Skip to content
ConductorOne Docs
  • Auto
  • Light
  • Dark
Get Started

IAM

IAM

IAM

IAMPersonal Clients

Create
client.IAM.PersonalClients.New(ctx, body) (*ClientPersonalClientClientSecretstringIAMPersonalClientNewResponse, error)
post/api/v1/iam/personal_clients
Get
client.IAM.PersonalClients.Get(ctx, id) (*ClientPersonalClientIAMPersonalClientGetResponse, error)
get/api/v1/iam/personal_clients/{id}
Update
client.IAM.PersonalClients.Update(ctx, id, body) (*ClientPersonalClientIAMPersonalClientUpdateResponse, error)
post/api/v1/iam/personal_clients/{id}
NOTE: Only shows personal clients for the current user.
client.IAM.PersonalClients.List(ctx) (*ListarrayNextPageTokenstringIAMPersonalClientListResponse, error)
get/api/v1/iam/personal_clients
Delete
client.IAM.PersonalClients.Delete(ctx, id, body) (*IAMPersonalClientDeleteResponse, error)
delete/api/v1/iam/personal_clients/{id}
Personal Client
PersonalClientstruct

The PersonalClient message contains information about a presonal client credential.

ShowShow
IDstring
optional

The unique ID of the personal client credential.

AllowSourceCidrarray
optional
[]string

If set, only allows the CIDRs in the array to use the credential.

ClientIDstring
optional

The clientID of the credential.

CreatedAtTime
optional
formatdate-time
DeletedAtTime
optional
formatdate-time
DisplayNamestring
optional

The display name of the personal client credential.

ExpiresTimeTime
optional
formatdate-time
LastUsedAtTime
optional
formatdate-time
ScopedRolesarray
optional
[]string

scoped_roles provides a list of IAM Roles that this OAuth2 Client's API permissions are reduced to. The permissions granted to OAuth2 Client are AND'ed against the owning User's own permissions.

UpdatedAtTime
optional
formatdate-time
UserIDstring
optional

The ID of the user that this credential is created for.

IAMRoles

Get
client.IAM.Roles.Get(ctx, roleID) (*RoleRoleIAMRoleGetResponse, error)
get/api/v1/iam/roles/{role_id}
Update
client.IAM.Roles.Update(ctx, roleID, body) (*RoleRoleIAMRoleUpdateResponse, error)
post/api/v1/iam/roles/{role_id}
List
client.IAM.Roles.List(ctx, query) (*ListarrayNextPageTokenstringIAMRoleListResponse, error)
get/api/v1/iam/roles
Role
Rolestruct

Role is a role that can be assigned to a user in ConductorOne.

ShowShow
IDstring
optional

The id of the role.

CreatedAtTime
optional
formatdate-time
DeletedAtTime
optional
formatdate-time
DisplayNamestring
optional

The display name of the role.

Namestring
optional

The internal name of the role.

Permissionsarray
optional
[]string

The list of permissions this role has.

ServiceRolesarray
optional
[]string

The list of serviceRoles that this role has.

SystemAPIOnlybool
optional

This Role is intended for API keys usage only, and the user interface may not function as expected.

SystemBuiltinbool
optional

The system builtin field. If this field is set, the role is not editable.

UpdatedAtTime
optional
formatdate-time