Show a role
Gets detailed information about a specific role, including the role members.
If a role A is granted to a role B, then role A is said to have role B as a member. These relationships are described in the “members” portion of the returned JSON.
Kinds of roles
|
Kind |
Description |
|---|---|
|
User |
One unique human |
|
Host |
A single logical machine (in the broad sense, not just physical) |
|
Layer |
A collection of hosts that have the same privileges |
|
Group |
A collection of users and groups that have the same privileges |
|
Policy |
A role which owns of a set of related objects |
|
Entity IDs must be URL-encoded. |
URI
|
Any identifier included in the URL must be URL-encoded to be recognized by the Conjur API.
Examples:
|
Identifier |
URL-Encoded |
|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Example with curl
Suppose your account is “myorg” and you want to get information about the user “alice”:
|
Headers
|
Field |
Description |
Example |
|---|---|---|
|
Authorization |
Conjur access token |
Token token=“eyJkYX…Rhb=” |
Response
|
Code |
Description |
|---|---|
|
200 |
The response body contains the requested role |
|
401 |
The request lacks valid authentication credentials |
|
403 |
The authenticated user lacks the necessary privilege |
|
404 |
The requested role does not exist |
Example URI
Supposing the requested role is a user named “otto” at an organization called “myorg”:
|
URI Parameters
|
Parameter |
Type |
Mandatory |
Description |
|---|---|---|---|
|
account |
String |
Yes |
Organization account name. Example: |
|
kind |
String |
Yes |
kind of role requested Example: |
|
identifier |
String |
Yes |
identifier of the role Example: |
Request
Headers
|
Response 200
Headers
|
Body
|
