The Role Resource Set Bindings API provides operations to assign members to a Custom Role that targets resources in a Resource Set. These operations allow you to assign custom roles to admins who are scoped to the designated resources in a resource set.
The returned role resource set binding is a single unique combination of a resource set, a custom role, and members.
okta.roles.read
Lists all bindings for a resource set with pagination support.
The returned roles
array contains the roles for each binding associated with the specified resource set. If there are more than 100 bindings for the specified resource set, links.next
provides the resource with pagination for the next list of bindings.
after | string The cursor to use for pagination. It is an opaque string that specifies your current location in the list and is obtained from the |
OK
Forbidden
Not Found
Too Many Requests
{- "roles": [
- {
- "id": "cr0WxyzJxGIr0ouum0g4",
- "_links": {
}
}
], - "_links": {
- "self": {
}, - "resource-set": {
},
}
}
okta.roles.manage
Creates a binding for the resource set, custom role, and members (users or groups)
Success
Bad Request
Forbidden
Not Found
Too Many Requests
{- "role": "cr0Yq6IJxGIr0ouum0g3",
}
{- "_links": {
- "bindings": {
},
}
}
okta.roles.read
Retrieves the binding of a role (identified by roleIdOrLabel
) for a resource set (identified by resourceSetIdOrLabel
)
OK
Forbidden
Not Found
Too Many Requests
{- "id": "cr0Yq6IJxGIr0ouum0g3",
- "_links": {
}
}
okta.roles.manage
Deletes a binding of a role (identified by roleIdOrLabel
) and a resource set (identified by resourceSetIdOrLabel
)
No Content
Forbidden
Not Found
Too Many Requests
{- "errorCode": "E0000006",
- "errorSummary": "You do not have permission to perform the requested action",
- "errorLink": "E0000006",
- "errorId": "sampleNUSD_8fdkFd8fs8SDBK",
- "errorCauses": [ ]
}