Permessi
Recupero di tutti i permessi
Richiesta
Definizione
GET /api/v1/permissions
Header
-
AuthorizationrichiestoToken di autenticazione con privilegi di lettura per la risorsa.
Bearer {token}
Risposta
Codici di stato
| Codici di stato | Messaggio |
|---|---|
| 200 | "List of permissions" |
| 403 | "Forbidden" |
Corpo della risposta
- Attributi
- Esempio
-
data.permissions.idintegerCodice identificativo dei permessi.
-
data.permissions.namestringNome dei permessi.
-
data.permissions.descriptionstringDescrizione dei permessi.
-
data.permissions.needs_servicebooleanIndica se il permesso debba essere associato a uno o più Domain Group.
{
"data": {
"permissions": [
{
"description": "User can visualize and ignore alerts. He can also explore related HTTP transactions.",
"id": 0,
"name": "Explore alerts",
"needs_service": true
},
{
"description": "User can visualize, create, modify and delete rules, either as Application and Source.",
"id": 1,
"name": "Handle rules",
"needs_service": true
},
{
"description": "User can load Applications Rules to a Web Application Firewall",
"id": 2,
"name": "Load application rules",
"needs_service": false
},
{
"description": "User can load Source Rules to a Firewall",
"id": 3,
"name": "Load source rules",
"needs_service": false
},
{
"description": "User can explore HTTP transactions",
"id": 4,
"name": "Explore transactions",
"needs_service": true
},
{
"description": "User can visualize, create and delete hosts and services.",
"id": 5,
"name": "Handle assets",
"needs_service": false
},
{
"description": "User can visualize, add, modify and delete traffic sources.",
"id": 6,
"name": "Handle traffic sources",
"needs_service": false
},
{
"description": "User can visualize, add, modify and delete user records. He can also reset user passwords.",
"id": 7,
"name": "Handle users",
"needs_service": false
},
{
"description": "User can visualize, add, modify and delete group records. He can also handle group permissions.",
"id": 8,
"name": "Handle groups",
"needs_service": false
},
{
"description": "User can visualize, add, modify and delete firewalls.",
"id": 9,
"name": "Handle firewalls",
"needs_service": false
},
{
"description": "User can visualize, add, modify and delete notifications.",
"id": 10,
"name": "Handle notifications",
"needs_service": false
},
{
"description": "User can explore trends related to HTTP transactions",
"id": 11,
"name": "Explore trends",
"needs_service": true
},
{
"description": "User can create, read and delete reports",
"id": 12,
"name": "Handle reports",
"needs_service": true
}
]
},
"message": "List of permissions",
"status": "ok"
}
Recupero di permessi generici specifici per l'utente
Richiesta
Definizione
GET /api/v1/permissions/advances/{user_id}
Header
-
AuthorizationrichiestoToken di autenticazione con privilegi di lettura per la risorsa.
Bearer {token}
Risposta
Codice di stato
| Codice di stato | Messaggio |
|---|---|
| 200 | "List of user-specific generic permissions" |
| 400 | "Error retrieving advanced permissions" |
| 403 | "Forbidden" |
Corpo della risposta
{
"data": {
"permission": {
"description": "User can visualize, create, modify and delete rules, either as Application and Source.",
"hosts": [
"test.com"
],
"id": 1,
"name": "Handle rules",
"service_hosts": {
"Test": [
"test.com"
]
},
"services": [
"Test"
]
}
},
"message": "List of user-specific generic permissions",
"status": "ok"
}