Hi,
Running VSCode with Powershell v7 and PSSailpoint v 1.2.1
I stumbled upon this issue when I needed to create or update AccessProfiles in bulk that also included swedish characters like åäö (UTF8) in name or description.
I just updated from 1.1.3 to 1.2.1 and had to do my workaround again.
----------- GET works partially --------
Lets say i have an AccessProfile with the name “Test Profile åäö”
$AccessProfileName = "Test Profile åäö"
$AccessProfile = Get-AccessProfiles -Filters $('name eq "' + $AccessProfileName + '"')
# Output in console for:
$AccessProfile.name
# will be
Test Profile ??????
#But i have the ID and can do what i need.
$AccessProfile.id
When it comes to New and Update i just get “Bad Request” when åäö is involved.
Example:
# Update accessprofile "Test Profile" to "Test Profile åäö"
$AccessProfileName = "Test Profile"
$AccessProfile = Get-AccessProfiles -Filters $('name eq "' + $AccessProfileName + '"')
$body = [PSCustomObject]@{
"op" = "replace"
"path" = "/name"
"value" = "Test Profile åäö"
}
Update-AccessProfile -Id $AccessProfile.id -JsonPatchOperation $body -verbose
Bad Request Error:
{"messages":[{"localeOrigin":"REQUEST","locale":"en-US","text":"The request could not be parsed."},{"localeOrigin":"DEFAULT","locale":"en-US","text":"The request could not be parsed."}],"detailCode":"400.0 Bad request
| syntax","trackingId":
Example error output with Update-BetaAccessProfile:
After a few modifications to Content-Type in the module, it works!
My workaround for New-AccessProfile is in the same way.
So how should i handle this in a better and easier way?
Or is it a matter of fixing PSSailpoint SDK?
C:\Program Files\PowerShell\Modules\PSSailpoint\1.2.1\v3\src\PSSailpoint\Api\AccessProfilesApi.ps1"
Here is my updated v1.2.1 AccessProfilesAPI.ps1
Modified
Line 56
Line 659
Line 672
#
# IdentityNow V3 API
# Use these APIs to interact with the IdentityNow platform to achieve repeatable, automated processes with greater scalability. We encourage you to join the SailPoint Developer Community forum at https://developer.sailpoint.com/discuss to connect with other developers using our APIs.
# Version: 3.0.0
# Generated by OpenAPI Generator: https://openapi-generator.tech
#
<#
.SYNOPSIS
Create an Access Profile
.DESCRIPTION
This API creates an Access Profile. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a token with only ROLE_SUBADMIN or SOURCE_SUBADMIN authority must be associated with the Access Profile's Source. The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters.
.PARAMETER AccessProfile
No description available.
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
AccessProfile
#>
function New-AccessProfile {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[PSCustomObject]
${AccessProfile},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: New-AccessProfile' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
# HTTP header 'Content-Type'
# $LocalVarContentTypes = @('application/json')
$LocalVarContentTypes = @('application/json; charset=windows-1252')# ADD Row --------------------
$LocalVarUri = '/access-profiles'
if (!$AccessProfile) {
throw "Error! The required parameter `AccessProfile` missing when calling createAccessProfile."
}
if ($LocalVarContentTypes.Contains('application/json-patch+json')) {
$LocalVarBodyParameter = $AccessProfile | ConvertTo-Json -AsArray -Depth 100
} else {
$LocalVarBodyParameter = $AccessProfile | ForEach-Object {
# Get array of names of object properties that can be cast to boolean TRUE
# PSObject.Properties - https://msdn.microsoft.com/en-us/library/system.management.automation.psobject.properties.aspx
$NonEmptyProperties = $_.psobject.Properties | Where-Object {$null -ne $_.Value} | Select-Object -ExpandProperty Name
# Convert object to JSON with only non-empty properties
$_ | Select-Object -Property $NonEmptyProperties | ConvertTo-Json -Depth 100
}
}
$LocalVarResult = Invoke-ApiClient -Method 'POST' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "AccessProfile" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}
<#
.SYNOPSIS
Delete the specified Access Profile
.DESCRIPTION
This API deletes an existing Access Profile. The Access Profile must not be in use, for example, Access Profile can not be deleted if they belong to an Application, Life Cycle State or a Role. If it is, a 400 error is returned. A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to invoke this API. In addition, a SOURCE_SUBADMIN token must be able to administer the Source associated with the Access Profile.
.PARAMETER Id
ID of the Access Profile to delete
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
None
#>
function Remove-AccessProfile {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Id},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: Remove-AccessProfile' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
$LocalVarUri = '/access-profiles/{id}'
if (!$Id) {
throw "Error! The required parameter `Id` missing when calling deleteAccessProfile."
}
$LocalVarUri = $LocalVarUri.replace('{id}', [System.Web.HTTPUtility]::UrlEncode($Id))
$LocalVarResult = Invoke-ApiClient -Method 'DELETE' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}
<#
.SYNOPSIS
Delete Access Profile(s)
.DESCRIPTION
This API initiates a bulk deletion of one or more Access Profiles. By default, if any of the indicated Access Profiles are in use, no deletions will be performed and the **inUse** field of the response indicates the usages that must be removed first. If the request field **bestEffortOnly** is **true**, however, usages are reported in the **inUse** response field but all other indicated Access Profiles will be deleted. A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to delete Access Profiles which are associated with Sources they are able to administer.
.PARAMETER AccessProfileBulkDeleteRequest
No description available.
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
AccessProfileBulkDeleteResponse
#>
function Remove-AccessProfilesInBulk {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[PSCustomObject]
${AccessProfileBulkDeleteRequest},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: Remove-AccessProfilesInBulk' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
# HTTP header 'Content-Type'
$LocalVarContentTypes = @('application/json')
$LocalVarUri = '/access-profiles/bulk-delete'
if (!$AccessProfileBulkDeleteRequest) {
throw "Error! The required parameter `AccessProfileBulkDeleteRequest` missing when calling deleteAccessProfilesInBulk."
}
if ($LocalVarContentTypes.Contains('application/json-patch+json')) {
$LocalVarBodyParameter = $AccessProfileBulkDeleteRequest | ConvertTo-Json -AsArray -Depth 100
} else {
$LocalVarBodyParameter = $AccessProfileBulkDeleteRequest | ForEach-Object {
# Get array of names of object properties that can be cast to boolean TRUE
# PSObject.Properties - https://msdn.microsoft.com/en-us/library/system.management.automation.psobject.properties.aspx
$NonEmptyProperties = $_.psobject.Properties | Where-Object {$null -ne $_.Value} | Select-Object -ExpandProperty Name
# Convert object to JSON with only non-empty properties
$_ | Select-Object -Property $NonEmptyProperties | ConvertTo-Json -Depth 100
}
}
$LocalVarResult = Invoke-ApiClient -Method 'POST' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "AccessProfileBulkDeleteResponse" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}
<#
.SYNOPSIS
Get an Access Profile
.DESCRIPTION
This API returns an Access Profile by its ID. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
.PARAMETER Id
ID of the Access Profile
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
AccessProfile
#>
function Get-AccessProfile {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Id},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: Get-AccessProfile' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
$LocalVarUri = '/access-profiles/{id}'
if (!$Id) {
throw "Error! The required parameter `Id` missing when calling getAccessProfile."
}
$LocalVarUri = $LocalVarUri.replace('{id}', [System.Web.HTTPUtility]::UrlEncode($Id))
$LocalVarResult = Invoke-ApiClient -Method 'GET' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "AccessProfile" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}
<#
.SYNOPSIS
List Access Profile's Entitlements
.DESCRIPTION
This API lists the Entitlements associated with a given Access Profile A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to invoke this API. In addition, a token with SOURCE_SUBADMIN authority must have access to the Source associated with the given Access Profile
.PARAMETER Id
ID of the containing Access Profile
.PARAMETER Limit
Max number of results to return. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
.PARAMETER Offset
Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
.PARAMETER Count
If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored. Since requesting a total count can have a performance impact, it is recommended not to send **count=true** if that value will not be used. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
.PARAMETER Filters
Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results) Filtering is supported for the following fields and operators: **id**: *eq, in* **name**: *eq, sw* **attribute**: *eq, sw* **value**: *eq, sw* **created**: *gt, lt, ge, le* **modified**: *gt, lt, ge, le* **owner.id**: *eq, in* **source.id**: *eq, in*
.PARAMETER Sorters
Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results) Sorting is supported for the following fields: **name, attribute, value, created, modified**
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
Entitlement[]
#>
function Get-AccessProfileEntitlements {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Id},
[Parameter(Position = 1, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Int32]]
${Limit},
[Parameter(Position = 2, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Int32]]
${Offset},
[Parameter(Position = 3, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Boolean]]
${Count},
[Parameter(Position = 4, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Filters},
[Parameter(Position = 5, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Sorters},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: Get-AccessProfileEntitlements' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
$LocalVarUri = '/access-profiles/{id}/entitlements'
if (!$Id) {
throw "Error! The required parameter `Id` missing when calling getAccessProfileEntitlements."
}
$LocalVarUri = $LocalVarUri.replace('{id}', [System.Web.HTTPUtility]::UrlEncode($Id))
if ($Limit) {
$LocalVarQueryParameters['limit'] = $Limit
}
if ($Offset) {
$LocalVarQueryParameters['offset'] = $Offset
}
if ($Count) {
$LocalVarQueryParameters['count'] = $Count
}
if ($Filters) {
$LocalVarQueryParameters['filters'] = $Filters
}
if ($Sorters) {
$LocalVarQueryParameters['sorters'] = $Sorters
}
$LocalVarResult = Invoke-ApiClient -Method 'GET' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "Entitlement[]" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}
<#
.SYNOPSIS
List Access Profiles
.DESCRIPTION
This API returns a list of Access Profiles. A token with API, ORG_ADMIN, ROLE_ADMIN, ROLE_SUBADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API.
.PARAMETER ForSubadmin
If provided, filters the returned list according to what is visible to the indicated ROLE_SUBADMIN or SOURCE_SUBADMIN Identity. The value of the parameter is either an Identity ID, or the special value **me**, which is shorthand for the calling Identity's ID. A 400 Bad Request error is returned if the **for-subadmin** parameter is specified for an Identity that is not a subadmin.
.PARAMETER Limit
Note that for this API the maximum value for limit is 50. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
.PARAMETER Offset
Offset into the full result set. Usually specified with *limit* to paginate through the results. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
.PARAMETER Count
If *true* it will populate the *X-Total-Count* response header with the number of results that would be returned if *limit* and *offset* were ignored. Since requesting a total count can have a performance impact, it is recommended not to send **count=true** if that value will not be used. See [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters) for more information.
.PARAMETER Filters
Filter results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#filtering-results) Filtering is supported for the following fields and operators: **id**: *eq, in* **name**: *eq, sw, co* **created**: *gt, lt, ge, le* **modified**: *gt, lt, ge, le* **owner.id**: *eq, in* **requestable**: *eq* **source.id**: *eq, in* Composite operators supported: *and, or*
.PARAMETER Sorters
Sort results using the standard syntax described in [V3 API Standard Collection Parameters](https://developer.sailpoint.com/idn/api/standard-collection-parameters#sorting-results) Sorting is supported for the following fields: **name, created, modified**
.PARAMETER ForSegmentIds
If present and not empty, additionally filters Access Profiles to those which are assigned to the Segment(s) with the specified IDs. If segmentation is currently unavailable, specifying this parameter results in an error.
.PARAMETER IncludeUnsegmented
Whether or not the response list should contain unsegmented Access Profiles. If *for-segment-ids* is absent or empty, specifying *include-unsegmented* as false results in an error.
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
AccessProfile[]
#>
function Get-AccessProfiles {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${ForSubadmin},
[Parameter(Position = 1, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Int32]]
${Limit},
[Parameter(Position = 2, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Int32]]
${Offset},
[Parameter(Position = 3, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Boolean]]
${Count},
[Parameter(Position = 4, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Filters},
[Parameter(Position = 5, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Sorters},
[Parameter(Position = 6, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${ForSegmentIds},
[Parameter(Position = 7, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[System.Nullable[Boolean]]
${IncludeUnsegmented},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: Get-AccessProfiles' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
$LocalVarUri = '/access-profiles'
if ($ForSubadmin) {
$LocalVarQueryParameters['for-subadmin'] = $ForSubadmin
}
if ($Limit) {
$LocalVarQueryParameters['limit'] = $Limit
}
if ($Offset) {
$LocalVarQueryParameters['offset'] = $Offset
}
if ($Count) {
$LocalVarQueryParameters['count'] = $Count
}
if ($Filters) {
$LocalVarQueryParameters['filters'] = $Filters
}
if ($Sorters) {
$LocalVarQueryParameters['sorters'] = $Sorters
}
if ($ForSegmentIds) {
$LocalVarQueryParameters['for-segment-ids'] = $ForSegmentIds
}
if ($IncludeUnsegmented) {
$LocalVarQueryParameters['include-unsegmented'] = $IncludeUnsegmented
}
$LocalVarResult = Invoke-ApiClient -Method 'GET' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "AccessProfile[]" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}
<#
.SYNOPSIS
Patch a specified Access Profile
.DESCRIPTION
This API updates an existing Access Profile. The following fields are patchable: **name** **description** **enabled** **owner** **requestable** **accessRequestConfig** **revokeRequestConfig** **segments** **entitlements** **provisioningCriteria** **source** (must be updated with entitlements belonging to new source in the same API call) If you need to change the `source` of the access profile, you can do so only if you update the `entitlements` in the same API call. The new entitlements can only come from the target source that you want to change to. Look for the example ""Replace Source"" in the examples dropdown. A token with API, ORG_ADMIN, SOURCE_ADMIN, or SOURCE_SUBADMIN authority is required to call this API. In addition, a SOURCE_SUBADMIN may only use this API to patch Access Profiles which are associated with Sources they are able to administer. > The maximum supported length for the description field is 2000 characters. Longer descriptions will be preserved for existing access profiles, however, any new access profiles as well as any updates to existing descriptions will be limited to 2000 characters. > You can only add or replace **entitlements** that exist on the source that the access profile is attached to. You can use the **list entitlements** endpoint with the **filters** query parameter to get a list of available entitlements on the access profile's source. > Patching the value of the **requestable** field is only supported for customers enabled with the new Request Center. Otherwise, attempting to modify this field results in a 400 error.
.PARAMETER Id
ID of the Access Profile to patch
.PARAMETER JsonPatchOperation
No description available.
.PARAMETER WithHttpInfo
A switch when turned on will return a hash table of Response, StatusCode and Headers instead of just the Response
.OUTPUTS
AccessProfile
#>
function Update-AccessProfile {
[CmdletBinding()]
Param (
[Parameter(Position = 0, ValueFromPipeline = $true, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[String]
${Id},
[Parameter(Position = 1, ValueFromPipelineByPropertyName = $true, Mandatory = $false)]
[PSCustomObject[]]
${JsonPatchOperation},
[Switch]
$WithHttpInfo
)
Process {
'Calling method: Update-AccessProfile' | Write-Debug
$PSBoundParameters | Out-DebugParameter | Write-Debug
$LocalVarAccepts = @()
$LocalVarContentTypes = @()
$LocalVarQueryParameters = @{}
$LocalVarHeaderParameters = @{}
$LocalVarFormParameters = @{}
$LocalVarPathParameters = @{}
$LocalVarCookieParameters = @{}
$LocalVarBodyParameter = $null
# HTTP header 'Accept' (if needed)
$LocalVarAccepts = @('application/json')
# HTTP header 'Content-Type'
# $LocalVarContentTypes = @('application/json-patch+json')
$LocalVarContentTypes = @('application/json-patch+json; charset=windows-1252') # ADD Row --------------------
$LocalVarUri = '/access-profiles/{id}'
if (!$Id) {
throw "Error! The required parameter `Id` missing when calling patchAccessProfile."
}
$LocalVarUri = $LocalVarUri.replace('{id}', [System.Web.HTTPUtility]::UrlEncode($Id))
if (!$JsonPatchOperation) {
throw "Error! The required parameter `JsonPatchOperation` missing when calling patchAccessProfile."
}
# if ($LocalVarContentTypes.Contains('application/json-patch+json')) {
if ($LocalVarContentTypes.Contains('application/json-patch+json; charset=windows-1252')) { # ADD Row --------------------
$LocalVarBodyParameter = $JsonPatchOperation | ConvertTo-Json -AsArray -Depth 100
} else {
$LocalVarBodyParameter = $JsonPatchOperation | ForEach-Object {
# Get array of names of object properties that can be cast to boolean TRUE
# PSObject.Properties - https://msdn.microsoft.com/en-us/library/system.management.automation.psobject.properties.aspx
$NonEmptyProperties = $_.psobject.Properties | Where-Object {$null -ne $_.Value} | Select-Object -ExpandProperty Name
# Convert object to JSON with only non-empty properties
$_ | Select-Object -Property $NonEmptyProperties | ConvertTo-Json -Depth 100
}
}
$LocalVarResult = Invoke-ApiClient -Method 'PATCH' `
-Uri $LocalVarUri `
-Accepts $LocalVarAccepts `
-ContentTypes $LocalVarContentTypes `
-Body $LocalVarBodyParameter `
-HeaderParameters $LocalVarHeaderParameters `
-QueryParameters $LocalVarQueryParameters `
-FormParameters $LocalVarFormParameters `
-CookieParameters $LocalVarCookieParameters `
-ReturnType "AccessProfile" `
-IsBodyNullable $false
if ($WithHttpInfo.IsPresent) {
return $LocalVarResult
} else {
return $LocalVarResult["Response"]
}
}
}