List ACL by Role
Overview
This operation returns all of the permissions for all named resources for the specified role. The response contains the named resources and respective permissions applied to them.
- For named tables, the permissions can be EXECUTE, CREATE, MODIFY, or DELETE
- For repository folders, the permissions can be READ or WRITE
- For other named resources, the permissions can be EXECUTE
ACL Authorization Flow
The user making this request will only be able to list permissions on resources within the repository folders (or subfolders) on which they have WRITE permissions.
HTTP GET URL Format
The following format is used for HTTP GET requests to list ACL by user roles:
HTTP GET http://<server>:<port>/rest/Spatial/AccessControlService/acl/roles/roleName?resourceType=type
Parameters
Parameter | Type | Required | Description |
---|---|---|---|
roleName | String | Yes | Specifies name of the role. |
type | String | No | Specifies the type of name resource to filter the response. This can be one or more of NamedTable, NamedFeatureLayer, NamedLabelLayer, NamedGroupLayer, NamedPieLayer, NamedBarLayer, NamedGraduatedSymbolLayer, NamedLineChartLayer, NamedLineLinkageLayer, NamedFeatureLabelSource, NamedMapAndView, NamedTile, NamedWMTSLayer, or RepositoryFolder. NamedGraduatedSymbolLayer, NamedLineChartLayer, NamedLineLinkageLayer, NamedFeatureLabelSource, NamedMapAndView, NamedTile, NamedWMTSLayer, or RepositoryFolder. |
Returns
Returns permissions for all resources for the specified role.
Example for GET
Request URL
http://<server>:<port>/rest/Spatial/AccessControlService/acl/roles/role1
Response
{ "usersRolesAclList":[ { "usersACL":[ ], "rolesACL":[ { "name":"role1", "resources":[ { "name":"/Samples/NamedTiles/", "permissions":[ "READ", "WRITE" ], "resourceType":"RepositoryFolder" }, { "name":"/Samples/", "permissions":[ "READ", "WRITE" ], "resourceType":"RepositoryFolder" }, { "name":"/Samples/NamedTiles/WorldTile", "permissions":[ "EXECUTE" ], "resourceType":"NamedTile" } ] } ] } ] }