Add - Permissions

URL:: https://<root>/services/permissions/add
Methods:: POST
Version Introduced:: 10.1

Access requirements

Required privileges

The Sever Administrator API requires privilege-based access. An administrator must be assigned a specific user privilege, or role, to access any given endpoint. Listed below are the user privileges or roles an administrator can be assigned that provides access to this endpoint. If multiple privileges are listed, only one needs to be assigned to gain access.

Register data stores Feature layer Update Delete Security and infrastructure Servers Organization webhooks Geoprocessing Publisher role

Note that administrators assigned a custom role must also have the administrative View all content privilege assigned to them to access the API directory as an administrator. Additonally, any custom roles that include a webhook-related privilege must also include the general Publish server-based layers content privilege.

Tokens

This API requires token-based authentication. A token is automatically generated for administrators who sign in to the Server Administrator API directory's HTML interface. Tokens generated in this way are stored for the entirety of the session.

Those accessing the API directory outside of the HTML interface will need to acquire a session token from the generateToken operation in the Portal Directory API. For security reasons, all POST requests made to the Server Administrator API must include a token in the request body.

Learn how to generate a token

Description

The add operation assigns a new permission to a role (principal). The permission on a parent resource is automatically inherited by all child resources. For more information on the permissions model, see the section on the Continuous Inheritance Model.

Request parameters

Parameters Details

Parameters	Details
`principal`	The name of the role for whom the permission is being assigned. Example Use dark colors for code blocksCopy `1 principal=Analysts`
`isAllowed`	Tells if access to a resource is allowed or denied. Values: `true` \| `false`
`f`	The response format. The default response format is `html`. Value: `html` \| `json` \| `pjson`

principal

The name of the role for whom the permission is being assigned.

Example
Use dark colors for code blocksCopy
principal=Analysts

isAllowed

Tells if access to a resource is allowed or denied.

Values: true | false

f

The response format. The default response format is html.

Value: html | json | pjson

Example usage

The following is a sample POST request for the add operation:

Use dark colors for code blocksCopy
POST /<context>/admin/services/Maps/permissions/add HTTP/1.1
Host: organization.example.com
Content-Type: application/x-www-form-urlencoded
Content-Length: []

principal=Analysts&isAllowed=true&f=pjson

JSON Response example

Use dark colors for code blocksCopy
{"status": "success"}