An OPA Group is a collection of Users that share permissions and access to Resources.
See Groups.
Lists all Groups for your Team
This endpoint requires one of the following roles: pam_admin
, resource_admin
, delegated_resource_admin
, security_admin
.
OK
{- "list": [
- {
- "id": "6783cefe-b243-4c59-a0a2-5839d2c873fb",
- "name": "compsons",
- "roles": [
- "pam_admin",
- "resource_admin"
], - "deleted_at": "0001-01-01T00:00:00Z"
}, - {
- "id": "b5a346c5-bafa-40eb-bb9f-401c0f57db36",
- "name": "compsons",
- "roles": [
- "pam_admin",
- "resource_admin"
], - "deleted_at": "0001-01-01T00:00:00Z"
}
]
}
Creates a Group for your Team. Groups allow you to assign RBAC roles to users and manage user access to Resource Groups and Projects. To assign the delegated_resource_admin
role, you need to add the Group to the delegated_resource_admin_groups
list for a specific Resource Group. See Resource Groups.
This endpoint requires the following role: pam_admin
.
Created
{- "deleted_at": null,
- "id": "",
- "name": "compsons",
- "roles": [
- "pam_admin",
- "resource_admin"
]
}
{- "deleted_at": "0001-01-01T00:00:00Z",
- "id": "b5a346c5-bafa-40eb-bb9f-401c0f57db36",
- "name": "compsons",
- "roles": [
- "pam_admin",
- "resource_admin"
]
}
Retrieves a specified Group
This endpoint requires one of the following roles: pam_admin
, resource_admin
, delegated_resource_admin
, security_admin
.
OK
{- "deleted_at": "0001-01-01T00:00:00Z",
- "id": "b5a346c5-bafa-40eb-bb9f-401c0f57db36",
- "name": "compsons",
- "roles": [
- "pam_admin",
- "resource_admin"
]
}
Updates the access privileges of the specified Group. To assign the delegated_resource_admin
role, you need to add the Group to the delegated_resource_admin_groups
list for a specific Resource Group. See Resource Groups.
This endpoint requires the following role: pam_admin
.
No Content
{- "roles": [
- "pam_admin",
- "resource_admin"
]
}
Removes a Group from your Team. This also removes the Group from any associated Projects.
This endpoint requires the following role: pam_admin
.
No Content
Lists all Users in a specified Group
This endpoint requires one of the following roles: pam_admin
, resource_admin
, delegated_resource_admin
, security_admin
.
OK
{- "list": [
- {
- "team_name": "william-faulkner",
- "id": "c5cf4dfd-1726-45e3-a1c9-17598d59004d",
- "name": "Benjy.Compson",
- "status": "DISABLED",
- "details": {
- "first_name": "Benjy",
- "last_name": "Compson",
- "full_name": "Benjy Compson",
- "email": "benjy.compson@example.com"
}, - "user_type": "human",
- "deleted_at": null
}
]
}
Adds a User to a Group
This endpoint requires the following role: pam_admin
.
No Content
{- "name": "Jason.Compson.IV"
}