Gets the list of identity access items at a given date filterd by item type
GEThttps://sailpoint.api.identitynow.com/v2024/historical-identities/:id/snapshots/:date/access-items
This API is currently in an experimental state. The API is subject to change based on feedback and further testing. You must include the X-SailPoint-Experimental header and set it to true
to use this endpoint.
This method retrieves the list of identity access items at a given date filterd by item type Requires authorization scope of 'idn:identity-history:read'
Request
Path Parameters
The identity id
The specified date
Query Parameters
The access item type
Header Parameters
Use this header to enable this experimental API.
true
Responses
- 200
- 400
- 401
- 403
- 404
- 500
The identity object.
- application/json
- Schema
- Example (auto)
- Access Item AccessProfile Response
- Access Item Account Response
- Access Item App Response
- Access Item Entitlement Response
- Access Item Role Response
Schema
- Array [oneOf
- MOD1
- MOD2
- MOD3
- MOD4
- MOD5
- ]
the access item type. accessProfile in this case
accessProfile
the access item id
2c918087763e69d901763e72e97f006f
the access profile name
sample
the name of the source
DataScienceDataset
the id of the source
2793o32dwd
the description for the access profile
AccessProfile - Workday/Citizenship access
the display name of the identity
Dr. Arden Rogahn MD
the number of entitlements the access profile will create
12
the name of
AppName
the date the access profile is no longer assigned to the specified identity
2024-07-01T06:00:00.000Z
indicates whether the access profile is standalone
false
indicates whether the access profile is
true
the access item type. account in this case
account
the access item id
2c918087763e69d901763e72e97f006f
the native identifier used to uniquely identify an acccount
dr.arden.ogahn.d
the name of the source
DataScienceDataset
the id of the source
2793o32dwd
the number of entitlements the account will create
12
the display name of the identity
Dr. Arden Rogahn MD
the access item type. entitlement in this case
app
the access item id
2c918087763e69d901763e72e97f006f
the access item display name
Display Name
the associated source name if it exists
appName
the app role id
2c918087763e69d901763e72e97f006f
the access item type. entitlement in this case
entitlement
the access item id
2c918087763e69d901763e72e97f006f
the entitlement attribute
groups
the associated value
Upward mobility access
the type of entitlement
entitlement
the name of the source
DataScienceDataset
the id of the source
2793o32dwd
the description for the entitlment
Entitlement - Workday/Citizenship access
the display name of the identity
Dr. Arden Rogahn MD
indicates whether the entitlement is standalone
true
indicates whether the entitlement is privileged
false
indicates whether the entitlement is cloud governed
true
the access item type. role in this case
role
the access item id
2c918087763e69d901763e72e97f006f
the role display name
sample
the description for the role
Role - Workday/Citizenship access
the associated source name if it exists
Source Name
the date the role is no longer assigned to the specified identity
2024-07-01T06:00:00.000Z
indicates whether the role is revocable
true
[
{
"accessType": "accessProfile",
"id": "2c918087763e69d901763e72e97f006f",
"name": "sample",
"sourceName": "DataScienceDataset",
"sourceId": "2793o32dwd",
"description": "AccessProfile - Workday/Citizenship access",
"displayName": "Dr. Arden Rogahn MD",
"entitlementCount": 12,
"appDisplayName": "AppName",
"removeDate": "2024-07-01T06:00:00.000Z",
"standalone": false,
"revocable": true
},
{
"accessType": "account",
"id": "2c918087763e69d901763e72e97f006f",
"nativeIdentity": "dr.arden.ogahn.d",
"sourceName": "DataScienceDataset",
"sourceId": "2793o32dwd",
"entitlementCount": 12,
"displayName": "Dr. Arden Rogahn MD"
},
{
"accessType": "app",
"id": "2c918087763e69d901763e72e97f006f",
"displayName": "Display Name",
"sourceName": "appName",
"appRoleId": "2c918087763e69d901763e72e97f006f"
},
{
"accessType": "entitlement",
"id": "2c918087763e69d901763e72e97f006f",
"attribute": "groups",
"value": "Upward mobility access",
"entitlementType": "entitlement",
"sourceName": "DataScienceDataset",
"sourceId": "2793o32dwd",
"description": "Entitlement - Workday/Citizenship access",
"displayName": "Dr. Arden Rogahn MD",
"standalone": true,
"privileged": false,
"cloudGoverned": true
},
{
"accessType": "role",
"id": "2c918087763e69d901763e72e97f006f",
"displayName": "sample",
"description": "Role - Workday/Citizenship access",
"sourceName": "Source Name",
"removeDate": "2024-07-01T06:00:00.000Z",
"revocable": true
}
]
[
{
"type": "accessProfile",
"id": "2c918087763e69d901763e72e97f006f",
"name": "sample",
"sourceName": "DataScienceDataset",
"sourceId": "2793o32dwd",
"description": "AccessProfile - Workday/Citizenship access",
"displayName": "Dr. Arden Rogahn MD",
"entitlementCount": 12,
"appDisplayName": "AppName"
}
]
[
{
"type": "account",
"id": "2c918087763e69d901763e72e97f006f",
"nativeIdentity": "dr.arden.ogahn.d",
"sourceName": "DataScienceDataset",
"sourceId": "2793o32dwd",
"entitlementCount": 12,
"displayName": "Dr. Arden Rogahn MD"
}
]
[
{
"type": "app",
"id": "2c918087763e69d901763e72e97f006f",
"name": "appName"
}
]
[
{
"type": "entitlement",
"id": "2c918087763e69d901763e72e97f006f",
"attribute": "groups",
"value": "Upward mobility access",
"entitlementType": "entitlement",
"sourceName": "DataScienceDataset",
"sourceId": "2793o32dwd",
"description": "Entitlement - Workday/Citizenship access",
"displayName": "Dr. Arden Rogahn MD"
}
]
[
{
"type": "role",
"id": "2c918087763e69d901763e72e97f006f",
"name": "sample",
"description": "Role - Workday/Citizenship access"
}
]
Client Error - Returned if the request body is invalid.
- application/json
- Schema
- Example (auto)
Schema
Fine-grained error code providing more detail of the error.
400.1 Bad Request Content
Unique tracking id for the error.
e7eab60924f64aa284175b9fa3309599
messages object[]
causes object[]
{
"detailCode": "400.1 Bad Request Content",
"trackingId": "e7eab60924f64aa284175b9fa3309599",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
],
"causes": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
]
}
Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.
- application/json
- Schema
- Example (auto)
Schema
A message describing the error
JWT validation failed: JWT is expired
{
"error": "JWT validation failed: JWT is expired"
}
Forbidden - Returned if the user you are running as, doesn't have access to this end-point.
- application/json
- Schema
- Example (auto)
- 403
Schema
Fine-grained error code providing more detail of the error.
400.1 Bad Request Content
Unique tracking id for the error.
e7eab60924f64aa284175b9fa3309599
messages object[]
causes object[]
{
"detailCode": "400.1 Bad Request Content",
"trackingId": "e7eab60924f64aa284175b9fa3309599",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
],
"causes": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
]
}
An example of a 403 response object
{
"detailCode": "403 Forbidden",
"trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The server understood the request but refuses to authorize it."
}
]
}
Not Found - returned if the request URL refers to a resource or object that does not exist
- application/json
- Schema
- Example (auto)
- 404
Schema
Fine-grained error code providing more detail of the error.
400.1 Bad Request Content
Unique tracking id for the error.
e7eab60924f64aa284175b9fa3309599
messages object[]
causes object[]
{
"detailCode": "400.1 Bad Request Content",
"trackingId": "e7eab60924f64aa284175b9fa3309599",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
],
"causes": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
]
}
An example of a 404 response object
{
"detailCode": "404 Not found",
"trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The server did not find a current representation for the target resource."
}
]
}
Internal Server Error - Returned if there is an unexpected error.
- application/json
- Schema
- Example (auto)
- 500
Schema
Fine-grained error code providing more detail of the error.
400.1 Bad Request Content
Unique tracking id for the error.
e7eab60924f64aa284175b9fa3309599
messages object[]
causes object[]
{
"detailCode": "400.1 Bad Request Content",
"trackingId": "e7eab60924f64aa284175b9fa3309599",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
],
"causes": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "The request was syntactically correct but its content is semantically invalid."
}
]
}
An example of a 500 response object
{
"detailCode": "500.0 Internal Fault",
"trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
"messages": [
{
"locale": "en-US",
"localeOrigin": "DEFAULT",
"text": "An internal fault occurred."
}
]
}
Authorization: oauth2
type: Personal Access Tokenscopes: sp:scopes:all
- go
- powershellSailPoint SDK
- pythonSailPoint SDK
- csharp
- curl
- dart
- http
- java
- javascript
- kotlin
- c
- nodejs
- objective-c
- ocaml
- php
- r
- ruby
- rust
- shell
- swift
- NATIVE
package main
import (
"fmt"
"net/http"
"io"
)
func main() {
url := "https://sailpoint.api.identitynow.com/v2024/historical-identities/:id/snapshots/:date/access-items"
method := "GET"
client := &http.Client {
}
req, err := http.NewRequest(method, url, nil)
if err != nil {
fmt.Println(err)
return
}
req.Header.Add("Accept", "application/json")
req.Header.Add("Authorization", "Bearer <TOKEN>")
res, err := client.Do(req)
if err != nil {
fmt.Println(err)
return
}
defer res.Body.Close()
body, err := io.ReadAll(res.Body)
if err != nil {
fmt.Println(err)
return
}
fmt.Println(string(body))
}