Organization policies

Allows you to define fine-grained access policies on your organization

List policies

List the IAM policies that are defined for this organization.

GET/organizations/{organizationId}/iam-policies

Authorization

Path parameters

organizationId*string

The organization ID

Query parameters

Response

Body

results*array of Policy

List of IAM policies.

nextPageTokenstring

The token to fetch the next page of results. If empty, there are no more results to fetch.

Request

Response

Create policy

Create a new IAM policy for this organization.

POST/organizations/{organizationId}/iam-policies

Authorization

Path parameters

organizationId*string

The organization ID

Body

name*iam_policy_properties-name (string)

IAM Policy name.

descriptionproperties-description (string)

IAM Policy description.

definitions*PolicyDefinitions

List of IAM Policy definitions.

metadataobject

Metadata for the IAM Role.

Response

Created

Body

id*string (uuid)

ID of the IAM Policy.

name*string

IAM Policy name.

descriptionstring

IAM Policy description.

definitions*PolicyDefinitions

List of IAM Policy definitions.

rolesDependencyCountinteger

The number of IAM Roles that depend on this IAM policy.

usersDependencyCountinteger

The number of users that depend on this IAM policy.

scope*enum

The scope to which this policy applies.

organizationroot

typeenum

The type of policy, managed indicates it's controlled by the platform.

managedorganization

createdAt*string (date-time)

When the IAM Policy was created.

updatedAt*string (date-time)

When the IAM Policy was last updated.

metadatanullable object

Metadata for the IAM Policy.

Request

Response

Get policy

Retrieve a single IAM policy.

GET/organizations/{organizationId}/iam-policies/{policyId}

Authorization

Path parameters

organizationId*string

The organization ID

policyId*string

ID for an IAM policy

Response

Body

id*string (uuid)

ID of the IAM Policy.

name*string

IAM Policy name.

descriptionstring

IAM Policy description.

definitions*PolicyDefinitions

List of IAM Policy definitions.

rolesDependencyCountinteger

The number of IAM Roles that depend on this IAM policy.

usersDependencyCountinteger

The number of users that depend on this IAM policy.

scope*enum

The scope to which this policy applies.

organizationroot

typeenum

The type of policy, managed indicates it's controlled by the platform.

managedorganization

createdAt*string (date-time)

When the IAM Policy was created.

updatedAt*string (date-time)

When the IAM Policy was last updated.

metadatanullable object

Metadata for the IAM Policy.

Request

Response

Delete policy

Remove an IAM policy from the organization.

DELETE/organizations/{organizationId}/iam-policies/{policyId}

Authorization

Path parameters

organizationId*string

The organization ID

policyId*string

ID for an IAM policy

Response

Request

Response

Update policy

Update an IAM policy's properties.

PATCH/organizations/{organizationId}/iam-policies/{policyId}

Authorization

Path parameters

organizationId*string

The organization ID

policyId*string

ID for an IAM policy

Body

nameiam_policy_properties-name (string)

IAM Policy name.

descriptionproperties-description (string)

IAM Policy description.

definitionsPolicyDefinitions

List of IAM Policy definitions.

Response

Body

id*string (uuid)

ID of the IAM Policy.

name*string

IAM Policy name.

descriptionstring

IAM Policy description.

definitions*PolicyDefinitions

List of IAM Policy definitions.

rolesDependencyCountinteger

The number of IAM Roles that depend on this IAM policy.

usersDependencyCountinteger

The number of users that depend on this IAM policy.

scope*enum

The scope to which this policy applies.

organizationroot

typeenum

The type of policy, managed indicates it's controlled by the platform.

managedorganization

createdAt*string (date-time)

When the IAM Policy was created.

updatedAt*string (date-time)

When the IAM Policy was last updated.

metadatanullable object

Metadata for the IAM Policy.

Request

Response

Last updated 1 year ago