Organization roles
Roles group one or more organization policies, and can be assigned to organization users and access keys.
List the IAM roles that are defined for this organization.
Authorizations
Path parameters
organizationIdstringRequired
The organization ID
Query parameters
limitinteger · min: 1 · max: 100OptionalDefault:
Limits the number of results to return
10pageTokenstringOptional
Pagination token that keeps of track of the current position in the list
reversebooleanOptionalDefault:
Order in which to retrieve the results
falseResponses
200
OK
application/json
Responseall of
and
401
unauthorized request
application/json
404
Resource not found
application/json
get
GET /organizations/{organizationId}/iam-roles HTTP/1.1
Host:
Authorization: Bearer jwt
Accept: */*
{
"results": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"organizationId": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"type": "organization",
"policies": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"definitions": [
{
"effect": "allow",
"resources": [
"text"
],
"actions": [
"any"
],
"conditionsAll": [
{
"any": {
"ANY_ADDITIONAL_PROPERTY": {
"ANY_ADDITIONAL_PROPERTY": "text"
}
}
}
]
}
],
"rolesDependencyCount": 1,
"usersDependencyCount": 1,
"scope": "organization",
"type": "managed",
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
],
"apps": [
"inbox"
],
"groups": [
"text"
]
}
}
],
"usersDependencyCount": 1,
"accessKeysDependencyCount": 1,
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
]
},
"actions": [
{
"name": "text",
"type": "text"
}
]
}
],
"nextPageToken": "text"
}Create a new IAM role for this organization.
Authorizations
Path parameters
organizationIdstringRequired
The organization ID
Body
namestringRequired
Role name.
descriptionstringOptional
Role description.
Responses
201
Created
application/json
403
Forbidden operation
application/json
404
Resource not found
application/json
409
The resource already exists
application/json
422
Request validation failed
application/json
post
POST /organizations/{organizationId}/iam-roles HTTP/1.1
Host:
Authorization: Bearer jwt
Content-Type: application/json
Accept: */*
Content-Length: 154
{
"name": "text",
"description": "text",
"policies": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"type": "managed"
}
],
"actions": [
{
"name": "text",
"type": "text"
}
]
}{
"id": "123e4567-e89b-12d3-a456-426614174000",
"organizationId": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"type": "organization",
"policies": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"definitions": [
{
"effect": "allow",
"resources": [
"text"
],
"actions": [
"any"
],
"conditionsAll": [
{
"any": {
"ANY_ADDITIONAL_PROPERTY": {
"ANY_ADDITIONAL_PROPERTY": "text"
}
}
}
]
}
],
"rolesDependencyCount": 1,
"usersDependencyCount": 1,
"scope": "organization",
"type": "managed",
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
],
"apps": [
"inbox"
],
"groups": [
"text"
]
}
}
],
"usersDependencyCount": 1,
"accessKeysDependencyCount": 1,
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
]
},
"actions": [
{
"name": "text",
"type": "text"
}
]
}Retrieve a single IAM role.
Authorizations
Path parameters
organizationIdstringRequired
The organization ID
roleIdstringRequired
ID for an IAM role
Responses
200
OK
application/json
404
Resource not found
application/json
get
GET /organizations/{organizationId}/iam-roles/{roleId} HTTP/1.1
Host:
Authorization: Bearer jwt
Accept: */*
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"organizationId": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"type": "organization",
"policies": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"definitions": [
{
"effect": "allow",
"resources": [
"text"
],
"actions": [
"any"
],
"conditionsAll": [
{
"any": {
"ANY_ADDITIONAL_PROPERTY": {
"ANY_ADDITIONAL_PROPERTY": "text"
}
}
}
]
}
],
"rolesDependencyCount": 1,
"usersDependencyCount": 1,
"scope": "organization",
"type": "managed",
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
],
"apps": [
"inbox"
],
"groups": [
"text"
]
}
}
],
"usersDependencyCount": 1,
"accessKeysDependencyCount": 1,
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
]
},
"actions": [
{
"name": "text",
"type": "text"
}
]
}Remove an IAM role from the organization.
Authorizations
Path parameters
organizationIdstringRequired
The organization ID
roleIdstringRequired
ID for an IAM role
Responses
204
OK
400
Cannot remove role because it's still in use
application/json
403
Forbidden operation
application/json
404
Resource not found
application/json
409
The HTTP 409 Conflict response status code indicates a request conflict with current state of the target resource.
application/json
410
Resource not found
application/json
delete
DELETE /organizations/{organizationId}/iam-roles/{roleId} HTTP/1.1
Host:
Authorization: Bearer jwt
Accept: */*
No content
Update an IAM role's properties.
Authorizations
Path parameters
organizationIdstringRequired
The organization ID
roleIdstringRequired
ID for an IAM role
Body
namestringOptional
Role name.
descriptionstringOptional
Role description.
Responses
200
OK
application/json
403
Forbidden operation
application/json
404
Resource not found
application/json
422
Request validation failed
application/json
patch
PATCH /organizations/{organizationId}/iam-roles/{roleId} HTTP/1.1
Host:
Authorization: Bearer jwt
Content-Type: application/json
Accept: */*
Content-Length: 154
{
"name": "text",
"description": "text",
"policies": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"type": "managed"
}
],
"actions": [
{
"name": "text",
"type": "text"
}
]
}{
"id": "123e4567-e89b-12d3-a456-426614174000",
"organizationId": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"type": "organization",
"policies": [
{
"id": "123e4567-e89b-12d3-a456-426614174000",
"name": "text",
"description": "text",
"definitions": [
{
"effect": "allow",
"resources": [
"text"
],
"actions": [
"any"
],
"conditionsAll": [
{
"any": {
"ANY_ADDITIONAL_PROPERTY": {
"ANY_ADDITIONAL_PROPERTY": "text"
}
}
}
]
}
],
"rolesDependencyCount": 1,
"usersDependencyCount": 1,
"scope": "organization",
"type": "managed",
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
],
"apps": [
"inbox"
],
"groups": [
"text"
]
}
}
],
"usersDependencyCount": 1,
"accessKeysDependencyCount": 1,
"createdAt": "2025-08-12T20:53:11.393Z",
"updatedAt": "2025-08-12T20:53:11.393Z",
"metadata": {
"clouds": [
"platform"
]
},
"actions": [
{
"name": "text",
"type": "text"
}
]
}Last updated
Was this helpful?