: `endpoint` - not the display name, `securitysystem` - not the display name", + "type": "text/plain" + }, + "url": { + "path": [ + "exportAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "mandatory", + "type": "text/plain" + }, + "key": "endpoint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "mandatory", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "55de93d9-d251-400e-b004-967acbbc6012", + "name": "Export Account", + "originalRequest": { + "url": { + "path": [ + "exportAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "mandatory", + "type": "text/plain" + }, + "key": "endpoint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "mandatory", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\",\n \"result\": {\n \"accounts\": [\n {\n \"accountID\": \"\",\n \"accounttype\": \"\",\n \"endpoint\": \"\",\n \"name\": \"\",\n \"status\": \"\",\n \"systemname\": \"\"\n },\n {\n \"accountID\": \"\",\n \"accounttype\": \"\",\n \"endpoint\": \"\",\n \"name\": \"\",\n \"status\": \"\",\n \"systemname\": \"\"\n }\n ],\n \"total\": \"\"\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createAccount", + "description": "", + "item": [ + { + "id": "5cf101e7-4468-4483-8398-f0c88aa8f188", + "name": "Create Account", + "request": { + "name": "Create Account", + "description": { + "content": "This method creates a new \"account\" for an \"endpoint\" in SSM. All the input parameters it requires are attributes with which the new account record would get created.\nThe `Authorization` header variable must be set to `Bearer` followed by `Token`.\nMandatory params: \n`securitysystem` - not display name, `endpoint` - not display name, `name` - account name to be created\nOptional params:\n`accountid`, `username` - user for whom the account is created, `requestor` - user who is creating the account,\n`accountowner` - owner of account\n1.`type`- usergroup / user, mandatory field 2. `value` - usergroup name / username, mandatory field 3. `rank` - values from 1-5, optional filed, Default: 1,\n`description`, `displayname`, `comments`, `accountid`, `customproperty<1-56>`, `passwordchangestatus`, `privileged`, `usergroup`, `status` - Manually Suspended/Manually Provisioned/SUSPENDED FROM IMPORT SERVICE/1/2/3/4, default: 1 `accounttype` - Service Account/Shared Account/FIREFIGHTERID, defaul: null, `incorrectlogons`, `orphan` - true/false, `validfrom` - MM-dd-yyyy, `validthrough` - MM-dd-yyyy, `lastlogondate` - MM-dd-yyyy, `passwordlockdate`- MM-dd-yyyy, `lastpasswordchange` - MM-dd-yyyy", + "type": "text/plain" + }, + "url": { + "path": [ + "createAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountid\": \"\",\n \"accountowner\": [\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"accounttype\": \"\",\n \"comments\": \"\",\n \"customproperty1\": \"\",\n \"customproperty30\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"incorrectlogons\": \"\",\n \"lastlogondate\": \"\",\n \"name\": \"\",\n \"orphan\": \"\",\n \"passwordchangestatus\": \"\",\n \"passwordlockdate\": \"\",\n \"privileged\": \"\",\n \"requestor\": \"\",\n \"securitysystem\": \"\",\n \"usergroup\": \"\",\n \"username\": \"\",\n \"validfrom\": \"\",\n \"validthrough\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "0526d05a-802d-4e41-80cb-246a0965cbf9", + "name": "Create Account Success / Create Account Failure", + "originalRequest": { + "url": { + "path": [ + "createAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountid\": \"\",\n \"accountowner\": [\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"accounttype\": \"\",\n \"comments\": \"\",\n \"customproperty1\": \"\",\n \"customproperty30\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"incorrectlogons\": \"\",\n \"lastlogondate\": \"\",\n \"name\": \"\",\n \"orphan\": \"\",\n \"passwordchangestatus\": \"\",\n \"passwordlockdate\": \"\",\n \"privileged\": \"\",\n \"requestor\": \"\",\n \"securitysystem\": \"\",\n \"usergroup\": \"\",\n \"username\": \"\",\n \"validfrom\": \"\",\n \"validthrough\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateAccount", + "description": "", + "item": [ + { + "id": "66cf2012-a4d6-4fbc-8210-feb7656171c3", + "name": "Update Account", + "request": { + "name": "Update Account", + "description": { + "content": "This method updates a particular \"account\" record in Saviynt, based on the account name.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: `securitysystem`, `endpoint`, `name` - account name\nOptional params: `customproperty<1 to 30>`, `status`, `description`\n`accountowner`\n- `type`: Specify user or usergroup as the owner type. This is a mandatory parameter. - `value`: Specify usergroup name or username. This is a mandatory parameter. - `rank`: Specify the rank of the owner. You can specify values from 1 to 5, 26, or 27. Specify 26 for a primary certifier and 27 for any secondary certifier. This is an optional parameter, and the default value is 1. - `action`: Specify add or remove. This is a mandatory parameter.\n\n`description`, `displayname`, `comments`, `accountid`, `customproperty<1-56>`, `passwordchangestatus`, `privileged`, `usergroup`,\n`updateuser` - username of user who is updating the account, `status` - Manually Suspended/Manually Provisioned/SUSPENDED FROM IMPORT SERVICE/1/2/3/4, default: 1 `accounttype` - The account type that is imported from the third-party application (for example, Service Account, Shared Account, FIREFIGHTERID, and so on). default: null `incorrectlogons`, `orphan` - true/false, `validfrom` - MM-dd-yyyy, `validthrough` - MM-dd-yyyy, `lastlogondate` - MM-dd-yyyy, `passwordlockdate`\\- MM-dd-yyyy, `lastpasswordchange` - MM-dd-yyyy", + "type": "text/plain" + }, + "url": { + "path": [ + "updateAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountowner\": [\n {\n \"action\": \"\",\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"action\": \"\",\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"endpoint\": \"\",\n \"name\": \"\",\n \"securitysystem\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "1bd35410-e310-405e-a8f6-930fbfb3399c", + "name": "Update Account", + "originalRequest": { + "url": { + "path": [ + "updateAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountowner\": [\n {\n \"action\": \"\",\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n },\n {\n \"action\": \"\",\n \"rank\": \"\",\n \"type\": \"\",\n \"value\": \"\"\n }\n ],\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"endpoint\": \"\",\n \"name\": \"\",\n \"securitysystem\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "assignAccountToUser", + "description": "", + "item": [ + { + "id": "167dc96a-0f23-4498-b82a-083f49f80724", + "name": "Assign Account to User", + "request": { + "name": "Assign Account to User", + "description": { + "content": "This method provisions an \"Account\" to a \"User\" in SSM. The \"Account\" corresponds to a particular IT Application (e.g Microsoft Active Directory) which is modeled in SSM as \"Endpoint\" of a \"Security System\". \nMandatory params:\n`securitysystem` - Name of the Security System for the relevant IT Application modeled in SSM.\n`endpoint`- Name of the Endpoint corresponding to the Security System.\n`accountname` - Account name for the provisioned account.\n`username` - Username of the user to whom the account has to be provisioned.\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "assignAccountToUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "accountname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "8641da87-eb3f-43fe-8599-e8ae677cd37a", + "name": "Assign Account to User", + "originalRequest": { + "url": { + "path": [ + "assignAccountToUser" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "accountname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "assignAccountToEntitlement", + "description": "", + "item": [ + { + "id": "57dc94d1-6001-4577-94d9-26f1d34fef55", + "name": "Assign Entitlement to Account", + "request": { + "name": "Assign Entitlement to Account", + "description": { + "content": "This method provisions one or more \"Entitlements\" to an \"Account\". The \"Entitlements\" and \"Account\" correspond to a particular IT Application (e.g Microsoft Active Directory) which is modeled in SSM as \"Endpoint\" of a \"Security System\".\nMandatory params: `securitysystem` - Name of the Security System for the relevant IT Application modeled in SSM.\n`endpoint`\\- Name of the Endpoint corresponding to the Security System.\n`accountname` - Account name to which the entitlements should be provisioned.\n`entitlementtype` - Entitlement type for the entitlements which are to be provisioned. e.g. AD Groups, EBS Responsibilities, SAP Roles etc.\n`entitlementvalue` - Names of the actual entitlements which are to be provisioned.\n`startdate`: Specify the start date for the access period in MM-DD-YYYY date format (example: `12-23-2022`).\n\n\n\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "assignAccountToEntitlement" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "accountname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementtype", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementvalue", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "40739455-7a86-41de-bf4e-28c0a392e19b", + "name": "Assign Entitlement to Account", + "originalRequest": { + "url": { + "path": [ + "assignAccountToEntitlement" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "accountname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementtype", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementvalue", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "removeAccountToEntitlement", + "description": "", + "item": [ + { + "id": "59d30c7f-af3f-4d91-88e5-9cfcee93238d", + "name": "Remove Entitlement from Account", + "request": { + "name": "Remove Entitlement from Account", + "description": { + "content": "This method deprovisions one or more \"Entitlements\" from an \"Account\". The \"Entitlements\" and \"Account\" correspond to a particular IT Application (e.g Microsoft Active Directory) which is modeled in SSM as \"Endpoint\" of a \"Security System\".\nMandatory params: \n`securitysystem` - Name of the Security System for the relevant IT Application modeled in SSM.\n`endpoint`- Name of the Endpoint corresponding to the Security System.\n`accountname` - Account name from which the entitlements should be deprovisioned.\n`entitlementtype` - Entitlement type for the entitlements which are to be deprovisioned. e.g. AD Groups, EBS Responsibilities, SAP Roles etc.\n`entitlementvalue` - Names of the actual entitlements which are to be deprovisioned.\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "removeAccountToEntitlement" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "accountname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementtype", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementvalue", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "48de9893-ea12-46ed-b6bd-ae1cc5a5c225", + "name": "Removes Entitlement from Account Success / Removes Entitlement from Account Failure", + "originalRequest": { + "url": { + "path": [ + "removeAccountToEntitlement" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "accountname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementtype", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementvalue", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "securitysystem", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createPrivilege", + "description": "", + "item": [ + { + "id": "03be6e29-c5a7-4a64-9e37-8881090a54ef", + "name": "Create Privilege", + "request": { + "name": "Create Privilege", + "description": { + "content": "This API updates an endpoint in EIC.\nThe Authorization must have a Bearer followed by a Token. Mandatory parameters: • Endpoint • Securitysystem • Entitlementtype • attributename\nOptional parameters: •attributetype((BOOLEAN/NUMBER/STRING/ENUM/MULTIPLE SELECT FROM LIST/MULTIPLE SELECT FROM SQL QUERY/SINGLE SELECT FROM SQL QUERY/PASSWORD/LARGE TEXT/CHECK BOX/DATE)), • orderindex, • defaultvalues, • attributeconfig(entitlement-based/user-based), • label, • attributegroup, • parentattribute, • childaction, • description, • actionstring, • required(true/false), • requestable(true/false), • hideoncreate(true/false), • hideonupdate(true/false)", + "type": "text/plain" + }, + "url": { + "path": [ + "createPrivilege" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "text/plain" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"privilege\": {\n \"actionstring\": \"\",\n \"attributeconfig\": \"\",\n \"attributegroup\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"childaction\": \"\",\n \"defaultvalue\": \"\",\n \"description\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"label\": \"\",\n \"orderindex\": \"\",\n \"parentattribute\": \"\",\n \"requestable\": \"\",\n \"required\": \"\"\n },\n \"securitysystem\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "dbcf1a98-c0d8-4c43-81ac-d4e5d5d46f90", + "name": "Create Privilege", + "originalRequest": { + "url": { + "path": [ + "createPrivilege" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "text/plain" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"privilege\": {\n \"actionstring\": \"\",\n \"attributeconfig\": \"\",\n \"attributegroup\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"childaction\": \"\",\n \"defaultvalue\": \"\",\n \"description\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"label\": \"\",\n \"orderindex\": \"\",\n \"parentattribute\": \"\",\n \"requestable\": \"\",\n \"required\": \"\"\n },\n \"securitysystem\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Language", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"examples\": {\n \"Create Privilege\": {\n \"value\": \"\\r\\n\\n\\n\\n \\n \\n \\n \\n \\n \\n \\n \\n Saviynt Security Manager Login\\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n
\\n
\\n
\\n \\n
\\n \\\"Saviynt\\\"\\n
\\n
\\n
\\n
\\n

Sign in

\\n \\n
\\n
\\n \\n Enter Username And Password\\r\\n \\n
\\n
\\n \\n \\n \\n \\n \\n \\n \\n \\n \\n
\\n
\\n \\n \\n \\n \\n \\n \\n
\\n
\\n
\\n
\\n \\r\\n Forgot your password?\\n
\\n \\n
\\n
\\n \\n
\\n
\\n
\\n
\\n
\\n
\\n

Saviynt veic-trunk, © Copyright 2023, Saviynt All Rights Reserved. Use is subject to license terms.

\\n
\\n \\n \\r\\n Support Request\\n \\n

\\n
\\n
\\n
\\n
\\n
\\n
\\n
\\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n
\\r\\n
\\n \\n \"\n }\n }\n}", + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updatePrivilege", + "description": "", + "item": [ + { + "id": "35d18cba-f844-4b39-bb44-a55ea1d9aeda", + "name": "Update Privilege", + "request": { + "name": "Update Privilege", + "description": { + "content": "This API updates an endpoint in EIC. The Authorization must have a Bearer followed by a Token. Mandatory parameters: • Endpoint • Securitysystem • Entitlementtype • attributename\nOptional parameters: • attributetype((BOOLEAN/NUMBER/STRING/ENUM/MULTIPLE SELECT FROM LIST/MULTIPLE SELECT FROM SQL QUERY/SINGLE SELECT FROM SQL QUERY/PASSWORD/LARGE TEXT/CHECK BOX/DATE)), • orderindex, • defaultvalues, • attributeconfig(entitlement-based/user-based), • label, • attributegroup, • parentattribute, • childaction, • description, • actionstring, • required(true/false), • requestable(true/false), • hideoncreate(true/false), • hideonupdate(true/false)", + "type": "text/plain" + }, + "url": { + "path": [ + "updatePrivilege" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "text/plain" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"Update Privilege\": {\n \"value\": \"{{\\r\\n \\\"securitysystem\\\": \\\"gcpshruti\\\",\\r\\n \\\"endpoint\\\": \\\"gcpshruti\\\",\\r\\n \\\"entitlementtype\\\": \\\"Groups\\\",\\r\\n \\\"privilege\\\": {\\r\\n \\\"attributename\\\": \\\"att68\\\",\\r\\n \\\"attributetype\\\": \\\"PASSWORD\\\",\\r\\n \\\"orderindex\\\": \\\"2\\\",\\r\\n \\\"defaultvalue\\\": \\\"erfg\\\",\\r\\n \\\"attributeconfig\\\": \\\"user-based\\\",\\r\\n\\r\\n \\\"label\\\": \\\"assadsd\\\",\\r\\n \\\"attributegroup\\\": \\\"\\\",\\r\\n \\\"parentattribute\\\": \\\"\\\",\\r\\n \\\"childaction\\\": \\\"fghj\\\",\\r\\n \\\"description\\\": \\\"fghjk\\\",\\r\\n \\\"required\\\": true,\\r\\n \\\"requestable\\\": true,\\r\\n \\\"hideoncreate\\\": true,\\r\\n \\\"hideonupdate\\\": false,\\r\\n \\\"actionstring\\\": \\\"ghjkfghj\\\"\\r\\n }\\r\\n}\\r\\n\"\n }\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "59881f93-107e-4081-a7bd-1d1b211f52f0", + "name": "Update Privilege", + "originalRequest": { + "url": { + "path": [ + "updatePrivilege" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "text/plain" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"Update Privilege\": {\n \"value\": \"{{\\r\\n \\\"securitysystem\\\": \\\"gcpshruti\\\",\\r\\n \\\"endpoint\\\": \\\"gcpshruti\\\",\\r\\n \\\"entitlementtype\\\": \\\"Groups\\\",\\r\\n \\\"privilege\\\": {\\r\\n \\\"attributename\\\": \\\"att68\\\",\\r\\n \\\"attributetype\\\": \\\"PASSWORD\\\",\\r\\n \\\"orderindex\\\": \\\"2\\\",\\r\\n \\\"defaultvalue\\\": \\\"erfg\\\",\\r\\n \\\"attributeconfig\\\": \\\"user-based\\\",\\r\\n\\r\\n \\\"label\\\": \\\"assadsd\\\",\\r\\n \\\"attributegroup\\\": \\\"\\\",\\r\\n \\\"parentattribute\\\": \\\"\\\",\\r\\n \\\"childaction\\\": \\\"fghj\\\",\\r\\n \\\"description\\\": \\\"fghjk\\\",\\r\\n \\\"required\\\": true,\\r\\n \\\"requestable\\\": true,\\r\\n \\\"hideoncreate\\\": true,\\r\\n \\\"hideonupdate\\\": false,\\r\\n \\\"actionstring\\\": \\\"ghjkfghj\\\"\\r\\n }\\r\\n}\\r\\n\"\n }\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Language", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"examples\": {\n \"Update Privilege\": {\n \"value\": \"\\r\\n\\n\\n\\n \\n \\n \\n \\n \\n \\n \\n \\n Saviynt Security Manager Login\\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n
\\n
\\n
\\n \\n
\\n \\\"Saviynt\\\"\\n
\\n
\\n
\\n
\\n

Sign in

\\n \\n
\\n
\\n \\n Enter Username And Password\\r\\n \\n
\\n
\\n \\n \\n \\n \\n \\n \\n \\n \\n \\n
\\n
\\n \\n \\n \\n \\n \\n \\n
\\n
\\n
\\n
\\n \\r\\n Forgot your password?\\n
\\n \\n
\\n
\\n \\n
\\n
\\n
\\n
\\n
\\n
\\n

Saviynt veic-trunk, © Copyright 2023, Saviynt All Rights Reserved. Use is subject to license terms.

\\n
\\n \\n \\r\\n Support Request\\n \\n

\\n
\\n
\\n
\\n
\\n
\\n
\\n
\\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n \\n
\\r\\n
\\n \\n \"\n }\n }\n}", + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deletePrivilege", + "description": "", + "item": [ + { + "id": "01ddb49f-b75f-4904-8182-e468a7a1f6fe", + "name": "Delete Privilege", + "request": { + "name": "Delete Privilege", + "description": { + "content": "https://yourdomain.saviyntcloud.com/ECM/v5/deletePrivilege \nThis API updates an endpoint in EIC.\nThe Authorization must have a Bearer followed by a Token.", + "type": "text/plain" + }, + "url": { + "path": [ + "deletePrivilege" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"privilege\": \"\",\n \"securitysystem\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "ac43a6f2-e342-4c32-8f42-309e53dd6099", + "originalRequest": { + "url": { + "path": [ + "deletePrivilege" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"privilege\": \"\",\n \"securitysystem\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [], + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getEntitlements", + "description": "", + "item": [ + { + "id": "8902720c-e4b1-4484-8c12-0129ca4de2d9", + "name": "Get Entitlements", + "request": { + "name": "Get Entitlements", + "description": { + "content": "This API can be used to get the list of all the entitlements.\r\n\r\nThis API call can be used to get the list and details of all the entitlements the user has access to. \r\n\r\nThis API will return only the entitlement attributes which are not null or not empty.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params:\r\n`username`,\r\n`entitlementtype`,\r\n`endpoint`,\r\n`requestedObject` -\"users\",\"userscount\",\r\n`max`,\r\n`offset`,\r\n`entitlementResponseFields`,\r\n`userResponseFields`,\r\n`userfiltercriteria`,\r\n`accountname`,\r\n`entownerwithrank` - if \"true\", returns the list of owners with owner rank for every entitlementValue,\r\n`returnentitlementmap`(true/false,default:false) - If true, entitlementmap details will be returned,\r\n`exactmatch` - Default is true. If given as false, it will search based on similar matches,\r\n\r\n`entitlementfiltercriteria`,\r\n\r\nOR \r\n\r\n`entQuery` - query to support only entitlement_values parameters. Sample - \"ent.description = 'Desc' or ent.displayname like '%display%'\".\r\n\r\n***Note*** - Either pass param entitlementfiltercriteria (with or without exactmatch) OR entQuery. Both cannot be passed simultaneously.", + "type": "text/plain" + }, + "url": { + "path": [ + "getEntitlements" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entQuery\": \"\",\n \"entownerwithrank\": \"\",\n \"returnentitlementmap\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "ea8985ae-2314-4136-863a-41d6c8b97ad4", + "name": "Get Entitlements / Get Entitlements", + "originalRequest": { + "url": { + "path": [ + "getEntitlements" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entQuery\": \"\",\n \"entownerwithrank\": \"\",\n \"returnentitlementmap\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"Entitlementdetails\": [\n {\n \"accounts\": [\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\",\n \"updatedate\": \"\"\n },\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\",\n \"updatedate\": \"\"\n }\n ],\n \"childEntitlementCount\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty13\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty3\": \"\",\n \"customproperty4\": \"\",\n \"customproperty5\": \"\",\n \"customproperty6\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"endpointKey\": \"\",\n \"entitlementID\": \"\",\n \"entitlementMapDetails\": [\n {\n \"addDependentTask\": \"\",\n \"description\": \"\",\n \"excludeEntitlement\": \"\",\n \"exportPrimary\": \"\",\n \"primary\": \"\",\n \"primaryEntKey\": \"\",\n \"primaryEntType\": \"\",\n \"removeDependentEntTask\": \"\",\n \"requestFilter\": \"\"\n },\n {\n \"addDependentTask\": \"\",\n \"description\": \"\",\n \"excludeEntitlement\": \"\",\n \"exportPrimary\": \"\",\n \"primary\": \"\",\n \"primaryEntKey\": \"\",\n \"primaryEntType\": \"\",\n \"removeDependentEntTask\": \"\",\n \"requestFilter\": \"\"\n }\n ],\n \"entitlementOwner\": \"\",\n \"entitlementType\": \"\",\n \"entitlementTypeKey\": \"\",\n \"entitlementTypeName\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"requestForm\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\"\n },\n {\n \"accounts\": [\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\",\n \"updatedate\": \"\"\n },\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\",\n \"updatedate\": \"\"\n }\n ],\n \"childEntitlementCount\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty13\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty3\": \"\",\n \"customproperty4\": \"\",\n \"customproperty5\": \"\",\n \"customproperty6\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"endpointKey\": \"\",\n \"entitlementID\": \"\",\n \"entitlementMapDetails\": [\n {\n \"addDependentTask\": \"\",\n \"description\": \"\",\n \"excludeEntitlement\": \"\",\n \"exportPrimary\": \"\",\n \"primary\": \"\",\n \"primaryEntKey\": \"\",\n \"primaryEntType\": \"\",\n \"removeDependentEntTask\": \"\",\n \"requestFilter\": \"\"\n },\n {\n \"addDependentTask\": \"\",\n \"description\": \"\",\n \"excludeEntitlement\": \"\",\n \"exportPrimary\": \"\",\n \"primary\": \"\",\n \"primaryEntKey\": \"\",\n \"primaryEntType\": \"\",\n \"removeDependentEntTask\": \"\",\n \"requestFilter\": \"\"\n }\n ],\n \"entitlementOwner\": \"\",\n \"entitlementType\": \"\",\n \"entitlementTypeKey\": \"\",\n \"entitlementTypeName\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"requestForm\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\"\n }\n ],\n \"entitlementsCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalEntitlementCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getChildEntitlements", + "description": "", + "item": [ + { + "id": "97154173-732d-4e36-bce2-d0dc8711aa7d", + "name": "Get Child Entitlements", + "request": { + "name": "Get Child Entitlements", + "description": { + "content": "This API can be used to get the list of all child entitlements.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`endpointname`/`endpointkey` - if both are passed endpointkey is considered\nOptional params:\n`entitlementtypekey`/`entitlementtypename` - Possible values should have parent entitlementtypekey/entitlementtypename. If both are passed entitlementtypekey is considered,\n`parententitlementvalue`/`parententitlementvaluekey` - if both are passed parententitlementvaluekey is considered,\n`entquery` - query to support parent entitlement_values parameters. Sample - \"pev.status = 1\",\n`childentquery` - query to support child entitlement_values parameters. Sample - \"cev.customproperty3 = '25'\",\n`entitlements2query` - query to support entitlements2 parameters. Sample - \"e2.jobId is not null\",\n`responsefields` - possible values should have child entitlementvalue domain properties. Sample - \\[\"description\",\"customproperty1\",\"customproperty3\",\"displayname\"\\],\n`max`,\n`offset`", + "type": "text/plain" + }, + "url": { + "path": [ + "getChildEntitlements" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"childentquery\": \"\",\n \"endpointkey\": \"\",\n \"endpointname\": \"\",\n \"entitlements2query\": \"\",\n \"entitlementtypekey\": \"\",\n \"entitlementtypename\": \"\",\n \"entquery\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"parententitlementvalue\": \"\",\n \"parententitlementvaluekey\": \"\",\n \"responsefields\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "1511f56e-e85d-4657-b091-4ae558db5efd", + "name": "Get Child Entitlements", + "originalRequest": { + "url": { + "path": [ + "getChildEntitlements" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"childentquery\": \"\",\n \"endpointkey\": \"\",\n \"endpointname\": \"\",\n \"entitlements2query\": \"\",\n \"entitlementtypekey\": \"\",\n \"entitlementtypename\": \"\",\n \"entquery\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"parententitlementvalue\": \"\",\n \"parententitlementvaluekey\": \"\",\n \"responsefields\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"childEntitlementsList\": [\n {\n \"customproperty1\": \"\",\n \"customproperty3\": \"\",\n \"endpoint\": \"\",\n \"endpointKey\": \"\",\n \"entitlementType\": \"\",\n \"entitlementTypeKey\": \"\",\n \"entitlementTypeName\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"parententitlementvalue\": \"\",\n \"parententitlementvaluekey\": \"\",\n \"parententstatus\": \"\",\n \"requestForm\": \"\"\n },\n {\n \"customproperty1\": \"\",\n \"customproperty3\": \"\",\n \"endpoint\": \"\",\n \"endpointKey\": \"\",\n \"entitlementType\": \"\",\n \"entitlementTypeKey\": \"\",\n \"entitlementTypeName\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"parententitlementvalue\": \"\",\n \"parententitlementvaluekey\": \"\",\n \"parententstatus\": \"\",\n \"requestForm\": \"\"\n }\n ],\n \"displaycount\": \"\",\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createUpdateEntitlement", + "description": "", + "item": [ + { + "id": "1e296a2b-fefc-4068-a1a5-e096a269dd16", + "name": "Create/Update Entitlement", + "request": { + "name": "Create/Update Entitlement", + "description": { + "content": "This method creates a new \"entitlementvalue\" for an \"endpoint\" in SSM. All the input parameters it requires are attributes with which the new account record would get created.\r\n\r\nEnsure: The `Authorization` header variable must be set to `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n\r\n`endpoint`,\r\n`entitlementtype`,\r\n`entitlement_value`\r\n\r\nOptional params:\r\n\r\n`attributes` for Entitlement_values,\r\n\r\n`entitlementowner` - N is the rank, `entitlementowner` modifies entitlementowner with rank 1, `entitlementowner3` - modifies entitlementowner with rank 3,\r\n\r\n`entitlementID`,`newentitlement_value` - used to update the entitlement if multiple entitlements with same entitlement_value are present under the same entitlementtype and endpoint\r\n\r\n`entitlementcasecheck`(can be true or false, default : false) - If true, entitlement value search will be case sensitive during create or update.\r\n\r\n`entitlement_valuekey`\r\n\r\n`updatedentitlement_value` - new value for entitlement_value\r\n\r\n`entitlementmap` - \r\n1. `entitlementvalue`\r\n2. `entitlementtype`\r\n3. `endpoint`\r\n4. `requestfilter`\r\n5. `excludeentitlement`\r\n6. `adddependenttask`\r\n7. `removedependententtask`\r\n8. `updateType`(ADD/REMOVE, default : ADD)", + "type": "text/plain" + }, + "url": { + "path": [ + "createUpdateEntitlement" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlement_value\": \"\",\n \"entitlementtype\": \"\",\n \"status\": \"\",\n \"updatedentitlement_value\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "c3328516-2473-4a63-a26b-7fd171a49722", + "name": "Create/Update Entitlement", + "originalRequest": { + "url": { + "path": [ + "createUpdateEntitlement" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlement_value\": \"\",\n \"entitlementtype\": \"\",\n \"status\": \"\",\n \"updatedentitlement_value\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"entitlementObj\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementID\": \"\",\n \"entitlementOwner\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"requestForm\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\"\n },\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getEntitlementValuesForEndpoint", + "description": "", + "item": [ + { + "id": "ed6fc765-20c2-46d4-adfc-114cec805dfe", + "name": "Get Entitlement Values For Endpoint", + "request": { + "name": "Get Entitlement Values For Endpoint", + "description": { + "content": "This method returns a `List` of \"EntitlementValues\" for a specific endpoint in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n`endpoint`\r\n\r\nOptional params:\r\n`entitlementType`, `max`, `offset`,\r\n`entownerwithrank` - if \"true\", returns the list of owners with owner rank for every entitlementValue\r\n`returnentitlementmap`(true/false,default:false) - If true, entitlementmap details will be returned", + "type": "text/plain" + }, + "url": { + "path": [ + "getEntitlementValuesForEndpoint" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementType\": \"\",\n \"entownerwithrank\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4d8ec018-d31a-40f3-a68b-fa9950d37a5d", + "name": "Get Entitlement Values For Endpoint / Get Entitlement Values For Endpoint 2", + "originalRequest": { + "url": { + "path": [ + "getEntitlementValuesForEndpoint" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementType\": \"\",\n \"entownerwithrank\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"Entitlementdetails\": [\n {\n \"entitlement_valuekey\": \"\",\n \"entitlementID\": \"\",\n \"access\": \"\",\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty20\": \"\",\n \"customproperty3\": \"\",\n \"customproperty8\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementOwner\": [\n \"\",\n \"\"\n ],\n \"entitlementType\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"module\": \"\",\n \"priviliged\": \"\",\n \"requestForm\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"entitlement_valuekey\": \"\",\n \"entitlementID\": \"\",\n \"access\": \"\",\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty20\": \"\",\n \"customproperty3\": \"\",\n \"customproperty8\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementOwner\": [\n \"\",\n \"\"\n ],\n \"entitlementType\": \"\",\n \"entitlement_glossary\": \"\",\n \"entitlement_value\": \"\",\n \"module\": \"\",\n \"priviliged\": \"\",\n \"requestForm\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"entitlementsCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"statusCode\": \"\",\n \"totalEntitlementCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getListofPrivileges", + "description": "", + "item": [ + { + "id": "ee69390a-9b61-49c1-aa47-9334787e77cb", + "name": "Get List of Privileges for Entitlement Type", + "request": { + "name": "Get List of Privileges for Entitlement Type", + "description": { + "content": "This API gives the list of privileges for an entitlement type.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`endpoint`\r\n\r\nOptional params:\r\n`max`, `offset`, `entitlementType`", + "type": "text/plain" + }, + "url": { + "path": [ + "getListofPrivileges" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementtype", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "40226204-f12e-46d1-93b5-bd0ca8d8eccf", + "name": "Get List of Privileges for Entitlement Type / Get List of Privileges for Entitlement Type Copy", + "originalRequest": { + "url": { + "path": [ + "getListofPrivileges" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementtype", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"PrivilegeDetails\": [\n {\n \"actionString\": \"\",\n \"attribute\": \"\",\n \"attribute_config\": \"\",\n \"attribute_type\": \"\",\n \"attribute_values\": \"\",\n \"attributegroup\": \"\",\n \"childaction\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"entitlement_types\": {\n \"endpointkey\": \"\",\n \"entitlementname\": \"\"\n },\n \"entitlements_column\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupd\": \"\",\n \"label\": \"\",\n \"orderindex\": \"\",\n \"parentattribute\": \"\",\n \"regex\": \"\",\n \"requestablerequired\": \"\",\n \"required\": \"\",\n \"sqlquery\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"actionString\": \"\",\n \"attribute\": \"\",\n \"attribute_config\": \"\",\n \"attribute_type\": \"\",\n \"attribute_values\": \"\",\n \"attributegroup\": \"\",\n \"childaction\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"entitlement_types\": {\n \"endpointkey\": \"\",\n \"entitlementname\": \"\"\n },\n \"entitlements_column\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupd\": \"\",\n \"label\": \"\",\n \"orderindex\": \"\",\n \"parentattribute\": \"\",\n \"regex\": \"\",\n \"requestablerequired\": \"\",\n \"required\": \"\",\n \"sqlquery\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "removeEntitlementsFromRole", + "description": "", + "item": [ + { + "id": "b72d41e2-668d-4690-99a8-902bacb117ea", + "name": "Remove Entitlement From Role", + "request": { + "name": "Remove Entitlement From Role", + "description": { + "content": "This API removes entitlement from role.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`rolename` or `rolekey` (if both are passed then rolekey will be considered), `entitlements`(within list of entitlements entitlementvalue, entitlementtype, endpoint are mandatory)\nOptional params:\n`requestor`, `comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "removeEntitlementsFromRole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"requestor\": \"\",\n \"rolekey\": \"\",\n \"rolename\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "f58d918e-b8ad-46dc-8a56-fc0cf4e91d6d", + "name": "Remove Entitlement From Role", + "originalRequest": { + "url": { + "path": [ + "removeEntitlementsFromRole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"requestor\": \"\",\n \"rolekey\": \"\",\n \"rolename\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "addrole", + "description": "", + "item": [ + { + "id": "efccd854-57a1-4b4e-a319-87b417fc49cd", + "name": "Add Role", + "request": { + "name": "Add Role", + "description": { + "content": "This API adds role to user.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username`,\n`rolename`", + "type": "text/plain" + }, + "url": { + "path": [ + "addrole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"rolename\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "c47c30ee-3362-4646-80ab-68552c7957f3", + "name": "Add Role", + "originalRequest": { + "url": { + "path": [ + "addrole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"rolename\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getRoles", + "description": "", + "item": [ + { + "id": "b1bc3013-5582-4c66-b30c-79c98b9cc149", + "name": "Get Role Details for user", + "request": { + "name": "Get Role Details for user", + "description": { + "content": "This API can be used to get the list of all the roles.\nThis API call can be used to get the list and details of all the roles associated to the user. \nThe `Authorization` must have `Bearer` followed by `Token`. \nOptional params:\n`username`, `customproperty<1 to 60>`, `roletype`, `requestable`, `status`, `role_name`, `description`, `displayname`, `glossary`, `mininginstance`, `risk`, `updateuser`, `systemid`, `soxcritical`, `syscritical`, `level`, `priviliged`, `confidentiality`, `requestedObject` - contains users and/or entitlement_values", + "type": "text/plain" + }, + "url": { + "path": [ + "getRoles" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestedObject", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "roleQuery", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "roletype", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "2333083c-955c-4003-80db-8b1f41132160", + "name": "Get Role Details for user / Get Role Details", + "originalRequest": { + "url": { + "path": [ + "getRoles" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestedObject", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "roleQuery", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "roletype", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"Roledetails\": [\n {\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty11\": \"\",\n \"customproperty12\": \"\",\n \"customproperty13\": \"\",\n \"customproperty14\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty21\": \"\",\n \"customproperty22\": \"\",\n \"customproperty23\": \"\",\n \"customproperty24\": \"\",\n \"customproperty25\": \"\",\n \"customproperty26\": \"\",\n \"customproperty27\": \"\",\n \"customproperty28\": \"\",\n \"customproperty29\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty31\": \"\",\n \"customproperty32\": \"\",\n \"customproperty33\": \"\",\n \"customproperty34\": \"\",\n \"customproperty35\": \"\",\n \"customproperty36\": \"\",\n \"customproperty37\": \"\",\n \"customproperty38\": \"\",\n \"customproperty39\": \"\",\n \"customproperty4\": \"\",\n \"customproperty40\": \"\",\n \"customproperty41\": \"\",\n \"customproperty42\": \"\",\n \"customproperty43\": \"\",\n \"customproperty44\": \"\",\n \"customproperty45\": \"\",\n \"customproperty46\": \"\",\n \"customproperty47\": \"\",\n \"customproperty48\": \"\",\n \"customproperty49\": \"\",\n \"customproperty5\": \"\",\n \"customproperty50\": \"\",\n \"customproperty51\": \"\",\n \"customproperty52\": \"\",\n \"customproperty53\": \"\",\n \"customproperty54\": \"\",\n \"customproperty55\": \"\",\n \"customproperty56\": \"\",\n \"customproperty57\": \"\",\n \"customproperty58\": \"\",\n \"customproperty59\": \"\",\n \"customproperty6\": \"\",\n \"customproperty60\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"defaultTimeFrameHrs\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointkey\": \"\",\n \"glossary\": \"\",\n \"maxTimeFrameHrs\": \"\",\n \"owner\": [\n \"\",\n \"\"\n ],\n \"priviliged\": \"\",\n \"requestable\": \"\",\n \"risk\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\",\n \"showDynamicAttrs\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\",\n \"userAccounts\": [\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\"\n },\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\"\n }\n ],\n \"version\": \"\"\n },\n {\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty11\": \"\",\n \"customproperty12\": \"\",\n \"customproperty13\": \"\",\n \"customproperty14\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty21\": \"\",\n \"customproperty22\": \"\",\n \"customproperty23\": \"\",\n \"customproperty24\": \"\",\n \"customproperty25\": \"\",\n \"customproperty26\": \"\",\n \"customproperty27\": \"\",\n \"customproperty28\": \"\",\n \"customproperty29\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty31\": \"\",\n \"customproperty32\": \"\",\n \"customproperty33\": \"\",\n \"customproperty34\": \"\",\n \"customproperty35\": \"\",\n \"customproperty36\": \"\",\n \"customproperty37\": \"\",\n \"customproperty38\": \"\",\n \"customproperty39\": \"\",\n \"customproperty4\": \"\",\n \"customproperty40\": \"\",\n \"customproperty41\": \"\",\n \"customproperty42\": \"\",\n \"customproperty43\": \"\",\n \"customproperty44\": \"\",\n \"customproperty45\": \"\",\n \"customproperty46\": \"\",\n \"customproperty47\": \"\",\n \"customproperty48\": \"\",\n \"customproperty49\": \"\",\n \"customproperty5\": \"\",\n \"customproperty50\": \"\",\n \"customproperty51\": \"\",\n \"customproperty52\": \"\",\n \"customproperty53\": \"\",\n \"customproperty54\": \"\",\n \"customproperty55\": \"\",\n \"customproperty56\": \"\",\n \"customproperty57\": \"\",\n \"customproperty58\": \"\",\n \"customproperty59\": \"\",\n \"customproperty6\": \"\",\n \"customproperty60\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"defaultTimeFrameHrs\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointkey\": \"\",\n \"glossary\": \"\",\n \"maxTimeFrameHrs\": \"\",\n \"owner\": [\n \"\",\n \"\"\n ],\n \"priviliged\": \"\",\n \"requestable\": \"\",\n \"risk\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\",\n \"showDynamicAttrs\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\",\n \"userAccounts\": [\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\"\n },\n {\n \"accountname\": \"\",\n \"enddate\": \"\",\n \"startdate\": \"\"\n }\n ],\n \"version\": \"\"\n }\n ],\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getFireFighterRoles", + "description": "", + "item": [ + { + "id": "ffc6b600-e5fe-4f11-840d-9a9fc9530987", + "name": "Get FireFighter Role Details", + "request": { + "name": "Get FireFighter Role Details", + "description": { + "content": "This method returns a `List` of active \"FireFighter\" roles in SSM. \nThe `Authorization` must have `Bearer` followed by `Token`.\nNo params", + "type": "text/plain" + }, + "url": { + "path": [ + "getFireFighterRoles" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "33bc403f-5b42-41cd-8b22-7a2028bfbb43", + "name": "Get FireFighter Roles", + "originalRequest": { + "url": { + "path": [ + "getFireFighterRoles" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "[\n {\n \"class\": \"\",\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty11\": \"\",\n \"customproperty12\": \"\",\n \"customproperty13\": \"\",\n \"customproperty14\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty21\": \"\",\n \"customproperty22\": \"\",\n \"customproperty23\": \"\",\n \"customproperty24\": \"\",\n \"customproperty25\": \"\",\n \"customproperty26\": \"\",\n \"customproperty27\": \"\",\n \"customproperty28\": \"\",\n \"customproperty29\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty31\": \"\",\n \"customproperty32\": \"\",\n \"customproperty33\": \"\",\n \"customproperty34\": \"\",\n \"customproperty35\": \"\",\n \"customproperty36\": \"\",\n \"customproperty37\": \"\",\n \"customproperty38\": \"\",\n \"customproperty39\": \"\",\n \"customproperty4\": \"\",\n \"customproperty40\": \"\",\n \"customproperty41\": \"\",\n \"customproperty42\": \"\",\n \"customproperty43\": \"\",\n \"customproperty44\": \"\",\n \"customproperty45\": \"\",\n \"customproperty46\": \"\",\n \"customproperty47\": \"\",\n \"customproperty48\": \"\",\n \"customproperty49\": \"\",\n \"customproperty5\": \"\",\n \"customproperty50\": \"\",\n \"customproperty51\": \"\",\n \"customproperty52\": \"\",\n \"customproperty53\": \"\",\n \"customproperty54\": \"\",\n \"customproperty55\": \"\",\n \"customproperty56\": \"\",\n \"customproperty57\": \"\",\n \"customproperty58\": \"\",\n \"customproperty59\": \"\",\n \"customproperty6\": \"\",\n \"customproperty60\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"defaultTimeFrameHrs\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointkey\": \"\",\n \"flagexportedtoOIA\": \"\",\n \"glossary\": \"\",\n \"id\": \"\",\n \"level\": \"\",\n \"maxTimeFrameHrs\": \"\",\n \"mininginstance\": \"\",\n \"parentroles\": \"\",\n \"priviliged\": \"\",\n \"requestable\": \"\",\n \"risk\": \"\",\n \"role_name\": \"\",\n \"role_user_accounts\": [\n {\n \"class\": \"\",\n \"id\": \"\"\n },\n {\n \"class\": \"\",\n \"id\": \"\"\n }\n ],\n \"roletype\": \"\",\n \"showDynamicAttrs\": \"\",\n \"sodflag\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"systemid\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"class\": \"\",\n \"confidentiality\": \"\",\n \"customproperty1\": \"\",\n \"customproperty10\": \"\",\n \"customproperty11\": \"\",\n \"customproperty12\": \"\",\n \"customproperty13\": \"\",\n \"customproperty14\": \"\",\n \"customproperty15\": \"\",\n \"customproperty16\": \"\",\n \"customproperty17\": \"\",\n \"customproperty18\": \"\",\n \"customproperty19\": \"\",\n \"customproperty2\": \"\",\n \"customproperty20\": \"\",\n \"customproperty21\": \"\",\n \"customproperty22\": \"\",\n \"customproperty23\": \"\",\n \"customproperty24\": \"\",\n \"customproperty25\": \"\",\n \"customproperty26\": \"\",\n \"customproperty27\": \"\",\n \"customproperty28\": \"\",\n \"customproperty29\": \"\",\n \"customproperty3\": \"\",\n \"customproperty30\": \"\",\n \"customproperty31\": \"\",\n \"customproperty32\": \"\",\n \"customproperty33\": \"\",\n \"customproperty34\": \"\",\n \"customproperty35\": \"\",\n \"customproperty36\": \"\",\n \"customproperty37\": \"\",\n \"customproperty38\": \"\",\n \"customproperty39\": \"\",\n \"customproperty4\": \"\",\n \"customproperty40\": \"\",\n \"customproperty41\": \"\",\n \"customproperty42\": \"\",\n \"customproperty43\": \"\",\n \"customproperty44\": \"\",\n \"customproperty45\": \"\",\n \"customproperty46\": \"\",\n \"customproperty47\": \"\",\n \"customproperty48\": \"\",\n \"customproperty49\": \"\",\n \"customproperty5\": \"\",\n \"customproperty50\": \"\",\n \"customproperty51\": \"\",\n \"customproperty52\": \"\",\n \"customproperty53\": \"\",\n \"customproperty54\": \"\",\n \"customproperty55\": \"\",\n \"customproperty56\": \"\",\n \"customproperty57\": \"\",\n \"customproperty58\": \"\",\n \"customproperty59\": \"\",\n \"customproperty6\": \"\",\n \"customproperty60\": \"\",\n \"customproperty7\": \"\",\n \"customproperty8\": \"\",\n \"customproperty9\": \"\",\n \"defaultTimeFrameHrs\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointkey\": \"\",\n \"flagexportedtoOIA\": \"\",\n \"glossary\": \"\",\n \"id\": \"\",\n \"level\": \"\",\n \"maxTimeFrameHrs\": \"\",\n \"mininginstance\": \"\",\n \"parentroles\": \"\",\n \"priviliged\": \"\",\n \"requestable\": \"\",\n \"risk\": \"\",\n \"role_name\": \"\",\n \"role_user_accounts\": [\n {\n \"class\": \"\",\n \"id\": \"\"\n },\n {\n \"class\": \"\",\n \"id\": \"\"\n }\n ],\n \"roletype\": \"\",\n \"showDynamicAttrs\": \"\",\n \"sodflag\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\",\n \"systemid\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n }\n]", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "removerole", + "description": "", + "item": [ + { + "id": "ea1638f1-5123-4ac8-abea-f90f9ac29f17", + "name": "Remove Role", + "request": { + "name": "Remove Role", + "description": { + "content": "This API removes role from user.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username`,\n`rolename`", + "type": "text/plain" + }, + "url": { + "path": [ + "removerole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"rolename\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "f4147468-1513-4639-aced-9e79f1f77064", + "name": "Remove Role", + "originalRequest": { + "url": { + "path": [ + "removerole" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"rolename\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createEndpoint", + "description": "", + "item": [ + { + "id": "c4208d09-601d-42ef-93d5-013561f19f07", + "name": "Create Endpoint", + "request": { + "name": "Create Endpoint", + "description": { + "content": "This API creates an endpoint in EIC.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters:\n- `endpointname`: Enter the name of the endpoint. Provide a logical name for the endpoint that will help you to easily identify the endpoint. - `displayName`: Enter a name for the endpoint that will be displayed in the user interface. Display Name can be different from Endpoint Name. - `securitysystem:`Select the security system for which you want to create an endpoint. The security system encapsulates the endpoint along with other endpoints sharing the same connections, workflows, or more.\n\nOptional parameters:\n`description`, `ownerType`, `owner`, `resourceOwnerType`, `resourceOwner`, `customproperty` - N is between 1 to 30, `custompropertyLabel` - N is between 1 to 30, `accountNameRule`, `accessquery`, `enableCopyAccess`, `disableNewAccountRequestIfAccountExists`, `disableRemoveAccount`, `disableModifyAccount`, `blockInflightRequest`, `userAccountCorrelationRule`, `connectionconfig`", + "type": "text/plain" + }, + "url": { + "path": [ + "createEndpoint" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accessquery\": \"\",\n \"connectionconfig\": \"\",\n \"description\": \"\",\n \"disableModifyAccount\": \"\",\n \"disableNewAccountRequestIfAccountExists\": \"\",\n \"disableRemoveAccount\": \"\",\n \"displayName\": \"\",\n \"enableCopyAccess\": \"\",\n \"endpointname\": \"\",\n \"owner\": \"\",\n \"ownerType\": \"\",\n \"resourceOwnerType\": \"\",\n \"securitysystem\": \"\",\n \"userAccountCorrelationRule\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "875eb49c-1407-4b73-bd47-16152a509627", + "name": "Create Endpoint", + "originalRequest": { + "url": { + "path": [ + "createEndpoint" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accessquery\": \"\",\n \"connectionconfig\": \"\",\n \"description\": \"\",\n \"disableModifyAccount\": \"\",\n \"disableNewAccountRequestIfAccountExists\": \"\",\n \"disableRemoveAccount\": \"\",\n \"displayName\": \"\",\n \"enableCopyAccess\": \"\",\n \"endpointname\": \"\",\n \"owner\": \"\",\n \"ownerType\": \"\",\n \"resourceOwnerType\": \"\",\n \"securitysystem\": \"\",\n \"userAccountCorrelationRule\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateEndpoint", + "description": "", + "item": [ + { + "id": "1e032842-cdb5-4de8-ad6e-e1f1207dcead", + "name": "Update Endpoint", + "request": { + "name": "Update Endpoint", + "description": { + "content": "This API updates an endpoint within the Saviynt EIC.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nNote: From Release v23.9, a new parameter **`requestableRoleType`** is introduced to update the requestable options of a Role for a particular endpoint.\nMandatory parameters:\n`endpointname` `roleType` Supports valid case-senstive string values such as \"Enabler”, “Transactional”, “EmergencyAccess”, “Enterprise”, and “Application”\nOptional parameters:\n`securitysystem`, `displayName`, `description`, `ownerType`, `owner`, `resourceOwnerType`, `resourceOwner`, `customproperty` - N is between 1 to 30, `custompropertyLabel` - N is between 1 to 30, `accountNameRule`, `accessquery`, `enableCopyAccess`, `disableNewAccountRequestIfAccountExists`, `disableRemoveAccount`, `disableModifyAccount`, `blockInflightRequest`, `userAccountCorrelationRule`, `createEntTaskforRemoveAcc`, `connectionconfig requestableRoleType requestOption` - Supports valid case-senstive string values such as “None”, “DropDownSingle”, “Table”, and “TableOnlyAdd” `required` - Supports valid boolean values are true and false`requestedQuery/selectedQuery` Supports string values in double quotes", + "type": "text/plain" + }, + "url": { + "path": [ + "updateEndpoint" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"connectionconfig\": \"\",\n \"endpointname\": \"\",\n \"resourceOwnerType\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "a348037e-9043-446e-aacd-8a1a0e432cf1", + "name": "Update Endpoint / Update Endpoint", + "originalRequest": { + "url": { + "path": [ + "updateEndpoint" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"connectionconfig\": \"\",\n \"endpointname\": \"\",\n \"resourceOwnerType\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getEndpoints", + "description": "", + "item": [ + { + "id": "23ae678e-17e3-4a86-a9b2-3dee4b1b526f", + "name": "Get List of Endpoints", + "request": { + "name": "Get List of Endpoints", + "description": { + "content": "This API returns list of Endpoints in EIC.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params: `connectionType`, `endpointkey`, `endpointname`, `max`, `offset`, `filterCriteria`\n**Note**: You must specify the value for `endpointkey` parameter in array. Fr example, `\"endpointkey\" : [5]`.", + "type": "text/plain" + }, + "url": { + "path": [ + "getEndpoints" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"filterCriteria1\": {\n \"customproperty1\": \"\",\n \"displayName\": \"\"\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "39eff25a-36f5-43e6-90a9-9dd016b8dae2", + "name": "Get List of Endpoints", + "originalRequest": { + "url": { + "path": [ + "getEndpoints" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"filterCriteria1\": {\n \"customproperty1\": \"\",\n \"displayName\": \"\"\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displayCount\": \"\",\n \"endpoints\": [\n {\n \"accountNameRule\": \"\",\n \"accountTypeNoDeprovision\": \"\",\n \"connectionconfig\": \"\",\n \"createEntTaskforRemoveAcc\": \"\",\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"disableaccountrequest\": \"\",\n \"displayName\": \"\",\n \"enableCopyAccess\": \"\",\n \"endpointname\": \"\",\n \"ownerType\": \"\",\n \"ownerkey\": \"\",\n \"requestownertype\": \"\",\n \"securitySystem\": \"\",\n \"status\": \"\",\n \"userAccountCorrelationRule\": \"\"\n },\n {\n \"accountNameRule\": \"\",\n \"accountTypeNoDeprovision\": \"\",\n \"connectionconfig\": \"\",\n \"createEntTaskforRemoveAcc\": \"\",\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"disableaccountrequest\": \"\",\n \"displayName\": \"\",\n \"enableCopyAccess\": \"\",\n \"endpointname\": \"\",\n \"ownerType\": \"\",\n \"ownerkey\": \"\",\n \"requestownertype\": \"\",\n \"securitySystem\": \"\",\n \"status\": \"\",\n \"userAccountCorrelationRule\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"message\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createEntitlementType", + "description": "", + "item": [ + { + "id": "5e0f3f40-317a-4520-9fc4-9d014344a997", + "name": "Create Entitlement Type", + "request": { + "name": "Create Entitlement Type", + "description": { + "content": "This API creates Entitlement Type in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`entitlementname`,\n`endpointname`\nOptional params:\n`entitlementdescription`,\n`customproperty` - customproperty 1 to 5,\n`workflow`", + "type": "text/plain" + }, + "url": { + "path": [ + "createEntitlementType" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"customproperty1\": \"\",\n \"endpointname\": \"\",\n \"entitlementdescription\": \"\",\n \"entitlementname\": \"\",\n \"workflow\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "6aff0fd1-c6f4-4d0e-a312-3c8f3da53ffb", + "name": "Create Entitlement Type", + "originalRequest": { + "url": { + "path": [ + "createEntitlementType" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"customproperty1\": \"\",\n \"endpointname\": \"\",\n \"entitlementdescription\": \"\",\n \"entitlementname\": \"\",\n \"workflow\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateEntitlementType", + "description": "", + "item": [ + { + "id": "2de13e50-1d5a-493e-9a4f-2c30c466db08", + "name": "Update Entitlement Type", + "request": { + "name": "Update Entitlement Type", + "description": { + "content": "This API updates Entitlement Type in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n\t`entitlementname`,\r\n\t`endpointname`,\r\n\t\r\nOptional params:\r\n\t`entitlementdescription`,\r\n\t`workflow`,\r\n\t`customproperty`,\r\n\t`availableQueryServiceAccount`,\r\n\t`selectedQueryServiceAccount`, \r\n\t`arsRequestableEntitlementQuery`, \r\n\t`arsSelectedEntitlementQuery` , \r\n\t`createTaskAction` - it can be one value or list of values. The values can be [\"noAction\",\"removeTaskForExistingEntitlements\", \"enableRollback\"],\r\n\t`requestDatesConfJson` , \r\n\t`startDateInRevokeRequest` , \r\n\t`startEndDateInRequest` ,\r\n\t`allowRemoveAllEntitlementInRequest` , \r\n\t`orderindex` , \r\n\t`requiredinrequest` ,\r\n\t`hiearchyrequired` , \r\n\t`requestoption`\r\n\t\r\n\t\r\n`requestoption` param values can be - \r\nSHOW_BUT_NOTREUESTABLESINGLE/ \r\nSHOW_BUT_NOTREUESTABLEMULTIPLE/ \r\nNONE/ \r\nSINGLE/ \r\nMULTIPLE/ \r\nTABLE/ \r\nFREEFORMTEXT/ \r\nTABLENOREMOVE/ \r\nRADIOBUTN/ \r\nCHECKBOXN/ \r\nREADONLYTABLE/ \r\nNONE_BUT_CREATETASK", + "type": "text/plain" + }, + "url": { + "path": [ + "updateEntitlementType" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"allowRemoveAllEntitlementInRequest\": \"\",\n \"arsRequestableEntitlementQuery\": \"\",\n \"arsSelectedEntitlementQuery\": \"\",\n \"availableQueryServiceAccount\": \"\",\n \"createTaskAction\": [\n \"\",\n \"\"\n ],\n \"createTaskAction1\": \"\",\n \"customproperty1\": \"\",\n \"customproperty9\": \"\",\n \"endpointname\": \"\",\n \"entitlementdescription\": \"\",\n \"entitlementname\": \"\",\n \"hiearchyrequired\": \"\",\n \"orderindex\": \"\",\n \"requestDatesConfJson\": \"\",\n \"requestoption\": \"\",\n \"requiredinrequest\": \"\",\n \"selectedQueryServiceAccount\": \"\",\n \"startDateInRevokeRequest\": \"\",\n \"startEndDateInRequest\": \"\",\n \"workflow\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "86c3858f-cb3b-4af2-ae50-5bde901788e0", + "name": "Update Entitlement Type", + "originalRequest": { + "url": { + "path": [ + "updateEntitlementType" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"allowRemoveAllEntitlementInRequest\": \"\",\n \"arsRequestableEntitlementQuery\": \"\",\n \"arsSelectedEntitlementQuery\": \"\",\n \"availableQueryServiceAccount\": \"\",\n \"createTaskAction\": [\n \"\",\n \"\"\n ],\n \"createTaskAction1\": \"\",\n \"customproperty1\": \"\",\n \"customproperty9\": \"\",\n \"endpointname\": \"\",\n \"entitlementdescription\": \"\",\n \"entitlementname\": \"\",\n \"hiearchyrequired\": \"\",\n \"orderindex\": \"\",\n \"requestDatesConfJson\": \"\",\n \"requestoption\": \"\",\n \"requiredinrequest\": \"\",\n \"selectedQueryServiceAccount\": \"\",\n \"startDateInRevokeRequest\": \"\",\n \"startEndDateInRequest\": \"\",\n \"workflow\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getEntitlementTypes", + "description": "", + "item": [ + { + "id": "efb51514-b99f-4a11-8aec-c1a35915b88e", + "name": "Get List of Entitlement Types", + "request": { + "name": "Get List of Entitlement Types", + "description": { + "content": "This API returns list of Entitlement Types in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params:\n`entitlementname`,\n`max`,\n`offset`,\n`endpointname`", + "type": "text/plain" + }, + "url": { + "path": [ + "getEntitlementTypes" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpointname", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "6da4b458-7def-4ace-9d72-1e99265b34d4", + "name": "Get Entitlement Types", + "originalRequest": { + "url": { + "path": [ + "getEntitlementTypes" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlementname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpointname", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displayCount\": \"\",\n \"entitlementTypeDetails\": [\n {\n \"ars_req_ent_sqlquerey\": \"\",\n \"ars_select_ent_sqlquerey\": \"\",\n \"availableQueryServiceAccount\": \"\",\n \"certifiable\": \"\",\n \"createTaskAction\": \"\",\n \"customproperty1_label\": \"\",\n \"customproperty9_label\": \"\",\n \"displayName\": \"\",\n \"endpoint\": \"\",\n \"entitlementdescription\": \"\",\n \"entitlementname\": \"\",\n \"hiearchyrequired\": \"\",\n \"orderindex\": \"\",\n \"recon\": \"\",\n \"requestDatesConfJson\": \"\",\n \"requestoption\": \"\",\n \"requiredinrequest\": \"\",\n \"securitysystem\": \"\",\n \"selectedQueryServiceAccount\": \"\",\n \"showonchild\": \"\",\n \"workflow\": \"\"\n },\n {\n \"ars_req_ent_sqlquerey\": \"\",\n \"ars_select_ent_sqlquerey\": \"\",\n \"availableQueryServiceAccount\": \"\",\n \"certifiable\": \"\",\n \"createTaskAction\": \"\",\n \"customproperty1_label\": \"\",\n \"customproperty9_label\": \"\",\n \"displayName\": \"\",\n \"endpoint\": \"\",\n \"entitlementdescription\": \"\",\n \"entitlementname\": \"\",\n \"hiearchyrequired\": \"\",\n \"orderindex\": \"\",\n \"recon\": \"\",\n \"requestDatesConfJson\": \"\",\n \"requestoption\": \"\",\n \"requiredinrequest\": \"\",\n \"securitysystem\": \"\",\n \"selectedQueryServiceAccount\": \"\",\n \"showonchild\": \"\",\n \"workflow\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createDynamicAttribute", + "description": "", + "item": [ + { + "id": "cca82542-95f3-43ef-a821-177d29f6b0d2", + "name": "Create Dynamic Attribute", + "request": { + "name": "Create Dynamic Attribute", + "description": { + "content": "This API creates dynamic attributes in EIC.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`securitysystem`\n`endpoint`\n`updateuser`\n`dynamicattributes` - `attributename`, `requesttype`(ACCOUNT/PROPOSED ENTITLEMENT OWNER/ENTITLEMENT OWNER ATTESTATION/ROLE/SERVICE ACCOUNT)\nOptional params:\n`dynamicattributes` - other dynamic attribute parameters:\n- `attributetype`: Specify the attribute type based on which you want to filter and display the dynamic attributes.The various types of attribute types are: Single select from Sql Query, ENUM, Password, Boolean (True,False), String, Check Box, Date, and so on. - `attributename`: Specify the dynamic attribute name to be used for filtering out and calling the respective attribute to be displayed. - `Attribute Group`: Attribute Group provides you an option to group or categorize and display the dynamic attributes in the Access Requests request form. - `Order Index`: Specify the sequence where you want to display the dynamic attributes. You can specify values such as 0,1, 2, 3 and so on. Order index with lower values is displayed first and those with higher values are displayed later. - `attributelable`: Specify the name of the attribute, which you want to display in the Access Requests request form. You can apply the following font styling to the label:\n - `##SavBoldStart##Attribute_Name##SavBoldEnd##`\n - `##SavUnderlineStart##Attribute_Name##SavItalicEnd##`\n - `##SavUnderlineStart##Attribute_Name##UnderlineEnd##`\n - `##SavAnchorStart####SavUrlStart##https://exampleorg.com##SavUrlEnd####SavUrlTextStart##URL_Text##SavUrlTextEnd####SavAnchorEnd##`", + "type": "text/plain" + }, + "url": { + "path": [ + "createDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": [\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n },\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n }\n ],\n \"endpoint\": \"\",\n \"securitysystem\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "fd33e3b4-70bb-44cd-b4c9-d03365e942c4", + "name": "Create Dynamic Attribute", + "originalRequest": { + "url": { + "path": [ + "createDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": [\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n },\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n }\n ],\n \"endpoint\": \"\",\n \"securitysystem\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateDynamicAttribute", + "description": "", + "item": [ + { + "id": "e186a3f4-0c9f-48d3-a854-56e9afd09653", + "name": "Update Dynamic Attribute", + "request": { + "name": "Update Dynamic Attribute", + "description": { + "content": "This API updates dynamic attributes in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`securitysystem`\n`endpoint`\n`updateuser`\n`dynamicattributes` - `attributename`\nOptional params:\n- `dynamicattributes` - other attributes of dynamic attributes - `attributetype`(BOOLEAN/NUMBER/STRING/ENUM/MULTIPLE SELECT FROM LIST/MULTIPLE SELECT FROM SQL QUERY/SINGLE SELECT FROM SQL QUERY/PASSWORD/LARGE TEXT/CHECK BOX/DATE) - `requesttype`(ACCOUNT/PROPOSED ENTITLEMENT OWNER/ENTITLEMENT OWNER ATTESTATION/ROLE/SERVICE ACCOUNT) - `attributelable`: Specify the name of the attribute, which you want to display in the Access Requests request form. You can apply following font styling to the label:\n - **##SavBoldStart##**_**Attribute_Name**_**##SavBoldEnd##**\n - **##SavItalicStart##**_**Attribute_Name**_**##SavItalicEnd##**\n - **##SavUnderlineStart##**_**Attribute_Name**_**##SavItalicEnd##**\n - **##SavUrlStart##**_**Attribute_Name**_**##SavUrlEnd##**\n - **##SavAnchorStart####SavUrlStart##**[https://exampleorg.com##SavUrlEnd####SavUrlTextStart##]_**URL_Text**_**##SavUrlTextEnd####SavAnchorEnd##**", + "type": "text/plain" + }, + "url": { + "path": [ + "updateDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": [\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n },\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n }\n ],\n \"endpoint\": \"\",\n \"securitysystem\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "2a8e0337-927d-4be3-830f-d5db255e6e21", + "name": "Update Dynamic Attribute", + "originalRequest": { + "url": { + "path": [ + "updateDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": [\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n },\n {\n \"Parentattribute\": \"\",\n \"accountscolumn\": \"\",\n \"actionstring\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributegroup\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"defaultvalue\": \"\",\n \"descriptionascsv\": \"\",\n \"editable\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"regex\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"showonchild\": \"\"\n }\n ],\n \"endpoint\": \"\",\n \"securitysystem\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchDynamicAttribute", + "description": "", + "item": [ + { + "id": "ffe69858-073c-45ba-a1e4-7c4c35bf6568", + "name": "Fetch Dynamic Attributes", + "request": { + "name": "Fetch Dynamic Attributes", + "description": { + "content": "This API fetches the dynamic attributes in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params:\n`securitysystem`\n`endpoint`\n`dynamicattributes`\n`max`, `offset`,\n`requesttype` - can be ['ACCOUNT', 'PROPOSED ENTITLEMENT OWNER', 'ENTITLEMENT OWNER ATTESTATION', 'ROLE', 'SERVICE ACCOUNT','USER'],\n`loggedinuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": [\n \"\",\n \"\"\n ],\n \"endpoint\": [\n \"\",\n \"\"\n ],\n \"max\": \"\",\n \"offset\": \"\",\n \"securitysystem\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "1553f451-aa87-4418-a0f3-2e8ac8b0cbe4", + "name": "Fetch Dynamic Attributes", + "originalRequest": { + "url": { + "path": [ + "fetchDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": [\n \"\",\n \"\"\n ],\n \"endpoint\": [\n \"\",\n \"\"\n ],\n \"max\": \"\",\n \"offset\": \"\",\n \"securitysystem\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"dynamicattributes\": [\n {\n \"accountscolumn\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"editable\": \"\",\n \"endpoint\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"parentattribute\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"securitysystem\": \"\",\n \"showonchild\": \"\"\n },\n {\n \"accountscolumn\": \"\",\n \"actiontoperformwhenparentattributechanges\": \"\",\n \"attributelable\": \"\",\n \"attributename\": \"\",\n \"attributetype\": \"\",\n \"attributevalue\": \"\",\n \"editable\": \"\",\n \"endpoint\": \"\",\n \"hideoncreate\": \"\",\n \"hideonupdate\": \"\",\n \"orderindex\": \"\",\n \"parentattribute\": \"\",\n \"requesttype\": \"\",\n \"required\": \"\",\n \"securitysystem\": \"\",\n \"showonchild\": \"\"\n }\n ],\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteDynamicAttribute", + "description": "", + "item": [ + { + "id": "1087e2e5-470e-4b5e-af17-ac340a111b32", + "name": "Delete Dynamic Attribute", + "request": { + "name": "Delete Dynamic Attribute", + "description": { + "content": "This API deletes dynamic attributes in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`securitysystem`\n`endpoint`\n`updateuser`\n`dynamicattributes` - attributename list", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": \"\",\n \"endpoint\": \"\",\n \"securitysystem\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "6a051f8c-2608-4c9d-aa87-3a1d6274b464", + "name": "Delete Dynamic Attribute", + "originalRequest": { + "url": { + "path": [ + "deleteDynamicAttribute" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"dynamicattributes\": \"\",\n \"endpoint\": \"\",\n \"securitysystem\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteEntitlementType", + "description": "", + "item": [ + { + "id": "0bcb2b8a-5e7e-4c2b-b619-74f34833297f", + "name": "Delete Entitlement Types", + "request": { + "name": "Delete Entitlement Types", + "description": { + "content": "This API deletes entitlement types in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`updateuser`\n`entTypeQuery` or `entitlementtypekey` (If both are passed then entitlementtypekey will be considered)", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteEntitlementType" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"entitlementtypekey\": [\n \"\",\n \"\"\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "365619a6-2dcd-4203-b2e7-c64cd4ea9a49", + "name": "Delete Entitlement Types", + "originalRequest": { + "url": { + "path": [ + "deleteEntitlementType" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"entitlementtypekey\": [\n \"\",\n \"\"\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"entitlementtypes\": [\n {\n \"400\": \"\"\n },\n {\n \"400\": \"\"\n }\n ],\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createSecuritySystem", + "description": "", + "item": [ + { + "id": "30e64c63-c462-464b-bd40-14adb7a4770f", + "name": "Create Security System", + "request": { + "name": "Create Security System", + "description": { + "content": "This API creates Security System in EIC.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`systemname` `displayName`\nOptional params:\n`hostname` `port` `accessAddWorkflow` `accessRemoveWorkflow` `addServiceAccountWorkflow` `removeServiceAccountWorkflow` `connectionparameters` `automatedProvisioning provisioningTries`\n**Note:** From Release v23.1, you can specify `provisioningTries` between 1 to 20 based on your requirement.", + "type": "text/plain" + }, + "url": { + "path": [ + "createSecuritySystem" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accessAddWorkflow\": \"\",\n \"accessRemoveWorkflow\": \"\",\n \"addServiceAccountWorkflow\": \"\",\n \"automatedProvisioning\": \"\",\n \"connectionparameters\": \"\",\n \"displayName\": \"\",\n \"hostname\": \"\",\n \"port\": \"\",\n \"removeServiceAccountWorkflow\": \"\",\n \"systemname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "76d467bd-9339-47dd-8ac5-1b1221bc46bf", + "name": "Create Security System", + "originalRequest": { + "url": { + "path": [ + "createSecuritySystem" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accessAddWorkflow\": \"\",\n \"accessRemoveWorkflow\": \"\",\n \"addServiceAccountWorkflow\": \"\",\n \"automatedProvisioning\": \"\",\n \"connectionparameters\": \"\",\n \"displayName\": \"\",\n \"hostname\": \"\",\n \"port\": \"\",\n \"removeServiceAccountWorkflow\": \"\",\n \"systemname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateSecuritySystem", + "description": "", + "item": [ + { + "id": "45032f4e-578c-48e5-acb0-8df4a185120b", + "name": "Update Security System", + "request": { + "name": "Update Security System", + "description": { + "content": "This API updates Security system in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`systemname`\nOptional params:\n`displayName`, `hostname`, `port`, `accessAddWorkflow`, `accessRemoveWorkflow`, `addServiceAccountWorkflow`, `removeServiceAccountWorkflow` `connectionparameters` `automatedProvisioning` `connectionname` `provisioningConnection` `serviceDeskConnection` `provisioningcomments` `action` - \"enable\" or \"disable\", `defaultSystem`, `reconApplication` `provisioningTries`\n**Note:** From Release v23.1, you can specify `provisioningTries` between 1 to 20 based on your requirement.", + "type": "text/plain" + }, + "url": { + "path": [ + "updateSecuritySystem" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"accessAddWorkflow\": \"\",\n \"accessRemoveWorkflow\": \"\",\n \"action\": \"\",\n \"addServiceAccountWorkflow\": \"\",\n \"automatedProvisioning\": \"\",\n \"connectionname\": \"\",\n \"connectionparameters\": \"\",\n \"defaultSystem\": \"\",\n \"displayName\": \"\",\n \"hostname\": \"\",\n \"port\": \"\",\n \"provisioningConnection\": \"\",\n \"provisioningcomments\": \"\",\n \"reconApplication\": \"\",\n \"removeServiceAccountWorkflow\": \"\",\n \"serviceDeskConnection\": \"\",\n \"systemname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "dd56fc53-ae93-4069-b4c4-7d54452ac3ef", + "name": "Update Security System", + "originalRequest": { + "url": { + "path": [ + "updateSecuritySystem" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"accessAddWorkflow\": \"\",\n \"accessRemoveWorkflow\": \"\",\n \"action\": \"\",\n \"addServiceAccountWorkflow\": \"\",\n \"automatedProvisioning\": \"\",\n \"connectionname\": \"\",\n \"connectionparameters\": \"\",\n \"defaultSystem\": \"\",\n \"displayName\": \"\",\n \"hostname\": \"\",\n \"port\": \"\",\n \"provisioningConnection\": \"\",\n \"provisioningcomments\": \"\",\n \"reconApplication\": \"\",\n \"removeServiceAccountWorkflow\": \"\",\n \"serviceDeskConnection\": \"\",\n \"systemname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getSecuritySystems", + "description": "", + "item": [ + { + "id": "8aecd193-465b-411d-8809-ada6935496f3", + "name": "Get List of Security Systems", + "request": { + "name": "Get List of Security Systems", + "description": { + "content": "This API returns list of Security Systems in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params:\n`systemname`,\n`max`,`offset`,\n`connectionname`,\n`connectionType`", + "type": "text/plain" + }, + "url": { + "path": [ + "getSecuritySystems" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionType", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"Get List of Security Systems\": {\n \"value\": \"\"\n }\n }\n}" + }, + "auth": null + }, + "response": [ + { + "id": "92e11be2-684c-448f-8b60-4fed001ced12", + "name": "Get Security Systems", + "originalRequest": { + "url": { + "path": [ + "getSecuritySystems" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "max", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionType", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"Get List of Security Systems\": {\n \"value\": \"\"\n }\n }\n}" + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"securitySystemDetails\": [\n {\n \"accessAddWorkflow\": \"\",\n \"accessRemoveWorkflow\": \"\",\n \"automatedProvisioning\": \"\",\n \"createdBy\": \"\",\n \"defaultSystem\": \"\",\n \"displayName\": \"\",\n \"endpoints\": \"\",\n \"instantprovision\": \"\",\n \"policyRule\": \"\",\n \"reconApplication\": \"\",\n \"status\": \"\",\n \"systemname\": \"\",\n \"updatedBy\": \"\",\n \"useopenconnector\": \"\"\n },\n {\n \"accessAddWorkflow\": \"\",\n \"accessRemoveWorkflow\": \"\",\n \"automatedProvisioning\": \"\",\n \"createdBy\": \"\",\n \"defaultSystem\": \"\",\n \"displayName\": \"\",\n \"endpoints\": \"\",\n \"instantprovision\": \"\",\n \"policyRule\": \"\",\n \"reconApplication\": \"\",\n \"status\": \"\",\n \"systemname\": \"\",\n \"updatedBy\": \"\",\n \"useopenconnector\": \"\"\n }\n ],\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteSecuritySystem", + "description": "", + "item": [ + { + "id": "5e376315-4478-49db-9063-574436460807", + "name": "Delete Security System", + "request": { + "name": "Delete Security System", + "description": { + "content": "This API deletes Security System in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`updateuser`\n`systemQuery` or `systemkey` (If both are passed then systemkey will be considered)", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteSecuritySystem" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"systemkey\": [\n \"\",\n \"\"\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4258c574-d9e3-4d4b-9c24-e9db8dfa7c13", + "name": "Delete Security System", + "originalRequest": { + "url": { + "path": [ + "deleteSecuritySystem" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"systemkey\": [\n \"\",\n \"\"\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"securitysystems\": [\n {\n \"9\": \"\",\n \"10\": \"\"\n },\n {\n \"9\": \"\",\n \"10\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createUpdateUserGroup", + "description": "", + "item": [ + { + "id": "fe9c8934-a6ef-4d73-9fca-97b1476b5e79", + "name": "Create/Update UserGroup", + "request": { + "name": "Create/Update UserGroup", + "description": { + "content": "This API create or update usergroup in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`usergroup`,\n`username`\nOptional params:\n`user_groupdescription`,\n`users` - \n1. `username` (mandatory),\n2. `updateType` - ADD/REMOVE (optional),\n`entitlements` - \n1. `endpoint` (mandatory),\n2. `entitlement_type` (mandatory),\n3. `entitlement_value` (mandatory),\n4. `updateType` ADD/REMOVE (optional),\n`owners` -\n1. `username` (mandatory),\n2. `updateType` - ADD/REMOVE/SETRANK (optional),\n3. `rank` (optional)", + "type": "text/plain" + }, + "url": { + "path": [ + "createUpdateUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlement_type\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlement_type\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n }\n ],\n \"owners\": [\n {\n \"rank\": \"\",\n \"updateType\": \"\",\n \"username\": \"\"\n },\n {\n \"rank\": \"\",\n \"updateType\": \"\",\n \"username\": \"\"\n }\n ],\n \"user_groupdescription\": \"\",\n \"usergroup\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"updateType\": \"\",\n \"username\": \"\"\n },\n {\n \"updateType\": \"\",\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "519be8a1-4282-4ef3-bf38-c0334eab94a5", + "name": "Create/Update UserGroup", + "originalRequest": { + "url": { + "path": [ + "createUpdateUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlement_type\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlement_type\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n }\n ],\n \"owners\": [\n {\n \"rank\": \"\",\n \"updateType\": \"\",\n \"username\": \"\"\n },\n {\n \"rank\": \"\",\n \"updateType\": \"\",\n \"username\": \"\"\n }\n ],\n \"user_groupdescription\": \"\",\n \"usergroup\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"updateType\": \"\",\n \"username\": \"\"\n },\n {\n \"updateType\": \"\",\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"usergroupkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "addRemoveUserFromUserGroup", + "description": "", + "item": [ + { + "id": "f784b6d2-ddb7-4780-ada1-84514bb1179c", + "name": "Add/Remove User From UserGroup", + "request": { + "name": "Add/Remove User From UserGroup", + "description": { + "content": "This API is used to add or remove user from a usergroup in SSM\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params: \r\n\r\n`username` - User which needs to be added/ removed,\r\n\r\n`user_groupname` - Group name to be added/removed,\r\n\t\r\n`actionType` (0/1) - 0:Add and 1:Remove", + "type": "text/plain" + }, + "url": { + "path": [ + "addRemoveUserFromUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "actionType", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "user_groupname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "78e2a389-16ff-4bcf-bfe9-05b3813aa7da", + "name": "Add/Remove User From UserGroup", + "originalRequest": { + "url": { + "path": [ + "addRemoveUserFromUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "actionType", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "user_groupname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteUserGroup", + "description": "", + "item": [ + { + "id": "6521e13d-9a02-483a-a4e6-2aa38c056fc4", + "name": "Delete UserGroup", + "request": { + "name": "Delete UserGroup", + "description": { + "content": "This API delete usergroup in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username`,\n`usergroup`", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"usergroup\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "80c802e1-0028-483d-a672-22dada8e583e", + "name": "Delete UserGroup", + "originalRequest": { + "url": { + "path": [ + "deleteUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"usergroup\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchUserGroup", + "description": "", + "item": [ + { + "id": "c52be20e-4e7c-4b3d-b49a-e72b4343aae7", + "name": "Get List of UserGroups", + "request": { + "name": "Get List of UserGroups", + "description": { + "content": "This API returns list of UserGroups in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params:\n`usergroupkey`,\n`usergroupname`,\n`usergroupdescription`,`groupid`,\n`max (default value is 5)`,\n`offset (default value is 0)`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionType", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"usergroupkey\": \"\",\n \"usergroupname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "544471f1-237a-487b-ae98-5bb3c9b6e8da", + "name": "Fetch UserGroups - SUCCESS / Get List of UserGroups - usergroupkey", + "originalRequest": { + "url": { + "path": [ + "fetchUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionType", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"usergroupkey\": \"\",\n \"usergroupname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"totalcount\": \"\",\n \"usergroups\": [\n {\n \"entitlements\": [\n {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\"\n },\n {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\"\n }\n ],\n \"groupid\": \"\",\n \"risk\": \"\",\n \"user_groupdescription\": \"\",\n \"user_groupname\": \"\",\n \"usergroupkey\": \"\",\n \"users\": [\n {\n \"city\": \"\",\n \"email\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"userkey\": \"\",\n \"username\": \"\"\n },\n {\n \"city\": \"\",\n \"email\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"userkey\": \"\",\n \"username\": \"\"\n }\n ]\n },\n {\n \"entitlements\": [\n {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\"\n },\n {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\"\n }\n ],\n \"groupid\": \"\",\n \"risk\": \"\",\n \"user_groupdescription\": \"\",\n \"user_groupname\": \"\",\n \"usergroupkey\": \"\",\n \"users\": [\n {\n \"city\": \"\",\n \"email\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"userkey\": \"\",\n \"username\": \"\"\n },\n {\n \"city\": \"\",\n \"email\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"userkey\": \"\",\n \"username\": \"\"\n }\n ]\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + }, + { + "id": "06b325f3-afa8-4820-89cb-16b9616eda62", + "name": "Get List of UserGroups - FAIL", + "originalRequest": { + "url": { + "path": [ + "fetchUserGroup" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionType", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"usergroupkey\": \"\",\n \"usergroupname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "Precondition Failed", + "code": 412, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createOrganization", + "description": "", + "item": [ + { + "id": "60d76494-f3f4-4bca-a815-fe92ecc4fa5e", + "name": "Create Organization", + "request": { + "name": "Create Organization", + "description": { + "content": "This API creates an organization in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`organizationname`, `username` - user who is creating the organization\nOptional params:\nOrganization Detail attributes can be passed like `parentorganization`, `primarycontact`, `customproperty<1 to 20>`, `status` etc.\n`organizationtype` - Type of Organization. Possible values: DATA SECURITY / GROUPING / REQUEST RULES\n`roles` - List of roles with params - 1. `rolename`\n`rules` - List of rules with params - 1. `name` 2. `type` - BUISNESS / TECH / USERUPDATE / NEWUSER / REMOVEUSER / UPDATE_ENTITLEMENT / NEW_ENTITLEMENT / REMOVE_ENTITLEMENT/REQUEST\n`entitlements` - List of entitlements with params - 1. `entitlementvalue` 2. `entitlementtype` 3. `endpoint` \n`users` - List of users with params - 1. `username`\n`endpoints` - \n1. `endpointname` 2. `cp(1..5)`\n`owners` - 1. `owner` 2. `rank` 3. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY)\n`attributes` - 1. `attributegroupname` 2. `attributes` 3. `value` 4. `attributevalues`", + "type": "text/plain" + }, + "url": { + "path": [ + "createOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n },\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"endpoints\": [\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n },\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n }\n ],\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"location\": \"\",\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"owners\": [\n {\n \"owner\": \"\",\n \"rank\": \"\"\n },\n {\n \"owner\": \"\",\n \"rank\": \"\"\n }\n ],\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"roles\": [\n {\n \"rolename\": \"\"\n },\n {\n \"rolename\": \"\"\n }\n ],\n \"status\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"username\": \"\"\n },\n {\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4947f37f-7571-4d63-b5fb-ebfa223ad1a1", + "name": "createOrganization / Create Organization 2", + "originalRequest": { + "url": { + "path": [ + "createOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n },\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"endpoints\": [\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n },\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n }\n ],\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"location\": \"\",\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"owners\": [\n {\n \"owner\": \"\",\n \"rank\": \"\"\n },\n {\n \"owner\": \"\",\n \"rank\": \"\"\n }\n ],\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"roles\": [\n {\n \"rolename\": \"\"\n },\n {\n \"rolename\": \"\"\n }\n ],\n \"status\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"username\": \"\"\n },\n {\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateOrganization", + "description": "", + "item": [ + { + "id": "cdbb4deb-eb7a-4a43-ba00-9649ca819d16", + "name": "Update Organization", + "request": { + "name": "Update Organization", + "description": { + "content": "This API updates an organization in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`organizationname`, `username` - user who is updating the organization\nOptional params:\n`updatedorgname` - param to update organization name\nOrganization Detail attributes can be passed like `organizationtype`, `parentorganization`, `primarycontact`, `customproperty<1 to 20>` etc.\n_**Note**_: organization status update is not allowed.\n`endpoints` - List of endpoints with params -\n1. `endpointname` 2. `updatetype` - ADD/REMOVE\n\n`roles` - List of roles with params -\n1. `rolename` 2. `updatetype` - ADD/REMOVE\n\n`rules` - List of rules with params -\n1. `name` 2. `type` - BUISNESS/TECH/USERUPDATE/NEWUSER/REMOVEUSER/UPDATE_ENTITLEMENT/NEW_ENTITLEMENT/REMOVE_ENTITLEMENT/REQUEST 3. `updatetype` - ADD/REMOVE\n\n`entitlements` - List of entitlements with params -\n1. `entitlementvalue` 2. `entitlementtype` 3. `endpoint` 4. `updatetype` - ADD/REMOVE\n\n`users` - List of users with params -\n1. `username` 2. `updatetype` - ADD/REMOVE\n\n`owners` -\n1. `owner` 2. `rank` 3. `updatetype`(add/update/remove) 4. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY)\n\n`attributes` -\n1. `attributegroupname` 2. `attributes` 3. `value` 4. `attributevalues` 5. `updatetype`(addgroup/deletegroup/updategroup)", + "type": "text/plain" + }, + "url": { + "path": [ + "updateOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"updatetype\": \"\",\n \"value\": \"\"\n },\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"updatetype\": \"\",\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"endpoints\": [\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"location\": \"\",\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"owners\": [\n {\n \"owner\": \"\",\n \"rank\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"owner\": \"\",\n \"rank\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"roles\": [\n {\n \"rolename\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"rolename\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"status\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"updatetype\": \"\",\n \"username\": \"\"\n },\n {\n \"updatetype\": \"\",\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "240f4431-d994-49dc-9865-cf3af9da1940", + "name": "Update Organization", + "originalRequest": { + "url": { + "path": [ + "updateOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"updatetype\": \"\",\n \"value\": \"\"\n },\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"updatetype\": \"\",\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"endpoints\": [\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"location\": \"\",\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"owners\": [\n {\n \"owner\": \"\",\n \"rank\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"owner\": \"\",\n \"rank\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"roles\": [\n {\n \"rolename\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"rolename\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"status\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"updatetype\": \"\",\n \"username\": \"\"\n },\n {\n \"updatetype\": \"\",\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getOrganization", + "description": "", + "item": [ + { + "id": "d1ce3a3b-c1e0-4589-a06c-81323e34bd5b", + "name": "Get Organization", + "request": { + "name": "Get Organization", + "description": { + "content": "This API returns a list of organizations in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params:\n`organizationname`, `max`, `offset`\n`filtercriteria` - organizationname,organizationtype(possible values - Data Security, Request Rules, Grouping, 1, 2, 3),status(\"ACTIVE\"/\"INACTIVE\"),updateuser(username),createuser(username),parentorganization,customproperty<1-20>,description,primarycontact(username),vendormanager(username),location,risk,score\n***OR***\n`orgQuery`(Example : c.organizationname like '%example_orgname%')", + "type": "text/plain" + }, + "url": { + "path": [ + "getOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"offset\": \"\",\n \"orgQuery\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "0069acba-d0ad-4e11-b0b4-ad3bd9f05835", + "name": "Get Organization / Get Organization 2", + "originalRequest": { + "url": { + "path": [ + "getOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"offset\": \"\",\n \"orgQuery\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"organizations\": [\n {\n \"createdate\": \"\",\n \"createuser\": \"\",\n \"customproperty17\": \"\",\n \"description\": \"\",\n \"location\": \"\",\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"parentorganization\": \"\",\n \"primaryvendorcontact\": \"\",\n \"risk\": \"\",\n \"score\": \"\",\n \"status\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"createdate\": \"\",\n \"createuser\": \"\",\n \"customproperty17\": \"\",\n \"description\": \"\",\n \"location\": \"\",\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"parentorganization\": \"\",\n \"primaryvendorcontact\": \"\",\n \"risk\": \"\",\n \"score\": \"\",\n \"status\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteOrganization", + "description": "", + "item": [ + { + "id": "db830391-f527-44bf-bf32-7cebe5773b99", + "name": "Delete Organization", + "request": { + "name": "Delete Organization", + "description": { + "content": "This API deletes organization in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`organizationname`,\n`username`", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"organizationname\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "97cd60d8-c4a5-4022-a0fe-999bb8ddfe4c", + "name": "Delete Organization", + "originalRequest": { + "url": { + "path": [ + "deleteOrganization" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"organizationname\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getConnections", + "description": "", + "item": [ + { + "id": "14b11083-d5b4-40a0-9bb7-02c257c9de9e", + "name": "Get List of Connections", + "request": { + "name": "Get List of Connections", + "description": { + "content": "This API returns list of Connections in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nOptional params:\r\n`max`,`offset`,\r\n`connectiontype`,\r\n`connectionname`", + "type": "text/plain" + }, + "url": { + "path": [ + "getConnections" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectiontype", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "c1b7210e-4412-4355-9154-da455436662e", + "name": "Get Connections", + "originalRequest": { + "url": { + "path": [ + "getConnections" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectiontype", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"ConnectionList\": [\n {\n \"CONNECTIONDESCRIPTION\": \"\",\n \"CONNECTIONNAME\": \"\",\n \"CONNECTIONTYPE\": \"\",\n \"CREATEDBY\": \"\",\n \"CREATEDON\": \"\",\n \"STATUS\": \"\",\n \"UPDATEDBY\": \"\",\n \"UPDATEDON\": \"\"\n },\n {\n \"CONNECTIONDESCRIPTION\": \"\",\n \"CONNECTIONNAME\": \"\",\n \"CONNECTIONTYPE\": \"\",\n \"CREATEDBY\": \"\",\n \"CREATEDON\": \"\",\n \"STATUS\": \"\",\n \"UPDATEDBY\": \"\",\n \"UPDATEDON\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getConnectionDetails", + "description": "", + "item": [ + { + "id": "48b939d4-9ef1-4cf6-b878-d7dd810d07c0", + "name": "Get Connections Details", + "request": { + "name": "Get Connections Details", + "description": { + "content": "This API returns connection details in SSM. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n`connectiontype` or `connectionname`(if both are passed then connectionkey will be considered)", + "type": "text/plain" + }, + "url": { + "path": [ + "getConnectionDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionkey", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "9c06fd2f-530f-46b2-918c-535601ca7359", + "name": "Get Connections Details - Success", + "originalRequest": { + "url": { + "path": [ + "getConnectionDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionkey", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionname", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"connectionattributes\": {\n \"ACCOUNTS_IMPORT_JSON\": \"\",\n \"CHANGEPASSJSON\": \"\",\n \"COMBINEDCREATEREQUEST\": \"\",\n \"CONNECTIONJSON\": \"\",\n \"CREATEACCOUNTJSON\": \"\",\n \"DATA_TO_IMPORT\": \"\",\n \"DATEFORMAT\": \"\",\n \"DELETEACCOUNTJSON\": \"\",\n \"DISABLEACCOUNTJSON\": \"\",\n \"ENABLEACCOUNTJSON\": \"\",\n \"GRANTACCESSJSON\": \"\",\n \"HR_IMPORT_JSON\": \"\",\n \"PAGE_SIZE\": \"\",\n \"PASSWORD\": \"\",\n \"PASSWORD_MAX_LENGTH\": \"\",\n \"PASSWORD_MIN_LENGTH\": \"\",\n \"PASSWORD_NOOFCAPSALPHA\": \"\",\n \"PASSWORD_NOOFDIGITS\": \"\",\n \"PASSWORD_NOOFSPLCHARS\": \"\",\n \"PASSWORD_TYPE\": \"\",\n \"RESPONSEPATH_PAGERESULTS\": \"\",\n \"RESPONSEPATH_TOTALRESULTS\": \"\",\n \"RESPONSEPATH_USERLIST\": \"\",\n \"REVOKEACCESSJSON\": \"\",\n \"SOAP_ENDPOINT\": \"\",\n \"UPDATEACCOUNTJSON\": \"\",\n \"UPDATEUSERJSON\": \"\",\n \"USERNAME\": \"\"\n },\n \"connectionkey\": \"\",\n \"connectionname\": \"\",\n \"connectiontype\": \"\",\n \"createdby\": \"\",\n \"createdon\": \"\",\n \"defaultsavroles\": \"\",\n \"description\": \"\",\n \"emailtemplate\": \"\",\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"status\": \"\",\n \"updatedby\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteConnection", + "description": "", + "item": [ + { + "id": "631f31c2-8281-4269-994b-860dc487c8ca", + "name": "Delete Connections", + "request": { + "name": "Delete Connections", + "description": { + "content": "This API deletes Connections in SSM. The `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`updateuser`\n`connectionQuery` or `connectionkey` (If both are passed then connectionkey will be considered)", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteConnection" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"connectionkey\": [\n \"\",\n \"\"\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "93035e4d-65ad-42f8-9056-078952a1b3e6", + "name": "Delete Connections", + "originalRequest": { + "url": { + "path": [ + "deleteConnection" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "DELETE", + "body": { + "mode": "raw", + "raw": "{\n \"connectionkey\": [\n \"\",\n \"\"\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"connections\": [\n {\n \"8\": \"\"\n },\n {\n \"8\": \"\"\n }\n ],\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createDataset", + "description": "", + "item": [ + { + "id": "792f9b5d-9701-4836-ae40-9860b0e2f7a4", + "name": "createDataset", + "request": { + "name": "createDataset", + "description": { + "content": "This API is used to create a new dataset.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters:\n`datasetname` \n`displayname` \n`attributeConfig`\nOptional parameters:\n`datasetowner` \n`description`", + "type": "text/plain" + }, + "url": { + "path": [ + "createDataset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"attributeConfig\": \"\",\n \"datasetname\": \"\",\n \"description\": \"\",\n \"displayname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "723c7dca-5b14-47c0-9457-0d9995b4ded5", + "name": "createDataset", + "originalRequest": { + "url": { + "path": [ + "createDataset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"attributeConfig\": \"\",\n \"datasetname\": \"\",\n \"description\": \"\",\n \"displayname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getDatasetValues", + "description": "", + "item": [ + { + "id": "0c629f8c-163f-4c61-ac32-f47bb2a1b1cc", + "name": "getDatasetValues", + "request": { + "name": "getDatasetValues", + "description": { + "content": "This API is used to get the DatasetValues.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters:\n`datasetname`", + "type": "text/plain" + }, + "url": { + "path": [ + "getDatasetValues" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"getDatasetValues\": {\n \"value\": \"{\\r\\n\\\"datasetname\\\": \\\"Latest_Car\\\",\\r\\n}\"\n }\n }\n}" + }, + "auth": null + }, + "response": [ + { + "id": "9a637f50-678a-47e8-9354-f4b43cb3ae56", + "name": "getDatasetValues", + "originalRequest": { + "url": { + "path": [ + "getDatasetValues" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"getDatasetValues\": {\n \"value\": \"{\\r\\n\\\"datasetname\\\": \\\"Latest_Car\\\",\\r\\n}\"\n }\n }\n}" + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateDatasetValues", + "description": "", + "item": [ + { + "id": "584825e9-d87a-476a-abc8-6e15542a43a6", + "name": "updateDatasetValues", + "request": { + "name": "updateDatasetValues", + "description": { + "content": "This API is used to update the values of the DatasetValues.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters: \n`datasetname` \n`updateattributes`", + "type": "text/plain" + }, + "url": { + "path": [ + "updateDatasetValues" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"datasetname\": \"\",\n \"locationCode\": \"\",\n \"updateattributes\": {\n \"city\": \"\"\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "d448efa6-9df2-4b00-a10f-487c0e1945d8", + "name": "updateDatasetValues", + "originalRequest": { + "url": { + "path": [ + "updateDatasetValues" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"datasetname\": \"\",\n \"locationCode\": \"\",\n \"updateattributes\": {\n \"city\": \"\"\n }\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteDataset", + "description": "", + "item": [ + { + "id": "93a728d6-31b2-4755-a737-8e462b0be97d", + "name": "deleteDataset", + "request": { + "name": "deleteDataset", + "description": { + "content": "This API is used to delete a dataset.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters:\n`datasetname`", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteDataset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"deleteDataset\": {\n \"value\": \"{\\r\\n \\\"datasetname\\\": \\\"Latest_Car\\\",\\r\\n}\"\n }\n }\n}" + }, + "auth": null + }, + "response": [ + { + "id": "b1804772-558c-4118-b842-0e121da2fa24", + "name": "deleteDataset", + "originalRequest": { + "url": { + "path": [ + "deleteDataset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"examples\": {\n \"deleteDataset\": {\n \"value\": \"{\\r\\n \\\"datasetname\\\": \\\"Latest_Car\\\",\\r\\n}\"\n }\n }\n}" + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "uploadDatasetCSV", + "description": "", + "item": [ + { + "id": "f956cee1-aea4-443e-9ad9-ad87525e65e3", + "name": "uploadDatasetCSV", + "request": { + "name": "uploadDatasetCSV", + "description": { + "content": "This API is used to upload the CSV file for a dataset.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters:\n`datasetValuefile`\n`datasetname`\n**Note**: The `datasetValuefile` must be CSV.", + "type": "text/plain" + }, + "url": { + "path": [ + "uploadDatasetCSV" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "datasetValuefile", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "datasetname", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "4407ea2f-51c7-4e4a-9b54-a5525fd662d6", + "name": "uploadDatasetCSV", + "originalRequest": { + "url": { + "path": [ + "uploadDatasetCSV" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "datasetValuefile", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "datasetname", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateDataset", + "description": "", + "item": [ + { + "id": "a48e0f16-978b-4bbe-8d48-e0005747e549", + "name": "updateDataset", + "request": { + "name": "updateDataset", + "description": { + "content": "This API is used to update the Dataset details.\nThe `Authorization` must have a `Bearer` followed by a `Token`.\nMandatory parameters:\n`datasetname`", + "type": "text/plain" + }, + "url": { + "path": [ + "updateDataset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"datasetname\": \"\",\n \"datasetowner\": \"\",\n \"description\": \"\",\n \"displayname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "7f85868f-6f6b-4404-8f8f-9c6e68d19292", + "name": "updateDataset", + "originalRequest": { + "url": { + "path": [ + "updateDataset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"datasetname\": \"\",\n \"datasetowner\": \"\",\n \"description\": \"\",\n \"displayname\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchControlList", + "description": "", + "item": [ + { + "id": "0fdd58d3-dbc1-4d84-9169-33ca9bd4621e", + "name": "Fetch List of Analytics", + "request": { + "name": "Fetch List of Analytics", + "description": { + "content": "This operation fetches a list of Analytic Controls by `Category` or `Application` (\"EndpointName\"). Optional params: `application`, `category`, `max`, `offset` The `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchControlList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "application", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "category", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "051049d0-884d-4639-a316-d269d2817d54", + "name": "Fetch Control List", + "originalRequest": { + "url": { + "path": [ + "fetchControlList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "application", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "category", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"controls\": [\n {\n \"analyticsId\": \"\",\n \"analyticsName\": \"\",\n \"application\": \"\",\n \"category\": \"\",\n \"conflictCount\": \"\",\n \"controlid\": \"\",\n \"description\": \"\",\n \"lastRun\": \"\",\n \"recommendations\": \"\",\n \"risk\": \"\"\n },\n {\n \"analyticsId\": \"\",\n \"analyticsName\": \"\",\n \"application\": \"\",\n \"category\": \"\",\n \"conflictCount\": \"\",\n \"controlid\": \"\",\n \"description\": \"\",\n \"lastRun\": \"\",\n \"recommendations\": \"\",\n \"risk\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchControlDetails", + "description": "", + "item": [ + { + "id": "ac6cd581-e199-4e00-aa65-0309c9497116", + "name": "Fetch Analytics Details", + "request": { + "name": "Fetch Analytics Details", + "description": { + "content": "This web service API is used to fetch the details of analytics controls.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`controlId` - this is the ANALYTICSKEY\r\n\r\nOptional params:\r\n`max`, `offset`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchControlDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "controlId", + "value": "", + "type": "text" + } + ] + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "4cf0a516-5f77-4322-a755-e76d45224ef0", + "name": "Fetch Control Details", + "originalRequest": { + "url": { + "path": [ + "fetchControlDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "controlId", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"controlDetails\": [\n {\n \"NAME\": \"\",\n \"STATUS\": \"\"\n },\n {\n \"NAME\": \"\",\n \"STATUS\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "runAnalyticsControls", + "description": "", + "item": [ + { + "id": "979c631d-9518-4527-9de1-7769add910aa", + "name": "Run Analytics Controls", + "request": { + "name": "Run Analytics Controls", + "description": { + "content": "This API is used to run analytics job.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: \n`jobgroup`,\n`jobname`,\n`analyticsCategories` (start and end with ###)\nOptional params:\n`analyticsApplications`\n`analyticssubcategories` (start and end with ###)", + "type": "text/plain" + }, + "url": { + "path": [ + "runAnalyticsControls" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "analyticsCategories", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "analyticssubcategories", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobgroup", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobname", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "ca73f359-2807-4217-859d-d38a535fa647", + "name": "Run Analytics Controls / Run Analytics Controls with analyticssubcategories / Run Analytics Controls ES", + "originalRequest": { + "url": { + "path": [ + "runAnalyticsControls" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "analyticsCategories", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "analyticssubcategories", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobgroup", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobname", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchRuntimeControlsData", + "description": "", + "item": [ + { + "id": "23f7a0b6-3e39-4bc3-a06b-1ec80a5dcc12", + "name": "Fetch Runtime Controls Data", + "request": { + "name": "Fetch Runtime Controls Data", + "description": { + "content": "This API is used to fetch runtime analytics data from SSM.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nMandatory params: \n`analyticsid` ***OR*** `analyticsname`,\n`attributes` - runtime control params. \nSample : For this query - select * from users where manager = ${manager} and username = ${username}\n\"attributes\":{\n\t\"manager\":\"4\",\n\t\"username\":\"johndoe\"\n}\n\nOptional params:\n`max`,\n`offset`,\n`loggedinuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchRuntimeControlsData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"attributes\": {\n \"manager\": \"\",\n \"username\": \"\"\n },\n \"loggedinuser\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "dadcbacd-190b-49e5-a676-73ec2d909b80", + "name": "Fetch Runtime Controls Data", + "originalRequest": { + "url": { + "path": [ + "fetchRuntimeControlsData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"attributes\": {\n \"manager\": \"\",\n \"username\": \"\"\n },\n \"loggedinuser\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"result\": [\n {\n \"FIRSTNAME\": \"\",\n \"USERNAME\": \"\"\n },\n {\n \"FIRSTNAME\": \"\",\n \"USERNAME\": \"\"\n }\n ],\n \"total\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchRuntimeControlsDataV2", + "description": "", + "item": [ + { + "id": "180a3d06-78fc-49ba-b3e0-1992d8ec5f9b", + "name": "Fetch Runtime Controls Data V2", + "request": { + "name": "Fetch Runtime Controls Data V2", + "description": { + "content": "This API is used to fetch runtime analytics data from ES.\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\nMandatory params: \n`analyticsid` ***OR*** `analyticsname`((if both are passed then analyticsid will be considered),\n`attributes` - runtime control params. \nSample : For this query - SELECT u.username, u.firstname, u.lastname, u.email, u.manager AS 'USERCONTEXT',u.statuskey FROM users u WHERE u.statuskey is not null and u.statuskey not in (${statuskey}) and u.MANAGER is not null;\n\"attributes\":{\n\t\"statuskey\": \"0\"\n}\n\nOptional params:\n`max`,\n`offset`,\n`requestor`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchRuntimeControlsDataV2" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"analyticsname\": \"\",\n \"attributes\": {\n \"statuskey\": \"\"\n },\n \"max\": \"\",\n \"offset\": \"\",\n \"requestor\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "d9faaec4-b52d-47fb-89b6-42ea38ec9db5", + "name": "Fetch Runtime Controls Data V2", + "originalRequest": { + "url": { + "path": [ + "fetchRuntimeControlsDataV2" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"analyticsname\": \"\",\n \"attributes\": {\n \"statuskey\": \"\"\n },\n \"max\": \"\",\n \"offset\": \"\",\n \"requestor\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"results\": [\n {\n \"USERCONTEXT\": \"\",\n \"email\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"statuskey\": \"\",\n \"username\": \"\"\n },\n {\n \"USERCONTEXT\": \"\",\n \"email\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"statuskey\": \"\",\n \"username\": \"\"\n }\n ],\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchControlListES", + "description": "", + "item": [ + { + "id": "efe914bf-f811-4106-a5c1-8245fdd385ed", + "name": "Fetch List of Analytics ES", + "request": { + "name": "Fetch List of Analytics ES", + "description": { + "content": "This method fetches a list of Analytic Controls in Elastic and support the usage of GET and POST methods. It is recommended to use the POST method. Optional params: `searchcriteria`: analytics params to search. Example: {\"analyticsid\": \"9\",\"risk\": \"Medium\",\"category\": \"Usage\",\"status\": \"Active\",\"analyticsname\":\"testESQuery\",\"owner\":\"awsadmin\",\"usergroup\":\"MTSTrade_Approver_BusinessOwner\",\"tags\":\"Tagname\",\"description\":\"desc\",\"recommendations\":\"comm\"}, `max`, `offset` `loggedinuser` _**Note**_: Security is based on owner, delegate, ROLE_ADMIN, SAV_ROLE's analytics ES category. The `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchControlListES" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "031b0ca2-1df4-4aa5-a95e-90e9c1f1cee9", + "name": "Fetch List of Analytics ES / GET - Fetchlist / Post-FetchControlListES", + "originalRequest": { + "url": { + "path": [ + "fetchControlListES" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"result\": [\n {\n \"allowedAction\": \"\",\n \"analyticsEsIndex\": \"\",\n \"analyticsEsIndexType\": \"\",\n \"analyticsName\": \"\",\n \"analyticsid\": \"\",\n \"analyticstype\": \"\",\n \"baseCount\": \"\",\n \"category\": \"\",\n \"createDate\": \"\",\n \"description\": \"\",\n \"emailTemplate\": \"\",\n \"enableArchival\": \"\",\n \"noOfHistoryToKeep\": \"\",\n \"recommendations\": \"\",\n \"risk\": \"\",\n \"securityContext\": \"\",\n \"status\": \"\",\n \"subcategory\": \"\",\n \"tags\": \"\"\n },\n {\n \"allowedAction\": \"\",\n \"analyticsEsIndex\": \"\",\n \"analyticsEsIndexType\": \"\",\n \"analyticsName\": \"\",\n \"analyticsid\": \"\",\n \"analyticstype\": \"\",\n \"baseCount\": \"\",\n \"category\": \"\",\n \"createDate\": \"\",\n \"description\": \"\",\n \"emailTemplate\": \"\",\n \"enableArchival\": \"\",\n \"noOfHistoryToKeep\": \"\",\n \"recommendations\": \"\",\n \"risk\": \"\",\n \"securityContext\": \"\",\n \"status\": \"\",\n \"subcategory\": \"\",\n \"tags\": \"\"\n }\n ],\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchControlAttributes", + "description": "", + "item": [ + { + "id": "71f71e28-a6d3-4dac-ba8b-781ef426ec1b", + "name": "Fetch Control Attributes", + "request": { + "name": "Fetch Control Attributes", + "description": { + "content": "This API is used for fetching the details of dynamic attributes associated with an analytics control. This can be used for both Elasticsearch and Database analytics. The `Authorization` must have `Bearer` followed by `Token`. Mandatory params: `analyticstype`(ES/DB) `analyticsname` _**OR**_ `id`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchControlAttributes" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticstype\": \"\",\n \"id\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a938a583-c528-4cd0-b724-3465452c3f1d", + "name": "Fetch Control Attributes", + "originalRequest": { + "url": { + "path": [ + "fetchControlAttributes" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticstype\": \"\",\n \"id\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"attributesList\": [\n {\n \"attributeDefaultValue\": \"\",\n \"attributeKey\": \"\",\n \"attributeLabel\": \"\",\n \"attributeName\": \"\",\n \"attributeValue\": \"\",\n \"format\": \"\",\n \"orderIndex\": \"\"\n },\n {\n \"attributeDefaultValue\": \"\",\n \"attributeKey\": \"\",\n \"attributeLabel\": \"\",\n \"attributeName\": \"\",\n \"attributeValue\": \"\",\n \"format\": \"\",\n \"orderIndex\": \"\"\n }\n ],\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchControlDetailsES", + "description": "", + "item": [ + { + "id": "734910d7-d5fb-4ff3-bc6d-d132da3c196e", + "name": "Fetch Control Details ES", + "request": { + "name": "Fetch Control Details ES", + "description": { + "content": "This API performs the action specified under the `Default_Action_For_Analytics` parameter and retrieves records starting from the offset. This API can return the response even if the `offset` parameter is set beyond 1000. Now, the response of this API displays an additional offset attribute. Starting with Release v24.1, the behavior of this API has been modified as follows: - **For newly created analytics controls:** You can swiftly execute and retrieve the history of newly created analytics controls.\n- **For previously existing analytics controls:** To expedite fetching the run history of previously existing analytics controls, you must initially run the control on the Analytics Configuration List page within the user interface. Subsequently, you can use the API to fetch the run history.\n\nThe `Authorization` must have `Bearer` followed by `Token`. **Mandatory** **params:** - `controlId` - this is the ANALYTICSKEY\n\n- `offset`\\- Specify the value from where the records must be retrieved\n\n**Optional params:** `max`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchControlDetailsES" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "f67da96f-7420-4e8e-99fa-5674862cab7b", + "name": "Fetch Control Details ES / Fetch Control Details ES / Offset value set < 1000 / Offset value set > 1000 / max parameter set / Removed max parameter", + "originalRequest": { + "url": { + "path": [ + "fetchControlDetailsES" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsid\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"attributeDefaultValue\": \"\",\n \"attributeKey\": \"\",\n \"attributeLabel\": \"\",\n \"attributeName\": \"\",\n \"attributeValue\": \"\",\n \"format\": \"\",\n \"orderIndex\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createUserRequest", + "description": "", + "item": [ + { + "id": "9381e38e-681c-42f7-bd7d-d743240bb759", + "name": "Create User Request", + "request": { + "name": "Create User Request", + "description": { + "content": "This API call can be used for creating update/create user request in the EIC. The `Authorization` must have `Bearer` followed by `Token`. Optional params: `statuskey` - Values:1/0, 0 - Inactive, 1 - Active `User params` can be passed. Example: email, manager, username, firstname, lastname, preferedFirstName, customproperty<1 to 40> `Roles`\\- Specifies the rolename (#### separated) that will be assigned to the newly created user `requestor`", + "type": "text/plain" + }, + "url": { + "path": [ + "createUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Roles", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "email", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "firstname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "lastname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "7852c766-342d-4f07-9840-1531336b6278", + "name": "Create User Request", + "originalRequest": { + "url": { + "path": [ + "createUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Roles", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "email", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "firstname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "lastname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"jbpmid\": \"\",\n \"msg\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + }, + { + "id": "7a697194-135c-4d0c-b299-0af2438bbc4b", + "name": "Create User Request - Failure", + "originalRequest": { + "url": { + "path": [ + "createUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Roles", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "email", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "firstname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "lastname", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "", + "type": "text" + } + ] + } + }, + "status": "Precondition Failed", + "code": 412, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "uploadUserRequest", + "description": "", + "item": [ + { + "id": "2a7428e7-75d6-4697-8712-37483089554b", + "name": "Bulk Upload Users", + "request": { + "name": "Bulk Upload Users", + "description": { + "content": "This API is used to create and update users using bulk upload.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`file` - Provide the CSV file and select the key field type as File.\nOptional params:\n`delimiter` - tab, pipe, comma. Default value is comma.\n`zeroDayProvisioning` - YES/NO. Default value is NO.\n`generateSystemUsername` - YES/NO. Default value is NO.\n`generateEmail` - YES/NO. Default value is NO.\n`checkrules` - YES/NO. Default value is NO.\n`checkruleforcustomjar`\\- YES/NO. Default value is NO. This option helps in checking whether a pre-validation is required while uploading users, on the basis of the logic defined in the Saviynt validation framework extension (JAR) file.\n`expirepasswordfornewuser`\\- YES/NO. Default value is NO.\n`userReconcillationField` - Text field.\n`userpreprocessorconfigjson` - Text field.", + "type": "text/plain" + }, + "url": { + "path": [ + "uploadUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delimiter", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "file", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "generateEmail", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "generateSystemUsername", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "zeroDayProvisioning", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "ca660fcf-13e1-413c-b556-0c641a8ee1ee", + "name": "Bulk Upload Users", + "originalRequest": { + "url": { + "path": [ + "uploadUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delimiter", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "file", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "generateEmail", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "generateSystemUsername", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "zeroDayProvisioning", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateUserRequest", + "description": "", + "item": [ + { + "id": "7c045bf9-cc67-4f52-9cf6-58be5f301e69", + "name": "Update User Request", + "request": { + "name": "Update User Request", + "description": { + "content": "This API call can be used for updating user request in the EIC.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username` - user who has to be modified.\nOptional params:\n`updateuser` - Username who is updating the request,\n`User's dynamic attribute` can be passed. \nExample: \"firstname\": \"fn\", \n\"entity\": \\[ \n\"Atlanta\" \n\\]", + "type": "text/plain" + }, + "url": { + "path": [ + "updateUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"designation\": \"\",\n \"entity\": [\n \"\",\n \"\"\n ],\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"manager\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "7c16442e-c8fc-410f-858b-2a1d299b54f7", + "name": "Create User Request / Update User Request", + "originalRequest": { + "url": { + "path": [ + "updateUserRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"designation\": \"\",\n \"entity\": [\n \"\",\n \"\"\n ],\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"manager\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"errorcode\": \"\",\n \"jbpmid\": \"\",\n \"msg\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getrequestableusers", + "description": "", + "item": [ + { + "id": "d0b6ece9-5bba-49c3-8d98-b4926507acaf", + "name": "Get Requestable Users", + "request": { + "name": "Get Requestable Users", + "description": { + "content": "This API fetches the list of user for whom the requestor can request.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: \n`requestor`\nOptional params:\n`max`, `offset`", + "type": "text/plain" + }, + "url": { + "path": [ + "getrequestableusers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"requestor\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "bd0502a7-2b14-45ea-a498-163225c486d1", + "name": "Get Requestable User", + "originalRequest": { + "url": { + "path": [ + "getrequestableusers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"requestor\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalcount\": \"\",\n \"users\": [\n {\n \"city\": \"\",\n \"companyname\": \"\",\n \"costcenter\": \"\",\n \"departmentname\": \"\",\n \"departmentnumber\": \"\",\n \"displayname\": \"\",\n \"email\": \"\",\n \"enddate\": \"\",\n \"firstname\": \"\",\n \"jobCode\": \"\",\n \"jobcodedesc\": \"\",\n \"lastname\": \"\",\n \"lastsyncdate\": \"\",\n \"location\": \"\",\n \"manager\": \"\",\n \"region\": \"\",\n \"secmanager\": \"\",\n \"startdate\": \"\",\n \"statuskey\": \"\",\n \"systemusername\": \"\",\n \"username\": \"\",\n \"vendormanager\": \"\"\n },\n {\n \"city\": \"\",\n \"companyname\": \"\",\n \"costcenter\": \"\",\n \"departmentname\": \"\",\n \"departmentnumber\": \"\",\n \"displayname\": \"\",\n \"email\": \"\",\n \"enddate\": \"\",\n \"firstname\": \"\",\n \"jobCode\": \"\",\n \"jobcodedesc\": \"\",\n \"lastname\": \"\",\n \"lastsyncdate\": \"\",\n \"location\": \"\",\n \"manager\": \"\",\n \"region\": \"\",\n \"secmanager\": \"\",\n \"startdate\": \"\",\n \"statuskey\": \"\",\n \"systemusername\": \"\",\n \"username\": \"\",\n \"vendormanager\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createEnterpriseRoleRequest", + "description": "", + "item": [ + { + "id": "b8e74bd8-6d74-4bcd-82ee-d0748dc8d021", + "name": "Create Role Request", + "request": { + "name": "Create Role Request", + "description": { + "content": "This API call can be used for creating a new role and assigning an owner to the role. The `Authorization` must have `Bearer` followed by `Token`. Mandatory params: `roletype` - Use the roletype as \"ENTERPRISE\" to Create Enterprise Role Request. (supported roletypes - ENABLER/ TRANSACTIONAL/ FIREFIGHTER/ ENTERPRISE/ APPLICATION), `role_name`, `requestor`, `owner` 1\\. `ownerName` 2\\. `rank`<1 to 27>, Optional params: `customproperty<1 to 60>`, `endpointname`, `defaulttimeframe`, `description`, `displayname`, `glossary`, `risk`, `level`, `soxcritical`, `syscritical`, `priviliged`, `confidentiality`, `requestable`, `showDynamicAttrs, checksod:`Set this parameter to evaluate Segregation of Duties (SOD) violations. By default, the parameter is set to false.", + "type": "text/plain" + }, + "url": { + "path": [ + "createEnterpriseRoleRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"confidentiality\": \"\",\n \"customproperty10\": \"\",\n \"defaulttimeframe\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointname\": \"\",\n \"glossary\": \"\",\n \"level\": \"\",\n \"owner\": \"\",\n \"priviliged\": \"\",\n \"requestable\": \"\",\n \"requestor\": \"\",\n \"risk\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\",\n \"showDynamicAttrs\": \"\",\n \"soxcritical\": \"\",\n \"syscritical\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "6a0c3ba4-6397-4f0d-9752-20a17461f490", + "name": "Create Role Request / Create Role Request with Role Properties", + "originalRequest": { + "url": { + "path": [ + "createEnterpriseRoleRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"confidentiality\": \"\",\n \"customproperty10\": \"\",\n \"defaulttimeframe\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointname\": \"\",\n \"glossary\": \"\",\n \"level\": \"\",\n \"owner\": \"\",\n \"priviliged\": \"\",\n \"requestable\": \"\",\n \"requestor\": \"\",\n \"risk\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\",\n \"showDynamicAttrs\": \"\",\n \"soxcritical\": \"\",\n \"syscritical\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateEnterpriseRoleRequest", + "description": "", + "item": [ + { + "id": "9164f7c9-2057-4920-b936-c90f18c7ff4e", + "name": "Update Role Request", + "request": { + "name": "Update Role Request", + "description": { + "content": "This API call can be used to update the enterprise role that was already created in the Saviynt Security Manager.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`roletype` Use the roletype as \"ENTERPRISE\" to Update Enterprise Role Request. (supported roletypes are - ENABLER/ TRANSACTIONAL/ FIREFIGHTER/ ENTERPRISE/ APPLICATION),\n`role_name`\nOptional params:\n`customproperty<1 to 60>`, `endpointname`,\n`entitlements` -\n1. `entitlement_value` 2. `entitlementType` 3. `endpoint` 4. `updateType` - ADD/REMOVE\n\n`owner` -\n1. `ownerName` 2. `updateType` - ADD/REMOVE 3. `rank`<1 to 27>\n\n`defaulttimeframe`, `description`, `displayname`, `glossary`, `risk`, `level`, `soxcritical`, `syscritical`, `priviliged`, `confidentiality`, `requestable`, `showDynamicAttrs, checksod:`Set this parameter to evaluate Segregation of Duties (SOD) violations. By default, the parameter is set to false.\n_**Note**_ : If config for auto approve is _**ON**_ then request will not be created", + "type": "text/plain" + }, + "url": { + "path": [ + "updateEnterpriseRoleRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"customproperty36\": \"\",\n \"endpointname\": \"\",\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n }\n ],\n \"owner\": [\n {\n \"ownerName\": \"\",\n \"updateType\": \"\"\n },\n {\n \"ownerName\": \"\",\n \"updateType\": \"\"\n }\n ],\n \"requestor\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "868132c0-77d7-4c78-be4e-14fa52435744", + "name": "Update Role Request", + "originalRequest": { + "url": { + "path": [ + "updateEnterpriseRoleRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"customproperty36\": \"\",\n \"endpointname\": \"\",\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"updateType\": \"\"\n }\n ],\n \"owner\": [\n {\n \"ownerName\": \"\",\n \"updateType\": \"\"\n },\n {\n \"ownerName\": \"\",\n \"updateType\": \"\"\n }\n ],\n \"requestor\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getUserRequestableEntitlements", + "description": "", + "item": [ + { + "id": "4db5d6a6-926e-4270-a689-8c831a830213", + "name": "Get User Requestable Entitlements", + "request": { + "name": "Get User Requestable Entitlements", + "description": { + "content": "This API returns list of entitlements in an application that the user can request based on the existing access and entitlement map exclusion.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params: `username`, `endpointname`\r\n\r\nOptional params: \r\n\r\n`max`,`offset`\r\n\r\n`entitlementtype`, \r\n\r\n`entitlementResponseFields` - Entitlement_value attributes required in the reponse, \r\n\r\n`endpointResponseFields` - Endpoint attributes required in the response,\r\n\r\n`includeinflightrequests` - If `includeinflightrequests` is true, API will also consider Entitlement requests in flight (requests that are submitted but not yet approved/rejected),\r\n\r\n`allowAssignedEntitlement` - if `allowAssignedEntitlement` is true, API will consider the entitlements (and excluded entitlements) that are assigned to the user as requestable.", + "type": "text/plain" + }, + "url": { + "path": [ + "getUserRequestableEntitlements" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"endpointResponseFields\": [\n \"\",\n \"\"\n ],\n \"entitlementResponseFields\": [\n \"\",\n \"\"\n ],\n \"entitlementtype\": \"\",\n \"includeinflightrequests\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "c333e71e-7a4f-4044-be81-9eb9e8b5b717", + "name": "Get User Requestable Entitlements", + "originalRequest": { + "url": { + "path": [ + "getUserRequestableEntitlements" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"endpointResponseFields\": [\n \"\",\n \"\"\n ],\n \"entitlementResponseFields\": [\n \"\",\n \"\"\n ],\n \"entitlementtype\": \"\",\n \"includeinflightrequests\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"countofEntitlements\": \"\",\n \"endpointDetails\": [\n {\n \"customproperty5\": \"\",\n \"displayName\": \"\",\n \"securitysystem\": \"\"\n },\n {\n \"customproperty5\": \"\",\n \"displayName\": \"\",\n \"securitysystem\": \"\"\n }\n ],\n \"entitlementDetails\": [\n {\n \"access\": \"\",\n \"customproperty1\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"requestable\": \"\",\n \"status\": \"\"\n },\n {\n \"access\": \"\",\n \"customproperty1\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"requestable\": \"\",\n \"status\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "validateEntitlementRequestData", + "description": "", + "item": [ + { + "id": "e3a4609e-48bc-42af-b5ff-b79a5e1cb427", + "name": "Validate Entitlement Request Data", + "request": { + "name": "Validate Entitlement Request Data", + "description": { + "content": "This API checks if a user is allowed to request for the entitlements given in a list based on the existing access and entitlement map exclusion.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: \n`username`,\n`endpoint`,\n`entitlementList` - List of entitlementtypes and entitlements that needs to be checked.\nOptional params:\n`includeinflightrequests` - If `includeinflightrequests` is true, API will also consider Entitlement requests in flight (requests that are submitted but not yet approved/rejected).", + "type": "text/plain" + }, + "url": { + "path": [ + "validateEntitlementRequestData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementList\": [\n {\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"includeinflightrequests\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "53c1971b-7a52-4911-97bd-aa8ddec35509", + "name": "Validate Entitlement RequestData", + "originalRequest": { + "url": { + "path": [ + "validateEntitlementRequestData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpoint\": \"\",\n \"entitlementList\": [\n {\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"includeinflightrequests\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"endpoint\": \"\",\n \"errorCode\": \"\",\n \"message\": \"\",\n \"username\": \"\",\n \"validationResults\": [\n {\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"failurereason\": \"\",\n \"requestable\": \"\"\n },\n {\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"failurereason\": \"\",\n \"requestable\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createrequest", + "description": "", + "item": [ + { + "id": "316cf83a-6299-4715-826b-c754fea70d05", + "name": "Request to Create Entitlement Based Role", + "request": { + "name": "Request to Create Entitlement Based Role", + "description": { + "content": "This API is used to create role of roletype \"Entitlement\", such as AzureAD/Unix Group in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: `accesstype` - roles, `roletype` - 6, `requesttype` - create, `entitlementtype`, `endpoint`, `securitysystem` `role_name customproperty22`\nOptional params:\n`requestor`, `displayname`, `description`, `grouptype`, `enablemail`, `enablesecurity`, `soxcritical`, `syscritical`, `priviliged`, `confidentiality`,\nNote: From v23.8 onwards, the acceptable value for soxcritical, syscritical, priviliged and confidentiality will be critical, high, medium, low, and very low.\n`requestable`, `comments`, `owner` -\n1. `ownername` - mandatory 2. `rank` 3. `updatetype` - optional, value can be 'add'\n\n`entitlements` -\n1. `entitlement_value` - mandatory 2. `updatetype` - optional, value can be 'add'\n\n`parententitlements` -\n1. `entitlement_value` - mandatory 2. `entitlementType` 3. `updatetype` - add/remove", + "type": "text/plain" + }, + "url": { + "path": [ + "createrequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accesstype\": \"\",\n \"confidentiality\": \"\",\n \"customproperty22\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"priviliged\": \"\",\n \"requestor\": \"\",\n \"requesttype\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\",\n \"securitysystem\": \"\",\n \"soxcritical\": \"\",\n \"syscritical\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "674f12a4-76ea-42f2-9802-242b727c1d71", + "name": "Request to Create AzureAD Group / new json", + "originalRequest": { + "url": { + "path": [ + "createrequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accesstype\": \"\",\n \"confidentiality\": \"\",\n \"customproperty22\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"priviliged\": \"\",\n \"requestor\": \"\",\n \"requesttype\": \"\",\n \"role_name\": \"\",\n \"roletype\": \"\",\n \"securitysystem\": \"\",\n \"soxcritical\": \"\",\n \"syscritical\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createOrganizationRequest", + "description": "", + "item": [ + { + "id": "8f3becb1-ecf7-4680-b95c-10615759d1ec", + "name": "Create Organization Request", + "request": { + "name": "Create Organization Request", + "description": { + "content": "This API call can be used to create new organization requests.\r\nThe Create Organization request is shown in Request History.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`organizationname`\r\n\r\nOptional params:\r\n\r\n`comments`, `organizationname`, `username`, `description`, `primarycontact`, `comments`, `customproperty(1..28)`, `organizationtype`(data security/grouping/request rules/company), `parentorganization`(organization name), `startdate`(MM-dd-yyyy format), `enddate`(MM-dd-yyyy format),\r\n\r\n\r\n`endpoints` - \r\n\r\n1. `endpointname`\r\n2. `cp(1..5)`\r\n\r\n`roles` - \r\n1. `rolename`\r\n\r\n`rules` - \r\n1. `name`\r\n2. `type`\r\n\r\n`entitlements` -\r\n1. `entitlementvalue`\r\n2. `entitlementtype`\r\n3. `endpoint`\r\n\r\n`owners` -\r\n1. `owner`\r\n2. `rank`\r\n3. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY)\r\n\r\n`attributes` -\r\n1. `attributegroupname`\r\n2. `attributes`\r\n3. `value`\r\n4. `attributevalues`\r\n\r\n`dynamicattrsvalidation`(can be true/false, default : true) - If true, dynamic attributes will be validated based on the conditions defined.", + "type": "text/plain" + }, + "url": { + "path": [ + "createOrganizationRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n },\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"description\": \"\",\n \"enddate\": \"\",\n \"endpoints\": [\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n },\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n }\n ],\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"owners\": [\n {\n \"owner\": \"\",\n \"rank\": \"\"\n },\n {\n \"owner\": \"\",\n \"rank\": \"\"\n }\n ],\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"roles\": [\n {\n \"rolename\": \"\"\n },\n {\n \"rolename\": \"\"\n }\n ],\n \"rules\": [\n {\n \"name\": \"\",\n \"type\": \"\"\n },\n {\n \"name\": \"\",\n \"type\": \"\"\n }\n ],\n \"startdate\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"username\": \"\"\n },\n {\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "866c81b6-adb2-43f0-a22f-996044a76f16", + "name": "Create Organization Request", + "originalRequest": { + "url": { + "path": [ + "createOrganizationRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n },\n {\n \"attributegroupname\": \"\",\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"description\": \"\",\n \"enddate\": \"\",\n \"endpoints\": [\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n },\n {\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"endpointname\": \"\"\n }\n ],\n \"entitlements\": [\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n },\n {\n \"endpoint\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\"\n }\n ],\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"owners\": [\n {\n \"owner\": \"\",\n \"rank\": \"\"\n },\n {\n \"owner\": \"\",\n \"rank\": \"\"\n }\n ],\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"roles\": [\n {\n \"rolename\": \"\"\n },\n {\n \"rolename\": \"\"\n }\n ],\n \"rules\": [\n {\n \"name\": \"\",\n \"type\": \"\"\n },\n {\n \"name\": \"\",\n \"type\": \"\"\n }\n ],\n \"startdate\": \"\",\n \"username\": \"\",\n \"users\": [\n {\n \"username\": \"\"\n },\n {\n \"username\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "Accepted", + "code": 202, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"requestId\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateOrganizationRequest", + "description": "", + "item": [ + { + "id": "8eadf2d1-677c-41bb-8fdb-e927e8d33117", + "name": "Update Organization Request", + "request": { + "name": "Update Organization Request", + "description": { + "content": "This API call can be used to create update organization requests. The Update Organization request is shown in Request History.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params: `organizationname`\nOptional params:\n`comments`, `organizationname`, `username`, `description`, `primarycontact`, `comments`, `customproperty(1..28)`, `organizationtype`(data security/grouping/request rules/company), `parentorganization`(organization name), `startdate`(MM-dd-yyyy format), `enddate`(MM-dd-yyyy format),\n`endpoints` - \n1. `endpointname` 2. `cp(1..5)` 3. `updatetype`(add/update/remove)\n`roles` - 1. `rolename` 2. `updatetype`(add/update/remove)\n`rules` - 1. `name` 2. `type`\n`entitlements` - 1. `entitlementvalue` 2. `entitlementtype` 3. `endpoint` 4. `updatetype`(add/update/remove)\n`owners` - 1. `owner` 2. `rank` 3. `updatetype`(add/update/remove) 4. `policy`(can be SUPERADMIN/ADMIN/BULKADMIN/READONLY)\n`attributes` - 1. `attributegroupname` 2. `attributes` 3. `value` 4. `attributevalues` 5. `updatetype`(addgroup/deletegroup/updategroup)\n`dynamicattrsvalidation`(can be true/false, default : true) - If true, dynamic attributes will be validated based on the conditions defined.", + "type": "text/plain" + }, + "url": { + "path": [ + "updateOrganizationRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"groupname\": \"\",\n \"updatetype\": \"\",\n \"value\": \"\"\n },\n {\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"groupname\": \"\",\n \"updatetype\": \"\",\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"description\": \"\",\n \"enddate\": \"\",\n \"endpoints\": [\n {\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"startdate\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "5b4bfc67-3a3d-4efb-9cb5-c6dbafd4fe95", + "name": "Update Organization Request", + "originalRequest": { + "url": { + "path": [ + "updateOrganizationRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"attributes\": [\n {\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"groupname\": \"\",\n \"updatetype\": \"\",\n \"value\": \"\"\n },\n {\n \"attributes\": \"\",\n \"attributevalues\": {\n \"pincode\": \"\",\n \"street\": \"\"\n },\n \"groupname\": \"\",\n \"updatetype\": \"\",\n \"value\": \"\"\n }\n ],\n \"comments\": \"\",\n \"customproperty10\": \"\",\n \"customproperty5\": \"\",\n \"description\": \"\",\n \"enddate\": \"\",\n \"endpoints\": [\n {\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"endpointname\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"organizationname\": \"\",\n \"organizationtype\": \"\",\n \"parentorganization\": \"\",\n \"primarycontact\": \"\",\n \"startdate\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "Accepted", + "code": 202, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"requestId\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createautoapprovedrequest", + "description": "", + "item": [ + { + "id": "356c681c-61c4-4b5e-88f8-35dc26a53dce", + "name": "Create Auto-approved Request", + "request": { + "name": "Create Auto-approved Request", + "description": { + "content": "This API call can be used to auto-approve requests for a particular endpoint and security system. These requests can be used to create, update, or delete types of entitlement requests.\r\nThe auto-approved request is shown in Request History.\r\n\r\nNote: There should be a workflow with grant access already created with ‘AUTOAPPROVAL’ name and the workflow should be added to externalconfig.properties file with below details:\r\nsav.autoapprovalwfname=AUTOAPPROVAL.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`username`,\r\n`requestor`,\r\n`requestaccess` - [endpoint,securitysystem, requesttype, accountname]\r\n\r\nOptional params:\r\n`comments`,\r\n`requestaccess` - [entitlement (entitlement.ADD, entitlement.REMOVE), requestaccessattr]", + "type": "text/plain" + }, + "url": { + "path": [ + "createautoapprovedrequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"requestaccess\": [\n {\n \"accountname\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": {\n \"ADD\": [\n \"\",\n \"\"\n ],\n \"REMOVE\": [\n \"\",\n \"\"\n ]\n },\n \"requestaccessattr\": [\n \"\",\n \"\"\n ],\n \"requesttype\": \"\",\n \"securitysystem\": \"\"\n },\n {\n \"accountname\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": {\n \"ADD\": [\n \"\",\n \"\"\n ],\n \"REMOVE\": [\n \"\",\n \"\"\n ]\n },\n \"requestaccessattr\": [\n \"\",\n \"\"\n ],\n \"requesttype\": \"\",\n \"securitysystem\": \"\"\n }\n ],\n \"requestor\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "f40729c2-eb84-4d53-b5e8-a01dc8a0418a", + "name": "Create Auto-approved Request", + "originalRequest": { + "url": { + "path": [ + "createautoapprovedrequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"requestaccess\": [\n {\n \"accountname\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": {\n \"ADD\": [\n \"\",\n \"\"\n ],\n \"REMOVE\": [\n \"\",\n \"\"\n ]\n },\n \"requestaccessattr\": [\n \"\",\n \"\"\n ],\n \"requesttype\": \"\",\n \"securitysystem\": \"\"\n },\n {\n \"accountname\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": {\n \"ADD\": [\n \"\",\n \"\"\n ],\n \"REMOVE\": [\n \"\",\n \"\"\n ]\n },\n \"requestaccessattr\": [\n \"\",\n \"\"\n ],\n \"requesttype\": \"\",\n \"securitysystem\": \"\"\n }\n ],\n \"requestor\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"RequestId\": \"\",\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createbirthrightrequest", + "description": "", + "item": [ + { + "id": "c682bdbe-8644-464d-999b-20069c0508d6", + "name": "Create Birthright Request", + "request": { + "name": "Create Birthright Request", + "description": { + "content": "This method creates \"Request\" record for a new user in SSM. \nThe `Authorization` must have `Bearer` followed by `Token`.\nOptional params:\n`SAVUSERNAME` - in header,\n`REQUESTTYPE`,\n`REQUESTER`,\n`COMMENTS`,\n`USERNAME`,\n`startdate`,\n`enddate`,\n`SYSTEMNAME`,\n`ENDPOINTS`,\n`entitlement`,\n`APPROVER`,\n`ACCOUNTNAME`", + "type": "text/plain" + }, + "url": { + "path": [ + "createbirthrightrequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ACCOUNTNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "APPROVER", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "COMMENTS", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ENDPOINTS", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "REQUESTTYPE", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "SYSTEMNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "USERNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlement", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "a5c8f1a4-43df-40f8-8ae2-879258c0b67b", + "name": "Create Birthright Request", + "originalRequest": { + "url": { + "path": [ + "createbirthrightrequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ACCOUNTNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "APPROVER", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "COMMENTS", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ENDPOINTS", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "REQUESTTYPE", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "SYSTEMNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "USERNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "entitlement", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\",\n \"requestId\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateRequest", + "description": "", + "item": [ + { + "id": "baeb0bfe-ae67-4a04-b403-1517699341f4", + "name": "Add Approver to existing Request", + "request": { + "name": "Add Approver to existing Request", + "description": { + "content": "This API can be used to add approver to existing request in `SSM`.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`requestkey` - comma seprated requestkeys\n`requestor` - user who is updating the request\nOptional params:\n`updateapprover` - username of the new approver \n`originalassignee` - username of old approver\n`removeoriginalassignee` - true/false(default), if false then the original assignee will remain one of the approvers, If `originalassignee` is not passed then `requestor` will be considered as original assignee.\n`comments`,\n`allowreassign` - true/false (default is false)", + "type": "text/plain" + }, + "url": { + "path": [ + "updateRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "file", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestkey", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "a1fd04be-ca05-4248-bf41-eb7f070ea92a", + "name": "updateRequest / Add Comments to existing Request / Add Dynamic Attributes and Entitlements to existing Request / updateRequest Attachment", + "originalRequest": { + "url": { + "path": [ + "updateRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "file", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestkey", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Length", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "WWW-Authenticate", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"requestkey\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchRequestHistory", + "description": "", + "item": [ + { + "id": "01d310b7-3ede-49e2-b164-8b752dfc32ee", + "name": "Fetch Request History (my pending requests)", + "request": { + "name": "Fetch Request History (my pending requests)", + "description": { + "content": "This API call can be used to fetch the request history of all the requests submitted by an user.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params:\n`username` - loggedinuser in Saviynt\nOptional params: \n`status` - OPEN/DRAFT/INPROCESS/COMPLETED/EXPIRED/DISCONTINUED. For example: as a list [\"open\",\"expired\"] or a single status like \"open\",\n`requestkey`, `requestedfor`, `requestedby`,\n`sort` - requestsubmittedon/duedate/requestid,\n`order` - asc or desc,\n`requestid`, `duedatestart`(MM/dd/yyyy), `duedateend`(MM/dd/yyyy), `submitdatestart`(MM/dd/yyyy), `submitdateend`(MM/dd/yyyy), `endpoint`, `securitysystem`,\n`firstname` (requestedfor user),\n`lastname` (requestedfor user),\n`assignee` - list of usernames,\n`requesttype` - list of requesttypes, (ADD,UPDATEACCOUNT,NEWACCOUNT,DEL,NEWROLEREQUEST,CREATEROLE,MODIFYROLE,CREATEUSER,UPDATEUSER,EXTENDACCESS etc),\n`approvedby` - list of usernames,\n`rejectedby` - list of usernames,\n`max`, `offset`,\n`showentitlementdetails` - true/false,\n`entresponsefields` - if `showentitlementdetails` is true, sample - \"entresponsefields\":[\"description\",\"soxcritical\",\"customproperty1\",\"syscritical\",\"risk\",\"privileged\",\"status\",\"confidentiality\"]\n`exactmatch`(true/false) - If true, returns records for which value of requestedfor, firstname, lastname fields matches exactly.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchRequestHistory" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"exactmatch\": \"\",\n \"firstname\": \"\",\n \"max\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4fe8916c-8c97-455b-a701-67d2f22e8e11", + "name": "Fetch Request History (my pending requests) / Fetch Request History (my pending requests) - exactmatch param", + "originalRequest": { + "url": { + "path": [ + "fetchRequestHistory" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"exactmatch\": \"\",\n \"firstname\": \"\",\n \"max\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"requests\": [\n {\n \"assignee\": \"\",\n \"duedate\": \"\",\n \"endpointname\": \"\",\n \"endpoints\": \"\",\n \"reqkey\": \"\",\n \"requestandtaskstatus\": \"\",\n \"requestedfor\": \"\",\n \"requestid\": \"\",\n \"requestor\": \"\",\n \"requestsubmittedon\": \"\",\n \"requesttype\": \"\",\n \"status\": \"\"\n },\n {\n \"assignee\": \"\",\n \"duedate\": \"\",\n \"endpointname\": \"\",\n \"endpoints\": \"\",\n \"reqkey\": \"\",\n \"requestandtaskstatus\": \"\",\n \"requestedfor\": \"\",\n \"requestid\": \"\",\n \"requestor\": \"\",\n \"requestsubmittedon\": \"\",\n \"requesttype\": \"\",\n \"status\": \"\"\n }\n ],\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchRequestHistoryDetails", + "description": "", + "item": [ + { + "id": "76d8b58d-238e-4092-bc3d-118ba3edfc2a", + "name": "Fetch Request History Details", + "request": { + "name": "Fetch Request History Details", + "description": { + "content": "This API call can be used to fetch the request history details of a request.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`requestkey`\r\n\r\nOptional params:\r\n`taskmetadatalength` - Modifies the character limit of provisioning comments and provisioning metadata upto maximum of 10000.\r\n`hideblankapprovername` - If true, prevents printing the firstname/lastname if null in the \"State\" field(Default : false)\r\n \r\n***Note*** - Provisioning comments in the response will be limited to 200 characters. Provisioning metadata in the response will be limited to 400 characters.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchRequestHistoryDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestkey", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "dc4483a7-3842-4d9c-9600-588b8e14bd5d", + "name": "Fetch Request History Details", + "originalRequest": { + "url": { + "path": [ + "fetchRequestHistoryDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestkey", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"requestHistoryDetails\": {\n \"Owner\": [\n {\n \"Access\": \"\",\n \"Approve Date\": \"\",\n \"Assignee\": \"\",\n \"Business Justification\": \"\",\n \"Endpoint\": \"\",\n \"Entitlement Type\": \"\",\n \"Entitlement value\": \"\",\n \"Request Type\": \"\",\n \"Start Date\": \"\",\n \"State\": \"\",\n \"endpointname\": \"\"\n },\n {\n \"Access\": \"\",\n \"Approve Date\": \"\",\n \"Assignee\": \"\",\n \"Business Justification\": \"\",\n \"Endpoint\": \"\",\n \"Entitlement Type\": \"\",\n \"Entitlement value\": \"\",\n \"Request Type\": \"\",\n \"Start Date\": \"\",\n \"State\": \"\",\n \"endpointname\": \"\"\n }\n ],\n \"Owners Manager\": [\n {\n \"Access\": \"\",\n \"Approve Date\": \"\",\n \"Assignee\": \"\",\n \"Business Justification\": \"\",\n \"Endpoint\": \"\",\n \"Entitlement Type\": \"\",\n \"Entitlement value\": \"\",\n \"Request Type\": \"\",\n \"Start Date\": \"\",\n \"State\": \"\",\n \"endpointname\": \"\"\n },\n {\n \"Access\": \"\",\n \"Approve Date\": \"\",\n \"Assignee\": \"\",\n \"Business Justification\": \"\",\n \"Endpoint\": \"\",\n \"Entitlement Type\": \"\",\n \"Entitlement value\": \"\",\n \"Request Type\": \"\",\n \"Start Date\": \"\",\n \"State\": \"\",\n \"endpointname\": \"\"\n }\n ],\n \"comments\": \"\",\n \"requestAccessDetails\": [\n {\n \"Access\": \"\",\n \"End Date\": \"\",\n \"Endpoint\": \"\",\n \"Entitlement Type\": \"\",\n \"Entitlement value\": \"\",\n \"Request Type\": \"\",\n \"Start Date\": \"\",\n \"comments\": \"\",\n \"endpointname\": \"\",\n \"parentrequestkey\": \"\",\n \"request_accesskey\": \"\",\n \"requestkey\": \"\",\n \"status\": \"\"\n },\n {\n \"Access\": \"\",\n \"End Date\": \"\",\n \"Endpoint\": \"\",\n \"Entitlement Type\": \"\",\n \"Entitlement value\": \"\",\n \"Request Type\": \"\",\n \"Start Date\": \"\",\n \"comments\": \"\",\n \"endpointname\": \"\",\n \"parentrequestkey\": \"\",\n \"request_accesskey\": \"\",\n \"requestkey\": \"\",\n \"status\": \"\"\n }\n ],\n \"requestId\": \"\",\n \"requestedfor\": \"\",\n \"requestor\": \"\"\n },\n \"tabList\": [\n \"\",\n \"\"\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "cancelPendingRequest", + "description": "", + "item": [ + { + "id": "47ea7084-b937-48b9-a7fe-fdfe7d58af5b", + "name": "Cancel Pending Request", + "request": { + "name": "Cancel Pending Request", + "description": { + "content": "This API discontinues an open request in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`requestkey` `requestor`\nOptional params:\n`comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "cancelPendingRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"requestkey\": \"\",\n \"requestor\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "5cf35285-0d1e-4a54-a85c-0e6ccfda83ec", + "name": "Cancel Pending Request", + "originalRequest": { + "url": { + "path": [ + "cancelPendingRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"requestkey\": \"\",\n \"requestor\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getPendingRequests", + "description": "", + "item": [ + { + "id": "f5dfb45b-9ef4-4298-8961-13d61ecbd410", + "name": "Get List of Pending Requests for Approver", + "request": { + "name": "Get List of Pending Requests for Approver", + "description": { + "content": "This method returns a list of \"Pending Requests\" for approver in SSM\nThe `Authorization` must have `Bearer` followed by `Token`.\nHeader params:\n`SAVUSERNAME` - logged-in user\nOptional params:\n`requestkey`,\n`assignee`,\n`max`,\n`offset`,\n`requestid`,\n`requestedfor`,\n`requestedby`,\n`firstname`,\n`lastname`,\n`sort` - requestsubmittedon/duedate/requestid/requestkey,\n`order` - asc/desc,\n`submitdatestart`,\n`submitdateend`,\n`duedatestart`,\n`duedateend`,\n`requestcomments`,\n`requestorigin`,\n`endpoint` - list of endpoints,\n`securitysystem` - list of securitysystems,\n`assigneeuserkey` - list of assignee userkeys,\n`assigneeusername` - list of usernames,\n`requesttype` - list of requesttypes,\n`entitlementvaluekey` - list of entitlement value keys.\n***Note*** : Searchable dates in the format MM/dd/yyyy. \nSample for list of items - [\"value1\",\"value2\"]", + "type": "text/plain" + }, + "url": { + "path": [ + "getPendingRequests" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "savusername", + "value": "" + }, + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a1e4e93b-1e33-452e-948d-d717f215b98a", + "name": "Get List of Pending Requests for Approver", + "originalRequest": { + "url": { + "path": [ + "getPendingRequests" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "savusername", + "value": "" + }, + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"approverejectall\": \"\",\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"results\": [\n {\n \"activityname\": \"\",\n \"assignee\": \"\",\n \"duedate\": \"\",\n \"endpoints\": \"\",\n \"requestdate\": \"\",\n \"requestee\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\",\n \"requestor\": \"\",\n \"requesttype\": \"\",\n \"sod\": \"\"\n },\n {\n \"activityname\": \"\",\n \"assignee\": \"\",\n \"duedate\": \"\",\n \"endpoints\": \"\",\n \"requestdate\": \"\",\n \"requestee\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\",\n \"requestor\": \"\",\n \"requesttype\": \"\",\n \"sod\": \"\"\n }\n ],\n \"total\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchRequestApprovalDetails", + "description": "", + "item": [ + { + "id": "8e7a6644-fe14-402f-8a28-3fa1bd3b91bf", + "name": "Fetch Request Approval Details", + "request": { + "name": "Fetch Request Approval Details", + "description": { + "content": "This method returns approval details for a given \"RequestId\" (provided in `requestKey` parameter) and approver (approver provided in `userName` parameter)\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params: \r\n\r\n`requestKey`,\r\n`userName` - approver username\r\n\r\nOptional params:\r\n\r\n`entresponsefields` - It can have syscritical, soxcritical, risk, privileged, confidentiality, status, displayname, description, any customproperty", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchRequestApprovalDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"entresponsefields\": [\n \"\",\n \"\"\n ],\n \"requestKey\": \"\",\n \"userName\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "be1c522f-453b-4215-9948-13b4bcaaf729", + "name": "Fetch Request Approval Details", + "originalRequest": { + "url": { + "path": [ + "fetchRequestApprovalDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"entresponsefields\": [\n \"\",\n \"\"\n ],\n \"requestKey\": \"\",\n \"userName\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"ApprovalRequestDetails\": {\n \"AccessHeader\": [\n {\n \"Count\": \"\",\n \"Title\": \"\"\n },\n {\n \"Count\": \"\",\n \"Title\": \"\"\n }\n ],\n \"AccessRequestDetails\": [\n {\n \"childTasksCount\": \"\",\n \"modifyTasks\": [\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"modifyTasksCount\": \"\",\n \"parentTasks\": {},\n \"tasksList\": [\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"tasksListCount\": \"\",\n \"typeOfRequest\": \"\"\n },\n {\n \"childTasksCount\": \"\",\n \"modifyTasks\": [\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"modifyTasksCount\": \"\",\n \"parentTasks\": {},\n \"tasksList\": [\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"access\": \"\",\n \"accessdetails\": {\n \"customproperty1\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\"\n },\n \"accesskey\": \"\",\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"role\": \"\",\n \"roleDescription\": \"\",\n \"roleDisplayName\": \"\",\n \"roleRisk\": \"\",\n \"roleSoxcritical\": \"\",\n \"roleSyscritical\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"tasksListCount\": \"\",\n \"typeOfRequest\": \"\"\n }\n ],\n \"Comments\": \"\",\n \"totalCount\": \"\"\n },\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchRequestAccessAttributes", + "description": "", + "item": [ + { + "id": "ccf9788f-768e-49ed-ae90-4ba693b67839", + "name": "Fetch Request Access Attributes", + "request": { + "name": "Fetch Request Access Attributes", + "description": { + "content": "This method returns approval history details for a given \"RequestAccessKey\"(provided in `requestaccesskey` parameter)\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: `requestaccesskey`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchRequestAccessAttributes" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestaccesskey", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "c8e0a8c6-4417-47df-89f5-0bd51ff1d917", + "name": "Fetch Request Access Attributes", + "originalRequest": { + "url": { + "path": [ + "fetchRequestAccessAttributes" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "requestaccesskey", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"result\": [\n {\n \"ACCOUNTS_COLUMN\": \"\",\n \"ATTRIBUTEGROUP\": \"\",\n \"ATTRIBUTELABLE\": \"\",\n \"ATTRIBUTE_NAME\": \"\",\n \"ATTRIBUTE_OLDVALUE\": \"\",\n \"ATTRIBUTE_VALUE\": \"\",\n \"DESCRIPTION\": \"\"\n },\n {\n \"ACCOUNTS_COLUMN\": \"\",\n \"ATTRIBUTEGROUP\": \"\",\n \"ATTRIBUTELABLE\": \"\",\n \"ATTRIBUTE_NAME\": \"\",\n \"ATTRIBUTE_OLDVALUE\": \"\",\n \"ATTRIBUTE_VALUE\": \"\",\n \"DESCRIPTION\": \"\"\n }\n ],\n \"size\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "ApproveRejectDetailRequest", + "description": "", + "item": [ + { + "id": "7943829e-5cd3-45f4-9793-9a32ef92d888", + "name": "Approve/Reject each line item in a request", + "request": { + "name": "Approve/Reject each line item in a request", + "description": { + "content": "This API is used to approve/reject requests. Before running this call, first we need to run the API to retrieve request approval details in order to obtain the taskid and taskkey.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`requestKey`,\r\n`approver`,\r\n`approvaldata` (taskid, taskkey, action); action:1/2, 1 - approve, 2 - reject\r\n\r\nOptional params:\r\n`comments`\r\n\r\n***Note***: enableapprovervalidationinapprovalapi flag(with true/false values) can be added in configuration table to enable/disable validations when approver approvers the request.Default value of enableapprovervalidationinapprovalapi flag is null.", + "type": "text/plain" + }, + "url": { + "path": [ + "ApproveRejectDetailRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"approvaldata\": [\n {\n \"action\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"action\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"approver\": \"\",\n \"comments\": \"\",\n \"requestKey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "8705a541-54f1-4b11-aa59-3e01b9a96f5a", + "name": "Approve/Reject each line item in a request", + "originalRequest": { + "url": { + "path": [ + "ApproveRejectDetailRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"approvaldata\": [\n {\n \"action\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"action\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"approver\": \"\",\n \"comments\": \"\",\n \"requestKey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"approvalResponse\": [\n {\n \"result\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"result\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getPendingApprovals", + "description": "", + "item": [ + { + "id": "78118e0b-9d36-443a-89d2-3830b9924dbc", + "name": "Get Pending Approvals", + "request": { + "name": "Get Pending Approvals", + "description": { + "content": "This API returns pending approval details for an approver (approver provided in `username` parameter).\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username`\nOptional params:\n`requestkey`, `max`, `offset`, `requestid`, `requestedfor`, `requestedby`, `firstname`, `lastname`, `sort` - requestdate/duedate/requestid/requestkey, `order` - asc/desc, `submitdatestart`, `submitdateend`, `duedatestart`, `duedateend`, `requestcomments`, `requestorigin`, `endpoint` - list of endpoints, `securitysystem` - list of securitysystems, `assignee` - list of assignees, `assigneeusername` - list of usernames, `requesttype` - list of requesttypes, `entitlementvaluekey` - list of entitlement value keys, `hidecompletedapprovals` - true/ false (default is false).\n***Note*** : Searchable dates in the format MM/dd/yyyy. Sample for list of items - [\"value1\",\"value2\"]", + "type": "text/plain" + }, + "url": { + "path": [ + "getPendingApprovals" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"requestkey\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "76ccfbdd-b4ce-4c08-8e3c-a2e3679ef111", + "name": "Get Pending Approvals - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "getPendingApprovals" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"requestkey\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"results\": [\n {\n \"accessRequestCount\": \"\",\n \"accessRequestDetails\": [\n {\n \"accountname\": \"\",\n \"childTasks\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"childTasksCount\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"modifyTasksCount\": \"\",\n \"parentTasks\": {\n \"accountname\": \"\",\n \"approvalstatus\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"requestedby\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n \"requestedby\": \"\",\n \"tasksList\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"tasksListCount\": \"\",\n \"typeOfRequest\": \"\"\n },\n {\n \"accountname\": \"\",\n \"childTasks\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"childTasksCount\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"modifyTasksCount\": \"\",\n \"parentTasks\": {\n \"accountname\": \"\",\n \"approvalstatus\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"requestedby\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n \"requestedby\": \"\",\n \"tasksList\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"tasksListCount\": \"\",\n \"typeOfRequest\": \"\"\n }\n ],\n \"activityname\": \"\",\n \"assignee\": \"\",\n \"comments\": \"\",\n \"duedate\": \"\",\n \"endpoints\": \"\",\n \"requestdate\": \"\",\n \"requestee\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\",\n \"requestor\": \"\",\n \"requesttype\": \"\"\n },\n {\n \"accessRequestCount\": \"\",\n \"accessRequestDetails\": [\n {\n \"accountname\": \"\",\n \"childTasks\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"childTasksCount\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"modifyTasksCount\": \"\",\n \"parentTasks\": {\n \"accountname\": \"\",\n \"approvalstatus\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"requestedby\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n \"requestedby\": \"\",\n \"tasksList\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"tasksListCount\": \"\",\n \"typeOfRequest\": \"\"\n },\n {\n \"accountname\": \"\",\n \"childTasks\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"childTasksCount\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"modifyTasksCount\": \"\",\n \"parentTasks\": {\n \"accountname\": \"\",\n \"approvalstatus\": \"\",\n \"endpoint\": \"\",\n \"endpointdisplayname\": \"\",\n \"requestedby\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n \"requestedby\": \"\",\n \"tasksList\": [\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n },\n {\n \"Access\": \"\",\n \"access\": \"\",\n \"accessdetails\": {\n \"description\": \"\",\n \"displayname\": \"\",\n \"entitlement_value\": \"\"\n },\n \"approvalstatus\": \"\",\n \"approvaltype\": \"\",\n \"assignee\": [\n [\n \"\",\n \"\"\n ],\n [\n \"\",\n \"\"\n ]\n ],\n \"businessjustification\": \"\",\n \"entTypeDescription\": \"\",\n \"entTypeDisplayName\": \"\",\n \"entitlement\": \"\",\n \"parentRequestaccessKey\": \"\",\n \"reqtype\": \"\",\n \"requestaccessComments\": \"\",\n \"requestaccessEnddate\": \"\",\n \"requestaccessKey\": \"\",\n \"requestaccessStartdate\": \"\",\n \"requestaccessStatus\": \"\",\n \"requestdate\": \"\",\n \"taskid\": \"\",\n \"taskkey\": \"\"\n }\n ],\n \"tasksListCount\": \"\",\n \"typeOfRequest\": \"\"\n }\n ],\n \"activityname\": \"\",\n \"assignee\": \"\",\n \"comments\": \"\",\n \"duedate\": \"\",\n \"endpoints\": \"\",\n \"requestdate\": \"\",\n \"requestee\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\",\n \"requestor\": \"\",\n \"requesttype\": \"\"\n }\n ],\n \"totalApprovals\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "approveRejectRequest", + "description": "", + "item": [ + { + "id": "ffcb9504-f26e-43b2-854c-5b7d4366d867", + "name": "Approve/Reject entire request", + "request": { + "name": "Approve/Reject entire request", + "description": { + "content": "This API is used to approve/reject entire request.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`requestid` or `requestkey` (if both are passed requestkey will be considered),\r\n`reqaction`:1/2, 1 - approve, 2 - reject\r\n\r\nOptional params:\r\n`approver` (if not passed, the token user is used)\r\n`comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "approveRejectRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"approver\": \"\",\n \"comments\": \"\",\n \"reqaction\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4b7c0b96-12f7-41cc-b2e5-ae07f6edf976", + "name": "Approve/Reject entire request", + "originalRequest": { + "url": { + "path": [ + "approveRejectRequest" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"approver\": \"\",\n \"comments\": \"\",\n \"reqaction\": \"\",\n \"requestid\": \"\",\n \"requestkey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createtask", + "description": "", + "item": [ + { + "id": "9d537bef-6d33-46e4-8408-cf0ad47aa796", + "name": "Create Task - Remove Entitlement", + "request": { + "name": "Create Task - Remove Entitlement", + "description": { + "content": "Starting with Release v23.9, you can use the createtask API to create remove access tasks for inactive accounts.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: `assignmenttype` - ENTITLEMENTS, `tasktype` - DEL, `username`, `endpointname`, `accountname`\nOptional params: `comments` `source`(Default : WEBSERVICE)", + "type": "text/plain" + }, + "url": { + "path": [ + "createtask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountname\": \"\",\n \"assignmenttype\": \"\",\n \"comments\": \"\",\n \"endpointname\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"tasktype\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "44818426-b815-4d82-96c4-71a90323b65b", + "name": "Remove Entitlement", + "originalRequest": { + "url": { + "path": [ + "createtask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountname\": \"\",\n \"assignmenttype\": \"\",\n \"comments\": \"\",\n \"endpointname\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementvalue\": \"\",\n \"tasktype\": \"\",\n \"username\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "CF-Cache-Status", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "CF-RAY", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Encoding", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"Status\": \"\",\n \"TaskID List\": [\n \"\",\n \"\"\n ],\n \"errorcode\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "completetask", + "description": "", + "item": [ + { + "id": "5aff0769-5b2f-4ab8-9d45-5494b51317dd", + "name": "Complete Single Task", + "request": { + "name": "Complete Single Task", + "description": { + "content": "This method closes a single open task in SSM - both in \"New\" and \"InProgress\" state.\nMandatory params:\n`taskid` - Unique ID of the task.\nOptional params:\n`provisioning` - true or false,\n`targetprovision` - true or false, default : false\n`updateuser` - username of user who is updating the task,\n`completeassociatedtasks` - true or false,\n`emailto`,\n`notify` - use this if you want to pick up data from the task, sample - \"notify\":[\"USER\",\"requestor\",\"MANAGER\"],\n`emailbody`,\n`subject`,\n`from`\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "completetask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "provisioning", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "taskid", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "b64f7629-ab3f-4432-8523-456140e8f3c1", + "name": "Complete Single Task / Complete Task 1", + "originalRequest": { + "url": { + "path": [ + "completetask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "provisioning", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "taskid", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"completedtasks\": [\n \"\",\n \"\"\n ],\n \"errorCode\": \"\",\n \"message\": \"\",\n \"result\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "updateTasks", + "description": "", + "item": [ + { + "id": "4e58d951-ad55-430b-a2c6-feb57ff820ea", + "name": "Update Tasks", + "request": { + "name": "Update Tasks", + "description": { + "content": "It can update certain params of a task as well as complete a task.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params: `taskKeyToUpdate`\nOptional params: `updatetype` (if this is set to \"completetask\" then refer completetask api and pass appropriate params as well),\n`comments`, \n`provisioningComments`, \n`provisioningMetadata`, \n`password`, \n`status`, \n`ticketId`,\n`taskownerusergroup`/`taskowneruser`, \n`updateuser` - username of user who is updating the task, \n`completeassociatedtasks` - true / false,\n`emailto`, \n`notify` - to pick up data from the task, supported values - \"notify\":[\"USER\",\"requestor\",\"MANAGER\"], \n`from`, \n`subject`, \n`emailbody`", + "type": "text/plain" + }, + "url": { + "path": [ + "updateTasks" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"taskKeyToUpdate\": [\n {\n \"provisioningMetadata\": \"\",\n \"taskid\": \"\",\n \"taskowneruser\": \"\",\n \"taskownerusergroup\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"provisioningMetadata\": \"\",\n \"taskid\": \"\",\n \"taskowneruser\": \"\",\n \"taskownerusergroup\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a5a79081-cf58-4c3b-88cd-73944c10ec0a", + "name": "Update Tasks", + "originalRequest": { + "url": { + "path": [ + "updateTasks" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"taskKeyToUpdate\": [\n {\n \"provisioningMetadata\": \"\",\n \"taskid\": \"\",\n \"taskowneruser\": \"\",\n \"taskownerusergroup\": \"\",\n \"updatetype\": \"\"\n },\n {\n \"provisioningMetadata\": \"\",\n \"taskid\": \"\",\n \"taskowneruser\": \"\",\n \"taskownerusergroup\": \"\",\n \"updatetype\": \"\"\n }\n ],\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"26936\": {\n \"errorCode\": \"\",\n \"msg\": \"\"\n },\n \"26937\": {\n \"completedtasks\": [\n \"\",\n \"\"\n ],\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"result\": \"\"\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "discontinueTask", + "description": "", + "item": [ + { + "id": "b6279a9b-269d-4030-8a64-c3bcb82c3a91", + "name": "Discontinue Tasks", + "request": { + "name": "Discontinue Tasks", + "description": { + "content": "This method discontinues open tasks in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params:\n`taskkeytodiscontinue`-\n1.`taskid`\nOptional params:\n`taskkeytodiscontinue`-\n1.`updateuser` - username of user who is updating the task,\n2.`discontinueassociatedtask` - true or false,\n3.`comments`\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "discontinueTask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"taskkeytodiscontinue\": [\n {\n \"comments\": \"\",\n \"discontinueassociatedtask\": \"\",\n \"taskid\": \"\"\n },\n {\n \"comments\": \"\",\n \"discontinueassociatedtask\": \"\",\n \"taskid\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "c618002b-5be2-4400-9e63-3890c1659e1a", + "name": "Discontinue Tasks", + "originalRequest": { + "url": { + "path": [ + "discontinueTask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"taskkeytodiscontinue\": [\n {\n \"comments\": \"\",\n \"discontinueassociatedtask\": \"\",\n \"taskid\": \"\"\n },\n {\n \"comments\": \"\",\n \"discontinueassociatedtask\": \"\",\n \"taskid\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"result\": {\n \"12213\": \"\"\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "discontinueAllPendingTask", + "description": "", + "item": [ + { + "id": "22da4114-baa0-457d-81fc-3bfa6b02994a", + "name": "Discontinue All Pending Tasks", + "request": { + "name": "Discontinue All Pending Tasks", + "description": { + "content": "This API can be used to discontinue all pending tasks.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nOptional params: \r\n`updateuser`\r\n\r\n`commentsrequest`", + "type": "text/plain" + }, + "url": { + "path": [ + "discontinueAllPendingTask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a6ad1cce-ecba-4e1c-be5c-f9f1b084784b", + "name": "Discontinue All Pending Tasks", + "originalRequest": { + "url": { + "path": [ + "discontinueAllPendingTask" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"comments\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchTasks", + "description": "", + "item": [ + { + "id": "1ce3dc5d-4412-4639-bdd7-fb1b11942f3d", + "name": "Fetch Task Details", + "request": { + "name": "Fetch Task Details", + "description": { + "content": "This method returns a `list` of provisioning tasks, that correspond to a particular IT Application (e.g Microsoft Active Directory) modeled in SSM as \"Endpoint\" of a \"Security System\".\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nMandatory params:\r\n`TASKSTATUS` - PENDING/PENDINGCREATE/COMPLETED/COMPLETED_AND_DISCONTINUE/DISCONTINUE, \r\n\r\nOptional params:\r\n\r\n`endpoint` - endpoint key,\r\n`endpointname`, `endpointdescription`, \r\n\r\n`securitysystem` - securitysystem key,\r\n\r\n`loggedinusername` - username of user who wants to fetch the tasks,\r\n`upadteuser`, \r\n`requestedby`, \r\n`username`, \r\n`firstname`, \r\n`lastname`,\r\n`account` - accountname, \r\n\r\n`entitlement_value`, \r\n`entitlement_glossary`, \r\n`entitlementowner` - entitlementowner key,\r\n`entitlementtypekey`, \r\n\r\n`requestid`, \r\n`parenttaskid`, \r\n`taskid`, \r\n`taskowneruser` - userkey of owner,\r\n`taskownerusername` - username of owner, \r\n`taskownerusergroup` - usergroup key, \r\n`taskownerusergroupname` - usergroup name, \r\n`max`, `offset`,\r\n`statusint` - List of comma-seperated integer equivalent task status(3 - Complete, 4 - Discontinue and so on)\r\n`source` - List of comma-seperated source types(REQUEST/WEBSERVICE/CERTIFICATION and so on)\r\n`requestkey` - List of comma-seperated requestkeys\r\n`requestaccesskey` - List of comma-seperated requestaccesskey\r\n`tasktype` - List of comma-seperated integer equivalent task types(3 - New Account, 5 - Change Password and so on)\r\n`getEntitlementObj` - Values: true/false, if true returns the entitlement details associated with the task\r\n\r\n`getAccountObj` - Values: true/false, if true returns the account details asociated with the task,\r\n\r\n`taskmetadatalength` - Modifies the charcater limit of provisioning comments and provisioning metadata upto maximum of 10000.\r\n\r\n***Note*** - Provisioning comments in the response will be limited to 200 characters. Provisioning metadata in the response will be limited to 400 characters.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchTasks" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "source", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "statusint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "tasktype", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "370366e5-a3f2-43e7-b296-b7c2ee7d8209", + "name": "Fetch Task Details", + "originalRequest": { + "url": { + "path": [ + "fetchTasks" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "source", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "statusint", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "tasktype", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"tasks\": [\n {\n \"ACCOUNT\": \"\",\n \"COMMENTS\": \"\",\n \"CREATIONDATE\": \"\",\n \"ENDDATE\": \"\",\n \"ENDPOINT\": \"\",\n \"ENDPOINTKEY\": \"\",\n \"ENDPOINTNAME\": \"\",\n \"ENTITLEMENTTYPE\": \"\",\n \"ENTITLEMENT_VALUEKEY\": \"\",\n \"OWNERKEY\": \"\",\n \"PARENTTASK\": \"\",\n \"PROVISIONINGCOMMENTS\": \"\",\n \"PROVISIONINGMETADATA\": \"\",\n \"REQUESTACCESSKEY\": \"\",\n \"REQUESTID\": \"\",\n \"REQUESTKEY\": \"\",\n \"SECURITYSYSTEM\": \"\",\n \"STARTDATE\": \"\",\n \"STATUS\": \"\",\n \"TASKID\": \"\",\n \"TASKTYPE\": \"\",\n \"UPDATEDATE\": \"\",\n \"USER\": \"\",\n \"upadteuser\": \"\"\n },\n {\n \"ACCOUNT\": \"\",\n \"COMMENTS\": \"\",\n \"CREATIONDATE\": \"\",\n \"ENDDATE\": \"\",\n \"ENDPOINT\": \"\",\n \"ENDPOINTKEY\": \"\",\n \"ENDPOINTNAME\": \"\",\n \"ENTITLEMENTTYPE\": \"\",\n \"ENTITLEMENT_VALUEKEY\": \"\",\n \"OWNERKEY\": \"\",\n \"PARENTTASK\": \"\",\n \"PROVISIONINGCOMMENTS\": \"\",\n \"PROVISIONINGMETADATA\": \"\",\n \"REQUESTACCESSKEY\": \"\",\n \"REQUESTID\": \"\",\n \"REQUESTKEY\": \"\",\n \"SECURITYSYSTEM\": \"\",\n \"STARTDATE\": \"\",\n \"STATUS\": \"\",\n \"TASKID\": \"\",\n \"TASKTYPE\": \"\",\n \"UPDATEDATE\": \"\",\n \"USER\": \"\",\n \"upadteuser\": \"\"\n }\n ],\n \"totalrecords\": \"\",\n \"totaltasks\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "checkTaskStatus", + "description": "", + "item": [ + { + "id": "890f6bdf-e0be-4179-a97c-bf3d0c0e9da8", + "name": "Check Task Status", + "request": { + "name": "Check Task Status", + "description": { + "content": "This API can be used to check the task status. Response can return task status as “New/Complete/In Progress/Discontinued”.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`taskid`", + "type": "text/plain" + }, + "url": { + "path": [ + "checkTaskStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "taskid", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "8a27b132-883a-4dda-8103-0ead006a84ca", + "name": "Check Task Status", + "originalRequest": { + "url": { + "path": [ + "checkTaskStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "taskid", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"Comments\": \"\",\n \"ProvisioningComments\": \"\",\n \"ProvisioningMetadata\": \"\",\n \"Status\": \"\",\n \"UpdateDate\": \"\",\n \"UpdateUser\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getDelegateUserList", + "description": "", + "item": [ + { + "id": "dd8f9aa5-4798-4aef-8d06-d37bfc9c94f1", + "name": "Get Delegate User List", + "request": { + "name": "Get Delegate User List", + "description": { + "content": "This API returns list of users that are allowed to be added as delegate for a parentuser in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`parentusername`\nOptional params:\n`max`, `offset`,\n`searchCriteria` - example \"t*\" or \"*te*\" or \"test\" to search in username or firstname or lastname for the delegate user", + "type": "text/plain" + }, + "url": { + "path": [ + "getDelegateUserList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"parentusername\": \"\",\n \"searchCriteria\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "515c3b1c-4e55-4a86-b9c5-b7133e0cb039", + "name": "Get Delegate User List", + "originalRequest": { + "url": { + "path": [ + "getDelegateUserList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"parentusername\": \"\",\n \"searchCriteria\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"result\": [\n {\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"username\": \"\"\n },\n {\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"username\": \"\"\n }\n ],\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createDelegate", + "description": "", + "item": [ + { + "id": "98698d1f-5472-4c10-86a2-101c9b064cfa", + "name": "Create Delegate", + "request": { + "name": "Create Delegate", + "description": { + "content": "This method creates a new delegate for a parent User. The input parameters of this method contains the details of the Parent User as well as the one to whom the Delegation is carried out.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: \n`userName` - this is user who is creating the delegation,\n`name` - name of delegate,\n`delegateusername` - this is the user who should be assigned as the delegate of the parent user,\n`delegatestartdate` - in format MMDDYYY,\n`delegateenddate` - in format MMDDYYY\nOptional params:\n`parentusername` - this is the parent username, if not passed it will consider `userName` as parentusername,\n`description`", + "type": "text/plain" + }, + "url": { + "path": [ + "createDelegate" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateenddate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegatestartdate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "description", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "name", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "parentusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "b5b60fd1-e21c-44ee-bf55-4a20e523fd3b", + "name": "Create Delegate", + "originalRequest": { + "url": { + "path": [ + "createDelegate" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateenddate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegatestartdate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "description", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "name", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "parentusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"delegatekey\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchDelegatesList", + "description": "", + "item": [ + { + "id": "a1e5f869-472f-4e2a-aa11-3e5bfaa19db7", + "name": "Fetch Existing Delegates List", + "request": { + "name": "Fetch Existing Delegates List", + "description": { + "content": "This API is used to retrieve the list of existing delegates and their details. If any optional parameter is not specified then only active delegates are displayed.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`userName` - this is the parentusername\nOptional params:\n`max`, `offset`,\n`status` - values can be ACTIVE / INACTIVE", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchDelegatesList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"status\": \"\",\n \"userName\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "c408fa78-c696-4355-b48f-ef376e79d84f", + "name": "Fetch Existing Delegates List", + "originalRequest": { + "url": { + "path": [ + "fetchDelegatesList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"max\": \"\",\n \"status\": \"\",\n \"userName\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"delegateCount\": \"\",\n \"delegateList\": [\n {\n \"delegateFirstName\": \"\",\n \"delegateLastName\": \"\",\n \"delegatekey\": \"\",\n \"delegateusername\": \"\",\n \"description\": \"\",\n \"enddate\": \"\",\n \"name\": \"\",\n \"parentFirstName\": \"\",\n \"parentLastName\": \"\",\n \"parentusername\": \"\",\n \"startdate\": \"\",\n \"status\": \"\"\n },\n {\n \"delegateFirstName\": \"\",\n \"delegateLastName\": \"\",\n \"delegatekey\": \"\",\n \"delegateusername\": \"\",\n \"description\": \"\",\n \"enddate\": \"\",\n \"name\": \"\",\n \"parentFirstName\": \"\",\n \"parentLastName\": \"\",\n \"parentusername\": \"\",\n \"startdate\": \"\",\n \"status\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "editDelegate", + "description": "", + "item": [ + { + "id": "da8663cb-12a4-4ff6-b7cd-b9c8169c7850", + "name": "Edit Delegate", + "request": { + "name": "Edit Delegate", + "description": { + "content": "This method is used to edit a specific delegate. The input parameters of this method contain the details of the Parent User as well as the one to whom the Delegation is carried out.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: \n`key` - this is the delegatekey,\n`userName` - this is user who is updating the delegation,\n`name` - name of delegate,\n`delegateusername` - this is the user who should be assigned as the delegate of the parent user,\n`delegatestartdate` - in format MMDDYYY,\n`delegateenddate` - in format MMDDYYY\nOptional params:\n`parentusername` - this is the parent username, if not passed it will consider `userName` as parentusername\n`description`", + "type": "text/plain" + }, + "url": { + "path": [ + "editDelegate" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateenddate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegatestartdate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "description", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "key", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "name", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "parentusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "9899ffef-f49a-4768-9a50-e4bc38b0f05b", + "name": "Edit Delegate", + "originalRequest": { + "url": { + "path": [ + "editDelegate" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateenddate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegatestartdate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "delegateusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "description", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "key", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "name", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "parentusername", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteDelegate", + "description": "", + "item": [ + { + "id": "85eca7a6-6292-47e0-b735-60add66ce4d2", + "name": "Delete Delegate", + "request": { + "name": "Delete Delegate", + "description": { + "content": "This API is used to delete a specific delegate. \n\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params: \n`userName` - this is the user who is deleting the delegate,\n`key` - the is the delegatekey", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteDelegate" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "key", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "2dd9a803-146a-448b-8d66-a8f32e0d07c4", + "name": "Delete Delegate", + "originalRequest": { + "url": { + "path": [ + "deleteDelegate" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "key", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchAttestationsList", + "description": "", + "item": [ + { + "id": "13102896-0539-4543-a39b-c4eb5b593326", + "name": "Fetch Attestation List", + "request": { + "name": "Fetch Attestation List", + "description": { + "content": "This API call can be used to fetch Attestation list from SSM for a given user.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`userName`\r\n\r\nOptional params:\r\n`max`, `offset`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchAttestationsList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "bc00708d-4616-44fa-bd59-230fc330dc74", + "name": "Fetch Attestation List", + "originalRequest": { + "url": { + "path": [ + "fetchAttestationsList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"attestations\": [\n {\n \"action\": \"\",\n \"actions\": \"\",\n \"att_name\": \"\",\n \"certifier\": \"\",\n \"createdate\": \"\",\n \"createdt\": \"\",\n \"enddate\": \"\",\n \"id\": \"\",\n \"reminderstattus\": \"\",\n \"status\": \"\",\n \"type\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"action\": \"\",\n \"actions\": \"\",\n \"att_name\": \"\",\n \"certifier\": \"\",\n \"createdate\": \"\",\n \"createdt\": \"\",\n \"enddate\": \"\",\n \"id\": \"\",\n \"reminderstattus\": \"\",\n \"status\": \"\",\n \"type\": \"\",\n \"updatedate\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchAttestationDetails", + "description": "", + "item": [ + { + "id": "16e0bda5-cdde-4a8c-868b-f24bd7e977fb", + "name": "Fetch Attestation Details", + "request": { + "name": "Fetch Attestation Details", + "description": { + "content": "This API call can be used to fetch Attestation details for a particular attestation from SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`userName` - this is the certifier username, \r\n\r\n`id` - this is the attestation id", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchAttestationDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "id", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "d996dc2f-4ce1-42d0-8906-3fe89ffe4b16", + "name": "Fetch Attestation Details", + "originalRequest": { + "url": { + "path": [ + "fetchAttestationDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "id", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"attestationdetails\": [\n {\n \"certified\": \"\",\n \"certifiedall\": \"\",\n \"comments\": \"\",\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"totalAccounts\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n },\n {\n \"certified\": \"\",\n \"certifiedall\": \"\",\n \"comments\": \"\",\n \"cp1\": \"\",\n \"cp2\": \"\",\n \"cp3\": \"\",\n \"cp4\": \"\",\n \"cp5\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\",\n \"totalAccounts\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n }\n ],\n \"complete\": \"\",\n \"count\": \"\",\n \"errorCode\": \"\",\n \"locked\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "certifyUserManagerRequests", + "description": "", + "item": [ + { + "id": "a4c77151-ab30-4bcd-9e6a-5e0f52c5176d", + "name": "Certify UserManager Requests", + "request": { + "name": "Certify UserManager Requests", + "description": { + "content": "This API can be used to certify users employment status for user manager attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`verifications` - \r\n\r\n`employee` - Username to whom you want to certify\r\n\r\n`verifier` - Indicates the ‘username’ of the approver/verifier\r\n\t\r\n`action` - Specify the ‘Action’ you want to take for the respective Campaign. Possible values are ‘Works for me’, ‘Does not work for me’, ‘Terminated’, and ‘No response’\r\n \r\n`id` - Indicates the attestation id for which you want to take action specified in the ‘Action’ parameter. \r\n\r\n\r\nOptional params:\r\n\r\n`verifications` -\r\n\r\n`comments` - Specify the comments you want to mention for taking the respective action", + "type": "text/plain" + }, + "url": { + "path": [ + "certifyUserManagerRequests" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"verifications\": [\n {\n \"action\": \"\",\n \"employee\": \"\",\n \"id\": \"\",\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"employee\": \"\",\n \"id\": \"\",\n \"verifier\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "96fe1d71-a08e-451f-8666-9663e15a9d29", + "name": "Certify UserManager Requests", + "originalRequest": { + "url": { + "path": [ + "certifyUserManagerRequests" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"verifications\": [\n {\n \"action\": \"\",\n \"employee\": \"\",\n \"id\": \"\",\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"employee\": \"\",\n \"id\": \"\",\n \"verifier\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"verifications\": [\n {\n \"employee\": \"\",\n \"errorCode\": \"\",\n \"id\": \"\",\n \"msg\": \"\"\n },\n {\n \"employee\": \"\",\n \"errorCode\": \"\",\n \"id\": \"\",\n \"msg\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchAttAccEntDetails", + "description": "", + "item": [ + { + "id": "8eab3edc-65b8-4a97-b1e8-522f612976ae", + "name": "Fetch Attestation Account Entitlement Details", + "request": { + "name": "Fetch Attestation Account Entitlement Details", + "description": { + "content": "This API call can be used to get the details, status, and keys for accounts and entitlements within user manager attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`id` - attestation id", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchAttAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "id", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "fd58cbcc-5ed4-4fee-b400-74908701ac83", + "name": "Fetch Attestation Account Entitlement Details", + "originalRequest": { + "url": { + "path": [ + "fetchAttAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "id", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"accentdetails\": {\n \"id\": \"\",\n \"users\": [\n {\n \"accounts\": [\n {\n \"accountattkey\": \"\",\n \"accountname\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"endpoint\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ],\n \"entitlementscount\": \"\"\n },\n {\n \"accountattkey\": \"\",\n \"accountname\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"endpoint\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ],\n \"entitlementscount\": \"\"\n }\n ],\n \"accountscount\": \"\",\n \"employeeattuserkey\": \"\",\n \"employeeusername\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\"\n },\n {\n \"accounts\": [\n {\n \"accountattkey\": \"\",\n \"accountname\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"endpoint\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ],\n \"entitlementscount\": \"\"\n },\n {\n \"accountattkey\": \"\",\n \"accountname\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"endpoint\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"entattkey\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ],\n \"entitlementscount\": \"\"\n }\n ],\n \"accountscount\": \"\",\n \"employeeattuserkey\": \"\",\n \"employeeusername\": \"\",\n \"firstname\": \"\",\n \"lastname\": \"\"\n }\n ],\n \"userscount\": \"\"\n },\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "approveRejectAttAccEntDetails", + "description": "", + "item": [ + { + "id": "0dacd27c-c2f3-489f-a251-51c38fab44fb", + "name": "Approve Reject Attestation Account Details", + "request": { + "name": "Approve Reject Attestation Account Details", + "description": { + "content": "This API can be used to approve or reject accounts or entitlements for a user manager attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`attid` - attestation id,\r\n\r\n`id` - same as attid,\r\n\r\n`verifier` - Indicates the approver/verifier username verifying the attestation request,\r\n\r\n`accounts` - \r\n\r\n 1.`accattkey` - Indicates the account id which you want to approve/reject\r\n \r\n 2.`userattkey` - Indicates the user id which you want to approve\r\n \r\n 3.`certified` - Select the action you want to perform. For approval, mention ‘Yes’ and for rejecting mention ‘No’\r\n \r\n`entitlements` - \r\n\r\n 1.`accattkey` - Indicates the account id for which you want to approve/reject for the respective entitlement\r\n \r\n 2.`userattkey` - Indicates the user id which you want to approve\r\n \r\n 3.`certified` - Select the action you want to perform. For approval, mention ‘Yes’ and for rejecting mention ‘No’\r\n \r\n 4.`entattkey` - Indicates the entitlement attribute key for which you want to approve/reject the respective entitlement\r\n \r\n\r\nEither accounts or entitlements is mandatory.\r\n\r\nOptional params:\r\n\r\n`users` - \r\n\r\n 1.`userattkey` - Indicates the user id which you want to approve\r\n \r\n 2.`certified` - Specify the ‘Action’. Possible values are ‘Works for me’, ‘Does not work for me’, ‘Terminated’, and ‘No response’\r\n \r\n`comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "approveRejectAttAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"attid\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"users\": [\n {\n \"certified\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"certified\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "8b5764ce-c3e2-4435-84a7-ca678cea0970", + "name": "Approve Reject Attestation Account Details", + "originalRequest": { + "url": { + "path": [ + "approveRejectAttAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"attid\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"users\": [\n {\n \"certified\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"certified\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "lockAttestation", + "description": "", + "item": [ + { + "id": "242f1cac-69a5-4890-8359-33b6f6d40e52", + "name": "Lock Attestation", + "request": { + "name": "Lock Attestation", + "description": { + "content": "This API can be used to lock a completed attestation, which is not locked. Once the attestation is locked using lockAttestation, no changes can be made to the attestation.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`verifier` - Indicates the approver/verifier username verifying the attestation request,\r\n\r\n`attid` - Indicates the attestation id\r\n\r\nOptional params:\r\n\r\n`comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "lockAttestation" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "attid", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "comments", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "verifier", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "1482b39d-2f4a-4df0-a261-4ff9b455b989", + "name": "Lock Attestation", + "originalRequest": { + "url": { + "path": [ + "lockAttestation" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "attid", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "comments", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "verifier", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchCampaignList", + "description": "", + "item": [ + { + "id": "640bd095-a946-4680-a592-e2664540a230", + "name": "Fetch Campaign List", + "request": { + "name": "Fetch Campaign List", + "description": { + "content": "This API returns list of all campaign's pending to be certified.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`certifierUsername`\nOptional params:\n`max`, `offset`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchCampaignList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"certifierUsername\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "6c2dbce0-1978-4077-8d64-c83c4ac2450f", + "name": "Fetch Campaign List", + "originalRequest": { + "url": { + "path": [ + "fetchCampaignList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"certifierUsername\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"campaigns\": [\n {\n \"action\": \"\",\n \"campaignName\": \"\",\n \"campaignOwner\": \"\",\n \"endDate\": \"\",\n \"id\": \"\",\n \"progress\": \"\",\n \"reassigned\": \"\",\n \"startDate\": \"\",\n \"status\": \"\",\n \"type\": \"\"\n },\n {\n \"action\": \"\",\n \"campaignName\": \"\",\n \"campaignOwner\": \"\",\n \"endDate\": \"\",\n \"id\": \"\",\n \"progress\": \"\",\n \"reassigned\": \"\",\n \"startDate\": \"\",\n \"status\": \"\",\n \"type\": \"\"\n }\n ],\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchCampaignDetails", + "description": "", + "item": [ + { + "id": "720355c6-93ac-4a30-b61e-7db6ab89699d", + "name": "Fetch Campaign Details", + "request": { + "name": "Fetch Campaign Details", + "description": { + "content": "This API return details of a particular campaign required for employee verification. \nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\nOptional params:\n`certifierUsername`\n`certkey`\n`max`\n`offset`\n`showCampaignConfig` (True/ False) Returns the campaign configuration details when set to True.\n***Note***: The user attributes in the response is driven by the attributes selected during the campaign launch.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchCampaignDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a3f1cb10-4af3-434f-9ffa-53eb5194f33b", + "name": "Fetch Campaign Details", + "originalRequest": { + "url": { + "path": [ + "fetchCampaignDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"Total Preview Certification\": [\n \"\",\n \"\"\n ],\n \"campaignDetails\": [\n {\n \"certificationame\": \"\",\n \"certifier\": \"\",\n \"certkey\": \"\",\n \"progress\": \"\",\n \"status\": \"\",\n \"usercount\": \"\",\n \"users\": [\n {\n \"certfied\": \"\",\n \"comment\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"displayname\": \"\",\n \"firstname\": \"\",\n \"totalaccount\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n },\n {\n \"certfied\": \"\",\n \"comment\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"displayname\": \"\",\n \"firstname\": \"\",\n \"totalaccount\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n }\n ]\n },\n {\n \"certificationame\": \"\",\n \"certifier\": \"\",\n \"certkey\": \"\",\n \"progress\": \"\",\n \"status\": \"\",\n \"usercount\": \"\",\n \"users\": [\n {\n \"certfied\": \"\",\n \"comment\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"displayname\": \"\",\n \"firstname\": \"\",\n \"totalaccount\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n },\n {\n \"certfied\": \"\",\n \"comment\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"displayname\": \"\",\n \"firstname\": \"\",\n \"totalaccount\": \"\",\n \"updateuser\": \"\",\n \"username\": \"\"\n }\n ]\n }\n ],\n \"campaignId\": \"\",\n \"complete\": \"\",\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "certifyUserManagerforCampaign", + "description": "", + "item": [ + { + "id": "15223ccb-36d4-4465-af20-f9b9ac60dd7c", + "name": "Certify User Manager for Campaign", + "request": { + "name": "Certify User Manager for Campaign", + "description": { + "content": "This API will do employee verification for a particular campaign.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`verifications` - 1. `campaignId` 2. `employee ` - can be one employee or list of employees like - [\"jdoe\",\"\",\"smith\",\"john\"], 3. `verifier` 4. `action` - Valid actions are WORKSFORME/DOESNOTWORKFORME/NORESPONSE, 5. `certkey`\nOptional params:\n`comments` in the `verifications`", + "type": "text/plain" + }, + "url": { + "path": [ + "certifyUserManagerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"verifications\": [\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"employee\": \"\",\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"employee\": \"\",\n \"verifier\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "9c6c0c1a-3883-42a5-abd5-17e535b2cf21", + "name": "certifyUserManagerforCampaign / Certify User Manager for Campaign", + "originalRequest": { + "url": { + "path": [ + "certifyUserManagerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"verifications\": [\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"employee\": \"\",\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"employee\": \"\",\n \"verifier\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"verifications\": [\n {\n \"employee\": \"\",\n \"errorCode\": \"\",\n \"id\": \"\",\n \"msg\": \"\"\n },\n {\n \"employee\": \"\",\n \"errorCode\": \"\",\n \"id\": \"\",\n \"msg\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "60643cd0-c267-4b7f-977c-d4a7f4cffbe4", + "name": "Fetch Account Entitlement Details", + "request": { + "name": "Fetch Account Entitlement Details", + "description": { + "content": "This API returns user details, account-entitlement details of a particular campaign required for certify/revoke API. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response. If the employmentStatus parameter is passed with this API, then only the match records in the certified field are displayed in the API response.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\nOptional params:\n`certifierUsername`,\n`certkey`,\n`max`(default is 100),\n`offset`(default is 0),\n`returnFlatResponse`(can be true or false)\n`employmentStatus` (NORESPONSE/ WORKSFORME/ DOESNOTWORKFORME/ TERMINATED/ ENDDATE_EXTENDED)\n***Note***: The user attributes in the response is driven by the attributes selected during the campaign launch.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "c98762a2-cc50-4ca8-9f13-c9ff16eb2e06", + "name": "Fetch Account Entitlement Details", + "originalRequest": { + "url": { + "path": [ + "fetchCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignAccountEntDetails\": [\n {\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"status\": \"\",\n \"usercount\": \"\",\n \"users\": [\n {\n \"accountCount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n }\n ],\n \"certfied\": \"\",\n \"certuserkey\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountCount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n }\n ],\n \"certfied\": \"\",\n \"certuserkey\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ]\n },\n {\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"status\": \"\",\n \"usercount\": \"\",\n \"users\": [\n {\n \"accountCount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n }\n ],\n \"certfied\": \"\",\n \"certuserkey\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountCount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"entitlements\": [\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n },\n {\n \"certEntitlementkey\": \"\",\n \"consulted\": \"\",\n \"entStatus\": \"\",\n \"entcertified\": \"\",\n \"entcomments\": \"\",\n \"entcriticality\": \"\",\n \"entname\": \"\",\n \"enttype\": \"\"\n }\n ]\n }\n ],\n \"certfied\": \"\",\n \"certuserkey\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ]\n }\n ],\n \"campaignId\": \"\",\n \"complete\": \"\",\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "approverejectCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "4ce42166-3752-412f-a42e-4b6603bd9bc1", + "name": "Approve Reject Campaign Account Entitlement Details", + "request": { + "name": "Approve Reject Campaign Account Entitlement Details", + "description": { + "content": "This API is used to certify/revoke the user's access (account, entitlement) along with employment verification. When an approve or reject action is performed for a line item in a User Manager campaign, then only the latest comment sent through the API is retained in the comments field but all the comments (including actions) are stored in the audit trail/history.\nFrom Release v23.8, this API now supports resetting of actions on roles within a certification.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignid`\n`certkey`\n`verifier`\n`accounts` -\n1. `accattkey` 2. `userattkey` 3. `certified` (Can be Yes/No/Reset) 4. `comments`\n\n`entitlements` -\n1. `entattkey` 2. `accattkey` 3. `userattkey` 4. `certified` (Can be Yes/No/Reset) 5. `comments`\n\n`users` -\n1. `userattkey` 2. `certified` 3. `comments`\n\nOptional params:\n`bulkUpdate`(Can be Y or N)\n`approveComment`\n`rejectComment`\n`doesNotBelongToMeComment`\n`roleattkey`\n`bulkValidations`(If 'Y' the code works as is and all validations happen, if bulkValidations=' N' the code will skip validations for all the records passed)", + "type": "text/plain" + }, + "url": { + "path": [ + "approverejectCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"bulkUpdate\": \"\",\n \"bulkValidations\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"roles\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"roleattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"roleattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4bcc4a4f-3605-47d9-9d3a-60c3e4d4c412", + "name": "Approve Reject Campaign Account Entitlement Details / Approve Reject Campaign Account Entitlement Details - new", + "originalRequest": { + "url": { + "path": [ + "approverejectCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"bulkUpdate\": \"\",\n \"bulkValidations\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"roles\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"roleattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"roleattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"users\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "lockCampaign", + "description": "", + "item": [ + { + "id": "5b836b29-4acc-4e84-9b68-bd2d9c1edd3e", + "name": "Lock Campaign", + "request": { + "name": "Lock Campaign", + "description": { + "content": "This API is used to lock campaign after validating whether campaign is completed or not.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`, `verifier`\nOptional params:\n`certkey`, `lockComments`", + "type": "text/plain" + }, + "url": { + "path": [ + "lockCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "d36c7480-db7b-437d-aa71-ebea4c29cb3f", + "name": "Lock Campaign", + "originalRequest": { + "url": { + "path": [ + "lockCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"Total locked certification\": [\n \"\",\n \"\"\n ],\n \"errorCode\": \"\",\n \"lockedcertkey\": [\n \"\",\n \"\"\n ],\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "reassignUserManagerforCampaign", + "description": "", + "item": [ + { + "id": "ecaedb85-b097-4d8f-b90b-7afd5895a8a8", + "name": "Reassign UserManager Step 1 for Campaign", + "request": { + "name": "Reassign UserManager Step 1 for Campaign", + "description": { + "content": "This API reassigns UserManager for Campaign at Employment Verification Stage in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`\n`certificationname` or `certkey`\n`username`\nOptional params:\n`newassignee`\n`comments`\n`updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "reassignUserManagerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"newassignee\": \"\",\n \"updateuser\": \"\",\n \"username\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "30bb4054-dd8d-4cb6-acb7-cec5e3860f30", + "name": "Lock Campaign / Reassign UserManager for Campaign", + "originalRequest": { + "url": { + "path": [ + "reassignUserManagerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"newassignee\": \"\",\n \"updateuser\": \"\",\n \"username\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Length", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "WWW-Authenticate", + "value": "" + } + ], + "body": "{\n \"Total locked certification\": [\n \"\",\n \"\"\n ],\n \"errorCode\": \"\",\n \"errorcode\": \"\",\n \"lockedcertkey\": [\n \"\",\n \"\"\n ],\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "consultUserManagerforCampaign", + "description": "", + "item": [ + { + "id": "32ec1abe-3aab-4762-8b31-0307b14dc3c2", + "name": "Consult UserManager Step 1 for Campaign", + "request": { + "name": "Consult UserManager Step 1 for Campaign", + "description": { + "content": "This API consults UserManager for Campaign at Employment Verification Stage in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`\n`certificationname` or `certkey`\n`newassignee`\n`username`\nOptional params:\n`comments`\n`updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "consultUserManagerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"newassignee\": \"\",\n \"updateuser\": \"\",\n \"username\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "494c6df6-f269-4724-b370-3e1f004f3f46", + "name": "Consult UserManager for Campaign", + "originalRequest": { + "url": { + "path": [ + "consultUserManagerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"newassignee\": \"\",\n \"updateuser\": \"\",\n \"username\": [\n \"\",\n \"\"\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Language", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "consultCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "b27256e3-e0fc-4fa9-9ddb-8cedc7466931", + "name": "Consult Campaign Account Entitlement Details", + "request": { + "name": "Consult Campaign Account Entitlement Details", + "description": { + "content": "This API consults User Manager for Campaign at Account and Access Certification Stage in SSM. \nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`newassignee`\n`campaignname` or `campaignid`\n`certificationname` or `certkey`\n`accounts` - 1. `accattkey` 2. `userattkey` 3. `consultassociatedentitlements`\n***OR***\n`entitlements` - 1. `accattkey` 2. `userattkey` 3. `entattkey`\nOptional params:\n`comments`\n`updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "consultCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "d3e79904-4924-46b6-91cd-a95244b2f002", + "name": "Consult Campaign Account Entitlement Details", + "originalRequest": { + "url": { + "path": [ + "consultCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Language", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "reAssignUserManagerStep2AccEntDetails", + "description": "", + "item": [ + { + "id": "822218ba-44ad-4931-a10c-2374ef5c6c78", + "name": "Reassign Certification at Account and Entitlement Level Copy", + "request": { + "name": "Reassign Certification at Account and Entitlement Level Copy", + "description": { + "content": "This API reassigns accounts, roles, or entitlements to a different user or certifier. The associated users for accounts, roles, or entitlements that are being reassigned, must be certified in Step 1.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`updateuser` (can be Admin/Campaign Owner/Certifier/Delegate)\n`campaignid`- Campaign ID or the primary key of the campaign table.\n`certkey`- Certification key or the primary key of the certification table.\n`accounts`- List of accounts. (You must provide either accounts/entitlements/roles)\n`entitlements`- List of child entitlements. (You must provide either accounts/entitlements/roles)\n`roles` - List of roles. (You must provide either accounts/entitlements/roles)\n`newassignee`- New certifier or user to whom the certification will be assigned.\n`bulkupdate` (can be Y/N)\n`bulkvalidation` (can be Y/N)\n`bulkConsultAssociatedData` (can be Y/N) This option enables you to specify whether to reassign all accounts, entitlements and roles related to the specified account/entitlement/role.\nOptional params:\n`campaignname` - Name of the campaign.\n`certificationname` - Name of the certification.\n`reassignComments`- Comments for reassigning the certification.", + "type": "text/plain" + }, + "url": { + "path": [ + "reAssignUserManagerStep2AccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\"\n },\n {\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "8aad3e65-6a25-45a4-bbf7-06de7bed5b07", + "name": "Reassign Certification at Account and Entitlement Level", + "originalRequest": { + "url": { + "path": [ + "reAssignUserManagerStep2AccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\"\n },\n {\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"bulkConsultAssociatedData\": \"\",\n \"bulkUpdate\": \"\",\n \"bulkValidation\": \"\",\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"reassignComments\": \"\",\n \"roles\": [\n {\n \"roleattkey\": \"\",\n \"userattkey\": \"\"\n },\n {\n \"roleattkey\": \"\",\n \"userattkey\": \"\"\n }\n ],\n \"updateuser\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "consultEOforCampaign", + "description": "", + "item": [ + { + "id": "4faa65d3-8991-4346-b5e1-961da5775aa4", + "name": "Consult EntitlementOwner Step 1 for Campaign", + "request": { + "name": "Consult EntitlementOwner Step 1 for Campaign", + "description": { + "content": "This API consults Entitltment Owner for Campaign at Employment Verification Stage in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`\n`certificationname` or `certkey`\n`newassignee`\n`entitlements`\nOptional params:\n`comments`\n`updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "consultEOforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n \"\",\n \"\"\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "fd80eb05-625d-4f37-9ffc-295f9bcfcc8e", + "name": "Consult EntitlementOwner Step 1 for Campaign", + "originalRequest": { + "url": { + "path": [ + "consultEOforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n \"\",\n \"\"\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "consultEOCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "eb7040f2-8eba-45d7-86ae-78c8f5f65c4d", + "name": "Consult EntitlementOwner Step 2 for Campaign", + "request": { + "name": "Consult EntitlementOwner Step 2 for Campaign", + "description": { + "content": "This API consults Entitltment Owner for Campaign at Account and Access Certification Stage in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`\n`certificationname` or `certkey`\n`newassignee`\n`accountentitlements` - 1. `entitlement` 2. `accounts`\nOptional params:\n`comments`\n`updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "consultEOCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountentitlements\": [\n {\n \"accounts\": [\n \"\",\n \"\"\n ],\n \"entitlement\": \"\"\n },\n {\n \"accounts\": [\n \"\",\n \"\"\n ],\n \"entitlement\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "843825de-9bc2-4830-bf60-707a6d9c6eb6", + "name": "Consult EntitlementOwner Step 2 for Campaign", + "originalRequest": { + "url": { + "path": [ + "consultEOCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountentitlements\": [\n {\n \"accounts\": [\n \"\",\n \"\"\n ],\n \"entitlement\": \"\"\n },\n {\n \"accounts\": [\n \"\",\n \"\"\n ],\n \"entitlement\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"campaignname\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Language", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchEntOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "35ce4b53-25c7-4353-9c51-3b1005aff38a", + "name": "Fetch Account Entitlement Details", + "request": { + "name": "Fetch Account Entitlement Details", + "description": { + "content": "This API returns user details, account-entitlement details of a particular campaign required for certify/revoke API. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\nOptional params:\n`certkey`\n`max`\n`offset`\n`entitlementmax`\n`entitlementoffset`\n`accountmax`\n`accountoffset`\n`entitlement2max`\n`entitlement2offset`\n`verifier`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchEntOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountmax\": \"\",\n \"accountoffset\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement2max\": \"\",\n \"entitlement2offset\": \"\",\n \"entitlementmax\": \"\",\n \"entitlementoffset\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "fc1e6df2-f31e-465f-b73e-4a7711362ff1", + "name": "Fetch Account Entitlement Details", + "originalRequest": { + "url": { + "path": [ + "fetchEntOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accountmax\": \"\",\n \"accountoffset\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement2max\": \"\",\n \"entitlement2offset\": \"\",\n \"entitlementmax\": \"\",\n \"entitlementoffset\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignAccountEntDetails\": [\n {\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"entitlementDisplayCount\": \"\",\n \"entitlementTotalCount\": \"\",\n \"entitlements\": [\n {\n \"accountdisplaycount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ],\n \"accounttotalcount\": \"\",\n \"certentvalkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"entitlement2displaycount\": \"\",\n \"entitlement2totalcount\": \"\",\n \"entitlementStatus\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\"\n },\n {\n \"accountdisplaycount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ],\n \"accounttotalcount\": \"\",\n \"certentvalkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"entitlement2displaycount\": \"\",\n \"entitlement2totalcount\": \"\",\n \"entitlementStatus\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\"\n }\n ],\n \"status\": \"\"\n },\n {\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"entitlementDisplayCount\": \"\",\n \"entitlementTotalCount\": \"\",\n \"entitlements\": [\n {\n \"accountdisplaycount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ],\n \"accounttotalcount\": \"\",\n \"certentvalkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"entitlement2displaycount\": \"\",\n \"entitlement2totalcount\": \"\",\n \"entitlementStatus\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\"\n },\n {\n \"accountdisplaycount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedDate\": \"\",\n \"lastCertifiedUser\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ],\n \"accounttotalcount\": \"\",\n \"certentvalkey\": \"\",\n \"certfied\": \"\",\n \"comment\": \"\",\n \"consulted\": \"\",\n \"entitlement2displaycount\": \"\",\n \"entitlement2totalcount\": \"\",\n \"entitlementStatus\": \"\",\n \"entitlementType\": \"\",\n \"entitlement_value\": \"\",\n \"risk\": \"\",\n \"soxcritical\": \"\",\n \"status\": \"\",\n \"syscritical\": \"\"\n }\n ],\n \"status\": \"\"\n }\n ],\n \"campaignId\": \"\",\n \"complete\": \"\",\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchEntOwnerCampaignDetails", + "description": "", + "item": [ + { + "id": "625285d4-e39c-454c-9573-45a81911a779", + "name": "Fetch Entitlement Owner Campaign Details", + "request": { + "name": "Fetch Entitlement Owner Campaign Details", + "description": { + "content": "This API return details of a particular Entitlement Owner campaign in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\nOptional params:\n`max`\n`offset`\n`entitlementmax`\n`entitlementoffset`\n`certkey`\n`verifier`", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchEntOwnerCampaignDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "275a6f5c-f458-4694-8cd0-23d475d7839e", + "name": "Fetch Entitlement Owner Campaign Details - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "fetchEntOwnerCampaignDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignDetails\": [\n {\n \"certificationame\": \"\",\n \"certifier\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"certfied\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlement_value\": \"\",\n \"totalaccount\": \"\",\n \"totalentitlement2\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"certfied\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlement_value\": \"\",\n \"totalaccount\": \"\",\n \"totalentitlement2\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"entitlementdisplaycount\": \"\",\n \"progress\": \"\",\n \"status\": \"\",\n \"totalentitlement\": \"\"\n },\n {\n \"certificationame\": \"\",\n \"certifier\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"certfied\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlement_value\": \"\",\n \"totalaccount\": \"\",\n \"totalentitlement2\": \"\",\n \"updateuser\": \"\"\n },\n {\n \"certfied\": \"\",\n \"consulted\": \"\",\n \"endpoint\": \"\",\n \"entitlement_value\": \"\",\n \"totalaccount\": \"\",\n \"totalentitlement2\": \"\",\n \"updateuser\": \"\"\n }\n ],\n \"entitlementdisplaycount\": \"\",\n \"progress\": \"\",\n \"status\": \"\",\n \"totalentitlement\": \"\"\n }\n ],\n \"campaignId\": \"\",\n \"complete\": \"\",\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCompleteCertification\": [\n \"\",\n \"\"\n ],\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + }, + { + "id": "f15909e1-9d32-4acb-b59c-29bca238bf1c", + "name": "Fetch Entitlement Owner Campaign Details - FAILURE", + "originalRequest": { + "url": { + "path": [ + "fetchEntOwnerCampaignDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "Precondition Failed", + "code": 412, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getFlatResponseEntOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "7b4a5ff2-c667-420a-9e59-8a6a49e634fb", + "name": "Fetch Flat Response Entitlement Owner Campaign Details", + "request": { + "name": "Fetch Flat Response Entitlement Owner Campaign Details", + "description": { + "content": "This API return flat details of a particular Entitlement Owner campaign in SSM. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\nOptional params:\n`max`\n`offset`\n`entitlementmax`\n`entitlementoffset`\n`certkey`", + "type": "text/plain" + }, + "url": { + "path": [ + "getFlatResponseEntOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlementmax\": \"\",\n \"entitlementoffset\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "7303f64a-c093-4878-8da0-489c76e40966", + "name": "Fetch Flat Response Entitlement Owner Campaign Details", + "originalRequest": { + "url": { + "path": [ + "getFlatResponseEntOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlementmax\": \"\",\n \"entitlementoffset\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignAccountEntDetails\": [\n {\n \"Ent_SOX_CRITICAL\": \"\",\n \"Ent_SYS_CRITICAL\": \"\",\n \"Ent_entitlement_value\": \"\",\n \"Ent_risk\": \"\",\n \"Ent_status\": \"\",\n \"User_lastCertifiedCampaignName\": \"\",\n \"User_lastCertifiedDate\": \"\",\n \"User_lastCertifiedUser\": \"\",\n \"User_systemUserName\": \"\",\n \"User_username\": \"\",\n \"accComment\": \"\",\n \"accHistory\": \"\",\n \"accStatus\": \"\",\n \"accountCertfied\": \"\",\n \"accountCount\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certentval2key\": \"\",\n \"certentvalkey\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"endpoint\": \"\",\n \"ent2History\": \"\",\n \"ent2Status\": \"\",\n \"ent2certified\": \"\",\n \"ent2comments\": \"\",\n \"ent2name\": \"\",\n \"entCertfied\": \"\",\n \"entComment\": \"\",\n \"entStatus\": \"\",\n \"entcriticality\": \"\",\n \"entitlement2count\": \"\",\n \"entitlementcount\": \"\",\n \"enttype\": \"\",\n \"history\": \"\",\n \"status\": \"\",\n \"userStatus\": \"\"\n },\n {\n \"Ent_SOX_CRITICAL\": \"\",\n \"Ent_SYS_CRITICAL\": \"\",\n \"Ent_entitlement_value\": \"\",\n \"Ent_risk\": \"\",\n \"Ent_status\": \"\",\n \"User_lastCertifiedCampaignName\": \"\",\n \"User_lastCertifiedDate\": \"\",\n \"User_lastCertifiedUser\": \"\",\n \"User_systemUserName\": \"\",\n \"User_username\": \"\",\n \"accComment\": \"\",\n \"accHistory\": \"\",\n \"accStatus\": \"\",\n \"accountCertfied\": \"\",\n \"accountCount\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certentval2key\": \"\",\n \"certentvalkey\": \"\",\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"endpoint\": \"\",\n \"ent2History\": \"\",\n \"ent2Status\": \"\",\n \"ent2certified\": \"\",\n \"ent2comments\": \"\",\n \"ent2name\": \"\",\n \"entCertfied\": \"\",\n \"entComment\": \"\",\n \"entStatus\": \"\",\n \"entcriticality\": \"\",\n \"entitlement2count\": \"\",\n \"entitlementcount\": \"\",\n \"enttype\": \"\",\n \"history\": \"\",\n \"status\": \"\",\n \"userStatus\": \"\"\n }\n ],\n \"campaignId\": \"\",\n \"complete\": \"\",\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "lockEntOwnerCampaign", + "description": "", + "item": [ + { + "id": "1ae86e3c-4182-4e6d-b379-3b844f59bfeb", + "name": "Lock Campaign", + "request": { + "name": "Lock Campaign", + "description": { + "content": "This API is used to lock campaign after validating whether Entitlement Owner campaign is completed or not.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\n`verifier`\nOptional params:\n`certkey`", + "type": "text/plain" + }, + "url": { + "path": [ + "lockEntOwnerCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "8f0107db-7997-473c-b389-5c558d92fc7c", + "name": "Lock Campaign - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "lockEntOwnerCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"lockedcertkey\": [\n \"\",\n \"\"\n ],\n \"msg\": \"\",\n \"totalLockedCertification\": [\n \"\",\n \"\"\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + }, + { + "id": "d31744f1-80e6-4896-acce-e1323c1abcfa", + "name": "Lock Campaign - FAILURE", + "originalRequest": { + "url": { + "path": [ + "lockEntOwnerCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "Precondition Failed", + "code": 412, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "approverejectEntOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "5b618f6b-8648-4521-b35c-4e8a3870cc00", + "name": "Approve Reject Account Entitlement Details", + "request": { + "name": "Approve Reject Account Entitlement Details", + "description": { + "content": "This API is used to certify/revoke the user's access (account, entitlement). When an approve or reject action is performed for a line item in an Entitlement Owner campaign, then only the latest comment sent through the API is retained in the comments field but all the comments (including actions) are stored in the audit trail/history.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignid`\n`certkey`\n`verifier`\n`entitlements` 1. `action`(APPROVED/REJECTED/DECOMMISSIONED/DOESNOTBELONGTOME) 2. `entattkey` 3. `certified`(Can be Yes/No/Reset) 4. `comments`\n OR \n\n`accounts`\n 1. `action`(APPROVED/REJECTED)\n 2. `accattkey`\n 3. `entattkey`\n 4. `certified`(Can be Yes/No/Reset)\n 5. `comments`\n\n OR \n\n`entitlements2`\n 1. `action`(APPROVED/REJECTED)\n 2. `entattkey`\n 3. `ent2attkey`\n 4. `certified`(Can be Yes/No/Reset)\n 5. `comments`\nOptional params:\n`bulkUpdate`(Can be Y or N) If set to Y, approveComments or rejectComments will be considered at the global level. If set to 'N' then comments at the individual record/user level is considered.\n`approveComment`\n`rejectComment`\n`doesNotBelongToMeComment`\n`bulkValidations`(If 'Y' the code works as is and all validations happen, if bulkValidations=' N' the code will skip validations for all the records passed)", + "type": "text/plain" + }, + "url": { + "path": [ + "approverejectEntOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"action\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"action\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"approveComment\": \"\",\n \"bulkUpdate\": \"\",\n \"bulkValidations\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"doesNotBelongToMeComment\": \"\",\n \"entitlements2\": [\n {\n \"action\": \"\",\n \"comments\": \"\",\n \"ent2attkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"action\": \"\",\n \"comments\": \"\",\n \"ent2attkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"rejectComment\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "af83cfc6-c403-4427-bb4d-526f88b9cc5d", + "originalRequest": { + "url": { + "path": [ + "approverejectEntOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"action\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"action\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"approveComment\": \"\",\n \"bulkUpdate\": \"\",\n \"bulkValidations\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"doesNotBelongToMeComment\": \"\",\n \"entitlements2\": [\n {\n \"action\": \"\",\n \"comments\": \"\",\n \"ent2attkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"action\": \"\",\n \"comments\": \"\",\n \"ent2attkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"rejectComment\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [], + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "certifyEntOwnerforCampaign", + "description": "", + "item": [ + { + "id": "31dd818e-e469-4001-8d70-b84560b3b7cc", + "name": "Certify Entitlement Owner for Campaign", + "request": { + "name": "Certify Entitlement Owner for Campaign", + "description": { + "content": "This API will do entitlement verification for a particular campaign.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`verifications`\n`camapignId`\n`entitlement` 1. `entitlement` 2. `endpoint` 3. `action`\n`verifier`\n`certkey`\n`action(if action param is not passed then entitlement lavel action param will be considered)`\nOptional params:\n`comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "certifyEntOwnerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"verifications\": [\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n },\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n }\n ],\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n },\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n }\n ],\n \"verifier\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "5773eb81-7882-4e89-b188-5e131e4bb9e6", + "name": "Certify Entitlement Owner for Campaign - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "certifyEntOwnerforCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"verifications\": [\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n },\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n }\n ],\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n },\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\"\n }\n ],\n \"verifier\": \"\"\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"verifications\": [\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\",\n \"msg\": \"\"\n },\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\",\n \"msg\": \"\"\n }\n ],\n \"verifier\": \"\"\n },\n {\n \"action\": \"\",\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"entitlement\": [\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\",\n \"msg\": \"\"\n },\n {\n \"action\": \"\",\n \"endpoint\": \"\",\n \"entitlement\": \"\",\n \"msg\": \"\"\n }\n ],\n \"verifier\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "reassignEntOwnerCampaignAccEnt", + "description": "", + "item": [ + { + "id": "4529c462-e565-4030-b855-697ad5ace521", + "name": "Reassign Entitlement Owner for Campaign", + "request": { + "name": "Reassign Entitlement Owner for Campaign", + "description": { + "content": "This API reassigns Entitlement Owner for Campaign in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`(if both are passed then campaignid will be considered)\n`certificationname` or `certkey`(if both are passed then certkey will be considered)\n`newassignee`\n`entitlements`\nOptional params:\n`updateuser`\n`bulkupdate`(default value 'N')\n`bulkvalidation`(default value 'N')\n`comments`", + "type": "text/plain" + }, + "url": { + "path": [ + "reassignEntOwnerCampaignAccEnt" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\"\n },\n {\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "feebb18b-ffbb-4eb8-8e49-d19960c38586", + "name": "Reassign Application Owner for Campaign", + "originalRequest": { + "url": { + "path": [ + "reassignEntOwnerCampaignAccEnt" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\"\n },\n {\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "reassignEntOwnerCampaignAccEntDetailsStep2", + "description": "", + "item": [ + { + "id": "97084836-6274-41a1-832c-eef9aeaff00c", + "name": "Reassign Certification at Account Level", + "request": { + "name": "Reassign Certification at Account Level", + "description": { + "content": "This API reassigns accounts or child entitlements to a different user or certifier. The associated entitlements for accounts or child entitlements that are being reassigned, must be certified in Step 1.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`updateuser` (can be Admin/Campaign Owner/Certifier/Delegate)\n`campaignid`- Campaign ID or the primary key of the campaign table.\n`certkey`- Certification key or the primary key of the certification table.\n`accounts`- List of accounts. (You must provide either accounts or entitlements2)\n`entitlements2`- List of child entitlements. (You must provide either accounts or entitlements2)\n`newassignee`- New certifier or user to whom the certification will be assigned.\n`bulkupdate` (can be Y/N)\n`bulkvalidation` (can be Y/N)\nOptional params:\n`comments`- Comments for reassigning the certification.", + "type": "text/plain" + }, + "url": { + "path": [ + "reassignEntOwnerCampaignAccEntDetailsStep2" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\"\n },\n {\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "5da6f67c-4e56-4e42-8aad-0e0bf55686c8", + "name": "Reassign Certification at Account Level", + "originalRequest": { + "url": { + "path": [ + "reassignEntOwnerCampaignAccEntDetailsStep2" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"entattkey\": \"\"\n },\n {\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"bulkupdate\": \"\",\n \"bulkvalidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements2\": [\n {\n \"ent2attkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"ent2attkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchAppOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "924fa84f-6739-4606-aa3a-512c571f8e18", + "name": "Fetch Account Entitlement Details", + "request": { + "name": "Fetch Account Entitlement Details", + "description": { + "content": "This API returns user details, account-entitlement details of a particular campaign required for certify/revoke API. If last certified actions and last certified comments are configured during campaign creation, then it is displayed in the API response.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\nOptional params:\n`certkey`\n`max`(default is 100),\n`offset`(default is 0),\n`returnFlatResponse`(can be true or false)", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "00469caf-9a7f-43cd-b996-8c432f6fb4a7", + "name": "Fetch Account Entitlement Details", + "originalRequest": { + "url": { + "path": [ + "fetchAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"certkey\": \"\",\n \"max\": \"\",\n \"offset\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignAccountEntDetails\": [\n {\n \"accountcount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"firstname\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedUser\": \"\",\n \"securitySystem\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"firstname\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedUser\": \"\",\n \"securitySystem\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ],\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"status\": \"\"\n },\n {\n \"accountcount\": \"\",\n \"accounts\": [\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"firstname\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedUser\": \"\",\n \"securitySystem\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n },\n {\n \"accountStatus\": \"\",\n \"accountname\": \"\",\n \"certaccountkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"displayname\": \"\",\n \"endpoint\": \"\",\n \"entitlementcount\": \"\",\n \"firstname\": \"\",\n \"lastCertifiedCampaignName\": \"\",\n \"lastCertifiedUser\": \"\",\n \"securitySystem\": \"\",\n \"systemUserName\": \"\",\n \"userStatus\": \"\",\n \"username\": \"\"\n }\n ],\n \"certificationname\": \"\",\n \"certkey\": \"\",\n \"status\": \"\"\n }\n ],\n \"campaignId\": \"\",\n \"complete\": \"\",\n \"count\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "approverejectAppOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "1fe9feae-11b8-4204-b00f-e740089d3062", + "name": "Approve Reject Account Entitlement Details", + "request": { + "name": "Approve Reject Account Entitlement Details", + "description": { + "content": "This API is used to certify/revoke the user's access (account, entitlement). When an approve or reject action is performed for a line item in an Application Owner campaign, then only the latest comment sent through the API is retained in the comments field but all the comments (including actions) are stored in the audit trail/history.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignid`\n`certkey`\n`verifier`\n`entitlements` - 1. `accattkey` 2. `certified` (Can be Yes/No/Reset) 3. `entattkey` 4. `comments`\n`accounts` 1. `accattkey` 2. `certified` (Can be Yes/No/Reset) 3. `comments`\nOptional params:\n`bulkUpdate`(Can be Y or N)\n`approveComment`\n`rejectComment`\n`doesNotBelongToMeComment`\n`bulkValidations`(If 'Y' the code works as is and all validations happen, if bulkValidations=' N' the code will skip validations for all the records passed)", + "type": "text/plain" + }, + "url": { + "path": [ + "approverejectAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "6a870c18-fea0-4082-a471-17f5ffabb3c7", + "name": "Approve Reject Account Entitlement Details - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "approverejectAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"accList\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"msg\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"msg\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entList\": [\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"entattkey\": \"\",\n \"msg\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"certified\": \"\",\n \"comments\": \"\",\n \"entattkey\": \"\",\n \"msg\": \"\"\n }\n ],\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"verifier\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "lockApplicationOwnerCampaign", + "description": "", + "item": [ + { + "id": "67467a76-94a3-4c80-9fc5-da01fff2aaa2", + "name": "Lock Campaign", + "request": { + "name": "Lock Campaign", + "description": { + "content": "This API is used to lock campaign after validating whether Application Owner campaign is completed or not.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignId`\n`verifier`\nOptional params:\n`certkey`", + "type": "text/plain" + }, + "url": { + "path": [ + "lockApplicationOwnerCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "15da44fb-41dd-4e03-8310-d4366c9a4345", + "name": "Lock Campaign - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "lockApplicationOwnerCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignId\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"Total locked certification\": [\n \"\",\n \"\"\n ],\n \"errorCode\": \"\",\n \"lockedcertkey\": [\n \"\",\n \"\"\n ],\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "consultAppOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "ab421206-a695-4ff1-8dc8-3aa2f9bdaec2", + "name": "Consult AppOwner Account Entitlement Details", + "request": { + "name": "Consult AppOwner Account Entitlement Details", + "description": { + "content": "This API consults Application Owner for Campaign at Account and Access Certification Stage in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`\n`certificationname` or `certkey`\n`newassignee`\n`accounts` - 1. `accattkey` 2. `consultassociatedentitlements` (optional)\n`entitlements` - 1. `accattkey` 2. `entattkey`\nOptional params:\n`comments`\n`updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "consultAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "b3db69ba-7952-4a7b-87c9-07978a09f494", + "name": "Consult AppOwner Account Entitlement Details - SUCCESS", + "originalRequest": { + "url": { + "path": [ + "consultAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"consultassociatedentitlements\": \"\"\n }\n ],\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"comments\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "reAssignAppOwnerCampaignAccEntDetails", + "description": "", + "item": [ + { + "id": "349f4336-5941-4747-9b39-ee05d8e45277", + "name": "Reassign Application Owner for Campaign", + "request": { + "name": "Reassign Application Owner for Campaign", + "description": { + "content": "This API reassigns Entitlement Owner for Campaign in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignname` or `campaignid`(if both are passed then campaignid will be considered)\n`certificationname` or `certkey`(if both are passed then certkey will be considered)\n`newassignee`\n`accounts`(needs to contain accattkey)\n`entitlements`(needs to contain entattkey and accattkey)\n`roles`(needs to contain roleattkey and accattkey)\nOptional params:\n`updateuser`\n`bulkUpdate`(default value 'N')\n`bulkValidation`(default value 'N')\n`bulkConsultAssociatedData`\n`reassignComments`", + "type": "text/plain" + }, + "url": { + "path": [ + "reAssignAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\"\n },\n {\n \"accattkey\": \"\"\n }\n ],\n \"bulkConsultAssociatedData\": \"\",\n \"bulkUpdate\": \"\",\n \"bulkValidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"reassignComments\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "e7b32c42-3830-4e0a-a8e1-e3c5d04bea14", + "name": "Reassign Application Owner for Campaign", + "originalRequest": { + "url": { + "path": [ + "reAssignAppOwnerCampaignAccEntDetails" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"accounts\": [\n {\n \"accattkey\": \"\"\n },\n {\n \"accattkey\": \"\"\n }\n ],\n \"bulkConsultAssociatedData\": \"\",\n \"bulkUpdate\": \"\",\n \"bulkValidation\": \"\",\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"entitlements\": [\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n },\n {\n \"accattkey\": \"\",\n \"entattkey\": \"\"\n }\n ],\n \"newassignee\": \"\",\n \"reassignComments\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchCertificationList", + "description": "", + "item": [ + { + "id": "5ac8521e-c209-4b6f-a1b8-cbb0d9a3a96b", + "name": "Fetch Certification List", + "request": { + "name": "Fetch Certification List", + "description": { + "content": "This API returns list of all the certifications for a certifier.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`certifierUsername`\nOptional params:\n`certkey`\n`certificationname`\n`max`, `offset`\n`refreshProgress`(can be 'Y' or 'N')\n`status`(can be preview/new/readytosubmit/expired/fullyexecuted/inprogress/lockedandtaskcreated/discontinued/locked)", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchCertificationList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"certifierUsername\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"refreshProgress\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "2a4a973d-bcc2-49fe-b642-2d3801a75a38", + "name": "Fetch Certification List", + "originalRequest": { + "url": { + "path": [ + "fetchCertificationList" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"certifierUsername\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"refreshProgress\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"certifications\": [\n {\n \"campaignKey\": \"\",\n \"campaignName\": \"\",\n \"certificationName\": \"\",\n \"certifier\": \"\",\n \"comments\": \"\",\n \"dueIn\": \"\",\n \"enddate\": \"\",\n \"id\": \"\",\n \"progress\": \"\",\n \"startdate\": \"\",\n \"status\": \"\",\n \"type\": \"\"\n },\n {\n \"campaignKey\": \"\",\n \"campaignName\": \"\",\n \"certificationName\": \"\",\n \"certifier\": \"\",\n \"comments\": \"\",\n \"dueIn\": \"\",\n \"enddate\": \"\",\n \"id\": \"\",\n \"progress\": \"\",\n \"startdate\": \"\",\n \"status\": \"\",\n \"type\": \"\"\n }\n ],\n \"certifierUsername\": \"\",\n \"displayCount\": \"\",\n \"errorCode\": \"\",\n \"max\": \"\",\n \"msg\": \"\",\n \"offset\": \"\",\n \"refreshProgress\": \"\",\n \"status\": \"\",\n \"totalCount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "discontinueCampaign", + "description": "", + "item": [ + { + "id": "1ff0614f-406c-4940-a2ef-0ca9fd019dbd", + "name": "Discontinue Campaigns and Certifications", + "request": { + "name": "Discontinue Campaigns and Certifications", + "description": { + "content": "This API discontinues certification and campaign.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`campaignid`\n`verifier`\nOptional params:\n`certkey`", + "type": "text/plain" + }, + "url": { + "path": [ + "discontinueCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a3af854f-f7c2-4e87-aa6b-09c69c510ff8", + "name": "Discontinue Campaigns and Certifications", + "originalRequest": { + "url": { + "path": [ + "discontinueCampaign" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"verifier\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "reAssignCertification", + "description": "", + "item": [ + { + "id": "943dfb3b-2b1e-4ef1-898a-01ae1afb2ca3", + "name": "Reassign Certification", + "request": { + "name": "Reassign Certification", + "description": { + "content": "This API is used to reassign certification to a different user or certifier. The user making this update must be an administrator, a campaign owner or its delegates.\nNote: This is applicable only for User Manager, Entitlement Owner, and Application Owner campaigns.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`updateuser` (can be Admin/Campaign Owner/Delegates)\n`campaignid`- Campaign ID or the primary key of the campaign table.\n`certkey`- Certification key or the primary key of the certification table.\n`newassignee`- New certifier or user to whom the certification will be assigned.\nOptional params:\n`reassignComments`- Comments for reassigning the certification.", + "type": "text/plain" + }, + "url": { + "path": [ + "reAssignCertification" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"certifierUsername\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"refreshProgress\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a1f89f23-eb95-4716-91f7-d345d8115218", + "name": "Reassign Certification", + "originalRequest": { + "url": { + "path": [ + "reAssignCertification" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"certifierUsername\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"refreshProgress\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"campaignid\": \"\",\n \"certkey\": \"\",\n \"newassignee\": \"\",\n \"reassignComments\": \"\",\n \"updateuser\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "sapSODEvaluation", + "description": "", + "item": [ + { + "id": "b2d72734-58e6-4657-ae72-f3c60e5ded08", + "name": "SoD Evaluation for SAP Functions", + "request": { + "name": "SoD Evaluation for SAP Functions", + "description": { + "content": "This API can be used to evaluate SOD for new SAP role that is being requested for a user based on the selected ruleset. (If no ruleset is selected, it uses the default ruleset)\nMandatory params:\n`sapRoles` - All the SAP Roles delimited by “###” that will be used for SoD Evaluation (input list should contain existing as well as the new roles that need to be provisioned).\n`newsapRoles` - Should contain SAP Roles for which the result should be filtered, e.g. results could be provided only on newly added roles.\n`endpoint` - Name of the Endpoint corresponding to the Security System. \nOptional params:\n`ruleset` - Ruleset name, if not provided, system will use the default ruleset.\n`account` - Account name to which the SAP roles will be provisioned.\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "sapSODEvaluation" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "account", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "newsapRoles", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ruleset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "sapRoles", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "46cbc425-bcbf-4abf-a363-ddc8e8194144", + "originalRequest": { + "url": { + "path": [ + "sapSODEvaluation" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "account", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "newsapRoles", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ruleset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "sapRoles", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [], + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "sodEvaluation", + "description": "", + "item": [ + { + "id": "4e0e7171-158d-4fc8-ae34-8db5b54ec41f", + "name": "SoD Evaluation for Non - SAP Functions", + "request": { + "name": "SoD Evaluation for Non - SAP Functions", + "description": { + "content": "This API can be used to evaluate SODs for entitlements with the same name.\n\n**Mandatory Parameters**:\n\n\\* `user` - account name \n\\* entitlement JSON\n\nStartFragment\n\n{    \n\n\"user\": \"soduser971\",\n\n\"entitlementJSON\": { \n\n \"Data\": \\[\n\n {\n\n \"Endpoint\": \"SODendpoint2\",\n\n  \"EntitlementType\": \"NewPandC\",\n\n   \"ExistingEntitlementsKeys\": \\[\n\n    \"635216\",\n\n    \"635217\", \n\n     \"635218\" \n\n     \\],\n\n \"NewEntitlementsKeys\": \\[\n\n \"635215\",\n\n \"635214\"  \n\n   \\]\n\n   },\n\n   {\n\n  \"Endpoint\": \"SODendpoint2\",\n\n  \"EntitlementType\": \"NewPandC\",   \n\n   \"ExistingEntitlementsKeys\": \\[   \n\n    \"635216\",  \n\n     \"635217\",    \n\n     \"635218\"    \n\n      \\], \n\n    \"NewEntitlementsKeys\": \\[       \n\n    \"635215\", \n\n    \"635214\"  \n\n      \\]    \n\n      } \n\n      \\] \n\n   }\n\n}\n\nEndFragment\n\n \n \n**HEADERS**\n\nEndFragment\n\nThe `Authorization` must have `Bearer` followed by `Token`.\n\n**Optional parameters**:\n\n`Ruleset - ExistingEntitlementsKeys/NewEntitlementsKeys -`These parameters are available from Release v2022.0. \nThe SODEvaluation API takes the input parameters in the following order:\n\n\\* Key of the entitlement \n\\* Name of the entitlement\n\nThe Key of the entitlement takes precedence to check SODs during access request to avoid the failure of duplicate entitlements so that the SOD risks are displayed if exists. If the entitlement key is not passed in the API, then the entitlement name is considered.", + "type": "text/plain" + }, + "url": { + "path": [ + "sodEvaluation" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"entitlementJSON\": {\n \"Data\": [\n {\n \"Endpoint\": \"\",\n \"EntitlementType\": \"\",\n \"ExistingEntitlementsKeys\": [\n \"\",\n \"\"\n ],\n \"NewEntitlementsKeys\": [\n \"\",\n \"\"\n ]\n },\n {\n \"Endpoint\": \"\",\n \"EntitlementType\": \"\",\n \"ExistingEntitlementsKeys\": [\n \"\",\n \"\"\n ],\n \"NewEntitlementsKeys\": [\n \"\",\n \"\"\n ]\n }\n ]\n },\n \"user\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "79a5ed0a-9e6e-47eb-a396-19df776a0400", + "name": "SoD Evaluation for Non - SAP Functions / SoD Evaluation for Non - SAP Functions(riskSODEvaluationByUser) / SOD Evaluation for Non-SAP Duplicate Entitlements", + "originalRequest": { + "url": { + "path": [ + "sodEvaluation" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"entitlementJSON\": {\n \"Data\": [\n {\n \"Endpoint\": \"\",\n \"EntitlementType\": \"\",\n \"ExistingEntitlementsKeys\": [\n \"\",\n \"\"\n ],\n \"NewEntitlementsKeys\": [\n \"\",\n \"\"\n ]\n },\n {\n \"Endpoint\": \"\",\n \"EntitlementType\": \"\",\n \"ExistingEntitlementsKeys\": [\n \"\",\n \"\"\n ],\n \"NewEntitlementsKeys\": [\n \"\",\n \"\"\n ]\n }\n ]\n },\n \"user\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\",\n \"result\": {\n \"SOD\": [\n {\n \"Description\": \"\",\n \"Functions\": [\n {\n \"Description\": \"\",\n \"Entitlements\": [\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n },\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n }\n ],\n \"FunctionName\": \"\"\n },\n {\n \"Description\": \"\",\n \"Entitlements\": [\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n },\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n }\n ],\n \"FunctionName\": \"\"\n }\n ],\n \"Priority\": \"\",\n \"Risk\": \"\",\n \"RiskId\": \"\"\n },\n {\n \"Description\": \"\",\n \"Functions\": [\n {\n \"Description\": \"\",\n \"Entitlements\": [\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n },\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n }\n ],\n \"FunctionName\": \"\"\n },\n {\n \"Description\": \"\",\n \"Entitlements\": [\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n },\n {\n \"Entitlement\": \"\",\n \"EntitlementDescription\": \"\",\n \"EntitlementDisplayName\": \"\",\n \"ParentRole\": \"\",\n \"Role\": \"\"\n }\n ],\n \"FunctionName\": \"\"\n }\n ],\n \"Priority\": \"\",\n \"Risk\": \"\",\n \"RiskId\": \"\"\n }\n ]\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "addMCRiskAccount", + "description": "", + "item": [ + { + "id": "b4d7526b-0cc1-4bce-8296-90921745fa71", + "name": "Add Mitigating Control Risk Account", + "request": { + "name": "Add Mitigating Control Risk Account", + "description": { + "content": "This API can be used to create a mitigating control association for a user-account which has SOD violation.\nMandatory params: \n`mitigatingControl` - Mitigating control name.\n`approver` - User name of the user approving the mitigating control association.\nOptional params:\n`ruleset` - Ruleset name\n`riskname` - Risk name\n`endpoint` - Endpoint name\n`account` - Account Name, `endpoint` needs to be populated too\n`startDate` - MM-dd-yyyy, if left null, current date will be used as start date\n`endDate` - MM-dd-yyyy, if left null, 12-31-9999 will be used as end date\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "addMCRiskAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "account", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "approver", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endDate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "mitigatingControl", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "riskname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ruleset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "startDate", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "fa379ec2-fbc6-4b1b-a937-6882b08916aa", + "name": "Add Mitigating Control Risk Account", + "originalRequest": { + "url": { + "path": [ + "addMCRiskAccount" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "account", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "approver", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endDate", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "mitigatingControl", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "riskname", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "ruleset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "startDate", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "uploadSODRuleset", + "description": "", + "item": [ + { + "id": "675aaf78-3a52-4710-a9e8-028bd856a985", + "name": "Upload SOD Ruleset", + "request": { + "name": "Upload SOD Ruleset", + "description": { + "content": "The **uploadSODRuleset** API uses the Ruleset upload file to import rulesets into the User Interface (UI).\n- The ruleset upload file exceeding the size of 10MB is not supported.\n- Use only .xls or .xlsx file format for the ruleset upload. Do not use any .zip file.\n\n**Mandatory parameters:**\n`Upload SOD Ruleset` - Select to browse a (.xls) file for upload. Once the file is uploaded, the name of the file that you attached is displayed.\n`existingRuleset` - Specify the value as yes if you are using the existing ruleset.\n`rulesetName` - Specify the name of the existing ruleset.\n**Other Parameters:**\n- `deleteExistingMCAssociations` - Specify the value as yes/no if you wish to delete any existing mitigating controls associations. - `deleteExistingFunctionAssociations` - Specify the value as yes to delete the existing function associations, else specify the value as No. - `createmissingEntitlements` - Specify the value as yes to create missing entitlements, else specify the value as No.", + "type": "text/plain" + }, + "url": { + "path": [ + "uploadSODRuleset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "createMissingEntitlements", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "deleteExistingFunctionAssociations", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "deleteExistingMCAssociations", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "existingRuleset", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "rulesetName", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "uploadfile", + "value": "", + "type": "text" + } + ] + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "8f0135eb-15a8-4e94-86d8-5e22885910f0", + "name": "Upload SOD Ruleset", + "originalRequest": { + "url": { + "path": [ + "uploadSODRuleset" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "createMissingEntitlements", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "deleteExistingFunctionAssociations", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "deleteExistingMCAssociations", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "existingRuleset", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "rulesetName", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "uploadfile", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getSavSecurityQuestions", + "description": "", + "item": [ + { + "id": "9609074c-ea53-4d29-a2c3-2818aa56e8ce", + "name": "Fetch Security Questions", + "request": { + "name": "Fetch Security Questions", + "description": { + "content": "This API is used to get the Security Questions defined in SSM\nOptional params: \n`max`,`offset`, `questiongroup`\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "getSavSecurityQuestions" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"questiongroup\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "02be5156-a0f8-4057-af49-7095a0fd07ac", + "name": "Fetch Security Questions1 / Fetch Security Questions2", + "originalRequest": { + "url": { + "path": [ + "getSavSecurityQuestions" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"questiongroup\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"message\": \"\",\n \"questions\": [\n {\n \"question\": \"\",\n \"questiongroup\": \"\"\n },\n {\n \"question\": \"\",\n \"questiongroup\": \"\"\n }\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchSavUserQuestions", + "description": "", + "item": [ + { + "id": "7c4d533c-fd1b-4579-a72e-7d59b3d3aa1d", + "name": "Fetch User Security Questions", + "request": { + "name": "Fetch User Security Questions", + "description": { + "content": "This API can be used to fetch the security questions selected by user during registration\nMandatory params: \n`username` OR `propertytosearch`- Any user property like email, manager, username, firstname, lastname, preferedFirstName, customproperty\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchSavUserQuestions" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"email\": \"\",\n \"propertytosearch\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "b9dd44ae-825d-487e-8b31-befedccced2c", + "name": "Fetch User Security Questions Example2 / Fetch User Security Questions Example1", + "originalRequest": { + "url": { + "path": [ + "fetchSavUserQuestions" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"email\": \"\",\n \"propertytosearch\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"questions\": [\n \"\",\n \"\"\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "validateSecurityAnswers", + "description": "", + "item": [ + { + "id": "b6b68a7d-e74e-417c-bac0-2751c65504ca", + "name": "Validate User Security Answers", + "request": { + "name": "Validate User Security Answers", + "description": { + "content": "This API is used to validate the security answers of user with answers entered during registration\nMandatory params:\n`answers` - list of questions and answers to be validated\n`username` OR `propertytosearch` - Any user property like email, manager, username, firstname, lastname, preferedFirstName, customproperty\nThe `Authorization` must have `Bearer` followed by `Token`.", + "type": "text/plain" + }, + "url": { + "path": [ + "validateSecurityAnswers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"answers\": [\n {\n \"answer\": \"\",\n \"question\": \"\"\n },\n {\n \"answer\": \"\",\n \"question\": \"\"\n }\n ],\n \"email\": \"\",\n \"propertytosearch\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "b4181dea-7183-4a46-9c12-79ee829f3e4a", + "name": "Validate Security Answers", + "originalRequest": { + "url": { + "path": [ + "validateSecurityAnswers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"answers\": [\n {\n \"answer\": \"\",\n \"question\": \"\"\n },\n {\n \"answer\": \"\",\n \"question\": \"\"\n }\n ],\n \"email\": \"\",\n \"propertytosearch\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"validation\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createSavSecurityQuestions", + "description": "", + "item": [ + { + "id": "c6bea788-8ec8-4368-9925-a0c3146334b5", + "name": "Create Security Questions", + "request": { + "name": "Create Security Questions", + "description": { + "content": "This API is used to create security questions in Saviynt.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`question`\n`endpointfield`\n`section`\nOptional Params:\n`description`, `questionorder`, `answertype` (by default 'FREETEXT'), `answerrequired` (by default 'false'), `answereditable`(by default 'true'), `defaultvalue`, `updateuser`", + "type": "text/plain" + }, + "url": { + "path": [ + "createSavSecurityQuestions" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"answereditable\": \"\",\n \"answerrequired\": \"\",\n \"answertype\": \"\",\n \"defaultvalue\": \"\",\n \"description\": \"\",\n \"endpointfield\": \"\",\n \"question\": \"\",\n \"questionorder\": \"\",\n \"section\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "75192fb9-b94c-486c-ab65-7e21b1cd892d", + "name": "Create Security Questions", + "originalRequest": { + "url": { + "path": [ + "createSavSecurityQuestions" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"answereditable\": \"\",\n \"answerrequired\": \"\",\n \"answertype\": \"\",\n \"defaultvalue\": \"\",\n \"description\": \"\",\n \"endpointfield\": \"\",\n \"question\": \"\",\n \"questionorder\": \"\",\n \"section\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createSavPasswordPolicy", + "description": "", + "item": [ + { + "id": "595611d5-66b7-4536-af63-00916d918355", + "name": "Create Password Policy", + "request": { + "name": "Create Password Policy", + "description": { + "content": "This API creates a password policy for your organization.\n\nThe `Authorization` must have a `Bearer` followed by a `Token`.\n\n**Mandatory Parameters**:\n\n- `policyname`: Specify a unique name for the policy. You can include names such as ApplicationPolicy to better identify the type of policy.\n- `expireafter`: Specify length of time until a user password expires and must be changed. You can enter only numeric values.\n \n\n**Optional Parameters**:\n\n- `description`: StartFragmentSpecify an optional description for the policy.\n- `scope`: Specify the application or user you wish to apply the policy to.\n - `APPLICATION`: Specify this option, if you want to assign the password policy to applications and cannot be used to validate passwords when users’ passwords are changed.\n - `USER`: Specify this option, if you want to assign the password policy at the user level. To change or reset user passwords in EIC, at least one password policy with USER scope must be available. This policy is invoked when a user password change or reset is initiated.\n- `regex`: You can specify regular expressions (regex) to define specific password patterns.\n- `maxrepetedcharacters`: Specify the maximum number of duplicate characters that a password can contain. For example, if you specify `2`, then a password is not accepted if any character is repeated more than two times. You can set a value between `1` and `10` numeric characters.\n- `minimumnumericcharacters`: Specify the minimum number of numeric characters that a password must contain. For example: if you specify `3`, then password should have at least 3 numbers. StartFragmentYou can set a value between `1` and `10` numeric characters.\n- `minimumspecialcharacter`: Specify the minimum number of special characters that a password must contain.\n- `minimumalphanumericcharacters`: Specify the minimum number of alphanumeric characters that a password must contain. For example, if minimum alphanumeric characters specified is `8` and if the password specified is 'j`ohn12`' then the password is not accepted as it is short of two characters in this case with the configured value of `8` characters.\n- `minimumuniquecharacters`: Specify the minimum number of unique characters that a password must contain. Unique characters do not take into consideration duplicate characters.\n- `minimumalphabetcharacters`: Specify the minimum number of alphabetic characters that a password must contain.\n- `minimumuppercasecharacters`: Specify the minimum number of uppercase letters that a password must contain. For example, if minimum uppercase characters are specified as 2 and if password specified is John123 then the password is not accepted as only 1 Uppercase letter is specified in this case.\n \n- `minimumlowercasecharacters`: Specify minimum number of lowercase letters that a password must contain. For example, if minimum lowercase characters are specified as 2 and if password specified is JOHn123 then the password is not accepted as only 1 lowercase letter is specified in this case.\n \n- `disallowlastpassword`: Specify the frequency to prevent users from using any previous passwords whose change or reset process was initiated from EIC and not from the target applications. For example, if you specify 10, then users are allowed to reuse a password only after using 10 unique passwords. You can set a value between 1 and 25 numeric characters.\n \n- `useblacklistdictionary`: Specify `YES` to enable the the password blacklist dictionary. A password is rejected if its value matches a term in a dictionary that you configure.\n \n- `blacklistedattributes`: Specify the user attributes query to prevent users from using their user or account information.\n \n- `minimumage`: Specify the minimum period, in hours to limit how frequently users can change the password. For example, if you enter 2, then the user cannot change the password before 2 hours of creating the password.\n \n- `regexdescription`: Specify a custom regular expression error message if the end user password does not match the regex password policy configuration.\n \n- `sendnotification`: Specify `true` to send notifications to end users informing them of their upcoming password expiration. Notification emails can be sent to both user and account passwords.\n \n- notificationemailtemplate:\n- `daystonotify`: Specify the days, before user passwords expire (including service account owners) to send expiry notification email.\n- `primaryidentificationattr`: Specify the parameter to validate the identity of the calling user and make their details visible to the Helpdesk users.\n- `secondaryidentificationattr`: Specify the parameter to validate the identity of the calling user and make their details visible to the Helpdesk users.\n- `resetpasswordnotification`: You can send user password change or password reset notifications to end users. Specify the email template to customize the notification that the user receives.\n \n\n```\n, `minimumage`, `regexdescription`, `sendnotification`, `notificationemailtemplate`, `daystonotify`, `primaryidentificationattr`, `secondaryidentificationattr`, `resetpasswordnotification`\n\n ```\n\n\\-", + "type": "text/plain" + }, + "url": { + "path": [ + "createSavPasswordPolicy" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"blacklistedattributes\": \"\",\n \"daystonotify\": \"\",\n \"description\": \"\",\n \"disallowlastpassword\": \"\",\n \"expireafter\": \"\",\n \"maxrepetedcharacters\": \"\",\n \"minimumage\": \"\",\n \"minimumalphabetcharacters\": \"\",\n \"minimumalphanumericcharacters\": \"\",\n \"minimumlowercasecharacters\": \"\",\n \"minimumnumericcharacters\": \"\",\n \"minimumspecialcharacter\": \"\",\n \"minimumuniquecharacters\": \"\",\n \"minimumuppercasecharacters\": \"\",\n \"notificationemailtemplate\": \"\",\n \"policyname\": \"\",\n \"primaryidentificationattr\": [\n \"\",\n \"\"\n ],\n \"regex\": \"\",\n \"regexdescription\": \"\",\n \"resetpasswordnotification\": \"\",\n \"scope\": \"\",\n \"secondaryidentificationattr\": [\n \"\",\n \"\"\n ],\n \"sendnotification\": \"\",\n \"useblacklistdictionary\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "a18eda23-964f-40f6-8c90-93d96a88f0de", + "name": "Create Password Policy", + "originalRequest": { + "url": { + "path": [ + "createSavPasswordPolicy" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"blacklistedattributes\": \"\",\n \"daystonotify\": \"\",\n \"description\": \"\",\n \"disallowlastpassword\": \"\",\n \"expireafter\": \"\",\n \"maxrepetedcharacters\": \"\",\n \"minimumage\": \"\",\n \"minimumalphabetcharacters\": \"\",\n \"minimumalphanumericcharacters\": \"\",\n \"minimumlowercasecharacters\": \"\",\n \"minimumnumericcharacters\": \"\",\n \"minimumspecialcharacter\": \"\",\n \"minimumuniquecharacters\": \"\",\n \"minimumuppercasecharacters\": \"\",\n \"notificationemailtemplate\": \"\",\n \"policyname\": \"\",\n \"primaryidentificationattr\": [\n \"\",\n \"\"\n ],\n \"regex\": \"\",\n \"regexdescription\": \"\",\n \"resetpasswordnotification\": \"\",\n \"scope\": \"\",\n \"secondaryidentificationattr\": [\n \"\",\n \"\"\n ],\n \"sendnotification\": \"\",\n \"useblacklistdictionary\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "changePassword", + "description": "", + "item": [ + { + "id": "00105d1d-f663-46be-a8a5-14f6d8c7b94e", + "name": "Change User Password", + "request": { + "name": "Change User Password", + "description": { + "content": "This API reset the password for a user in EIC. Considering the input parameters, the value of the new password should be supplied as Password and the Username should correspond to the user whose password is being reset.\nThe Authorization must have a `Bearer` followed by a `Token`.\n**Mandatory Parameters**:\n- `username`: Specify the name of the user for whom you need to change the password. - `password`: Type your new password.\n\n**Optional Parameters**:\n- `changePasswordAssociatedAccounts`: Once the change password request is initiated, you can specify `true` to create the corresponding Change Password task. You can specify `false` to only update the user password. The default value is `true`. - `endpoint`: If the `changePasswordAssociatedAccounts` parameter is set to `true` then specify the list of endpoints (comma-separated). - `validateagainstpolicy`: Specify `Y` to ensure that your new password conforms to the USER scope password policy. If you do not want to apply the password policy, then specify `N`. The default value is `Y`.\n- `updateUserPassword`: If the `changePasswordAssociatedAccounts` parameter is set to `true` then specify true to update the user password and create the corresponding Change Password task. Specify `false` to create only the Change Password task. The default value is `true`. - `setarstasksource` - Specify `true` to set the source column in the arstasks table with the `changeOwnPasswordFromAPI` value. When the source column in arstasks table is set to the `changeOwnPasswordFromAPI` value then the **pwdLastSet** parameter is not set to **0** for Active Directory (AD). The default value is `false`. \n **Note**: If your AD password has expired (**pwdLastSet = 0**), you are forced to choose a new password in EIC on the next login.", + "type": "text/plain" + }, + "url": { + "path": [ + "changePassword" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "changePasswordAssociatedAccounts", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "password", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "setarstasksource", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "updateUserPassword", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "validateagainstpolicy", + "value": "" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "d944f6ce-70c1-42dd-80b4-bd56ecfe022f", + "name": "Change User Password 2", + "originalRequest": { + "url": { + "path": [ + "changePassword" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/x-www-form-urlencoded" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "urlencoded", + "urlencoded": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "changePasswordAssociatedAccounts", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "endpoint", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "password", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "setarstasksource", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "updateUserPassword", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "username", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "validateagainstpolicy", + "value": "" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Frame-Options", + "value": "" + } + ], + "body": "{\n \"Status\": \"\",\n \"TaskIDs\": [\n \"\",\n \"\"\n ],\n \"errorCode\": \"\",\n \"message\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createUpdateTrigger", + "description": "", + "item": [ + { + "id": "c67279b8-adff-473a-9cd8-7fbcdd7b0171", + "name": "Create and Update Trigger", + "request": { + "name": "Create and Update Trigger", + "description": { + "content": "This API call can be used to create and update a trigger for a particular \"jobgroup\" in SSM.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`jobname`\n`triggername`\n`jobgroup`\n`cronexpression`\nOptional params:\n`valueMap` - sample for triggerChainJob - { \"savtriggerorderform\": \"TESTCONN,WSRETRY\", \"onFailureForm\": \"Stop\" }\nTo know more on list of parameters that can be passed in valueMap, see [Parameters for Job Trigger APIs](https://docs.saviyntcloud.com/bundle/EIC-Admin-v23x/page/Content/Chapter10-Job-Control-Panel/Adding-a-new-job.htm)", + "type": "text/plain" + }, + "url": { + "path": [ + "createUpdateTrigger" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"triggers\": [\n {\n \"cronexpression\": \"\",\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\",\n \"valueMap\": {\n \"onFailureForm\": \"\",\n \"savtriggerorderform\": \"\"\n }\n },\n {\n \"cronexpression\": \"\",\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\",\n \"valueMap\": {\n \"onFailureForm\": \"\",\n \"savtriggerorderform\": \"\"\n }\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "3ac414df-e32d-4cdc-9f61-adc3e6bd8b32", + "name": "Create and Update Trigger", + "originalRequest": { + "url": { + "path": [ + "createUpdateTrigger" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"triggers\": [\n {\n \"cronexpression\": \"\",\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\",\n \"valueMap\": {\n \"onFailureForm\": \"\",\n \"savtriggerorderform\": \"\"\n }\n },\n {\n \"cronexpression\": \"\",\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\",\n \"valueMap\": {\n \"onFailureForm\": \"\",\n \"savtriggerorderform\": \"\"\n }\n }\n ]\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "checkJobStatus", + "description": "", + "item": [ + { + "id": "0671601b-0e4a-4afc-8749-c4210c96d2b4", + "name": "Check Job Status", + "request": { + "name": "Check Job Status", + "description": { + "content": "This API is used to fetch the status of any job other that Data Import Job.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n`jobgroup`,\r\n`jobname`", + "type": "text/plain" + }, + "url": { + "path": [ + "checkJobStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobgroup", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobname", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "611b6ddf-fa77-45f6-9393-a4c1b27b07f4", + "name": "Check Job Status", + "originalRequest": { + "url": { + "path": [ + "checkJobStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobgroup", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "jobname", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "deleteTrigger", + "description": "", + "item": [ + { + "id": "e0dd5846-039f-4164-941a-7e2b7c1a627d", + "name": "Delete Trigger", + "request": { + "name": "Delete Trigger", + "description": { + "content": "This API call can be used to delete a trigger for a particular \"jobgroup\" in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`jobname`\r\n\r\nOptional params:\r\n\r\n`triggername`\r\n\r\n`jobgroup`", + "type": "text/plain" + }, + "url": { + "path": [ + "deleteTrigger" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "66f78ed5-784e-4373-aa28-834beb6832ce", + "name": "DeleteTriggers", + "originalRequest": { + "url": { + "path": [ + "deleteTrigger" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "runJobTrigger", + "description": "", + "item": [ + { + "id": "73cbed44-6344-4ab0-8742-9741910ec5bb", + "name": "Run Job Trigger", + "request": { + "name": "Run Job Trigger", + "description": { + "content": "This API call can be used to run a job trigger in SSM.\nThe following cases illustrate different scenarios on the usage of the `analyticsAdvanceQuery` parameter in the API:\nCase 1: When you configure the `\"analyticsAdvanceQuery\"` within the payload, set the \"defaultActionForAnalytics\" as \"true\", and then execute the control from the API, it overrides the default action and the advanced query configuration within the job trigger.\nCase 2: When you configure the `\"analyticsAdvanceQuery\"` within the payload, set the \"defaultActionForAnalytics\" as \"false\", and then execute the control from the API without performing the default actions configured in the control, it overrides the default action and the advanced query configuration within the job trigger.\nCase 3: When you do not configure both the `\"analyticsAdvanceQuery\"` and the \"defaultActionForAnalytics\", the default action will depend on the configuration provided in the analytics job trigger.\nThe following cases illustrate different scenarios on the usage of the `analyticsCategories` parameter in the API:\nCase 1: When you set the \"defaultActionForAnalytics\" as \"true\" to perform default actions for analytics controls by executing the control from job API, it will override the default action configuration within the job trigger.\nCase 2: When you set the \"defaultActionForAnalytics\" as \"false\" to not perform default actions for analytics controls by executing the control from job API, it will override the default action configuration within the job trigger.\nCase 3: When the defaultActionForAnalytics parameter is not set in the payload, the default action will depend on the configuration provided in the analytics job trigger.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`jobname`\n`triggername`\n`jobgroup`\nOptional params:\n`valueMap`\n`createJobIfDoesNotExist` - true/false", + "type": "text/plain" + }, + "url": { + "path": [ + "runJobTrigger" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsCategories\": \"\",\n \"defaultActionForAnalytics\": \"\",\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "80deb783-804e-41bc-a038-bba5b9a5dfc6", + "name": "Run Job Trigger / Runjobtrigger - class name package / Run Job Trigger - defaultActionForAnalytics set as true / Run Job Trigger - default action for analytics set as false in payload / Run Job Trigger - Not configuring \"analyticsAdvanceQuery\" and \"defaultActionForAnalytics\" / Analytics categories with default action set as true / Analytics categories with default action set as false / Analytics categories without adding default action for analytics", + "originalRequest": { + "url": { + "path": [ + "runJobTrigger" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"analyticsCategories\": \"\",\n \"defaultActionForAnalytics\": \"\",\n \"jobgroup\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"timestamp\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "fetchJobMetadata", + "description": "", + "item": [ + { + "id": "e349616b-fc68-48af-8f1f-f5ec89d2639d", + "name": "Fetch Job Metadata", + "request": { + "name": "Fetch Job Metadata", + "description": { + "content": "This API call return job metadata for the last run of a job in SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params: \r\n\r\n`jobname`\r\n\r\nOptional params:\r\n\r\n`triggername`\r\n\r\n`jobgroup`\r\n\r\n***Note***: The structure of the result param in response can change based upon the Job History saved in SSM", + "type": "text/plain" + }, + "url": { + "path": [ + "fetchJobMetadata" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"jobname\": \"\",\n \"jobstartdate\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "4d342269-f56d-4569-927e-374b7bc4b080", + "name": "Fetch Job Metadata", + "originalRequest": { + "url": { + "path": [ + "fetchJobMetadata" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"jobname\": \"\",\n \"jobstartdate\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Length", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "WWW-Authenticate", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"result\": {\n \"TestConnectionsJob\": {\n \"EndTime\": \"\",\n \"JobCompleted\": \"\",\n \"Result\": \"\",\n \"StartTime\": \"\"\n }\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "createTriggers", + "description": "", + "item": [ + { + "id": "2747f08e-04e3-4a2d-aaeb-4bcd7c997d98", + "name": "createTrigger", + "request": { + "name": "createTrigger", + "description": { + "content": "This API creates a trigger for a job", + "type": "text/plain" + }, + "url": { + "path": [ + "createTriggers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "[\n {\n \"triggers\": [\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n },\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n }\n ]\n },\n {\n \"triggers\": [\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n },\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n }\n ]\n }\n]", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "cd92ee00-150d-4a24-83a0-c0bf7c45cf6c", + "name": "createTrigger", + "originalRequest": { + "url": { + "path": [ + "createTriggers" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "[\n {\n \"triggers\": [\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n },\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n }\n ]\n },\n {\n \"triggers\": [\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n },\n {\n \"cronExp\": \"\",\n \"group\": \"\",\n \"jobGroup\": \"\",\n \"jobName\": \"\",\n \"name\": \"\",\n \"valueMap\": {}\n }\n ]\n }\n]", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"accEnt11\": [\n \"\",\n \"\"\n ]\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "resumePauseJobs", + "description": "", + "item": [ + { + "id": "9a820e28-4dbb-43e4-9d83-e1b4cb0adca3", + "name": "resumePauseJobs", + "request": { + "name": "resumePauseJobs", + "description": { + "content": "Starting with Release v23.10, the resumePauseJobs API enables you to pause jobs based on their job type and job name.\nWhen a job is paused, its status is displayed as Paused on the Job Control Panel page.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`action`\nOptional params:\n`triggername`\n`jobname`", + "type": "text/plain" + }, + "url": { + "path": [ + "resumePauseJobs" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "text/plain" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"action\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "407f790f-62c1-4a09-b675-ddc2e01ed12c", + "name": "Pausing Job / Resume Job", + "originalRequest": { + "url": { + "path": [ + "resumePauseJobs" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "text/plain" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"action\": \"\",\n \"jobname\": \"\",\n \"triggername\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"examples\": {\n \"Pausing Job\": {\n \"value\": \"Job(s) Paused successfully\"\n },\n \"Resume Job\": {\n \"value\": \"Job(s) Resumed successfully\"\n }\n }\n}", + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "uploadSchemaFile", + "description": "", + "item": [ + { + "id": "a13ba474-e187-4c27-8847-5ff1ec18819a", + "name": "Upload New File", + "request": { + "name": "Upload New File", + "description": { + "content": "This API call can be used to upload the file in a specific location based on the property `job.ecm.imp.file.path` in InternalConfig.groovy.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params: \n`file` - file with any extension (Example - file with .csv/.xlsx extension)\n`pathLocation` - Should be set to ***Datafiles***", + "type": "text/plain" + }, + "url": { + "path": [ + "uploadSchemaFile" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "file", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "pathLocation", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "976e4d13-c6d3-45bf-9406-7f00145f0d23", + "name": "Upload New File / Upload New File", + "originalRequest": { + "url": { + "path": [ + "uploadSchemaFile" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "file", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "pathLocation", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "checkImportStatus", + "description": "", + "item": [ + { + "id": "2a1ca9a8-1163-4ad4-8a0f-dc11023b64a9", + "name": "Check Import Status", + "request": { + "name": "Check Import Status", + "description": { + "content": "This API is used to check the status of data import job. \nNote: that at a time, only one import job can be run.\nThe `Authorization` must have `Bearer` followed by `Token`\nNo params", + "type": "text/plain" + }, + "url": { + "path": [ + "checkImportStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "432b0bb9-f12d-4059-90d1-e078c51dddad", + "name": "Check Import Status", + "originalRequest": { + "url": { + "path": [ + "checkImportStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"errorMessage\": \"\",\n \"importStatus\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "forceComplete", + "description": "", + "item": [ + { + "id": "9041e4fa-a36a-405b-a056-6a9257094a03", + "name": "Force Complete", + "request": { + "name": "Force Complete", + "description": { + "content": "This API is used to terminate data import job.\nThe `Authorization` must have `Bearer` followed by `Token`. \nNo params", + "type": "text/plain" + }, + "url": { + "path": [ + "forceComplete" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "37953a24-0ece-46bc-b3db-62ee572586bc", + "name": "Force Complete", + "originalRequest": { + "url": { + "path": [ + "forceComplete" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"errorMessage\": \"\",\n \"status\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "testConnection", + "description": "", + "item": [ + { + "id": "ad5fd7ca-d5c5-43b1-bc53-fb4ef5127276", + "name": "Test Connection", + "request": { + "name": "Test Connection", + "description": { + "content": "This API is used to save and test a connection.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`connectiontype, connectionName` _**OR**_ `connectionkey`(if both are passed connectionkey is considered)\nAdditional connection parameters can also be passed -\nFor example, for SAP Import, provide paramters - JCO_ASHOST, JCO_SYSNR, JCO_CLIENT, JCO_USER, PASSWORD,\nThis API is enhanced to update vaultconnection, and vaultconfiguration connection details.\nFrom Release v23.10, if you specify the key value for header `response` as `standard,`a detailed error message is displayed in the Response that enables you to troubleshoot errors.", + "type": "text/plain" + }, + "url": { + "path": [ + "testConnection" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "PASSWORD", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "URL", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "USERNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionName", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectiontype", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "saveconnection", + "value": "", + "type": "text" + } + ] + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "6f3778e5-8e3b-4a5f-bcbd-a6ec573fca4b", + "name": "Test Connection-non standard response / Test Connection-non standard failure / Test Connection-standard response success / Test Connection-standard response failure", + "originalRequest": { + "url": { + "path": [ + "testConnection" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "PASSWORD", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "URL", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "USERNAME", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionName", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectiontype", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "saveconnection", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "CF-Cache-Status", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "CF-RAY", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Encoding", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"connectionKey\": \"\",\n \"connectionName\": \"\",\n \"connectionResult\": {\n \"errors\": [\n {\n \"errorMessage\": \"\"\n },\n {\n \"errorMessage\": \"\"\n }\n ]\n },\n \"connectionStatus\": \"\",\n \"connectionType\": \"\",\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "importData", + "description": "", + "item": [ + { + "id": "b80a845b-d6c5-487f-a68f-41c81e6a57e2", + "name": "Import Application Data", + "request": { + "name": "Import Application Data", + "description": { + "content": "This API is used to run import data job for a specific application\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`\r\n\r\nMandatory params: \r\n\r\n`systemname`,\r\n`connectiontype`,\r\n`connectionName`\r\n\r\nOptional params:\r\n\r\n`fullorincremental` - full/incremental,\r\n`accountsoraccess` - accounts/access\r\n`CREATEUSERS`- Yes/No\r\n\r\nAdditional import parameters can also be passed - \r\n\r\nFor example, \r\n\r\n1. For SAP Import, provide the parameters - JCO_ASHOST, JCO_SYSNR, JCO_CLIENT, JCO_USER, PASSWORD\r\n2. For AWS Import, provide the parameters - AWS_ACCESS_KEY,AWS_ACCESS_SECRET_PASSWORD,AWS_ACCOUNT_ID,CROSS_ACCOUNT_ROLE_ARN", + "type": "text/plain" + }, + "url": { + "path": [ + "importData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionName", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectiontype", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "c5b68336-b1c3-4111-9682-4accc2708eaa", + "name": "Import Data", + "originalRequest": { + "url": { + "path": [ + "importData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectionName", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "connectiontype", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "systemname", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "sendEmail", + "description": "", + "item": [ + { + "id": "1cb22645-9b99-42b9-8d5a-507de776cdb7", + "name": "Send Email", + "request": { + "name": "Send Email", + "description": { + "content": "This API can be used send an email from SSM.\r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nNote: Configure SMTP in SSM before using this API. \r\n\r\nMandatory params: \r\n\r\n`to`,\r\n`from`,\r\n`subject`,\r\n`body`\r\n\r\nOptional params:\r\n\r\n`cc`,`bcc`", + "type": "text/plain" + }, + "url": { + "path": [ + "sendEmail" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "body", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "cc", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "from", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "subject", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "to", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "692764e3-2a6a-46f1-b767-ea01650b3461", + "name": "Send Email", + "originalRequest": { + "url": { + "path": [ + "sendEmail" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "body", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "cc", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "from", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "subject", + "value": "", + "type": "text" + }, + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "to", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "mobileDashboard", + "description": "", + "item": [ + { + "id": "67a9e97b-e948-4f65-bcd8-24def807863b", + "name": "Retrieve Dashboard Tiles Data", + "request": { + "name": "Retrieve Dashboard Tiles Data", + "description": { + "content": "This API call can be used to fetch details like number of open userrequests, number of attestations, number of delegates, and number of pending approvals for a specific user. \r\n\r\nThe `Authorization` must have `Bearer` followed by `Token`. \r\n\r\nMandatory params:\r\n`userName`", + "type": "text/plain" + }, + "url": { + "path": [ + "mobileDashboard" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "", + "type": "text" + } + ] + }, + "auth": null + }, + "response": [ + { + "id": "c02d6f35-e562-47d2-95b0-88bf42f5dc22", + "name": "Mobile Dashboard", + "originalRequest": { + "url": { + "path": [ + "mobileDashboard" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "multipart/form-data" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "formdata", + "formdata": [ + { + "description": { + "content": "", + "type": "text/plain" + }, + "key": "userName", + "value": "", + "type": "text" + } + ] + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"attestations\": {\n \"totalcount\": \"\"\n },\n \"delegates\": {\n \"totalcount\": \"\"\n },\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"pendingrequests\": {\n \"highcount\": \"\",\n \"lowcount\": \"\",\n \"mediumcount\": \"\",\n \"totalcount\": \"\"\n },\n \"userrequests\": {\n \"openrequestcount\": \"\"\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "retrieveDashboardAccountData", + "description": "", + "item": [ + { + "id": "26145db2-64d8-41b3-9237-af54e4fe7134", + "name": "Retrieve Dashboard Account Data", + "request": { + "name": "Retrieve Dashboard Account Data", + "description": { + "content": "The `Authorization` must have `Bearer` followed by `Token`. \nNo params", + "type": "text/plain" + }, + "url": { + "path": [ + "retrieveDashboardAccountData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "7a294330-6d89-48f5-bc30-c280c853079b", + "name": "Retrieve Dashboard Account Data", + "originalRequest": { + "url": { + "path": [ + "retrieveDashboardAccountData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "retrieveDashboardData", + "description": "", + "item": [ + { + "id": "65d254f7-88ba-4ca3-a396-15505baf74ee", + "name": "Retrieve Dashboard Data", + "request": { + "name": "Retrieve Dashboard Data", + "description": { + "content": "The `Authorization` must have `Bearer` followed by `Token`.\r\n\r\nNo params", + "type": "text/plain" + }, + "url": { + "path": [ + "retrieveDashboardData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "f71558ac-8b33-4e37-9a3f-ca3ccc2f193d", + "name": "Retrieve Dashboard Data", + "originalRequest": { + "url": { + "path": [ + "retrieveDashboardData" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Server", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "getAccessRecommendations", + "description": "", + "item": [ + { + "id": "69c4de74-4661-48a0-b96d-3cbcae96aa39", + "name": "Get Access Recommendations", + "request": { + "name": "Get Access Recommendations", + "description": { + "content": "This API provides the count and details of all the recommended entitlements associated with that entitlement type and displays relevance scores to requestors while requesting access.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`username`/`userkey`(if both are passed then userkey will be considered)\nOptional params:\n`endpointname`/`endpointkey`(if both are passed then endpointkey will be considered)\n`entitlementtypekey`/`entitlementtype`(if both are passed then entitlementtypekey will be considered)\n`entitlement_valuekey`\n`max`\n`offset`", + "type": "text/plain" + }, + "url": { + "path": [ + "getAccessRecommendations" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpointkey\": \"\",\n \"entitlement_valuekey\": \"\",\n \"entitlementtypekey\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"userkey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "d19e9c70-eb00-4a97-9a41-6828e5980c9a", + "name": "Get Access Recommendations", + "originalRequest": { + "url": { + "path": [ + "getAccessRecommendations" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"endpointkey\": \"\",\n \"entitlement_valuekey\": \"\",\n \"entitlementtypekey\": \"\",\n \"max\": \"\",\n \"offset\": \"\",\n \"userkey\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"displaycount\": \"\",\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"recommendations\": [\n {\n \"accountkey\": \"\",\n \"accountname\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointkey\": \"\",\n \"endpointname\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementtypekey\": \"\",\n \"peergroupconfidencepercentage\": \"\",\n \"recommended\": \"\"\n },\n {\n \"accountkey\": \"\",\n \"accountname\": \"\",\n \"description\": \"\",\n \"displayname\": \"\",\n \"endpointkey\": \"\",\n \"endpointname\": \"\",\n \"entitlement_value\": \"\",\n \"entitlement_valuekey\": \"\",\n \"entitlementtype\": \"\",\n \"entitlementtypekey\": \"\",\n \"peergroupconfidencepercentage\": \"\",\n \"recommended\": \"\"\n }\n ],\n \"totalcount\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "exportTransportPackage", + "description": "", + "item": [ + { + "id": "d93924cc-d4fb-43e9-955f-a77962a2af5e", + "name": "Export Package", + "request": { + "name": "Export Package", + "description": { + "content": "This API creates a compressed file containing objects specified for T2P migration.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params: \n`exportonline`(can be true or false) - Determines if package needs to be exported online, `exportpath`(if exportonline is false) - Local path where export package will be generated, `environmentname`(if exportonline is true) - Name of the environment which can be created at the following path : Admin -> Global Configurations -> Misc -> Transport -> Add New Transport, `objectstoexport` - Supported objects : `savRoles`, `emailTemplate`, `roles`, `analyticsV1`, `analyticsV2`, `globalConfig`, `workflows`, `connection`, `appOnboarding`, `userGroups`, `scanRules`, `organizations`, `securitySystems`\nOptional params:\n`updateuser` - username of the user exporting the package, `transportmembers`(can be true or false) - option to transport members for selected objects such as SAV role, `transportowner`(can be true or false) - option to transport owners for selected objects, `businessjustification`", + "type": "text/plain" + }, + "url": { + "path": [ + "exportTransportPackage" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"businessjustification\": \"\",\n \"exportonline\": \"\",\n \"exportpath\": \"\",\n \"objectstoexport\": {\n \"emailTemplate\": [\n \"\",\n \"\"\n ],\n \"savRoles\": [\n \"\",\n \"\"\n ]\n },\n \"transportmembers\": \"\",\n \"transportowner\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "2aa08d62-999c-4bed-9d0f-c6ea3806ac83", + "name": "Export Package - Success", + "originalRequest": { + "url": { + "path": [ + "exportTransportPackage" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"businessjustification\": \"\",\n \"exportonline\": \"\",\n \"exportpath\": \"\",\n \"objectstoexport\": {\n \"emailTemplate\": [\n \"\",\n \"\"\n ],\n \"savRoles\": [\n \"\",\n \"\"\n ]\n },\n \"transportmembers\": \"\",\n \"transportowner\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"fileName\": \"\",\n \"msg\": \"\",\n \"msgDescription\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "importTransportPackage", + "description": "", + "item": [ + { + "id": "f6d6b2a5-bcef-4e32-83bf-95315f6a98ba", + "name": "Import Package", + "request": { + "name": "Import Package", + "description": { + "content": "This API imports a compressed file containing objects specified for T2P migration.\nThe `Authorization` must have `Bearer` followed by `Token`. \nMandatory params: \n`packagetoimport` - Complete path of the package that needs to be imported\nOptional params:\n`updateuser` - username of the user importing the package, `businessjustification`\nSupported objects:\n`savRoles`, `emailTemplate`, `roles`, `analyticsV1`, `analyticsV2`, `globalConfig`, `workflows`, `connection`, `appOnboarding`, `userGroups`, `scanRules`, `organizations`, `securitySystems`", + "type": "text/plain" + }, + "url": { + "path": [ + "importTransportPackage" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"businessjustification\": \"\",\n \"packagetoimport\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "17c6e9e6-20a9-4ac6-8278-6a9d7efdbef2", + "name": "Import Package - Success", + "originalRequest": { + "url": { + "path": [ + "importTransportPackage" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"businessjustification\": \"\",\n \"packagetoimport\": \"\",\n \"updateuser\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorcode\": \"\",\n \"msg\": \"\",\n \"msgDescription\": \"\",\n \"requestId\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "transportPackageStatus", + "description": "", + "item": [ + { + "id": "aa34e2e1-9c9b-4ccb-aafa-3bfc4d71c6d6", + "name": "Transport Status", + "request": { + "name": "Transport Status", + "description": { + "content": "This API obtains the status of the transport request (import, export, or transfer), and helps in confirming whether the transport was completed successfully or failed.\n**Note**: This API returns the status of only those requests that have been processed using the Enhanced Transport feature.\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory params:\n`operation` - enter the type of transport request (export, import, or transfer) `filename` - enter the transport package zip file name in full (including the .zip extension) `requestid`(required only if the operation is import) - enter the request ID generated during the submission of the import request", + "type": "text/plain" + }, + "url": { + "path": [ + "transportPackageStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"filename\": \"\",\n \"operation\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "378e462c-8fa0-4211-8715-e902fabc8b73", + "name": "Transport Status - Blank Request ID / Transport Status - Import / Transport Status - Export", + "originalRequest": { + "url": { + "path": [ + "transportPackageStatus" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": { + "mode": "raw", + "raw": "{\n \"filename\": \"\",\n \"operation\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Vary", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"errorCode\": \"\",\n \"msg\": \"\",\n \"msgDescription\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + }, + { + "name": "rules", + "description": "", + "item": [ + { + "name": "technical", + "description": "", + "item": [ + { + "id": "11608988-9974-4eba-94c5-77bc27694d01", + "name": "Fetch Technical Rules", + "request": { + "name": "Fetch Technical Rules", + "description": { + "content": "Starting with Release v23.11, you can use the REST API to fetch all the technical rules from the target system. Additionally, you can also perform the following actions:\n- Use the `ruleId` parameter to fetch a specific technical rule. The response displays details such as rule ID, rule name, description, and other attributes.\n- Filter the rules based on `status` and `rulename.`\n\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory param:\n`ruleId`\nOptional param:\n`Offset - Specify the pagination.`", + "type": "text/plain" + }, + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "limit", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "rulename", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "GET", + "body": {}, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "5badc1f4-e62f-4855-9ede-bccafbc58d31", + "name": "Fetching technical rules / fetching technical rules with offset and limit / Filter Technical Rules based on rulename / Filter Technical Rules based on Status", + "originalRequest": { + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "offset", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "limit", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "rulename", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "GET", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"data\": [\n {\n \"actions\": [\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n }\n ],\n \"birthright\": \"\",\n \"conditions\": [\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n }\n ],\n \"detective\": \"\",\n \"removeBirthrightAccess\": \"\",\n \"ruleDescription\": \"\",\n \"ruleId\": \"\",\n \"ruleName\": \"\",\n \"ruleType\": \"\",\n \"status\": \"\"\n }\n ],\n \"page\": {\n \"count\": \"\",\n \"limit\": \"\",\n \"next\": \"\",\n \"offset\": \"\",\n \"prev\": \"\",\n \"total\": \"\"\n }\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + }, + { + "id": "0caa0ab4-3bd1-4e76-9d39-e73eecaf306c", + "name": "Update Technical Rules", + "request": { + "name": "Update Technical Rules", + "description": { + "content": "Starting with Release v23.11, you can use the REST API to update the existing technical rules in a readable and organized manner.\nThe `Authorization` must have `Bearer` followed by `Token`.\n**Mandatory params:**\n- `ruleName`\n- `detective`\n- `birthright`\n- `conditions`\n- `actions`\n- `removeBirthrightAccess`\n\n**Optional params:**\n- `ruleDescription`\n- `status`\n- `organization`\n- `owners`", + "type": "text/plain" + }, + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"actions\": [\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n },\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n }\n ],\n \"birthright\": \"\",\n \"conditions\": [\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n },\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n }\n ],\n \"detective\": \"\",\n \"owners\": [\n {\n \"rank\": \"\",\n \"username\": \"\"\n },\n {\n \"rank\": \"\",\n \"username\": \"\"\n }\n ],\n \"removeBirthrightAccess\": \"\",\n \"ruleDescription\": \"\",\n \"ruleId\": \"\",\n \"ruleName\": \"\",\n \"ruleType\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": null + }, + "response": [ + { + "id": "ca8f87fa-1167-405f-96b3-9fe0ae05407d", + "name": "Update Technical Rules", + "originalRequest": { + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "PUT", + "body": { + "mode": "raw", + "raw": "{\n \"actions\": [\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n },\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n }\n ],\n \"birthright\": \"\",\n \"conditions\": [\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n },\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n }\n ],\n \"detective\": \"\",\n \"owners\": [\n {\n \"rank\": \"\",\n \"username\": \"\"\n },\n {\n \"rank\": \"\",\n \"username\": \"\"\n }\n ],\n \"removeBirthrightAccess\": \"\",\n \"ruleDescription\": \"\",\n \"ruleId\": \"\",\n \"ruleName\": \"\",\n \"ruleType\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + }, + { + "id": "4ffe2833-a11b-496e-baac-d6136055ae4d", + "name": "Create Technical Rules", + "request": { + "name": "Create Technical Rules", + "description": { + "content": "Starting with Release v23.11, you can use this REST API to effortlessly create new technical rules.\nThe `Authorization` must have `Bearer` followed by `Token`.\n**Mandatory params:**\n- `ruleName` - `detective` - `birthright` - `conditions` - `actions` - `removeBirthrightAccess`\n\n**Optional params:**\n- `ruleDescription` - `status` - `organization` - `owners` - `ruletype`", + "type": "text/plain" + }, + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"actions\": [\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n },\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n }\n ],\n \"birthright\": \"\",\n \"conditions\": [\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n },\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n }\n ],\n \"detective\": \"\",\n \"owners\": [\n {\n \"rank\": \"\",\n \"username\": \"\"\n },\n {\n \"rank\": \"\",\n \"username\": \"\"\n }\n ],\n \"removeBirthrightAccess\": \"\",\n \"ruleDescription\": \"\",\n \"ruleId\": \"\",\n \"ruleName\": \"\",\n \"ruleType\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + }, + "auth": { + "type": "bearer", + "bearer": [ + { + "key": "token", + "value": "{{bearerToken}}" + } + ] + } + }, + "response": [ + { + "id": "ea5d2ff2-3afa-4b2c-9655-f39e18dcaaa1", + "name": "Creating Technical Rules", + "originalRequest": { + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [], + "variable": [] + }, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "Accept", + "value": "application/json" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "POST", + "body": { + "mode": "raw", + "raw": "{\n \"actions\": [\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n },\n {\n \"object\": \"\",\n \"objectAttribute\": \"\",\n \"objectType\": \"\",\n \"organization\": \"\"\n }\n ],\n \"birthright\": \"\",\n \"conditions\": [\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n },\n {\n \"attribute\": \"\",\n \"closeBracket\": \"\",\n \"condition\": \"\",\n \"conditionType\": \"\",\n \"nextCondition\": \"\",\n \"object\": \"\",\n \"objectValue\": \"\",\n \"openBracket\": \"\"\n }\n ],\n \"detective\": \"\",\n \"owners\": [\n {\n \"rank\": \"\",\n \"username\": \"\"\n },\n {\n \"rank\": \"\",\n \"username\": \"\"\n }\n ],\n \"removeBirthrightAccess\": \"\",\n \"ruleDescription\": \"\",\n \"ruleId\": \"\",\n \"ruleName\": \"\",\n \"ruleType\": \"\",\n \"status\": \"\"\n}", + "options": { + "raw": { + "headerFamily": "json", + "language": "json" + } + } + } + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"msg\": \"\"\n}", + "cookie": [], + "_postman_previewlanguage": "json" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + }, + { + "id": "aa80af61-c992-490a-b857-d387cc199f7c", + "name": "Delete Technical Rules", + "request": { + "name": "Delete Technical Rules", + "description": { + "content": "Starting with Release v23.11, you can use the REST API to delete an inactive technical rules from the target system by specifying the `ruleId` parameter.\n**Note:**\n- You can only delete an inactive technical rules.\n- You cannot delete technical rules if:\n\n - the Rule is active.\n\n - the ID does not exist.\n\n - the user who perform the delete process is not a ROLE_ADMIN.\n\n\nThe `Authorization` must have `Bearer` followed by `Token`.\nMandatory param:\n`ruleId`", + "type": "text/plain" + }, + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "id", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "text/plain" + } + ], + "method": "DELETE", + "body": {}, + "auth": null + }, + "response": [ + { + "id": "0523b047-618c-44f7-b08c-f443851ba244", + "name": "Delete Technical Rules", + "originalRequest": { + "url": { + "path": [ + "rules", + "technical" + ], + "host": [ + "{{baseUrl}}" + ], + "query": [ + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "id", + "value": "" + } + ], + "variable": [] + }, + "header": [ + { + "key": "Accept", + "value": "text/plain" + }, + { + "description": { + "content": "Added as a part of security scheme: bearer", + "type": "text/plain" + }, + "key": "Authorization", + "value": "Bearer " + } + ], + "method": "DELETE", + "body": {} + }, + "status": "OK", + "code": 200, + "header": [ + { + "key": "Content-Type", + "value": "text/plain" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Credentials", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Access-Control-Allow-Origin", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Cache-Control", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Content-Security-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Date", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Expires", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Permissions-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Referrer-Policy", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Set-Cookie", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "Strict-Transport-Security", + "value": "" + }, + { + "disabled": false, + "description": { + "content": "", + "type": "text/plain" + }, + "key": "X-Content-Type-Options", + "value": "" + } + ], + "body": "{\n \"examples\": {\n \"Delete Technical Rules\": {\n \"value\": \"Rule deleted Successfully\"\n }\n }\n}", + "cookie": [], + "_postman_previewlanguage": "text" + } + ], + "event": [], + "protocolProfileBehavior": { + "disableBodyPruning": true + } + } + ] + } + ] + } + ], + "auth": { + "type": "bearer", + "bearer": [ + { + "type": "any", + "value": "{{bearerToken}}", + "key": "token" + } + ] + }, + "event": [], + "variable": [ + { + "key": "tenant", + "value": "example" + }, + { + "key": "baseUrl", + "value": "https://{{tenant}}.saviyntcloud.com/ECM/api/v5" + } + ], + "info": { + "_postman_id": "a1941fab-9df1-4bdb-be04-38fd4f160961", + "name": "Saviynt Enterprise Identity Cloud API Reference", + "schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json", + "description": { + "content": "This Collection provides the details of the supported methods for the Saviynt Enterprise Identity Cloud (EIC)\n\nContact Support:\n Name: API Support\n Email: support@saviynt.com", + "type": "text/plain" + } + } +} \ No newline at end of file