Realm Assignments

Note: This API is only available if you're subscribed to Okta Identity Governance or Secure Partner Access. Contact your Customer Success Manager or Account Executive for more information.

The Realm Assignments API provides operations to manage realm assignments. See Realm assignments.

List all realm assignments
OAuth 2.0:
okta.realmAssignments.read

Lists all realm assignments

Request

query Parameters

limit	integer <int32> <= 1000 Default: 200 Specifies the batch size of the results to be returned
after	string The cursor used for pagination. It represents the priority of the last realm assignment returned in the previous fetch operation.

Responses

200

OK

403

Forbidden

429

Too Many Requests

get/api/v1/realm-assignments

Request samples

Response samples

200
403
429

application/json

[{"id": "rul2jy7jLUlnO3ng00g4",
"status": "ACTIVE",
"name": "Realm Assignment 1",
"created": "2022-04-04T15:56:05.000Z",
"lastUpdated": "2022-05-05T18:15:44.000Z",
"isDefault": false,
"conditions": {"profileSourceId": "0oa4enoRyjwSCy5hx0g4",
"expression": {"value": "user.profile.role ==\\\"Manager\\\""
}
},
"actions": {"assignUserToRealm": {"realmId": "00g1b7rvh0xPLKXFf0g5"
}
},
"priority": 0,
"_links": {"self": {"rel": "self",
"href": "http://your-subdomain.okta.com/api/v1/realm-assignments/rul2jy7jLUlnO3ng00g4",
"method": "GET"
}
}
},
{"id": "rul2jy7jLUlnO5ng00g4",
"status": "ACTIVE",
"name": "Catch-all",
"created": "2022-04-04T15:56:05.000Z",
"lastUpdated": "2022-05-05T18:15:44.000Z",
"isDefault": true,
"conditions": {"profileSourceId": "0oa4enoRyjwSCy6hx0g4,",
"expression": {"value": "string"
}
},
"actions": {"assignUserToRealm": {"realmId": "00g1b7rvh0xPLKXFf2g5"
}
},
"priority": 499,
"_links": {"self": {"rel": "self",
"href": "http://your-subdomain.okta.com/api/v1/realm-assignments/rul2jy7jLUlnO5ng00g4",
"method": "GET"
}
}
}
]

Create a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Creates a new realm assignment

Request

Request Body schema: application/json
required

object (Actions)

object (AssignUserToRealm)

realmId

string

object (Conditions)

object (Expression)

value

string

profileSourceId

string

name

string

priority

integer

Responses

201

Created

400

Bad Request

403

Forbidden

429

Too Many Requests

post/api/v1/realm-assignments

Request samples

application/json

{"actions": {"assignUserToRealm": {"realmId": "string"
}
},
"conditions": {"expression": {"value": "string"
},
"profileSourceId": "string"
},
"name": "string",
"priority": 0
}

Response samples

201
400
403
429

application/json

{"actions": {"assignUserToRealm": {"realmId": "string"
}
},
"conditions": {"expression": {"value": "string"
},
"profileSourceId": "string"
},
"created": "2019-08-24T14:15:22Z",
"id": "string",
"isDefault": true,
"lastUpdated": "2019-08-24T14:15:22Z",
"name": "string",
"priority": 0,
"status": "ACTIVE",
"_links": {"self": {"hints": {"allow": ["DELETE"
]
},
"href": "string",
"name": "string",
"templated": true,
"type": "string"
}
}
}

List all realm assignment operations
OAuth 2.0:
okta.realmAssignments.read

Lists all realm assignment operations. The upper limit is 200 and operations are sorted in descending order from most recent to oldest by ID.

Request

query Parameters

limit	integer <int32> <= 1000 Default: 200 Specifies the batch size of the results to be returned
after	string The cursor used for pagination. It represents the last privileged resource ID returned in the previous fetch operation. Example: after=oprbuthToCeLWOBwh0g4

Responses

200

OK

403

Forbidden

429

Too Many Requests

get/api/v1/realm-assignments/operations

Request samples

Response samples

200
403
429

application/json

[{"id": "rre4mje4ez6B2a7B60g7",
"type": "realm:assignment",
"status": "COMPLETED",
"created": "2023-10-25T21:02:54.000Z",
"started": "2023-10-25T21:02:54.000Z",
"completed": "2023-10-25T21:02:54.000Z",
"realmId": "00g1b7rvh0xPLKXFf0g5",
"realmName": "Realm Name",
"assignmentOperation": {"configuration": {"id": "0pr1b7rxZj2ibQzfP0g5",
"name": "Realm Assignment 1",
"conditions": {"profileSourceId": "0oa4enoRyjwSCy5hx0g4",
"expression": {"value": "string"
}
},
"actions": {"assignUserToRealm": {"realmId": "00g1b7rvh0xPLKXFf0g5"
}
}
}
},
"numUserMoved": 50,
"_links": {"self": {"rel": "self",
"href": "http://your-subdomain.okta.com/api/v1/operations/rre4mje4ez6B2a7B60g7",
"method": "GET"
}
}
},
{"id": "rre4mje4ez7B2a7B60g7",
"type": "realm:assignment",
"status": "COMPLETED",
"created": "2023-10-25T21:02:54.000Z",
"started": "2023-10-25T21:02:54.000Z",
"completed": "2023-10-25T21:02:54.000Z",
"assignmentOperation": {"configuration": {"id": "ALL",
"name": "All Assignments"
}
},
"numUserMoved": 50,
"_links": {"self": {"rel": "self",
"href": "http://your-subdomain.okta.com/api/v1/operations/rre4mje4ez7B2a7B60g7",
"method": "GET"
}
}
}
]

Execute a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Executes a realm assignment

Request

Request Body schema: application/json
required

assignmentId

string

Responses

201

Created

400

Bad Request

403

Forbidden

429

Too Many Requests

post/api/v1/realm-assignments/operations

Request samples

application/json

{"assignmentId": "0pr1b7rxZj2ibQzfP0g5"
}

Response samples

201
400
403
429

application/json

{"id": "rre4mje4ez6B2a7B60g7",
"type": "realm:assignment",
"status": "COMPLETED",
"created": "2023-10-25T21:02:54.000Z",
"started": "2023-10-25T21:02:54.000Z",
"completed": "2023-10-25T21:02:54.000Z",
"realmId": "00g1b7rvh0xPLKXFf0g5",
"realmName": "Realm Name",
"assignmentOperation": {"configuration": {"id": "0pr1b7rxZj2ibQzfP0g5",
"name": "Realm Assignment 1",
"conditions": {"profileSourceId": "0oa4enoRyjwSCy5hx0g4",
"expression": {"value": "string"
}
},
"actions": {"assignUserToRealm": {"realmId": "00g1b7rvh0xPLKXFf0g5"
}
}
}
},
"numUserMoved": 50,
"_links": {"self": {"rel": "self",
"href": "http://your-subdomain.okta.com/api/v1/operations/rre4mje4ez6B2a7B60g7",
"method": "GET"
}
}
}

Retrieve a realm assignment
OAuth 2.0:
okta.realmAssignments.read

Retrieves a realm assignment

Request

path Parameters

assignmentId

required

string

id of the realm assignment

Example: rul2jy7jLUlnO3ng00g4

Responses

200

Success

400

Bad Request

403

Forbidden

404

Not Found

429

Too Many Requests

get/api/v1/realm-assignments/{assignmentId}

Request samples

Response samples

200
400
403
404
429

application/json

{"id": "rul2jy7jLUlnO3ng00g4",
"status": "ACTIVE",
"name": "Realm Assignment 1",
"created": "2022-04-04T15:56:05.000Z",
"lastUpdated": "2022-05-05T18:15:44.000Z",
"isDefault": false,
"conditions": {"profileSourceId": "0oa4enoRyjwSCy5hx0g4",
"expression": {"value": "string"
}
},
"actions": {"assignUserToRealm": {"realmId": "00g1b7rvh0xPLKXFf0g5"
}
},
"priority": 0,
"_links": {"self": {"rel": "self",
"href": "http://your-subdomain.okta.com/api/v1/realm-assignments/rul2jy7jLUlnO3ng00g4",
"method": "GET"
}
}
}

Replace a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Replaces a realm assignment

Request

path Parameters

assignmentId

required

string

id of the realm assignment

Example: rul2jy7jLUlnO3ng00g4

Request Body schema: application/json
required

object (Actions)

object (AssignUserToRealm)

realmId

string

object (Conditions)

object (Expression)

value

string

profileSourceId

string

name

string

priority

integer

Responses

200

Success

400

Bad Request

403

Forbidden

404

Not Found

429

Too Many Requests

put/api/v1/realm-assignments/{assignmentId}

Request samples

application/json

{"actions": {"assignUserToRealm": {"realmId": "string"
}
},
"conditions": {"expression": {"value": "string"
},
"profileSourceId": "string"
},
"name": "string",
"priority": 0
}

Response samples

200
400
403
404
429

application/json

{"actions": {"assignUserToRealm": {"realmId": "string"
}
},
"conditions": {"expression": {"value": "string"
},
"profileSourceId": "string"
},
"created": "2019-08-24T14:15:22Z",
"id": "string",
"isDefault": true,
"lastUpdated": "2019-08-24T14:15:22Z",
"name": "string",
"priority": 0,
"status": "ACTIVE",
"_links": {"self": {"hints": {"allow": ["DELETE"
]
},
"href": "string",
"name": "string",
"templated": true,
"type": "string"
}
}
}

Delete a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Deletes a realm assignment

Request

path Parameters

assignmentId

required

string

id of the realm assignment

Example: rul2jy7jLUlnO3ng00g4

Responses

204

No Content

400

Bad Request

403

Forbidden

404

Not Found

429

Too Many Requests

delete/api/v1/realm-assignments/{assignmentId}

Request samples

Response samples

400
403
404
429

application/json

{"errorCauses": [{"errorSummary": "string"
}
],
"errorCode": "string",
"errorId": "string",
"errorLink": "string",
"errorSummary": "string"
}

Activate a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Activates a realm assignment

Request

path Parameters

assignmentId

required

string

id of the realm assignment

Example: rul2jy7jLUlnO3ng00g4

Responses

204

No Content

400

Bad Request

403

Forbidden

404

Not Found

429

Too Many Requests

post/api/v1/realm-assignments/{assignmentId}/lifecycle/activate

Request samples

Response samples

400
403
404
429

application/json

{"errorCode": "E0000001",
"errorSummary": "Api validation failed: {0}",
"errorLink": "E0000001",
"errorId": "sampleiCF-8D5rLW6myqiPItW",
"errorCauses": [ ]
}

Deactivate a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Deactivates a realm assignment

Request

path Parameters

assignmentId

required

string

id of the realm assignment

Example: rul2jy7jLUlnO3ng00g4

Responses

204

No Content

400

Bad Request

403

Forbidden

404

Not Found

429

Too Many Requests

post/api/v1/realm-assignments/{assignmentId}/lifecycle/deactivate

Request samples

Response samples

400
403
404
429

application/json

{"errorCode": "E0000001",
"errorSummary": "Api validation failed: {0}",
"errorLink": "E0000001",
"errorId": "sampleiCF-8D5rLW6myqiPItW",
"errorCauses": [ ]
}

Realm Assignments

List all realm assignmentsOAuth 2.0: okta.realmAssignments.read

query Parameters

Create a realm assignmentOAuth 2.0: okta.realmAssignments.manage

Request Body schema: application/jsonrequired

List all realm assignment operationsOAuth 2.0: okta.realmAssignments.read

query Parameters

Execute a realm assignmentOAuth 2.0: okta.realmAssignments.manage

Request Body schema: application/jsonrequired

Retrieve a realm assignmentOAuth 2.0: okta.realmAssignments.read

path Parameters

Replace a realm assignmentOAuth 2.0: okta.realmAssignments.manage

path Parameters

Request Body schema: application/jsonrequired

Delete a realm assignmentOAuth 2.0: okta.realmAssignments.manage

path Parameters

Activate a realm assignmentOAuth 2.0: okta.realmAssignments.manage

path Parameters

Deactivate a realm assignmentOAuth 2.0: okta.realmAssignments.manage

path Parameters

List all realm assignments
OAuth 2.0:
okta.realmAssignments.read

Create a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Request Body schema: application/json
required

List all realm assignment operations
OAuth 2.0:
okta.realmAssignments.read

Execute a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Request Body schema: application/json
required

Retrieve a realm assignment
OAuth 2.0:
okta.realmAssignments.read

Replace a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Request Body schema: application/json
required

Delete a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Activate a realm assignment
OAuth 2.0:
okta.realmAssignments.manage

Deactivate a realm assignment
OAuth 2.0:
okta.realmAssignments.manage