有效策略端点

NOTE
如果传递的是用户令牌,则该令牌的用户必须具有所请求组织的“组织管理员”角色。

要查看当前用户的有效访问控制策略,请向以下用户发出POST请求: /acl/effective-policies 中的端点 Access Control API。 您想要检索的权限和资源类型必须在请求有效载荷中以数组的形式提供。 下面的API调用示例对此进行了说明。

API格式

POST /acl/effective-policies

请求

以下请求检索有关“管理数据集”权限和对“”的访问权限架构当前用户的''资源类型。

curl -X POST \
  https://platform.adobe.io/data/foundation/access-control/acl/effective-policies \
  -H 'Authorization: Bearer {ACCESS_TOKEN}' \
  -H 'x-api-key: {API_KEY}' \
  -H 'x-gw-ims-org-id: {ORG_ID}' \
  -H 'x-sandbox-name: {SANDBOX_NAME}' \
  -H 'Content-Type: application/json' \
  -d '[
    "/permissions/manage-datasets",
    "/resource-types/schemas"
  ]'
NOTE
有关有效负载数组中可提供的权限和资源类型的完整列表,请参阅 接受的权限和资源类型.

响应

成功的响应会返回有关请求中提供的权限和资源类型的信息。 响应包括当前用户对请求中指定的资源类型的活动权限。 如果请求有效负载中包含的任何权限对当前用户有效,则API会返回带有星号(*),以指示权限处于活动状态。 请求中提供的任何非用户活动的权限将在响应有效负荷中忽略。

{
    "policies": {
        "/resource-types/schemas": [
            "read",
            "write",
            "delete"
        ],
        "/permissions/manage-datasets": [
            "*"
        ]
    }
}

后续步骤

本文档介绍了如何调用 Access Control 用于返回有关资源类型的活动权限和相关访问策略的信息的API。 有关访问控制的详细信息 Experience Platform,请参见 访问控制概述.

附录

本节提供有关使用 Access Control API。

接受的权限和资源类型

以下是可包含在对的POST请求的有效负载中的权限和资源类型列表 /acl/active-permissions 端点。

权限

permissions/activate-destinations
permissions/evaluate-segments
permissions/execute-decisioning-activities
permissions/export-audience-for-segment
permissions/manage-datasets
permissions/manage-decisioning-activities
permissions/manage-decisioning-options
permissions/manage-destinations
permissions/manage-dsw
permissions/manage-dule-labels
permissions/manage-dule-policies
permissions/manage-identity-namespaces
permissions/manage-privacy-workflows
permissions/manage-profile-configs
permissions/manage-profiles
permissions/manage-queries
permissions/manage-schemas
permissions/manage-segments
permissions/manage-sources
permissions/reset-sandboxes
permissions/view-datasets
permissions/view-destinations
permissions/view-dule-labels
permissions/view-dule-policies
permissions/view-identity-namespaces
permissions/view-monitoring-dashboard
permissions/view-privacy-workflows
permissions/view-profile-configs
permissions/view-profiles
permissions/view-sandboxes
permissions/view-schemas
permissions/view-segments
permissions/view-sources

资源类型

resource-types/activation-associations
resource-types/activations
resource-types/activities
resource-types/analytics-source
resource-types/audience-manager-source
resource-types/bizible-source
resource-types/connection
resource-types/customer-attributes-source
resource-types/data-science-workspace
resource-types/dataset-preview
resource-types/datasets
resource-types/dule-label
resource-types/dule-policy
resource-types/enterprise-source
resource-types/identity-descriptor
resource-types/identity-namespaces
resource-types/launch-source
resource-types/marketing-action
resource-types/marketo-source
resource-types/monitoring
resource-types/offers
resource-types/placements
resource-types/privacy-consent
resource-types/privacy-content-delivery
resource-types/privacy-job
resource-types/profile-configs
resource-types/profile-datasets
resource-types/profiles
resource-types/query
resource-types/relationship-descriptor
resource-types/sandboxes
resource-types/schemas
resource-types/segment-jobs
resource-types/segments
resource-types/streaming-source
recommendation-more-help
631fcab2-5cb1-46ef-ba66-fe098ac723e0