Skip to content

Jans Config Api Role Mapping

Jump to bottom
duttarnab edited this page Jan 26, 2022 · 1 revision

This document provides the list of config API roles and their corresponding scopes.

Availables config-api roles

  • API-viewer: This role allows a user to access all list and search features available. Not possible for this role to perform edition nor deletion.

  • API-editor: This role allow a user to list, search, add and edit on all available objects excepts the configuration object which is critical for a running server.

  • API-manager: This role allows a user to list, search, add, edit and delete all available objects include the configuration object(only in view mode). The user cannot edit nor delete the configuration object.

  • API-admin: This role allows a user to perform all possible actions on objects.

Config-API roles mapped with Config-API scopes

config-api roles config-api scopes
api-viewer https://jans.io/oauth/config/attributes.readonly
https://jans.io/oauth/config/acrs.readonly
https://jans.io/oauth/config/scopes.readonly
https://jans.io/oauth/config/scripts.readonly
https://jans.io/oauth/config/openid/clients.readonly
https://jans.io/oauth/config/smtp.readonly
https://jans.io/oauth/config/logging.readonly
https://jans.io/oauth/config/uma/resources.readonly
https://jans.io/oauth/config/database/ldap.readonly
https://jans.io/oauth/config/jwks.readonly
https://jans.io/oauth/config/fido2.readonly
https://jans.io/oauth/config/cache.readonly
https://jans.io/oauth/jans-auth-server/config/properties.readonly
https://jans.io/oauth/config/database/couchbase.readonly
https://jans.io/oauth/config/database/sql.readonly
https://jans.io/oauth/config/stats.readonly
api-editor https://jans.io/oauth/config/attributes.readonly
https://jans.io/oauth/config/attributes.write
https://jans.io/oauth/config/acrs.readonly
https://jans.io/oauth/config/acrs.write
https://jans.io/oauth/config/scopes.readonly
https://jans.io/oauth/config/scopes.write
https://jans.io/oauth/config/scripts.readonly
https://jans.io/oauth/config/scripts.write
https://jans.io/oauth/config/openid/clients.readonly
https://jans.io/oauth/config/openid/clients.write
https://jans.io/oauth/config/smtp.readonly
https://jans.io/oauth/config/smtp.write
https://jans.io/oauth/config/logging.readonly
https://jans.io/oauth/config/logging.write
https://jans.io/oauth/config/uma/resources.readonly
https://jans.io/oauth/config/uma/resources.write
https://jans.io/oauth/config/database/ldap.readonly
https://jans.io/oauth/config/database/ldap.write
https://jans.io/oauth/config/jwks.readonly
https://jans.io/oauth/config/jwks.write
https://jans.io/oauth/config/fido2.readonly
https://jans.io/oauth/config/fido2.write
https://jans.io/oauth/config/cache.readonly
https://jans.io/oauth/config/cache.write
https://jans.io/oauth/config/database/couchbase.readonly
https://jans.io/oauth/config/database/couchbase.write
https://jans.io/oauth/config/database/sql.readonly
https://jans.io/oauth/config/database/sql.write
https://jans.io/oauth/jans-auth-server/config/properties.readonly
https://jans.io/oauth/config/stats.readonly
jans_stat
api-manager https://jans.io/oauth/config/attributes.readonly
https://jans.io/oauth/config/attributes.write
https://jans.io/oauth/config/attributes.delete
https://jans.io/oauth/config/acrs.readonly
https://jans.io/oauth/config/acrs.write
https://jans.io/oauth/config/acrs.delete
https://jans.io/oauth/config/scopes.readonly
https://jans.io/oauth/config/scopes.write
https://jans.io/oauth/config/scopes.delete
https://jans.io/oauth/config/scripts.readonly
https://jans.io/oauth/config/scripts.write
https://jans.io/oauth/config/scripts.delete
https://jans.io/oauth/config/openid/clients.readonly
https://jans.io/oauth/config/openid/clients.write
https://jans.io/oauth/config/openid/clients.delete
https://jans.io/oauth/config/smtp.readonly
https://jans.io/oauth/config/smtp.write
https://jans.io/oauth/config/smtp.delete
https://jans.io/oauth/config/logging.readonly
https://jans.io/oauth/config/logging.write
https://jans.io/oauth/config/uma/resources.readonly
https://jans.io/oauth/config/uma/resources.write
https://jans.io/oauth/config/uma/resources.delete
https://jans.io/oauth/config/database/ldap.readonly
https://jans.io/oauth/config/database/ldap.write
https://jans.io/oauth/config/database/ldap.delete
https://jans.io/oauth/config/jwks.readonly
https://jans.io/oauth/config/jwks.write
https://jans.io/oauth/config/fido2.readonly
https://jans.io/oauth/config/fido2.write
https://jans.io/oauth/config/cache.readonly
https://jans.io/oauth/config/cache.write
https://jans.io/oauth/config/database/couchbase.readonly
https://jans.io/oauth/config/database/couchbase.write
https://jans.io/oauth/config/database/sql.readonly
https://jans.io/oauth/config/database/sql.write
https://jans.io/oauth/jans-auth-server/config/properties.readonly
https://jans.io/oauth/config/stats.readonly
jans_stat
api-admin https://jans.io/oauth/config/attributes.readonly
https://jans.io/oauth/config/attributes.write
https://jans.io/oauth/config/attributes.delete
https://jans.io/oauth/config/acrs.readonly
https://jans.io/oauth/config/acrs.write
https://jans.io/oauth/config/acrs.delete
https://jans.io/oauth/config/scopes.readonly
https://jans.io/oauth/config/scopes.write
https://jans.io/oauth/config/scopes.delete
https://jans.io/oauth/config/scripts.readonly
https://jans.io/oauth/config/scripts.write
https://jans.io/oauth/config/scripts.delete
https://jans.io/oauth/config/openid/clients.readonly
https://jans.io/oauth/config/openid/clients.write
https://jans.io/oauth/config/openid/clients.delete
https://jans.io/oauth/config/smtp.readonly
https://jans.io/oauth/config/smtp.write
https://jans.io/oauth/config/smtp.delete
https://jans.io/oauth/config/logging.readonly
https://jans.io/oauth/config/logging.write
https://jans.io/oauth/config/uma/resources.readonly
https://jans.io/oauth/config/uma/resources.write
https://jans.io/oauth/config/uma/resources.delete
https://jans.io/oauth/config/database/ldap.readonly
https://jans.io/oauth/config/database/ldap.write
https://jans.io/oauth/config/database/ldap.delete
https://jans.io/oauth/config/jwks.readonly
https://jans.io/oauth/config/jwks.write
https://jans.io/oauth/config/fido2.readonly
https://jans.io/oauth/config/fido2.write
https://jans.io/oauth/config/cache.readonly
https://jans.io/oauth/config/cache.write
https://jans.io/oauth/config/database/couchbase.readonly
https://jans.io/oauth/config/database/couchbase.write
https://jans.io/oauth/config/database/sql.readonly
https://jans.io/oauth/config/database/sql.write
https://jans.io/oauth/jans-auth-server/config/properties.write
https://jans.io/oauth/jans-auth-server/config/properties.readonly
https://jans.io/oauth/config/stats.readonly
jans_stat
Clone this wiki locally