保留中の違反のアクション
次のURIはポリシー違反を処理します
-
/policyviolations GET: すべての保留中の違反を返します。 -
/policyviolations/{pvid}/causes GET: 違反の理由を返します。返される情報のタイプは、ルールの説明、ステータスなどです。 -
/policyviolations/{pvid}/causes/{causeid} GET: 特定の違反の理由を返します。 -
/policyviolations/{pvid}/causes/{causeid} PUT: 再割当てまたは対処のいずれかによる特定の原因を更新します。 -
/requests DELETE: 違反を含むリクエストを取り下げます。
cURLの例: 保留中のすべての違反を返す
curl -H "Content-Type: application/json" -X GET -u username:password https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations
GETレスポンス本文
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations?offset=1&limit=10"
},
{
"rel": "first",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations?offset=1&limit=10"
}
],
"count": 2,
"hasMore": false,
"totalResult": -1,
"policyviolations": [
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B"
}
],
"id": "414B4923A82840D4B115C0028EFE407B",
"remediatorUser": {
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/users/13"
}
],
"displayName": "Robert Klein"
},
"targetUser": {
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/users/82"
}
],
"displayName": "dtran20190614"
},
"taskId": "1d153883-2805-4fe0-b1b1-76a6c525ba42",
"fields": [
{
"name": "lastDetectedDate",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "update",
"value": "2019-07-03T22:20:33Z"
},
{
"name": "targetUserOrganizationName",
"value": "Vision"
},
{
"name": "remediatorAssignDate",
"value": "2019-07-03T22:20:33Z"
},
{
"name": "create",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "action",
"value": "ASSIGN"
},
{
"name": "remediatorUserDisplayName",
"value": "Robert Klein"
},
{
"name": "id",
"value": "414B4923A82840D4B115C0028EFE407B"
},
{
"name": "severity",
"value": "LOW"
},
{
"name": "policyName",
"value": "fraudAnalystPolicy"
},
{
"name": "targetUserLogin",
"value": "DTRAN20190614"
},
{
"name": "targetUserId",
"value": "82"
},
{
"name": "targetUserManagerName",
"value": "Ajay Arora"
},
{
"name": "remediatorUserId",
"value": "13"
},
{
"name": "updateById",
"value": "1"
},
{
"name": "policyId",
"value": "0E344F4769974DD5B69EC5300ABB63A8"
},
{
"name": "detectionCount",
"value": 1
},
{
"name": "name",
"value": "B1AB2118E0824A9183B1231B42648C02"
},
{
"name": "createById",
"value": "4"
},
{
"name": "status",
"value": "ASSIGNED"
},
{
"name": "targetUserDisplayName",
"value": "dtran20190614"
}
]
},
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/8AD9C78460994E63812BE468CA2BC789"
}
],
"id": "8AD9C78460994E63812BE468CA2BC789",
"remediatorUser": {
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/users/13"
}
],
"displayName": "Robert Klein"
},
"targetUser": {
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/users/1001"
}
],
"displayName": "dtran20190701"
},
"taskId": "b5c17547-24d3-4579-b420-0da97ae95622",
"fields": [
{
"name": "lastDetectedDate",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "update",
"value": "2019-07-03T22:20:33Z"
},
{
"name": "targetUserOrganizationName",
"value": "Vision"
},
{
"name": "remediatorAssignDate",
"value": "2019-07-03T22:20:33Z"
},
{
"name": "create",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "action",
"value": "ASSIGN"
},
{
"name": "remediatorUserDisplayName",
"value": "Robert Klein"
},
{
"name": "id",
"value": "8AD9C78460994E63812BE468CA2BC789"
},
{
"name": "severity",
"value": "LOW"
},
{
"name": "policyName",
"value": "fraudAnalystPolicy"
},
{
"name": "targetUserLogin",
"value": "DTRAN20190701"
},
{
"name": "targetUserId",
"value": "1001"
},
{
"name": "targetUserManagerName",
"value": "Ajay Arora"
},
{
"name": "remediatorUserId",
"value": "13"
},
{
"name": "updateById",
"value": "1"
},
{
"name": "policyId",
"value": "0E344F4769974DD5B69EC5300ABB63A8"
},
{
"name": "detectionCount",
"value": 1
},
{
"name": "name",
"value": "A2F6FB0BA7EA47EF8B2D26309D3099ED"
},
{
"name": "createById",
"value": "4"
},
{
"name": "status",
"value": "ASSIGNED"
},
{
"name": "targetUserDisplayName",
"value": "dtran20190701"
}
]
}
]
}
cURLの例: 違反の理由を返す
curl -H "Content-Type: application/json" -X GET -u username:password https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B/causes
GETレスポンス本文
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B/causes?offset=1&limit=10"
},
{
"rel": "first",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B/causes?offset=1&limit=10"
}
],
"count": 1,
"hasMore": false,
"totalResult": -1,
"policyViolationCauseList": [
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B/causes/4B3DB3B09C634A948DEF41C962CC8372"
}
],
"id": "4B3DB3B09C634A948DEF41C962CC8372",
"policyViolationId": "414B4923A82840D4B115C0028EFE407B",
"fields": [
{
"name": "ruleCondition",
"value": {
"firstArgument": "role",
"secondArgument": "Fraud Analyst",
"operator": "EQUAL",
"searchDepth": null,
"searchBase": null
}
},
{
"name": "update",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "policyViolationId",
"value": "414B4923A82840D4B115C0028EFE407B"
},
{
"name": "updateById",
"value": "4"
},
{
"name": "name",
"value": "59D1B48581EE4A3CB51D4E396A0B15FD"
},
{
"name": "remediationEntityId",
"value": "8"
},
{
"name": "create",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "action",
"value": "ACTIVATE"
},
{
"name": "ruleName",
"value": "rule1 fraud analyst"
},
{
"name": "createById",
"value": "4"
},
{
"name": "remediationEntityType",
"value": "Role"
},
{
"name": "id",
"value": "4B3DB3B09C634A948DEF41C962CC8372"
},
{
"name": "ruleId",
"value": "7980BAB166574A18A0C824B3E393EE21"
},
{
"name": "status",
"value": "ACTIVE"
}
]
}
]
}
cURLの例: 特定の違反の理由を返す
curl -H "Content-Type: application/json" -X GET -u username:password https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B/causes/4B3DB3B09C634A948DEF41C962CC8372
GETレスポンス本文
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/414B4923A82840D4B115C0028EFE407B/causes/4B3DB3B09C634A948DEF41C962CC8372"
}
],
"id": "4B3DB3B09C634A948DEF41C962CC8372",
"status": "ACTIVE",
"fields": [
{
"name": "ruleCondition",
"value": {
"firstArgument": "role",
"secondArgument": "Fraud Analyst",
"operator": "EQUAL",
"searchDepth": null,
"searchBase": null
}
},
{
"name": "update",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "policyViolationId",
"value": "414B4923A82840D4B115C0028EFE407B"
},
{
"name": "updateById",
"value": "4"
},
{
"name": "name",
"value": "59D1B48581EE4A3CB51D4E396A0B15FD"
},
{
"name": "remediationEntityId",
"value": "8"
},
{
"name": "create",
"value": "2019-07-03T22:20:28Z"
},
{
"name": "action",
"value": "ACTIVATE"
},
{
"name": "ruleName",
"value": "rule1 fraud analyst"
},
{
"name": "createById",
"value": "4"
},
{
"name": "remediationEntityType",
"value": "Role"
},
{
"name": "ruleId",
"value": "7980BAB166574A18A0C824B3E393EE21"
},
{
"name": "status",
"value": "ACTIVE"
}
]
}
cURLの例: 特定の違反の理由の更新
curl -H "Content-Type: application/json" -H "X-Requested-By: <anyvalue>" -X PUT -u username:password -d @put.json https://pseudo.com/iam/governance/selfservice/api/v1/policyviolations/7F4416D351AF48AD9143798EAABB2659/causes/0D61A008C5CC401399F43FF8FFE2DF21
PUTリクエスト本文
{
"requestId": "req12b",
"action": "FIXED_MANUALLY",
"comment": "manually fix issue 4",
"riskAcceptedExpirationDate": "2019-04-20T21:12:16Z"
}
PUTレスポンス本文
{
"links": [
{
"rel": "self",
"href": "https://pseudo.com:PORT/iam/governance/selfservice/api/v1/policyviolations/7F4416D3
51AF48AD9143798EAABB2659/causes/0D61A008C5CC401399F43FF8FFE2DF21"
}
],
"requestId": "req12b",
"policyViolationId": "7F4416D351AF48AD9143798EAABB2659"
}
cURLの例: リクエストの違反の取下げ
curl -H "Content-Type: application/json" -H "X-Requested-By: <anyvalue>" -X DELETE -u username:password -d @post.json https://pseudo.com/iam/governance/selfservice/api/v1/requests
DELETEリクエスト本文
{
"requests": [
{
"requestId": "req1",
"id": "3001"
}
]
}
DELETEレスポンス本文
{
"requests": [
{
"id": "3001",
"requestId": "req1",
"status": "SUCCESS"
}
]
}