Update a potential role

PATCH /role-mining-sessions/:sessionId/potential-role-summaries/:potentialRoleId

experimental

This API is currently in an experimental state. The API is subject to change based on feedback and further testing. You must include the X-SailPoint-Experimental header and set it to true to use this endpoint.

The method updates an existing potential role using.

The following fields can be modified:

description
name
saved

NOTE: All other fields cannot be modified.

Request

Path Parameters

sessionId stringrequired

The role mining session id

Example: 8c190e67-87aa-4ed9-a90b-d9d5344523fb

potentialRoleId stringrequired

The potential role summary id

Example: 8c190e67-87aa-4ed9-a90b-d9d5344523fb

Header Parameters

X-SailPoint-Experimental stringrequired

Default value: true

Use this header to enable this experimental API.

Example: true

application/json-patch+json

Body

array

required

Array [

op string

Possible values: [remove, replace]

The operation to be performed

]

Responses

Succeeded. Returns the potential role summary based on the potentialRoleId provided.

application/json

Schema
Example (from schema)

Schema

Array [

createdBy

object

The session created by details

oneOf

EntityCreatedByDTO
NullableEntityCreatedByDTO

id string

ID of the creator

displayName string

The display name of the creator

density int32

The density of a potential role.

description stringnullable

The description of a potential role.

entitlementCount int32

The number of entitlements in a potential role.

excludedEntitlements string[]nullable

The list of entitlement ids to be excluded.

freshness int32

The freshness of a potential role.

identityCount int32

The number of identities in a potential role.

identityDistribution

object[]

nullable

Identity attribute distribution.

Array [

attributeName string

Id of the potential role

distribution object[]

]

identityIds string[]

The list of ids in a potential role.

name string

Name of the potential role.

provisionState RoleMiningPotentialRoleProvisionState (string)nullable

Possible values: [POTENTIAL, PENDING, COMPLETE, FAILED]

The provisioning state of a potential role.

quality int32

The quality of a potential role.

roleId stringnullable

The roleId of a potential role.

saved boolean

The potential role's saved status.

session

object

The session parameters of the potential role.

id string

The ID of the role mining session

name stringnullable

The session's saved name

minNumIdentitiesInPotentialRole int32nullable

Minimum number of identities in a potential role

pruneThreshold int32nullable

The prune threshold to be used or null to calculate prescribedPruneThreshold

saved boolean

Default value: true

The session's saved status

scope

object

The scope of identities for this role mining session

identityIds string[]

The list of identities for this role mining session.

criteria stringnullable

The "search" criteria that produces the list of identities for this role mining session.

attributeFilterCriteria object[]nullable

The filter criteria for this role mining session.

type RoleMiningRoleType (string)

Possible values: [SPECIALIZED, COMMON]

Role mining potential type

state RoleMiningSessionState (string)

Possible values: [CREATED, UPDATED, IDENTITIES_OBTAINED, PRUNE_THRESHOLD_OBTAINED, POTENTIAL_ROLES_PROCESSING, POTENTIAL_ROLES_CREATED]

Role mining session state

scopingMethod RoleMiningSessionScopingMethod (string)

Possible values: [MANUAL, AUTO_RM]

Scoping method used in current role mining session

type RoleMiningRoleType (string)

Possible values: [SPECIALIZED, COMMON]

Role mining potential type.

id string

Id of the potential role

createdDate date-time

The date-time when this potential role was created.

modifiedDate date-time

The date-time when this potential role was modified.

]

{}

Client Error - Returned if the request body is invalid.

application/json

Schema
Example (from schema)

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages

object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

An indicator of how the locale was selected. DEFAULT means the locale is the system default. REQUEST means the locale was selected from the request context (i.e., best match based on the Accept-Language header). Additional values may be added in the future without notice.

text string

Actual text of the error message in the indicated locale.

]

causes

object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

Unauthorized - Returned if there is no authorization header, or if the JWT token is expired.

application/json

Schema
Example (from schema)

Schema

error

A message describing the error

{
  "error": "JWT validation failed: JWT is expired"
}

Forbidden - Returned if the user you are running as, doesn't have access to this end-point.

application/json

Schema
Example (from schema)
403

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages

object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

causes

object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

An example of a 403 response object

{
  "detailCode": "403 Forbidden",
  "trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The server understood the request but refuses to authorize it."
    }
  ]
}

Not Found - returned if the request URL refers to a resource or object that does not exist

application/json

Schema
Example (from schema)
404

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages

object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

causes

object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

An example of a 404 response object

{
  "detailCode": "404 Not found",
  "trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The server did not find a current representation for the target resource."
    }
  ]
}

Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again.

application/json

Schema
Example (from schema)

Schema

message

A message describing the error

{
  "message": " Rate Limit Exceeded "
}

Internal Server Error - Returned if there is an unexpected error.

application/json

Schema
Example (from schema)
500

Schema

detailCode string

Fine-grained error code providing more detail of the error.

trackingId string

Unique tracking id for the error.

messages

object[]

Generic localized reason for error

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

causes

object[]

Plain-text descriptive reasons to provide additional detail to the text provided in the messages field

Array [

locale stringnullable

The locale for the message text, a BCP 47 language tag.

localeOrigin LocaleOrigin (string)nullable

Possible values: [DEFAULT, REQUEST, null]

text string

Actual text of the error message in the indicated locale.

]

{
  "detailCode": "400.1 Bad Request Content",
  "trackingId": "e7eab60924f64aa284175b9fa3309599",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ],
  "causes": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "The request was syntactically correct but its content is semantically invalid."
    }
  ]
}

An example of a 500 response object

{
  "detailCode": "500.0 Internal Fault",
  "trackingId": "b21b1f7ce4da4d639f2c62a57171b427",
  "messages": [
    {
      "locale": "en-US",
      "localeOrigin": "DEFAULT",
      "text": "An internal fault occurred."
    }
  ]
}

Update a potential role

/role-mining-sessions/:sessionId/potential-role-summaries/:potentialRoleId

Request​

Path Parameters

Header Parameters

Body

Responses​

Request

Responses