Get Permissions Next Page

POST 
/api/v1/permission/page

Given a request parameter pageToken, returns the next page of permissions data. You can find the value for pageToken from the response object of a previous request to Get Permissions.

Request

application/json

Body

required

Model for Permission Search Page Request DTO

limit int32

Maximun number of items to return

pageToken string

Page token from the response object of an earlier request to get permissions.

Responses

200

OK

application/json

Schema

Schema

items object[]
Requested permissions list
Array [
accessedResourcesCount int64
Accessed resource count
destCloudAccount string
Destination cloud account
destCloudRegion string
Destination cloud region
destCloudResourceRrn string
Destination cloud resource RRN
destCloudServiceName string
Destination cloud service name
destCloudType string
Destination cloud type
destResourceId string
Destination cloud resource id
destResourceName string
Destination cloud resource name
destResourceType string
Destination cloud resource type
effectiveActionName string
Effective action name
exceptions object[]
Permission exception list
Array [
messageCode string
Message code
]
grantedByCloudEntityId string
Granted by cloud entity id
grantedByCloudEntityName string
Granted by cloud entity name
grantedByCloudEntityRrn string
Granted by cloud entity rrn
grantedByCloudEntityType string
Granted by cloud entity type
grantedByCloudPolicyId string
Granted by cloud policy Id
grantedByCloudPolicyName string
Granted by cloud policy name
grantedByCloudPolicyRrn string
Granted by cloud policy rrn
grantedByCloudPolicyType string
Granted by cloud policy type
grantedByCloudType string
Granted by cloud type
id string
Message id
isWildCardDestCloudResourceName boolean
Is destination cloud resource name a wildcard
lastAccessDate string
Last accessed data
sourceCloudAccount string
Source cloud account
sourceCloudRegion string
Source cloud region
sourceCloudResourceRrn string
Source cloud resource RRN
sourceCloudServiceName string
Source cloud service name
sourceCloudType string
Source cloud type
sourceIdpDomain string
Source IDP domain
sourceIdpEmail string
Source IDP email
sourceIdpGroup string
Source IDP group
sourceIdpRrn string
Source idp RRN
sourceIdpService string
Possible values: [AZURE_AD, OKTA, UNKNOWN]
Source IDP service
sourceIdpUsername string
Source IDP user name
sourcePublic boolean
Is source public
sourceResourceId string
Source cloud resource id
sourceResourceName string
Source cloud resource name
sourceResourceType string
Source cloud resource type
]
nextPageToken string

Next page token

searchedDestCloudResourceNames string[]

Searched destination cloud resource names

totalRows int64

Total row count

Example (from schema)

{
  "items": [
    {
      "accessedResourcesCount": 0,
      "destCloudAccount": "123456789",
      "destCloudRegion": "AWS London",
      "destCloudResourceRrn": "rrn::other:eu-west-2:123456789012::my-function",
      "destCloudServiceName": "iam",
      "destCloudType": "AWS",
      "destResourceId": "arn:aws:iam::111111:user/john",
      "destResourceName": "john",
      "destResourceType": "user",
      "effectiveActionName": "string",
      "exceptions": [
        {
          "messageCode": "LIMITED_BY_DENY_STATEMENT"
        }
      ],
      "grantedByCloudEntityId": "arn:aws:iam::<account>:role/my-role",
      "grantedByCloudEntityName": "my-role",
      "grantedByCloudEntityRrn": "rrn::other::123456789:AIDAIDAIDAIDAIDAIDAID",
      "grantedByCloudEntityType": "user",
      "grantedByCloudPolicyId": "arn:aws:iam::aws:policy/aws-policy",
      "grantedByCloudPolicyName": "my-policy",
      "grantedByCloudPolicyRrn": "rrn::iamPolicy::123456789012::arn:aws:iam:eu-west-2",
      "grantedByCloudPolicyType": "Customer Managed Policy",
      "grantedByCloudType": "AWS",
      "id": "13",
      "isWildCardDestCloudResourceName": false,
      "lastAccessDate": "string",
      "sourceCloudAccount": "123456789",
      "sourceCloudRegion": "AWS London",
      "sourceCloudResourceRrn": "rrn::iamUser::123456789012::AIDAIDAIDAIDAIDAIDAID",
      "sourceCloudServiceName": "iam",
      "sourceCloudType": "AWS",
      "sourceIdpDomain": "string",
      "sourceIdpEmail": "string",
      "sourceIdpGroup": "string",
      "sourceIdpRrn": "rrn::other::idp-account-id::idp-user-id",
      "sourceIdpService": "AZURE_AD",
      "sourceIdpUsername": "string",
      "sourcePublic": false,
      "sourceResourceId": "arn:aws:iam::111111:user/john",
      "sourceResourceName": "john",
      "sourceResourceType": "user"
    }
  ],
  "nextPageToken": "++fdfkjsdlfsdfdFDSFDFSDFdfdssfdFDS",
  "searchedDestCloudResourceNames": [],
  "totalRows": 1243
}

text/plain

Schema

Schema

items object[]
Requested permissions list
Array [
accessedResourcesCount int64
Accessed resource count
destCloudAccount string
Destination cloud account
destCloudRegion string
Destination cloud region
destCloudResourceRrn string
Destination cloud resource RRN
destCloudServiceName string
Destination cloud service name
destCloudType string
Destination cloud type
destResourceId string
Destination cloud resource id
destResourceName string
Destination cloud resource name
destResourceType string
Destination cloud resource type
effectiveActionName string
Effective action name
exceptions object[]
Permission exception list
Array [
messageCode string
Message code
]
grantedByCloudEntityId string
Granted by cloud entity id
grantedByCloudEntityName string
Granted by cloud entity name
grantedByCloudEntityRrn string
Granted by cloud entity rrn
grantedByCloudEntityType string
Granted by cloud entity type
grantedByCloudPolicyId string
Granted by cloud policy Id
grantedByCloudPolicyName string
Granted by cloud policy name
grantedByCloudPolicyRrn string
Granted by cloud policy rrn
grantedByCloudPolicyType string
Granted by cloud policy type
grantedByCloudType string
Granted by cloud type
id string
Message id
isWildCardDestCloudResourceName boolean
Is destination cloud resource name a wildcard
lastAccessDate string
Last accessed data
sourceCloudAccount string
Source cloud account
sourceCloudRegion string
Source cloud region
sourceCloudResourceRrn string
Source cloud resource RRN
sourceCloudServiceName string
Source cloud service name
sourceCloudType string
Source cloud type
sourceIdpDomain string
Source IDP domain
sourceIdpEmail string
Source IDP email
sourceIdpGroup string
Source IDP group
sourceIdpRrn string
Source idp RRN
sourceIdpService string
Possible values: [AZURE_AD, OKTA, UNKNOWN]
Source IDP service
sourceIdpUsername string
Source IDP user name
sourcePublic boolean
Is source public
sourceResourceId string
Source cloud resource id
sourceResourceName string
Source cloud resource name
sourceResourceType string
Source cloud resource type
]
nextPageToken string

Next page token

searchedDestCloudResourceNames string[]

Searched destination cloud resource names

totalRows int64

Total row count

Example (from schema)

{
  "items": [
    {
      "accessedResourcesCount": 0,
      "destCloudAccount": "123456789",
      "destCloudRegion": "AWS London",
      "destCloudResourceRrn": "rrn::other:eu-west-2:123456789012::my-function",
      "destCloudServiceName": "iam",
      "destCloudType": "AWS",
      "destResourceId": "arn:aws:iam::111111:user/john",
      "destResourceName": "john",
      "destResourceType": "user",
      "effectiveActionName": "string",
      "exceptions": [
        {
          "messageCode": "LIMITED_BY_DENY_STATEMENT"
        }
      ],
      "grantedByCloudEntityId": "arn:aws:iam::<account>:role/my-role",
      "grantedByCloudEntityName": "my-role",
      "grantedByCloudEntityRrn": "rrn::other::123456789:AIDAIDAIDAIDAIDAIDAID",
      "grantedByCloudEntityType": "user",
      "grantedByCloudPolicyId": "arn:aws:iam::aws:policy/aws-policy",
      "grantedByCloudPolicyName": "my-policy",
      "grantedByCloudPolicyRrn": "rrn::iamPolicy::123456789012::arn:aws:iam:eu-west-2",
      "grantedByCloudPolicyType": "Customer Managed Policy",
      "grantedByCloudType": "AWS",
      "id": "13",
      "isWildCardDestCloudResourceName": false,
      "lastAccessDate": "string",
      "sourceCloudAccount": "123456789",
      "sourceCloudRegion": "AWS London",
      "sourceCloudResourceRrn": "rrn::iamUser::123456789012::AIDAIDAIDAIDAIDAIDAID",
      "sourceCloudServiceName": "iam",
      "sourceCloudType": "AWS",
      "sourceIdpDomain": "string",
      "sourceIdpEmail": "string",
      "sourceIdpGroup": "string",
      "sourceIdpRrn": "rrn::other::idp-account-id::idp-user-id",
      "sourceIdpService": "AZURE_AD",
      "sourceIdpUsername": "string",
      "sourcePublic": false,
      "sourceResourceId": "arn:aws:iam::111111:user/john",
      "sourceResourceName": "john",
      "sourceResourceType": "user"
    }
  ],
  "nextPageToken": "++fdfkjsdlfsdfdFDSFDFSDFdfdssfdFDS",
  "searchedDestCloudResourceNames": [],
  "totalRows": 1243
}

201

Created

401

Unauthorize

403

Forbidden

404

Not Found

Loading...