To grant an application access to the Oracle Identity Cloud Service REST API, you must first know the allowed operations that you need the application to access. Then, assign the AppRoles with access to those operations to your application.

The following table displays the endpoints and the allowed operations for that endpoint that a Me AppRole can access.

Endpoint Allowed Operations
AccountRecoverySettings ALL
AllIdentityProviders GET(Search), POST/.search
AllowedValues GET(Search), GET/<ID>
ApplicablePasswordPolicyRetriever ALL
AuthenticationFactorEnrollmentRequest POST
AuthenticationFactorSettings GET(Search), GET/<ID>
BrandingSettings GET(Search), GET/<ID>
ExternalIdentityProviders GET(Search), POST/.search
IdentitySettings GET(Search), GET/<ID>
MeEmailVerifier ALL
MePasswordChanger ALL
MeRemovePendingEmailVerification POST
MyAccesses ALL
MyAppFavoriteSetter ALL
MyApps ALL
MyAuthenticationFactorEnroller POST
MyAuthenticationFactorInitiator POST
MyAuthenticationFactorsRemover POST
MyAuthenticationFactorValidator POST
MyBypassCodeNotifications POST
MyBypassCodes DELETE, POST, GET(Search), POST/.search, GET/<ID>
MyDevices DELETE, GET(Search), GET/<ID>, PATCH
MyGroups GET(Search), POST/.search
MyRequestableApps GET(Search), POST/.search
MyRequestableGroups GET(Search), POST/.search
MyRequests POST, GET(Search), POST/.search
MySFFCredentials ALL
MySocialAccountLinker POST
MySocialAccounts ALL
MyTermsOfUseConsents DELETE, GET(Search), POST/.search, GET/<ID>
MyTrustedUserAgents DELETE, GET(Search), GET/<ID>
OAuthConsents DELETE, GET(Search), GET/<ID>
PasswordPolicies GET/<ID>, GET(Search)
SecurityQuestions GET/<ID>, GET(Search)
SecurityQuestionSettings GET/<ID>, GET(Search)
SffXtnUrl GET/<ID>, GET(Search)
SupportedSocialIdentityProviders GET
UserPasswordValidator PUT
UserSharedFiles GET/<ID>