Authenticated Client
To grant an application access to the Oracle Identity Cloud Service REST API, you must first know the allowed operations that you need the application to access. Then, assign the AppRoles with access to those operations to your application.
The following table displays the endpoints and the allowed operations for that endpoint that an Authenticated Client AppRole can access.
| Endpoint | Allowed Operations |
|---|---|
| AccountObjectClassTemplates | ALL |
| AdaptiveAccessConfig | ALL |
| AdaptiveAccessSettings | GET/<ID>, GET(Search) |
| AdminSharedFiles | GET |
| AllIdentityProviders | GET(Search), POST/.search |
| AllowedValues | ALL |
| AppAllowedScopesChanger | POST |
| AppClientSecretRegenerator | ALL |
| AppConfig | ALL |
| ApplicablePasswordPolicyRetriever | ALL |
| AppRoles | DELETE, GET(Search), POST, POST/.search, GET, PATCH |
| Apps | GET(Search), POST/.search, GET/<ID>, PUT, PATCH |
| AppStatusChanger | PUT |
| AppTemplates | ALL |
| AppTemplateStatusChanger | ALL |
| AuditEvents | GET/<ID>, GET(Search) |
| AuthenticationFactorSettings | GET/<ID>, GET(Search) |
| BinaryFileInfos | DELETE, POST, GET(Search), POST/.search, GET<ID>, PATCH |
| BrandingSettings | GET/<ID>, GET(Search) |
| Bulk | ALL |
| BulkConfig | ALL |
| CacheFlusher | ALL |
| CacheStats | GET/<ID>, GET(Search) |
| CASettings | ALL |
| CertificateGetter | POST |
| ConditionGroupTemplates | ALL |
| ConditionTemplates | ALL |
| ConnectorBundles | ALL |
| CredentialMaps | GET/<ID>, GET(Search) |
| Credentials | GET/<ID>, GET(Search) |
| DataMigrationJob | GET/<ID>, GET(Search) |
| DataMigrationJobHistory | GET/<ID>, GET(Search) |
| DataMigrationJobProgress | ALL |
| DataMigrationJobReport | GET/<ID>, GET(Search) |
| DataMigrationJobSchedule | ALL |
| DataMigrationWorkerJob | GET/<ID>, GET(Search) |
| DataMigrationWorkerJobHistory | GET/<ID>, GET(Search) |
| DataMigrationWorkerJobProgress | ALL |
| DataMigrationWorkerJobReport | GET/<ID>, GET(Search) |
| DataMigrationWorkerJobSchedule | ALL |
| DefaultSocialIdentityProviders | ALL |
| ExternalIdentityProviders | GET(Search), POST/.search |
| Files | GET/<ID>, GET(Search) |
| GlobalConfig | ALL |
| Grants | DELETE, GET(Search), POST, POST/.search, GET |
| GroupOwnerUpdateJob | GET/<ID>, GET(Search) |
| GroupOwnerUpdateJobHistory | GET/<ID>, GET(Search) |
| GroupOwnerUpdateJobProgress | GET/<ID>, GET(Search) |
| GroupOwnerUpdateJobReport | GET/<ID>, GET(Search) |
| GroupOwnerUpdateJobSchedule | GET/<ID>, GET(Search) |
| Groups | GET/<ID>, GET(Search) |
| IDBridgeConfig | ALL |
| IDSGroups | GET/<ID>, GET(Search) |
| IDSUsers | GET/<ID>, GET(Search) |
| IdentitySourceTemplates | ALL |
| IdentitySettings | GET/<ID>, GET(Search) |
| Images | GET/<ID>, GET(Search) |
| JobConfig | ALL |
| JobHistories | GET/<ID>, GET(Search) |
| JobProgress | GET/<ID>, GET(Search) |
| JobReports | GET/<ID>, GET(Search) |
| Jobs | GET/<ID>, GET(Search) |
| JobSchedules | GET/<ID>, GET(Search) |
| KeyGetter | POST |
| KeyStoreGetter | POST |
| KeyStores | GET/<ID>, GET(Search) |
| KMSConfig | ALL |
| LatestBinaryFileInfoVersionRetriever | GET(Search), POST/.search |
| LicenseConfig | ALL |
| ManagedAppOperationTemplates | ALL |
| ManagedObjectClassTemplates | ALL |
| ManageSigningKeyJob | GET/<ID>, GET(Search) |
| ManageSigningKeyJobHistory | GET/<ID>, GET(Search) |
| ManageSigningKeyJobProgress | ALL |
| ManageSigningKeyJobReport | GET/<ID>, GET(Search) |
| ManageSigningKeyJobSchedule | ALL |
| MappedActionTemplates | ALL |
| MappedAttributeTemplates | ALL |
| Me | GET/<ID>, GET(Search) for MeteringJobJobHistory, MeteringJob, MeteringJobJobReport
ALL for MeteringJobJobSchedule, MeteringJobJobProgress |
| MeEmailVerifier | ALL |
| MePasswordChanger | ALL |
| MessagingConfig | ALL |
| MyAccesses | ALL |
| MyAppFavoriteSetter | ALL |
| MyApps | ALL |
| MyAuthenticationFactorEnroller. | POST |
| MyAuthenticationFactorInitiator | POST |
| MyAuthenticationFactorsRemover | POST |
| MyAuthenticationFactorValidator | POST |
| MyBypassCodes | DELETE, POST, GET(Search), POST/.search, GET |
| MyBypassCodeNotifications | POST |
| MyDevices | DELETE, GET(Search), GET, PATCH |
| MyGroups | GET(Search), POST/.search |
| MyRequestableApps | GET(Search), POST/.search |
| MyRequestableGroups | GET(Search), POST/.search |
| MyRequests | POST, GET(Search), POST/.search |
| MySFFCredentials | ALL |
| MySocialAccounts | ALL |
| MyTermsOfUseConsents | DELETE, GET(Search), POST/.search, GET |
| MyTrustedUserAgents | DELETE, GET(Search), GET |
| NotificationConfig | ALL |
| OAuthConfig | ALL |
| OAuthConsents | DELETE, GET(Search), GET |
| PasswordPolicies | GET/<ID>, GET(Search) |
| PolicyTemplates | ALL |
| PolicyTypes | ALL |
| POSIXSetupJob | GET/<ID>, GET(Search) |
| POSIXSetupJobHistory | GET/<ID>, GET(Search) |
| POSIXSetupJobProgress | ALL |
| POSIXSetupJobReport | GET/<ID>, GET(Search) |
| POSIXSetupJobSchedule | ALL |
| PurgeResourcesJob | GET/<ID>, GET(Search) |
| PurgeResourcesJobHistory | GET/<ID>, GET(Search) |
| PurgeResourcesJobProgress | ALL |
| PurgeResourcesJobReport | GET/<ID>, GET(Search) |
| PurgeResourcesJobSchedule | ALL |
| Reports | POST |
| ResourceTypes | ALL |
| ResourceTypeSchemaAttributes | ALL |
| RuleTemplates | ALL |
| SamlRuntimeData | ALL |
| Schemas | ALL |
| SecurityQuestions | GET/<ID>, GET(Search) |
| SecurityQuestionSettings | GET/<ID>, GET(Search) |
| SeededAuthorizationPolicies | ALL |
| ServiceProviderConfig | ALL |
| SffXtnUrl | GET/<ID>, GET(Search) |
| SigningCert/jwk | GET/<ID>, GET(Search) |
| SignJWT | POST |
| SMRequests | GET/<ID>, GET(Search) |
| SocialAccounts | GET/<ID>, GET(Search) |
| SocialIdentityProviderMetadata | ALL |
| SsoConfig | ALL |
| SsoEncryptionKey | GET/<ID>, GET(Search) for SsoEncryptionKeyRollOverJobReport, SsoEncryptionKeyRollOverJob, SsoEncryptionKeyRollOverJobHistory
ALL for SsoEncryptionKeyRollOverJobSchedule, SsoEncryptionKeyRollOverJobProgress, |
| StorageConfig | ALL |
| Tags | GET(Search), POST/.search, GET/<ID> |
| Tenants | GET/<ID>, GET(Search) |
| TermsOfUseConsents | GET/<ID>, GET(Search) |
| UpdateFromEmailDomainValidationStatusJob | GET/<ID>, GET(Search) |
| UpdateFromEmailDomainValidationStatusJobHistory | GET/<ID>, GET(Search) |
| UpdateFromEmailDomainValidationStatusJobProgress | ALL |
| UpdateFromEmailDomainValidationStatusJobReport | GET/<ID>, GET(Search) |
| UpdateFromEmailDomainValidationStatusJobSchedule | ALL |
| UpdateQuotaResourcesJob | GET/<ID>, GET(Search) |
| UpdateQuotaResourcesJobHistory | GET/<ID>, GET(Search) |
| UpdateQuotaResourcesJobProgress | ALL |
| UpdateQuotaResourcesJobReport | GET/<ID>, GET(Search) |
| UpdateQuotaResourcesJobSchedule | ALL |
| UpdateTenantSigningKeyChainJob | GET/<ID>, GET(Search) |
| UpdateTenantSigningKeyChainJobHistory | GET/<ID>, GET(Search) |
| UpdateTenantSigningKeyChainJobProgress | ALL |
| UpdateTenantSigningKeyChainJobReport | GET/<ID>, GET(Search) |
| UpdateTenantSigningKeyChainJobSchedule | ALL |
| UserAppsEnabledForAuthentication | GET/<ID>, GET(Search) |
| UserAppsEnabledForDelegatedAuthentication | GET/<ID>, GET(Search) |
| UserPasswordValidator | PUT |
| UserSharedFiles | GET |
| UserTokens | ALL |
| VerifyCredentials | POST |
| VerifyJWT | POST |