sailpoint-api-client 1.7.17 → 1.7.19
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/beta/README.md +2 -2
- package/beta/api.ts +121 -75
- package/beta/common.ts +2 -2
- package/beta/package.json +1 -1
- package/dist/beta/api.d.ts +100 -59
- package/dist/beta/api.js +49 -35
- package/dist/beta/api.js.map +1 -1
- package/dist/beta/common.js +1 -1
- package/dist/v2024/api.d.ts +95 -54
- package/dist/v2024/api.js +46 -32
- package/dist/v2024/api.js.map +1 -1
- package/dist/v2024/common.js +1 -1
- package/dist/v2025/api.d.ts +114 -77
- package/dist/v2025/api.js +58 -48
- package/dist/v2025/api.js.map +1 -1
- package/dist/v2025/common.js +1 -1
- package/dist/v2026/common.js +1 -1
- package/dist/v3/api.d.ts +4 -4
- package/dist/v3/api.js +4 -4
- package/dist/v3/common.js +1 -1
- package/package.json +1 -1
- package/v2024/README.md +2 -2
- package/v2024/api.ts +116 -70
- package/v2024/common.ts +2 -2
- package/v2024/package.json +1 -1
- package/v2025/README.md +2 -2
- package/v2025/api.ts +137 -95
- package/v2025/common.ts +2 -2
- package/v2025/package.json +1 -1
- package/v2026/README.md +2 -2
- package/v2026/common.ts +2 -2
- package/v2026/package.json +1 -1
- package/v3/README.md +2 -2
- package/v3/api.ts +4 -4
- package/v3/common.ts +2 -2
- package/v3/package.json +1 -1
package/dist/v2024/common.js
CHANGED
|
@@ -250,7 +250,7 @@ var createRequestFunction = function (axiosArgs, globalAxios, BASE_PATH, configu
|
|
|
250
250
|
if (axios === void 0) { axios = globalAxios; }
|
|
251
251
|
if (basePath === void 0) { basePath = BASE_PATH; }
|
|
252
252
|
(0, axios_retry_1.default)(axios, configuration.retriesConfig);
|
|
253
|
-
var headers = __assign(__assign({ 'User-Agent': 'OpenAPI-Generator/1.7.
|
|
253
|
+
var headers = __assign(__assign({ 'User-Agent': 'OpenAPI-Generator/1.7.19/ts' }, axiosArgs.axiosOptions.headers), { 'X-SailPoint-SDK': 'typescript-1.7.19' });
|
|
254
254
|
if (!configuration.experimental && ("X-SailPoint-Experimental" in headers)) {
|
|
255
255
|
throw new Error("You are using Experimental APIs. Set configuration.experimental = True to enable these APIs in the SDK.");
|
|
256
256
|
}
|
package/dist/v2025/api.d.ts
CHANGED
|
@@ -7234,13 +7234,13 @@ export interface ApprovalConfigV2025 {
|
|
|
7234
7234
|
*/
|
|
7235
7235
|
'tenantId'?: string;
|
|
7236
7236
|
/**
|
|
7237
|
-
* The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
7237
|
+
* The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
7238
7238
|
* @type {string}
|
|
7239
7239
|
* @memberof ApprovalConfigV2025
|
|
7240
7240
|
*/
|
|
7241
7241
|
'id'?: string;
|
|
7242
7242
|
/**
|
|
7243
|
-
* The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
7243
|
+
* The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
7244
7244
|
* @type {string}
|
|
7245
7245
|
* @memberof ApprovalConfigV2025
|
|
7246
7246
|
*/
|
|
@@ -8303,6 +8303,13 @@ export interface ArgumentV2025 {
|
|
|
8303
8303
|
*/
|
|
8304
8304
|
'type'?: string | null;
|
|
8305
8305
|
}
|
|
8306
|
+
/**
|
|
8307
|
+
*
|
|
8308
|
+
* @export
|
|
8309
|
+
* @interface ArrayInner1V2025
|
|
8310
|
+
*/
|
|
8311
|
+
export interface ArrayInner1V2025 {
|
|
8312
|
+
}
|
|
8306
8313
|
/**
|
|
8307
8314
|
*
|
|
8308
8315
|
* @export
|
|
@@ -24175,6 +24182,42 @@ export interface JITConfigurationV2025 {
|
|
|
24175
24182
|
[key: string]: string;
|
|
24176
24183
|
};
|
|
24177
24184
|
}
|
|
24185
|
+
/**
|
|
24186
|
+
* A JSONPatch Operation for Role Mining endpoints, supporting only remove and replace operations as defined by [RFC 6902 - JSON Patch](https://tools.ietf.org/html/rfc6902)
|
|
24187
|
+
* @export
|
|
24188
|
+
* @interface JsonPatchOperationRoleMiningV2025
|
|
24189
|
+
*/
|
|
24190
|
+
export interface JsonPatchOperationRoleMiningV2025 {
|
|
24191
|
+
/**
|
|
24192
|
+
* The operation to be performed
|
|
24193
|
+
* @type {string}
|
|
24194
|
+
* @memberof JsonPatchOperationRoleMiningV2025
|
|
24195
|
+
*/
|
|
24196
|
+
'op': JsonPatchOperationRoleMiningV2025OpV2025;
|
|
24197
|
+
/**
|
|
24198
|
+
* A string JSON Pointer representing the target path to an element to be affected by the operation
|
|
24199
|
+
* @type {string}
|
|
24200
|
+
* @memberof JsonPatchOperationRoleMiningV2025
|
|
24201
|
+
*/
|
|
24202
|
+
'path': string;
|
|
24203
|
+
/**
|
|
24204
|
+
*
|
|
24205
|
+
* @type {JsonPatchOperationRoleMiningValueV2025}
|
|
24206
|
+
* @memberof JsonPatchOperationRoleMiningV2025
|
|
24207
|
+
*/
|
|
24208
|
+
'value'?: JsonPatchOperationRoleMiningValueV2025;
|
|
24209
|
+
}
|
|
24210
|
+
export declare const JsonPatchOperationRoleMiningV2025OpV2025: {
|
|
24211
|
+
readonly Remove: "remove";
|
|
24212
|
+
readonly Replace: "replace";
|
|
24213
|
+
};
|
|
24214
|
+
export type JsonPatchOperationRoleMiningV2025OpV2025 = typeof JsonPatchOperationRoleMiningV2025OpV2025[keyof typeof JsonPatchOperationRoleMiningV2025OpV2025];
|
|
24215
|
+
/**
|
|
24216
|
+
* @type JsonPatchOperationRoleMiningValueV2025
|
|
24217
|
+
* The value to be used for the operation, required for \"replace\" operations
|
|
24218
|
+
* @export
|
|
24219
|
+
*/
|
|
24220
|
+
export type JsonPatchOperationRoleMiningValueV2025 = Array<ArrayInner1V2025> | boolean | number | object | string;
|
|
24178
24221
|
/**
|
|
24179
24222
|
* A JSONPatch Operation as defined by [RFC 6902 - JSON Patch](https://tools.ietf.org/html/rfc6902)
|
|
24180
24223
|
* @export
|
|
@@ -24201,8 +24244,12 @@ export interface JsonPatchOperationV2025 {
|
|
|
24201
24244
|
'value'?: UpdateMultiHostSourcesRequestInnerValueV2025;
|
|
24202
24245
|
}
|
|
24203
24246
|
export declare const JsonPatchOperationV2025OpV2025: {
|
|
24247
|
+
readonly Add: "add";
|
|
24204
24248
|
readonly Remove: "remove";
|
|
24205
24249
|
readonly Replace: "replace";
|
|
24250
|
+
readonly Move: "move";
|
|
24251
|
+
readonly Copy: "copy";
|
|
24252
|
+
readonly Test: "test";
|
|
24206
24253
|
};
|
|
24207
24254
|
export type JsonPatchOperationV2025OpV2025 = typeof JsonPatchOperationV2025OpV2025[keyof typeof JsonPatchOperationV2025OpV2025];
|
|
24208
24255
|
/**
|
|
@@ -32706,36 +32753,6 @@ export declare const PatOwnerV2025TypeV2025: {
|
|
|
32706
32753
|
readonly Identity: "IDENTITY";
|
|
32707
32754
|
};
|
|
32708
32755
|
export type PatOwnerV2025TypeV2025 = typeof PatOwnerV2025TypeV2025[keyof typeof PatOwnerV2025TypeV2025];
|
|
32709
|
-
/**
|
|
32710
|
-
*
|
|
32711
|
-
* @export
|
|
32712
|
-
* @interface PatchPotentialRoleRequestInnerV2025
|
|
32713
|
-
*/
|
|
32714
|
-
export interface PatchPotentialRoleRequestInnerV2025 {
|
|
32715
|
-
/**
|
|
32716
|
-
* The operation to be performed
|
|
32717
|
-
* @type {string}
|
|
32718
|
-
* @memberof PatchPotentialRoleRequestInnerV2025
|
|
32719
|
-
*/
|
|
32720
|
-
'op'?: PatchPotentialRoleRequestInnerV2025OpV2025;
|
|
32721
|
-
/**
|
|
32722
|
-
* A string JSON Pointer representing the target path to an element to be affected by the operation
|
|
32723
|
-
* @type {string}
|
|
32724
|
-
* @memberof PatchPotentialRoleRequestInnerV2025
|
|
32725
|
-
*/
|
|
32726
|
-
'path': string;
|
|
32727
|
-
/**
|
|
32728
|
-
*
|
|
32729
|
-
* @type {UpdateMultiHostSourcesRequestInnerValueV2025}
|
|
32730
|
-
* @memberof PatchPotentialRoleRequestInnerV2025
|
|
32731
|
-
*/
|
|
32732
|
-
'value'?: UpdateMultiHostSourcesRequestInnerValueV2025;
|
|
32733
|
-
}
|
|
32734
|
-
export declare const PatchPotentialRoleRequestInnerV2025OpV2025: {
|
|
32735
|
-
readonly Remove: "remove";
|
|
32736
|
-
readonly Replace: "replace";
|
|
32737
|
-
};
|
|
32738
|
-
export type PatchPotentialRoleRequestInnerV2025OpV2025 = typeof PatchPotentialRoleRequestInnerV2025OpV2025[keyof typeof PatchPotentialRoleRequestInnerV2025OpV2025];
|
|
32739
32756
|
/**
|
|
32740
32757
|
*
|
|
32741
32758
|
* @export
|
|
@@ -38431,7 +38448,7 @@ export interface RoleMiningIdentityDistributionDistributionInnerV2025 {
|
|
|
38431
38448
|
* @type {string}
|
|
38432
38449
|
* @memberof RoleMiningIdentityDistributionDistributionInnerV2025
|
|
38433
38450
|
*/
|
|
38434
|
-
'attributeValue'?: string;
|
|
38451
|
+
'attributeValue'?: string | null;
|
|
38435
38452
|
/**
|
|
38436
38453
|
* The number of identities that have this attribute value
|
|
38437
38454
|
* @type {number}
|
|
@@ -38604,6 +38621,25 @@ export declare const RoleMiningPotentialRoleExportStateV2025: {
|
|
|
38604
38621
|
readonly Error: "ERROR";
|
|
38605
38622
|
};
|
|
38606
38623
|
export type RoleMiningPotentialRoleExportStateV2025 = typeof RoleMiningPotentialRoleExportStateV2025[keyof typeof RoleMiningPotentialRoleExportStateV2025];
|
|
38624
|
+
/**
|
|
38625
|
+
* The potential role reference
|
|
38626
|
+
* @export
|
|
38627
|
+
* @interface RoleMiningPotentialRolePotentialRoleRefV2025
|
|
38628
|
+
*/
|
|
38629
|
+
export interface RoleMiningPotentialRolePotentialRoleRefV2025 {
|
|
38630
|
+
/**
|
|
38631
|
+
* Id of the potential role
|
|
38632
|
+
* @type {string}
|
|
38633
|
+
* @memberof RoleMiningPotentialRolePotentialRoleRefV2025
|
|
38634
|
+
*/
|
|
38635
|
+
'id'?: string;
|
|
38636
|
+
/**
|
|
38637
|
+
* Name of the potential role
|
|
38638
|
+
* @type {string}
|
|
38639
|
+
* @memberof RoleMiningPotentialRolePotentialRoleRefV2025
|
|
38640
|
+
*/
|
|
38641
|
+
'name'?: string;
|
|
38642
|
+
}
|
|
38607
38643
|
/**
|
|
38608
38644
|
*
|
|
38609
38645
|
* @export
|
|
@@ -38878,12 +38914,24 @@ export interface RoleMiningPotentialRoleV2025 {
|
|
|
38878
38914
|
* @memberof RoleMiningPotentialRoleV2025
|
|
38879
38915
|
*/
|
|
38880
38916
|
'identityIds'?: Array<string>;
|
|
38917
|
+
/**
|
|
38918
|
+
* The status for this identity group which can be OBTAINED or COMPRESSED
|
|
38919
|
+
* @type {string}
|
|
38920
|
+
* @memberof RoleMiningPotentialRoleV2025
|
|
38921
|
+
*/
|
|
38922
|
+
'identityGroupStatus'?: string | null;
|
|
38881
38923
|
/**
|
|
38882
38924
|
* Name of the potential role.
|
|
38883
38925
|
* @type {string}
|
|
38884
38926
|
* @memberof RoleMiningPotentialRoleV2025
|
|
38885
38927
|
*/
|
|
38886
38928
|
'name'?: string;
|
|
38929
|
+
/**
|
|
38930
|
+
*
|
|
38931
|
+
* @type {RoleMiningPotentialRolePotentialRoleRefV2025}
|
|
38932
|
+
* @memberof RoleMiningPotentialRoleV2025
|
|
38933
|
+
*/
|
|
38934
|
+
'potentialRoleRef'?: RoleMiningPotentialRolePotentialRoleRefV2025 | null;
|
|
38887
38935
|
/**
|
|
38888
38936
|
*
|
|
38889
38937
|
* @type {RoleMiningPotentialRoleProvisionStateV2025 & object}
|
|
@@ -46055,13 +46103,6 @@ export declare const SubscriptionPatchRequestInnerV2025OpV2025: {
|
|
|
46055
46103
|
readonly Copy: "copy";
|
|
46056
46104
|
};
|
|
46057
46105
|
export type SubscriptionPatchRequestInnerV2025OpV2025 = typeof SubscriptionPatchRequestInnerV2025OpV2025[keyof typeof SubscriptionPatchRequestInnerV2025OpV2025];
|
|
46058
|
-
/**
|
|
46059
|
-
*
|
|
46060
|
-
* @export
|
|
46061
|
-
* @interface SubscriptionPatchRequestInnerValueAnyOfInnerV2025
|
|
46062
|
-
*/
|
|
46063
|
-
export interface SubscriptionPatchRequestInnerValueAnyOfInnerV2025 {
|
|
46064
|
-
}
|
|
46065
46106
|
/**
|
|
46066
46107
|
* The value to be used for the operation, required for \"add\" and \"replace\" operations
|
|
46067
46108
|
* @export
|
|
@@ -52300,7 +52341,7 @@ export declare const AccessRequestsV2025ApiAxiosParamCreator: (configuration?: C
|
|
|
52300
52341
|
*/
|
|
52301
52342
|
closeAccessRequest: (closeAccessRequestV2025: CloseAccessRequestV2025, axiosOptions?: RawAxiosRequestConfig) => Promise<RequestArgs>;
|
|
52302
52343
|
/**
|
|
52303
|
-
*
|
|
52344
|
+
* Use this API to submit an access request in Identity Security Cloud (ISC), where it follows any ISC approval processes. >**Security:** idn:access-request:manage is for ORG_ADMIN level. idn:access-request-self:manage is for USER level. :::info The ability to request access using this API is constrained by the Access Request Segments defined in the API token\'s user context. ::: Access requests are processed asynchronously by ISC. A successful response from this endpoint means that the request has been submitted to ISC and is queued for processing. Because this endpoint is asynchronous, it does not return an error if you submit duplicate access requests in quick succession or submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request. This can be accomplished by using the [List Access Request Status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [Pending Access Request Approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) APIs. You can also use the [Search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items an identity has before submitting an access request to ensure that you aren\'t requesting access that is already granted. If you use this API to request access that an identity already has, without changing the account details or end date information from the existing assignment, the API will cancel the request as a duplicate. There are two types of access request: __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users. Refer to the [Get Access Request Configuration](https://developer.sailpoint.com/idn/api/v3/get-access-request-config) endpoint for request configuration options. * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, access profiles and entitlements can be requested. * You can specify a `removeDate` to set or alter a sunset date-time on an assignment. The removeDate must be a future date-time, in the UTC timezone. Additionally, if the user already has the access assigned with a sunset date, you can also submit a request without a `removeDate` to request removal of the sunset date and time. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Now supports an alternate field \'requestedForWithRequestedItems\' for users to specify account selections while requesting items where they have more than one account on the source. :::caution If any entitlements are being requested, then the maximum number of entitlements that can be requested is 25, and the maximum number of identities that can be requested for is 10. If you exceed these limits, the request will fail with a 400 error. If you are not requesting any entitlements, then there are no limits. ::: __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * You cannot use an access request to revoke access from an identity if that access has been granted by role membership or by birthright provisioning. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Roles, access profiles, and entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * You can specify a `removeDate` to add or alter a sunset date and time on an assignment. The `removeDate` must be a future date-time, in the UTC timezone. If the user already has the access assigned with a sunset date and time, the removeDate must be a date-time earlier than the existing sunset date and time. * Allows a manager to request to revoke access for direct employees. A user with ORG_ADMIN authority can also request to revoke access from anyone. * Now supports REVOKE_ACCESS requests for identities with multiple accounts on a single source, with the help of \'assignmentId\' and \'nativeIdentity\' fields. These fields should be used within the \'requestedItems\' section for the revoke requests. * Usage of \'requestedForWithRequestedItems\' field is not supported for revoke requests.
|
|
52304
52345
|
* @summary Submit access request
|
|
52305
52346
|
* @param {AccessRequestV2025} accessRequestV2025
|
|
52306
52347
|
* @param {*} [axiosOptions] Override http request option.
|
|
@@ -52414,7 +52455,7 @@ export declare const AccessRequestsV2025ApiFp: (configuration?: Configuration) =
|
|
|
52414
52455
|
*/
|
|
52415
52456
|
closeAccessRequest(closeAccessRequestV2025: CloseAccessRequestV2025, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
|
|
52416
52457
|
/**
|
|
52417
|
-
*
|
|
52458
|
+
* Use this API to submit an access request in Identity Security Cloud (ISC), where it follows any ISC approval processes. >**Security:** idn:access-request:manage is for ORG_ADMIN level. idn:access-request-self:manage is for USER level. :::info The ability to request access using this API is constrained by the Access Request Segments defined in the API token\'s user context. ::: Access requests are processed asynchronously by ISC. A successful response from this endpoint means that the request has been submitted to ISC and is queued for processing. Because this endpoint is asynchronous, it does not return an error if you submit duplicate access requests in quick succession or submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request. This can be accomplished by using the [List Access Request Status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [Pending Access Request Approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) APIs. You can also use the [Search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items an identity has before submitting an access request to ensure that you aren\'t requesting access that is already granted. If you use this API to request access that an identity already has, without changing the account details or end date information from the existing assignment, the API will cancel the request as a duplicate. There are two types of access request: __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users. Refer to the [Get Access Request Configuration](https://developer.sailpoint.com/idn/api/v3/get-access-request-config) endpoint for request configuration options. * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, access profiles and entitlements can be requested. * You can specify a `removeDate` to set or alter a sunset date-time on an assignment. The removeDate must be a future date-time, in the UTC timezone. Additionally, if the user already has the access assigned with a sunset date, you can also submit a request without a `removeDate` to request removal of the sunset date and time. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Now supports an alternate field \'requestedForWithRequestedItems\' for users to specify account selections while requesting items where they have more than one account on the source. :::caution If any entitlements are being requested, then the maximum number of entitlements that can be requested is 25, and the maximum number of identities that can be requested for is 10. If you exceed these limits, the request will fail with a 400 error. If you are not requesting any entitlements, then there are no limits. ::: __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * You cannot use an access request to revoke access from an identity if that access has been granted by role membership or by birthright provisioning. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Roles, access profiles, and entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * You can specify a `removeDate` to add or alter a sunset date and time on an assignment. The `removeDate` must be a future date-time, in the UTC timezone. If the user already has the access assigned with a sunset date and time, the removeDate must be a date-time earlier than the existing sunset date and time. * Allows a manager to request to revoke access for direct employees. A user with ORG_ADMIN authority can also request to revoke access from anyone. * Now supports REVOKE_ACCESS requests for identities with multiple accounts on a single source, with the help of \'assignmentId\' and \'nativeIdentity\' fields. These fields should be used within the \'requestedItems\' section for the revoke requests. * Usage of \'requestedForWithRequestedItems\' field is not supported for revoke requests.
|
|
52418
52459
|
* @summary Submit access request
|
|
52419
52460
|
* @param {AccessRequestV2025} accessRequestV2025
|
|
52420
52461
|
* @param {*} [axiosOptions] Override http request option.
|
|
@@ -52528,7 +52569,7 @@ export declare const AccessRequestsV2025ApiFactory: (configuration?: Configurati
|
|
|
52528
52569
|
*/
|
|
52529
52570
|
closeAccessRequest(requestParameters: AccessRequestsV2025ApiCloseAccessRequestRequest, axiosOptions?: RawAxiosRequestConfig): AxiosPromise<object>;
|
|
52530
52571
|
/**
|
|
52531
|
-
*
|
|
52572
|
+
* Use this API to submit an access request in Identity Security Cloud (ISC), where it follows any ISC approval processes. >**Security:** idn:access-request:manage is for ORG_ADMIN level. idn:access-request-self:manage is for USER level. :::info The ability to request access using this API is constrained by the Access Request Segments defined in the API token\'s user context. ::: Access requests are processed asynchronously by ISC. A successful response from this endpoint means that the request has been submitted to ISC and is queued for processing. Because this endpoint is asynchronous, it does not return an error if you submit duplicate access requests in quick succession or submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request. This can be accomplished by using the [List Access Request Status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [Pending Access Request Approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) APIs. You can also use the [Search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items an identity has before submitting an access request to ensure that you aren\'t requesting access that is already granted. If you use this API to request access that an identity already has, without changing the account details or end date information from the existing assignment, the API will cancel the request as a duplicate. There are two types of access request: __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users. Refer to the [Get Access Request Configuration](https://developer.sailpoint.com/idn/api/v3/get-access-request-config) endpoint for request configuration options. * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, access profiles and entitlements can be requested. * You can specify a `removeDate` to set or alter a sunset date-time on an assignment. The removeDate must be a future date-time, in the UTC timezone. Additionally, if the user already has the access assigned with a sunset date, you can also submit a request without a `removeDate` to request removal of the sunset date and time. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Now supports an alternate field \'requestedForWithRequestedItems\' for users to specify account selections while requesting items where they have more than one account on the source. :::caution If any entitlements are being requested, then the maximum number of entitlements that can be requested is 25, and the maximum number of identities that can be requested for is 10. If you exceed these limits, the request will fail with a 400 error. If you are not requesting any entitlements, then there are no limits. ::: __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * You cannot use an access request to revoke access from an identity if that access has been granted by role membership or by birthright provisioning. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Roles, access profiles, and entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * You can specify a `removeDate` to add or alter a sunset date and time on an assignment. The `removeDate` must be a future date-time, in the UTC timezone. If the user already has the access assigned with a sunset date and time, the removeDate must be a date-time earlier than the existing sunset date and time. * Allows a manager to request to revoke access for direct employees. A user with ORG_ADMIN authority can also request to revoke access from anyone. * Now supports REVOKE_ACCESS requests for identities with multiple accounts on a single source, with the help of \'assignmentId\' and \'nativeIdentity\' fields. These fields should be used within the \'requestedItems\' section for the revoke requests. * Usage of \'requestedForWithRequestedItems\' field is not supported for revoke requests.
|
|
52532
52573
|
* @summary Submit access request
|
|
52533
52574
|
* @param {AccessRequestsV2025ApiCreateAccessRequestRequest} requestParameters Request parameters.
|
|
52534
52575
|
* @param {*} [axiosOptions] Override http request option.
|
|
@@ -52883,7 +52924,7 @@ export declare class AccessRequestsV2025Api extends BaseAPI {
|
|
|
52883
52924
|
*/
|
|
52884
52925
|
closeAccessRequest(requestParameters: AccessRequestsV2025ApiCloseAccessRequestRequest, axiosOptions?: RawAxiosRequestConfig): Promise<import("axios").AxiosResponse<object, any>>;
|
|
52885
52926
|
/**
|
|
52886
|
-
*
|
|
52927
|
+
* Use this API to submit an access request in Identity Security Cloud (ISC), where it follows any ISC approval processes. >**Security:** idn:access-request:manage is for ORG_ADMIN level. idn:access-request-self:manage is for USER level. :::info The ability to request access using this API is constrained by the Access Request Segments defined in the API token\'s user context. ::: Access requests are processed asynchronously by ISC. A successful response from this endpoint means that the request has been submitted to ISC and is queued for processing. Because this endpoint is asynchronous, it does not return an error if you submit duplicate access requests in quick succession or submit an access request for access that is already in progress, approved, or rejected. It is best practice to check for any existing access requests that reference the same access items before submitting a new access request. This can be accomplished by using the [List Access Request Status](https://developer.sailpoint.com/idn/api/v3/list-access-request-status) or the [Pending Access Request Approvals](https://developer.sailpoint.com/idn/api/v3/list-pending-approvals) APIs. You can also use the [Search API](https://developer.sailpoint.com/idn/api/v3/search) to check the existing access items an identity has before submitting an access request to ensure that you aren\'t requesting access that is already granted. If you use this API to request access that an identity already has, without changing the account details or end date information from the existing assignment, the API will cancel the request as a duplicate. There are two types of access request: __GRANT_ACCESS__ * Can be requested for multiple identities in a single request. * Supports self request and request on behalf of other users. Refer to the [Get Access Request Configuration](https://developer.sailpoint.com/idn/api/v3/get-access-request-config) endpoint for request configuration options. * Allows any authenticated token (except API) to call this endpoint to request to grant access to themselves. Depending on the configuration, a user can request access for others. * Roles, access profiles and entitlements can be requested. * You can specify a `removeDate` to set or alter a sunset date-time on an assignment. The removeDate must be a future date-time, in the UTC timezone. Additionally, if the user already has the access assigned with a sunset date, you can also submit a request without a `removeDate` to request removal of the sunset date and time. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Now supports an alternate field \'requestedForWithRequestedItems\' for users to specify account selections while requesting items where they have more than one account on the source. :::caution If any entitlements are being requested, then the maximum number of entitlements that can be requested is 25, and the maximum number of identities that can be requested for is 10. If you exceed these limits, the request will fail with a 400 error. If you are not requesting any entitlements, then there are no limits. ::: __REVOKE_ACCESS__ * Can only be requested for a single identity at a time. * You cannot use an access request to revoke access from an identity if that access has been granted by role membership or by birthright provisioning. * Does not support self request. Only manager can request to revoke access for their directly managed employees. * If a `removeDate` is specified, then the requested role, access profile, or entitlement will be removed on that date and time. * Roles, access profiles, and entitlements can be requested for revocation. * Revoke requests for entitlements are limited to 1 entitlement per access request currently. * You can specify a `removeDate` to add or alter a sunset date and time on an assignment. The `removeDate` must be a future date-time, in the UTC timezone. If the user already has the access assigned with a sunset date and time, the removeDate must be a date-time earlier than the existing sunset date and time. * Allows a manager to request to revoke access for direct employees. A user with ORG_ADMIN authority can also request to revoke access from anyone. * Now supports REVOKE_ACCESS requests for identities with multiple accounts on a single source, with the help of \'assignmentId\' and \'nativeIdentity\' fields. These fields should be used within the \'requestedItems\' section for the revoke requests. * Usage of \'requestedForWithRequestedItems\' field is not supported for revoke requests.
|
|
52887
52928
|
* @summary Submit access request
|
|
52888
52929
|
* @param {AccessRequestsV2025ApiCreateAccessRequestRequest} requestParameters Request parameters.
|
|
52889
52930
|
* @param {*} [axiosOptions] Override http request option.
|
|
@@ -54593,8 +54634,8 @@ export declare const ApprovalsV2025ApiAxiosParamCreator: (configuration?: Config
|
|
|
54593
54634
|
/**
|
|
54594
54635
|
* Deletes an approval configuration. Configurations at the APPROVAL_REQUEST scope cannot be deleted.
|
|
54595
54636
|
* @summary Delete Approval Configuration
|
|
54596
|
-
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54597
|
-
* @param {DeleteApprovalConfigRequestScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54637
|
+
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54638
|
+
* @param {DeleteApprovalConfigRequestScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54598
54639
|
* @param {*} [axiosOptions] Override http request option.
|
|
54599
54640
|
* @throws {RequiredError}
|
|
54600
54641
|
*/
|
|
@@ -54630,7 +54671,7 @@ export declare const ApprovalsV2025ApiAxiosParamCreator: (configuration?: Config
|
|
|
54630
54671
|
/**
|
|
54631
54672
|
* Retrieves a singular approval configuration that matches the given ID
|
|
54632
54673
|
* @summary Get Approval Config
|
|
54633
|
-
* @param {string} id The id of the object the config applies to, for example one of the following: [(approvalID), (roleID), (entitlementID), (accessProfileID),
|
|
54674
|
+
* @param {string} id The id of the object the config applies to, for example one of the following: [(approvalID), (roleID), (entitlementID), (accessProfileID), \"ENTITLEMENT_DESCRIPTIONS\", \"ACCESS_REQUEST_APPROVAL\", (tenantID)]
|
|
54634
54675
|
* @param {*} [axiosOptions] Override http request option.
|
|
54635
54676
|
* @throws {RequiredError}
|
|
54636
54677
|
*/
|
|
@@ -54646,8 +54687,8 @@ export declare const ApprovalsV2025ApiAxiosParamCreator: (configuration?: Config
|
|
|
54646
54687
|
/**
|
|
54647
54688
|
* Upserts a singular approval configuration that matches the given configID and configScope. If id and scope are not provided, it will default to setting the tenant config.
|
|
54648
54689
|
* @summary Put Approval Config
|
|
54649
|
-
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54650
|
-
* @param {PutApprovalsConfigScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54690
|
+
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54691
|
+
* @param {PutApprovalsConfigScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54651
54692
|
* @param {ApprovalConfigV2025} approvalConfigV2025
|
|
54652
54693
|
* @param {*} [axiosOptions] Override http request option.
|
|
54653
54694
|
* @throws {RequiredError}
|
|
@@ -54731,8 +54772,8 @@ export declare const ApprovalsV2025ApiFp: (configuration?: Configuration) => {
|
|
|
54731
54772
|
/**
|
|
54732
54773
|
* Deletes an approval configuration. Configurations at the APPROVAL_REQUEST scope cannot be deleted.
|
|
54733
54774
|
* @summary Delete Approval Configuration
|
|
54734
|
-
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54735
|
-
* @param {DeleteApprovalConfigRequestScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54775
|
+
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54776
|
+
* @param {DeleteApprovalConfigRequestScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54736
54777
|
* @param {*} [axiosOptions] Override http request option.
|
|
54737
54778
|
* @throws {RequiredError}
|
|
54738
54779
|
*/
|
|
@@ -54768,7 +54809,7 @@ export declare const ApprovalsV2025ApiFp: (configuration?: Configuration) => {
|
|
|
54768
54809
|
/**
|
|
54769
54810
|
* Retrieves a singular approval configuration that matches the given ID
|
|
54770
54811
|
* @summary Get Approval Config
|
|
54771
|
-
* @param {string} id The id of the object the config applies to, for example one of the following: [(approvalID), (roleID), (entitlementID), (accessProfileID),
|
|
54812
|
+
* @param {string} id The id of the object the config applies to, for example one of the following: [(approvalID), (roleID), (entitlementID), (accessProfileID), \"ENTITLEMENT_DESCRIPTIONS\", \"ACCESS_REQUEST_APPROVAL\", (tenantID)]
|
|
54772
54813
|
* @param {*} [axiosOptions] Override http request option.
|
|
54773
54814
|
* @throws {RequiredError}
|
|
54774
54815
|
*/
|
|
@@ -54784,8 +54825,8 @@ export declare const ApprovalsV2025ApiFp: (configuration?: Configuration) => {
|
|
|
54784
54825
|
/**
|
|
54785
54826
|
* Upserts a singular approval configuration that matches the given configID and configScope. If id and scope are not provided, it will default to setting the tenant config.
|
|
54786
54827
|
* @summary Put Approval Config
|
|
54787
|
-
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54788
|
-
* @param {PutApprovalsConfigScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
54828
|
+
* @param {string} id The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54829
|
+
* @param {PutApprovalsConfigScopeV2025} scope The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
54789
54830
|
* @param {ApprovalConfigV2025} approvalConfigV2025
|
|
54790
54831
|
* @param {*} [axiosOptions] Override http request option.
|
|
54791
54832
|
* @throws {RequiredError}
|
|
@@ -55006,14 +55047,14 @@ export interface ApprovalsV2025ApiCancelApprovalRequest {
|
|
|
55006
55047
|
*/
|
|
55007
55048
|
export interface ApprovalsV2025ApiDeleteApprovalConfigRequestRequest {
|
|
55008
55049
|
/**
|
|
55009
|
-
* The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
55050
|
+
* The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
55010
55051
|
* @type {string}
|
|
55011
55052
|
* @memberof ApprovalsV2025ApiDeleteApprovalConfigRequest
|
|
55012
55053
|
*/
|
|
55013
55054
|
readonly id: string;
|
|
55014
55055
|
/**
|
|
55015
|
-
* The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
55016
|
-
* @type {'DOMAIN_OBJECT' | 'ROLE' | '
|
|
55056
|
+
* The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
55057
|
+
* @type {'DOMAIN_OBJECT' | 'ROLE' | 'ACCESS_PROFILE' | 'ENTITLEMENT' | 'APPROVAL_TYPE' | 'TENANT'}
|
|
55017
55058
|
* @memberof ApprovalsV2025ApiDeleteApprovalConfigRequest
|
|
55018
55059
|
*/
|
|
55019
55060
|
readonly scope: DeleteApprovalConfigRequestScopeV2025;
|
|
@@ -55123,7 +55164,7 @@ export interface ApprovalsV2025ApiGetApprovalsRequest {
|
|
|
55123
55164
|
*/
|
|
55124
55165
|
export interface ApprovalsV2025ApiGetApprovalsConfigRequest {
|
|
55125
55166
|
/**
|
|
55126
|
-
* The id of the object the config applies to, for example one of the following: [(approvalID), (roleID), (entitlementID), (accessProfileID),
|
|
55167
|
+
* The id of the object the config applies to, for example one of the following: [(approvalID), (roleID), (entitlementID), (accessProfileID), \"ENTITLEMENT_DESCRIPTIONS\", \"ACCESS_REQUEST_APPROVAL\", (tenantID)]
|
|
55127
55168
|
* @type {string}
|
|
55128
55169
|
* @memberof ApprovalsV2025ApiGetApprovalsConfig
|
|
55129
55170
|
*/
|
|
@@ -55149,14 +55190,14 @@ export interface ApprovalsV2025ApiMoveApprovalRequest {
|
|
|
55149
55190
|
*/
|
|
55150
55191
|
export interface ApprovalsV2025ApiPutApprovalsConfigRequest {
|
|
55151
55192
|
/**
|
|
55152
|
-
* The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
55193
|
+
* The ID defined by the scope field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
55153
55194
|
* @type {string}
|
|
55154
55195
|
* @memberof ApprovalsV2025ApiPutApprovalsConfig
|
|
55155
55196
|
*/
|
|
55156
55197
|
readonly id: string;
|
|
55157
55198
|
/**
|
|
55158
|
-
* The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE
|
|
55159
|
-
* @type {'DOMAIN_OBJECT' | 'ROLE' | '
|
|
55199
|
+
* The scope of the field, where [[id]]:[[scope]] is the following [[roleID]]:ROLE [[entitlementID]]:ENTITLEMENT [[accessProfileID]]:ACCESS_PROFILE ENTITLEMENT_DESCRIPTIONS:APPROVAL_TYPE ACCESS_REQUEST_APPROVAL:APPROVAL_TYPE [[tenantID]]:TENANT [[domainObjectID]]:DOMAIN_OBJECT
|
|
55200
|
+
* @type {'DOMAIN_OBJECT' | 'ROLE' | 'ACCESS_PROFILE' | 'ENTITLEMENT' | 'APPROVAL_TYPE' | 'TENANT'}
|
|
55160
55201
|
* @memberof ApprovalsV2025ApiPutApprovalsConfig
|
|
55161
55202
|
*/
|
|
55162
55203
|
readonly scope: PutApprovalsConfigScopeV2025;
|
|
@@ -55396,12 +55437,10 @@ export declare class ApprovalsV2025Api extends BaseAPI {
|
|
|
55396
55437
|
export declare const DeleteApprovalConfigRequestScopeV2025: {
|
|
55397
55438
|
readonly DomainObject: "DOMAIN_OBJECT";
|
|
55398
55439
|
readonly Role: "ROLE";
|
|
55399
|
-
readonly Application: "APPLICATION";
|
|
55400
55440
|
readonly AccessProfile: "ACCESS_PROFILE";
|
|
55401
55441
|
readonly Entitlement: "ENTITLEMENT";
|
|
55402
55442
|
readonly ApprovalType: "APPROVAL_TYPE";
|
|
55403
55443
|
readonly Tenant: "TENANT";
|
|
55404
|
-
readonly Source: "SOURCE";
|
|
55405
55444
|
};
|
|
55406
55445
|
export type DeleteApprovalConfigRequestScopeV2025 = typeof DeleteApprovalConfigRequestScopeV2025[keyof typeof DeleteApprovalConfigRequestScopeV2025];
|
|
55407
55446
|
/**
|
|
@@ -55410,12 +55449,10 @@ export type DeleteApprovalConfigRequestScopeV2025 = typeof DeleteApprovalConfigR
|
|
|
55410
55449
|
export declare const PutApprovalsConfigScopeV2025: {
|
|
55411
55450
|
readonly DomainObject: "DOMAIN_OBJECT";
|
|
55412
55451
|
readonly Role: "ROLE";
|
|
55413
|
-
readonly Application: "APPLICATION";
|
|
55414
55452
|
readonly AccessProfile: "ACCESS_PROFILE";
|
|
55415
55453
|
readonly Entitlement: "ENTITLEMENT";
|
|
55416
55454
|
readonly ApprovalType: "APPROVAL_TYPE";
|
|
55417
55455
|
readonly Tenant: "TENANT";
|
|
55418
|
-
readonly Source: "SOURCE";
|
|
55419
55456
|
};
|
|
55420
55457
|
export type PutApprovalsConfigScopeV2025 = typeof PutApprovalsConfigScopeV2025[keyof typeof PutApprovalsConfigScopeV2025];
|
|
55421
55458
|
/**
|
|
@@ -70426,23 +70463,23 @@ export declare const IAIRoleMiningV2025ApiAxiosParamCreator: (configuration?: Co
|
|
|
70426
70463
|
* @summary Update a potential role
|
|
70427
70464
|
* @param {string} sessionId The role mining session id
|
|
70428
70465
|
* @param {string} potentialRoleId The potential role summary id
|
|
70429
|
-
* @param {Array<
|
|
70466
|
+
* @param {Array<JsonPatchOperationRoleMiningV2025>} jsonPatchOperationRoleMiningV2025
|
|
70430
70467
|
* @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
|
|
70431
70468
|
* @param {*} [axiosOptions] Override http request option.
|
|
70432
70469
|
* @throws {RequiredError}
|
|
70433
70470
|
*/
|
|
70434
|
-
patchPotentialRole: (sessionId: string, potentialRoleId: string,
|
|
70471
|
+
patchPotentialRole: (sessionId: string, potentialRoleId: string, jsonPatchOperationRoleMiningV2025: Array<JsonPatchOperationRoleMiningV2025>, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig) => Promise<RequestArgs>;
|
|
70435
70472
|
/**
|
|
70436
70473
|
* The method updates an existing potential role using. The following fields can be modified: * `description` * `name` * `saved` >**NOTE: All other fields cannot be modified.**
|
|
70437
70474
|
* @summary Update a potential role session
|
|
70438
70475
|
* @param {string} sessionId The role mining session id
|
|
70439
70476
|
* @param {string} potentialRoleId The potential role summary id
|
|
70440
|
-
* @param {Array<
|
|
70477
|
+
* @param {Array<JsonPatchOperationRoleMiningV2025>} jsonPatchOperationRoleMiningV2025
|
|
70441
70478
|
* @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
|
|
70442
70479
|
* @param {*} [axiosOptions] Override http request option.
|
|
70443
70480
|
* @throws {RequiredError}
|
|
70444
70481
|
*/
|
|
70445
|
-
patchPotentialRoleSession: (sessionId: string, potentialRoleId: string,
|
|
70482
|
+
patchPotentialRoleSession: (sessionId: string, potentialRoleId: string, jsonPatchOperationRoleMiningV2025: Array<JsonPatchOperationRoleMiningV2025>, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig) => Promise<RequestArgs>;
|
|
70446
70483
|
/**
|
|
70447
70484
|
* The method updates an existing role mining session using PATCH. Supports op in {\"replace\"} and changes to pruneThreshold and/or minNumIdentitiesInPotentialRole. The potential roles in this role mining session is then re-calculated.
|
|
70448
70485
|
* @summary Patch a role mining session
|
|
@@ -70730,23 +70767,23 @@ export declare const IAIRoleMiningV2025ApiFp: (configuration?: Configuration) =>
|
|
|
70730
70767
|
* @summary Update a potential role
|
|
70731
70768
|
* @param {string} sessionId The role mining session id
|
|
70732
70769
|
* @param {string} potentialRoleId The potential role summary id
|
|
70733
|
-
* @param {Array<
|
|
70770
|
+
* @param {Array<JsonPatchOperationRoleMiningV2025>} jsonPatchOperationRoleMiningV2025
|
|
70734
70771
|
* @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
|
|
70735
70772
|
* @param {*} [axiosOptions] Override http request option.
|
|
70736
70773
|
* @throws {RequiredError}
|
|
70737
70774
|
*/
|
|
70738
|
-
patchPotentialRole(sessionId: string, potentialRoleId: string,
|
|
70775
|
+
patchPotentialRole(sessionId: string, potentialRoleId: string, jsonPatchOperationRoleMiningV2025: Array<JsonPatchOperationRoleMiningV2025>, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
|
|
70739
70776
|
/**
|
|
70740
70777
|
* The method updates an existing potential role using. The following fields can be modified: * `description` * `name` * `saved` >**NOTE: All other fields cannot be modified.**
|
|
70741
70778
|
* @summary Update a potential role session
|
|
70742
70779
|
* @param {string} sessionId The role mining session id
|
|
70743
70780
|
* @param {string} potentialRoleId The potential role summary id
|
|
70744
|
-
* @param {Array<
|
|
70781
|
+
* @param {Array<JsonPatchOperationRoleMiningV2025>} jsonPatchOperationRoleMiningV2025
|
|
70745
70782
|
* @param {string} [xSailPointExperimental] Use this header to enable this experimental API.
|
|
70746
70783
|
* @param {*} [axiosOptions] Override http request option.
|
|
70747
70784
|
* @throws {RequiredError}
|
|
70748
70785
|
*/
|
|
70749
|
-
patchPotentialRoleSession(sessionId: string, potentialRoleId: string,
|
|
70786
|
+
patchPotentialRoleSession(sessionId: string, potentialRoleId: string, jsonPatchOperationRoleMiningV2025: Array<JsonPatchOperationRoleMiningV2025>, xSailPointExperimental?: string, axiosOptions?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise<object>>;
|
|
70750
70787
|
/**
|
|
70751
70788
|
* The method updates an existing role mining session using PATCH. Supports op in {\"replace\"} and changes to pruneThreshold and/or minNumIdentitiesInPotentialRole. The potential roles in this role mining session is then re-calculated.
|
|
70752
70789
|
* @summary Patch a role mining session
|
|
@@ -71780,10 +71817,10 @@ export interface IAIRoleMiningV2025ApiPatchPotentialRoleRequest {
|
|
|
71780
71817
|
readonly potentialRoleId: string;
|
|
71781
71818
|
/**
|
|
71782
71819
|
*
|
|
71783
|
-
* @type {Array<
|
|
71820
|
+
* @type {Array<JsonPatchOperationRoleMiningV2025>}
|
|
71784
71821
|
* @memberof IAIRoleMiningV2025ApiPatchPotentialRole
|
|
71785
71822
|
*/
|
|
71786
|
-
readonly
|
|
71823
|
+
readonly jsonPatchOperationRoleMiningV2025: Array<JsonPatchOperationRoleMiningV2025>;
|
|
71787
71824
|
/**
|
|
71788
71825
|
* Use this header to enable this experimental API.
|
|
71789
71826
|
* @type {string}
|
|
@@ -71811,10 +71848,10 @@ export interface IAIRoleMiningV2025ApiPatchPotentialRoleSessionRequest {
|
|
|
71811
71848
|
readonly potentialRoleId: string;
|
|
71812
71849
|
/**
|
|
71813
71850
|
*
|
|
71814
|
-
* @type {Array<
|
|
71851
|
+
* @type {Array<JsonPatchOperationRoleMiningV2025>}
|
|
71815
71852
|
* @memberof IAIRoleMiningV2025ApiPatchPotentialRoleSession
|
|
71816
71853
|
*/
|
|
71817
|
-
readonly
|
|
71854
|
+
readonly jsonPatchOperationRoleMiningV2025: Array<JsonPatchOperationRoleMiningV2025>;
|
|
71818
71855
|
/**
|
|
71819
71856
|
* Use this header to enable this experimental API.
|
|
71820
71857
|
* @type {string}
|