List all grants of a specific app for a specific user
GET {{stripeUrl}}/admin/v1/Users/{{userid}}?attributes=urn:ietf:params:scim:schemas:oracle:idcs:extension:user:User:grants[appId eq "{{appid}}"]
The system fulfills (enacts) a Grant to a User by creating an AccountMgmtInfo resource that records the User's access to that App.
If the Grant specifies an AppRole, then fulfillment also adds the grantee User as a member of the specified AppRole (unless that User is already a member of that AppRole).
A Grant says that someone (the grantor) says that someone (a grantee) should have something (access to an App, and optionally an entitlement within that App).
- The grantor is typically an administrator (but could also be some component of the system).
- The grantee is typically a User, but could also be a Group or another App.
- The granted App may be accompanied by an entitlement defined by that App.
- In general, an entitlement can be any specific value of any specific attribute of the App-specific identity. (A ManagedApp has its own identity-repository, so it defines the attributes for its own identities.)
- One special case of an entitlement is membership in an AppRole defined by the App. (Granting an AppRole defined by the App necessarily grants access to the App.)
See https://docs.oracle.com/en/cloud/paas/identity-cloud/rest-api/appmgmtrelationships.html for more information on understanding application management relationships between Apps, AppRoles, Users, and Groups.
Request Params
| Key | Datatype | Required | Description |
|---|---|---|---|
attributes | string |
HEADERS
| Key | Datatype | Required | Description |
|---|---|---|---|
Authorization | string | ||
Date | string | ||
Content-Type | string |