Creates a custom role
POST/iam/roles
Creates a new role to be used in the policies that control permissions.
A role defines the scope of actions in a policy statement.
Authorization Action:
iam:roles:create
Request
- application/json
Body
required
Does not contain type as the enduser can only create 'custom' roles.
id stringrequired
Unique ID. Cannot be changed.
name stringrequired
Name for the role.
actions string[]required
List of actions that this role scopes to.
tenants string[]
List of tenants this role belongs to.
Responses
- 200
- default
A successful response.
- application/json
- Schema
- Example (from schema)
Schema
role object
name string
Name for the role.
id string
Unique ID. Cannot be changed.
type compiuta.api.iam.v2.Type
Possible values: [COMPIUTA_MANAGED
, CUSTOM
]
Default value: COMPIUTA_MANAGED
actions string[]
List of actions this role scopes to. Will contain one or more.
tenants string[]
List of tenants this role belongs to. May be empty.
{
"id": "custom-role",
"name": "My Custom Application Manager Role",
"actions": [
"applications:*",
"iam:tenants:list"
]
}
An unexpected error response.
- application/json
- Schema
- Example (from schema)
Schema
- Array [
- ]
code int32
message string
details object[]
@type string
{
"code": 0,
"message": "string",
"details": [
{
"@type": "string"
}
]
}
Loading...