Provides operations to manage policy rules for the given authServerId
, policyId
, and ruleId
.
okta.authorizationServers.read
Lists all policy rules for the specified Custom Authorization Server and Policy
Success
Forbidden
Not Found
Too Many Requests
[- {
- "type": "RESOURCE_ACCESS",
- "id": "0prbsjfyl01zfSZ9K0h7",
- "status": "ACTIVE",
- "name": "Default Policy Rule",
- "priority": 1,
- "created": "2017-08-25T16:57:02.000Z",
- "lastUpdated": "2017-08-30T14:51:05.000Z",
- "system": false,
- "conditions": {
- "people": {
- "users": {
- "include": [ ],
- "exclude": [ ]
}, - "groups": {
- "include": [
- "EVERYONE"
], - "exclude": [ ]
}
}, - "grantTypes": {
- "include": [
- "implicit",
- "client_credentials",
- "authorization_code",
- "password"
]
}, - "scopes": {
- "include": [
- "*"
]
}
}, - "actions": {
- "token": {
- "accessTokenLifetimeMinutes": 60,
- "refreshTokenLifetimeMinutes": 0,
- "refreshTokenWindowMinutes": 10080,
- "inlineHook": {
- "id": "cal4egvp1mbMldrYN0g7"
}
}
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "GET",
- "PUT",
- "DELETE"
]
}, - "deactivate": {
- "hints": {
- "allow": [
- "POST"
]
}
}
}
}
}
]
okta.authorizationServers.manage
Creates a policy rule for the specified Custom Authorization Server and Policy
Created
Bad Request
Forbidden
Not Found
Too Many Requests
{- "type": "RESOURCE_ACCESS",
- "name": "Default Policy Rule",
- "priority": 1,
- "conditions": {
- "people": {
- "groups": {
- "include": [
- "EVERYONE"
]
}
}, - "grantTypes": {
- "include": [
- "implicit",
- "client_credentials",
- "authorization_code",
- "password"
]
}, - "scopes": {
- "include": [
- "*"
]
}
}, - "actions": {
- "token": {
- "accessTokenLifetimeMinutes": 60,
- "refreshTokenLifetimeMinutes": 0,
- "refreshTokenWindowMinutes": 10080,
- "inlineHook": {
- "id": "cal4egvp1mbMldrYN0g7"
}
}
}
}
{- "type": "RESOURCE_ACCESS",
- "id": "0prbsjfyl01zfSZ9K0h7",
- "status": "ACTIVE",
- "name": "Default Policy Rule",
- "priority": 1,
- "created": "2017-08-25T16:57:02.000Z",
- "lastUpdated": "2017-08-30T14:51:05.000Z",
- "system": false,
- "conditions": {
- "people": {
- "users": {
- "include": [ ],
- "exclude": [ ]
}, - "groups": {
- "include": [
- "EVERYONE"
], - "exclude": [ ]
}
}, - "grantTypes": {
- "include": [
- "implicit",
- "client_credentials",
- "authorization_code",
- "password"
]
}, - "scopes": {
- "include": [
- "*"
]
}
}, - "actions": {
- "token": {
- "accessTokenLifetimeMinutes": 60,
- "refreshTokenLifetimeMinutes": 0,
- "refreshTokenWindowMinutes": 10080,
- "inlineHook": {
- "id": "cal4egvp1mbMldrYN0g7"
}
}
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "GET",
- "PUT",
- "DELETE"
]
}, - "deactivate": {
- "hints": {
- "allow": [
- "POST"
]
}
}
}
}
}
okta.authorizationServers.read
Retrieves a policy rule by ruleId
Success
Forbidden
Not Found
Too Many Requests
{- "type": "RESOURCE_ACCESS",
- "id": "0prbsjfyl01zfSZ9K0h7",
- "status": "ACTIVE",
- "name": "Default Policy Rule",
- "priority": 1,
- "created": "2017-08-25T16:57:02.000Z",
- "lastUpdated": "2017-08-30T14:51:05.000Z",
- "system": false,
- "conditions": {
- "people": {
- "users": {
- "include": [ ],
- "exclude": [ ]
}, - "groups": {
- "include": [
- "EVERYONE"
], - "exclude": [ ]
}
}, - "grantTypes": {
- "include": [
- "implicit",
- "client_credentials",
- "authorization_code",
- "password"
]
}, - "scopes": {
- "include": [
- "*"
]
}
}, - "actions": {
- "token": {
- "accessTokenLifetimeMinutes": 60,
- "refreshTokenLifetimeMinutes": 0,
- "refreshTokenWindowMinutes": 10080,
- "inlineHook": {
- "id": "cal4egvp1mbMldrYN0g7"
}
}
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "GET",
- "PUT",
- "DELETE"
]
}, - "deactivate": {
- "hints": {
- "allow": [
- "POST"
]
}
}
}
}
}
okta.authorizationServers.manage
Replaces the configuration of the Policy Rule defined in the specified Custom Authorization Server and Policy
name required | string Name of the rule | ||||||||||||||||
required | object (AuthorizationServerPolicyRuleConditions) | ||||||||||||||||
| |||||||||||||||||
type required | string Rule type | ||||||||||||||||
object (AuthorizationServerPolicyRuleActions) | |||||||||||||||||
| |||||||||||||||||
priority | integer Priority of the rule | ||||||||||||||||
status | string Status of the rule | ||||||||||||||||
system | boolean Set to |
Success
Bad Request
Forbidden
Not Found
Too Many Requests
{- "type": "RESOURCE_ACCESS",
- "name": "Default Policy Rule",
- "priority": 1,
- "status": "ACTIVE",
- "conditions": {
- "people": {
- "groups": {
- "include": [
- "EVERYONE"
]
}
}, - "grantTypes": {
- "include": [
- "implicit",
- "client_credentials",
- "authorization_code",
- "password"
]
}, - "scopes": {
- "include": [
- "*"
]
}
}, - "actions": {
- "token": {
- "accessTokenLifetimeMinutes": 60,
- "refreshTokenLifetimeMinutes": 0,
- "refreshTokenWindowMinutes": 10080,
- "inlineHook": {
- "id": "cal4egvp1mbMldrYN0g7"
}
}
}
}
{- "type": "RESOURCE_ACCESS",
- "id": "0prbsjfyl01zfSZ9K0h7",
- "status": "ACTIVE",
- "name": "Default Policy Rule",
- "priority": 1,
- "created": "2017-08-25T16:57:02.000Z",
- "lastUpdated": "2017-08-30T14:51:05.000Z",
- "system": false,
- "conditions": {
- "people": {
- "users": {
- "include": [ ],
- "exclude": [ ]
}, - "groups": {
- "include": [
- "EVERYONE"
], - "exclude": [ ]
}
}, - "grantTypes": {
- "include": [
- "implicit",
- "client_credentials",
- "authorization_code",
- "password"
]
}, - "scopes": {
- "include": [
- "*"
]
}
}, - "actions": {
- "token": {
- "accessTokenLifetimeMinutes": 60,
- "refreshTokenLifetimeMinutes": 0,
- "refreshTokenWindowMinutes": 10080,
- "inlineHook": {
- "id": "cal4egvp1mbMldrYN0g7"
}
}
}, - "_links": {
- "self": {
- "hints": {
- "allow": [
- "GET",
- "PUT",
- "DELETE"
]
}, - "deactivate": {
- "hints": {
- "allow": [
- "POST"
]
}
}
}
}
}
okta.authorizationServers.manage
Deletes a Policy Rule defined in the specified Custom Authorization Server and Policy
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}
okta.authorizationServers.manage
Activates an authorization server policy rule
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}
okta.authorizationServers.manage
Deactivates an authorization server policy rule
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}