get https://{application_vanity_domain}/api/v1/users//roles
Retrieves the roles that are assigned to the specified user. A query expression can be used to filter the returned results.
Query Filter Attributes
| Name | Type | Case Sensitive | Supported Comparison Operators |
|---|---|---|---|
id | String | Yes | eq, ne, in, nin |
type | String | No | eq, ne, in, nin |
name | String | No | eq, ne, sw, lt, le, gt, ge, in, nin |
displayName | String | No | eq, ne, sw, lt, le, gt, ge, in, nin |
tenantVisibility | String | No | eq, ne, in, nin |
Sort Attributes
idtypenamedisplayNametenantVisibility
Required Permissions
Below is the list of required permissions needed to interact with this API. For each permission, the allowed permission boundaries are also specified.
| Permission | Boundary | Description |
|---|---|---|
| role:read | Application | The subject can perform this query if the user specified in the URL path is associated with the subject's application. |
| Tenant | The subject can perform this query if the user specified in the URL path belongs to the subject's associated tenant. | |
| Tenant Inclusion List | The subject can perform this query if the user specified in the URL path belongs to a tenant included in the tenant inclusion list. | |
| Tenant Exclusion List | The subject can perform this query if the user specified in the URL path belongs to the subject’s associated application and isn't a member of a tenant on the exclusion list. | |
| Self | The user subject can query the roles assigned to itself. |