Access Certification Definition Type REST Endpoint

Last modified 13 Mar 2024 13:32 +01:00
Table of Contents

Description

Here we are describing the Access Certification Definition object type in relation to midPoints REST API. The Access Certification Definition objects are a part of the REST API web resources. .Endpoint

accessCertificationDefinitions/

Operations And Examples

The Access Certification Definition Type endpoint operations and examples.

In our examples we are authenticating with the credentials, name "administrator" and password "y0uR_P455woR*d" on a localhost instance running on port 8080.

For some help regarding the REST examples please see this link:

How to use MidPoint REST examples

Create Access Certification Definition Type Object

Get Access Certification Definition Type Objects

Get operation for fetching a single specific object.

Search for Access Certification Definition Type Objects

Search operation usable for fetching the full list of objects or a list based on filter.

ModifyAccess Certification Definition Type Objects

Delete Access Certification Definition Type Objects

Generate and Validate Operations for Access Certification Definition Type Objects

Operations to generate or validate values.

JSON Example

Example output of information regarding a specific Access Certification Definition object. Metadata is usually a part of the output, yet it was removed for the purpose of the example.

Show JSON Example 
{
	"accessCertificationDefinition": {
		"oid": "8f37ee15-9945-4872-8b90-8cb75f304b41",
		"version": "2",
		"name": "User's assignemnts according to the manager",
		"description": "Certifies all users' assignments. Everything is certified by the administrator.",
		"operationExecution": {},
		"iteration": 0,
		"iterationToken": "",
		"handlerUri": "http://midpoint.evolveum.com/xml/ns/public/certification/handlers-3#direct-assignment",
		"scopeDefinition": {
			"@type": "c:AccessCertificationAssignmentReviewScopeType",
			"objectType": "#UserType",
			"searchFilter": {
				"org": {
					"@ns": "http://prism.evolveum.com/xml/ns/public/query-3",
					"path": "parentOrgRef",
					"orgRef": {
						"oid": "7d1e7065-455c-48d5-a469-1734fd255739",
						"scope": "SUBTREE"
					}
				}
			},
			"itemSelectionExpression": {
				"script": [
					{}
				]
			},
			"includeRoles": true,
			"includeOrgs": true,
			"includeResources": false
		},
		"remediationDefinition": {
			"style": "automated"
		},
		"stageDefinition": {
			"@id": 1,
			"number": 1,
			"name": "Manager's review",
			"description": "In this stage, the manager has to review all the assignments of users belonging to his org unit.",
			"duration": "P14D",
			"notifyBeforeDeadline": [
				"PT48H",
				"PT12H"
			],
			"notifyOnlyWhenNoDecision": true,
			"reviewerSpecification": {
				"useObjectManager": {
					"allowSelf": false
				}
			},
			"timedActions": {
				"@id": 2,
				"time": {
					"value": [
						"P7D"
					]
				},
				"actions": {
					"escalate": {
						"approverRef": {
							"oid": "00000000-0000-0000-0000-000000000002",
							"relation": "org:default",
							"type": "c:UserType"
						},
						"delegationMethod": "addAssignees",
						"escalationLevelName": "Level1"
					}
				}
			}
		},
		"lastCampaignIdUsed": 1
	}
}

See Also

Was this page helpful?
YES NO
Thanks for your feedback