get https://{application_vanity_domain}/api/v1/users//roles
Retrieves the roles that are assigned to the specified user (based off a query expression).
Query Filter Attributes:
| Name | Type | Case Sensitive | Supported Comparison Operators |
|---|---|---|---|
id | String | Yes | eq, ne, in, nin |
type | String | No | eq, ne, in, nin |
name | String | No | eq, ne, sw, lt, le, gt, ge, in, nin |
displayName | String | No | eq, ne, sw, lt, le, gt, ge, in, nin |
tenantVisibility | String | No | eq, ne, in, nin |
Sort Attributes:
idtypenamedisplayNametenantVisibility
Required Permissions
Below is the list of required permissions needed to interact with this API. For each permission the allowed permission boundaries are also specified.
| Permission | Boundary | Description |
|---|---|---|
| role:read | Application | The subject can perform this query if the user specified in the URL path belongs to the subject's associated application. |
| Tenant | The subject can perform this query if the user specified in the URL path belongs to the subject's associated tenant. | |
| Tenant Inclusion List | The subject can perform this query if the user specified in the URL path belongs to a tenant included in the tenant inclusion list. | |
| Tenant Exclusion List | The subject can perform this query if the user specified in the URL path belongs to the subject's associated application but does not belong to a tenant in the tenant exclusion list. | |
| Self | The user subject can query the roles assigned to itself. |