Assigns a new permission to the group

POST 
/references/users/groups/:groupID/permissions

'Assigns a new permission to the group. Members of the group will be granted this permission.'

Request

Path Parameters

groupID uuidrequired

Header Parameters

x-fapi-auth-date string

Possible values: Value must match regular expression ^(Mon|Tue|Wed|Thu|Fri|Sat|Sun), \d{2} (Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec) \d{4} \d{2}:\d{2}:\d{2} (GMT|UTC)$

The time when the PSU last logged in with the TPP. All dates in the HTTP headers are represented as RFC 7231 Full Dates. An example is below: Sun, 10 Sep 2017 19:43:31 UTC

x-fapi-customer-ip-address string

The PSU's IP address if the PSU is currently logged in with the TPP.

x-fapi-interaction-id string

An RFC4122 UID used as a correlation id.

x-customer-user-agent string

Indicates the user-agent that the PSU is using.

application/json

Body

Request object to create a binding between an IDP and user group

anyOf

UserGroupOrganisationAdministratorPermissionCreationRequest

A request object used to assign an organisation administrator permission to a user group

PermissionType UserGroupPermissionTypeEnum (string)required

Possible values: [OrganisationAdministrator, DomainUser]

UserGroupDomainUserPermissionCreationRequest

A request object used to assign a domain user permission to a user group

PermissionType UserGroupPermissionTypeEnum (string)required

Possible values: [OrganisationAdministrator, DomainUser]

AuthorisationDomainID uuidrequired

Unique identifier for an authorisation domain

AuthorisationDomainRoleID uuidrequired

Possible values: <= 40 characters

The unique ID of an authorisation domain role

AuthorisationDomainUserTypeID uuidrequired

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

Unique authorisation domain user type UUID

AuthorisationDomainSystemID uuidrequired

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

Unique authorisation domain system UUID

Responses

201

A specific user group permission

Response Headers

• x-fapi-interaction-id

  string

application/json

Schema

Schema

anyOf

UserGroupOrganisationAdministratorPermissionCreationRequest

A request object used to assign an organisation administrator permission to a user group

PermissionType UserGroupPermissionTypeEnum (string)required

Possible values: [OrganisationAdministrator, DomainUser]

UserGroupDomainUserPermissionCreationRequest

A request object used to assign a domain user permission to a user group

PermissionType UserGroupPermissionTypeEnum (string)required

Possible values: [OrganisationAdministrator, DomainUser]

AuthorisationDomainID uuidrequired

Unique identifier for an authorisation domain

AuthorisationDomainRoleID uuidrequired

Possible values: <= 40 characters

The unique ID of an authorisation domain role

AuthorisationDomainUserTypeID uuidrequired

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

Unique authorisation domain user type UUID

AuthorisationDomainSystemID uuidrequired

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

Unique authorisation domain system UUID

ID uuid

Unique identifier of the given User Group

ManagementType UserGroupManagementType (string)

Possible values: [directory, raidiam]

Indicator as to which platform can manage the user group

AuthorisationDomainName AuthorisationDomainName (string)

Possible values: non-empty and <= 30 characters, Value must match regular expression ^[^<>]*$

Authorisation Domain Name

AuthorisationDomainRoleName AuthorisationDomainRoleName (string)

Possible values: non-empty and <= 60 characters, Value must match regular expression ^[^<>]*$

The authorisation domain role name

AuthorisationDomainUserTypeName AuthorisationDomainUserTypeName (string)

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

The name of the authorisation domain user type

AuthorisationDomainSystemName AuthorisationDomainSystemName (string)

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

The name of the authorisation domain user type

CreatedAt date-time
UpdatedAt date-time

Example (from schema)

{
  "ID": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
  "ManagementType": "directory",
  "AuthorisationDomainName": "string",
  "AuthorisationDomainRoleName": "PAGTO",
  "AuthorisationDomainUserTypeName": "string",
  "AuthorisationDomainSystemName": "string",
  "CreatedAt": "2024-07-29T15:51:28.071Z",
  "UpdatedAt": "2024-07-29T15:51:28.071Z",
  "PermissionType": "OrganisationAdministrator"
}

401

Unauthorized

Response Headers

• x-fapi-interaction-id

  string

403

Forbidden

Response Headers

• x-fapi-interaction-id

  string

406

Not Acceptable

Response Headers

• x-fapi-interaction-id

  string

429

Too many requests, maximum capacity reached. Requests are now throttled.

Response Headers

• x-fapi-interaction-id

  string

500

Internal Server Error

Response Headers

• x-fapi-interaction-id

  string

502

Bad Gateway

Response Headers

• x-fapi-interaction-id

  string

504

Upstream timeout, insufficient capacity to serve request. More capacity being brought online. Please try again.

Response Headers

• x-fapi-interaction-id

  string

Loading...