HTTP status code 200

Tenant list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.Tenant)

  Items: Tenant

  • id: required(string)

    Unique identifier of a tenant.

  • realm_name: required(string)

    Realm name (not id!).

  • client_frontend_id: required(string)

    Identifier of a client frontend.

  • client_backend_id: required(string)

    Identifier of a client backend.

  • client_backend_secret: required(string)

    Identifier of a client backend secret for confidential clients.

  • realm_template_version: required(integer)

    Identifier of a realm template version.

  • realm_scopes_version: required(integer)

    Identifier of a realm scope version.

  • client_backend_version: required(integer)

    Identifier of a realm client backend version.

  • client_frontend_version: required(integer)

    Identifier of a realm client frontend version.

  • roles_version: required(integer)

    Identifier of a realm role version.

  • resources_version: required(integer)

    Identifier of a realm resources version.

  • idp_version: required(integer)

    Identifier of a realm identity provider version.

  • user: (integer)

    Identifier of a tenant user.

  • user_roles: required(integer)

    Defines user roles for the tenant.

  • issuer: required(string)

    URL of the auth service.

  • internal_issuer: (string)

    Internal URL of the auth service.

  • status: required(one of AVAILABLE, SUSPENDED, CREATING, FAILED, UPDATING, DISABLED, DELETED)

    Tenant status.

  • created: required(datetime)

    Tenant creation timestamp in ISO 8601 format (UTC timezone).

  • keycloak_server: required(integer)

    Auth server.

  • package_type: required(integer)

    Package type of the tenant.

  • opendistro_enabled: (boolean)

    Open Distro status of the tenant.

  • js_policies: required(array of integer)

    Array of JS policies.

  • subscription_type: required(one of PERMANENT, RENEWAL)

    Tenant subscription type.

Example:

{
  "count": 2,
  "results": [
    {
      "id": "80786da9-985a-4e01-a51a-c5872e03d44f",
      "realm_name": "alpha-realm",
      "client_frontend_id": "16f9a9d6-1989-4cb1-a30f-6bba13aa6460",
      "client_backend_id": "727eaf72-fb73-419f-a677-50a37d8829cd",
      "client_backend_secret": "e3f8f5c7-cdf2-473d-8721-a7bfad0691e7",
      "realm_template_version": 1,
      "realm_scopes_version": 1,
      "client_backend_version": 1,
      "client_frontend_version": 1,
      "roles_version": 1,
      "resources_version": 1,
      "idp_version": 1,
      "user": 1,
      "user_roles": 1,
      "issuer": "https://{identity-provider-host}/auth/realms/80786da9-985a-4e01-a51a-c5872e03d44f",
      "internal_issuer": "http://{internal-provider-host/auth/realms/80786da9-985a-4e01-a51a-c5872e03d44f",
      "status": "AVAILABLE",
      "created": "2020-03-06T14:49:08.339576Z",
      "keycloak_server": 1,
      "package_type": 5,
      "opendistro_enabled": true,
      "js_policies": [1],
      "subscription_type": "PERMANENT"
    },
    {
      "id": "6d2e4ccd-4a15-4a3f-91b6-e168918e945f",
      "realm_name": "beta-realm",
      "client_frontend_id": "fb6d9435-448d-46b8-82b1-60e91c2e1307",
      "client_backend_id": "d5cd59ff-6f1d-45f5-a84a-28877fa2cd36",
      "client_backend_secret": "bda83b4a-4633-4767-a68b-6153c7901131",
      "realm_template_version": 1,
      "realm_scopes_version": 1,
      "client_backend_version": 1,
      "client_frontend_version": 1,
      "roles_version": 1,
      "resources_version": 1,
      "idp_version": 1,
      "user": 2,
      "user_roles": 1,
      "issuer": "https://{identity-provider-host}/auth/realms/6d2e4ccd-4a15-4a3f-91b6-e168918e945f",
      "internal_issuer": "http://{internal-provider-host/auth/realms/6d2e4ccd-4a15-4a3f-91b6-e168918e945f",
      "status": "AVAILABLE",
      "created": "2020-03-06T14:49:11.180017Z",
      "keycloak_server": 1,
      "package_type": 5,
      "opendistro_enabled": true,
      "js_policies": [1],
      "subscription_type": "RENEWAL"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Tenant is successfully created.

Body

Media type: application/json

Type: object

• id: required(string)

  Unique identifier of a tenant.

• realm_name: required(string)

  Realm name (not id!).

• client_frontend_id: required(string)

  Identifier of a client frontend.

• client_backend_id: required(string)

  Identifier of a client backend.

• client_backend_secret: required(string)

  Identifier of a client backend secret for confidential clients.

• realm_template_version: required(integer)

  Identifier of a realm template version.

• realm_scopes_version: required(integer)

  Identifier of a realm scope version.

• client_backend_version: required(integer)

  Identifier of a realm client backend version.

• client_frontend_version: required(integer)

  Identifier of a realm client frontend version.

• roles_version: required(integer)

  Identifier of a realm role version.

• resources_version: required(integer)

  Identifier of a realm resources version.

• idp_version: required(integer)

  Identifier of a realm identity provider version.

• user: (integer)

  Identifier of a tenant user.

• user_roles: required(integer)

  Defines user roles for the tenant.

• issuer: required(string)

  URL of the auth service.

• internal_issuer: (string)

  Internal URL of the auth service.

• status: required(one of AVAILABLE, SUSPENDED, CREATING, FAILED, UPDATING, DISABLED, DELETED)

  Tenant status.

• created: required(datetime)

  Tenant creation timestamp in ISO 8601 format (UTC timezone).

• keycloak_server: required(integer)

  Auth server.

• package_type: required(integer)

  Package type of the tenant.

• opendistro_enabled: (boolean)

  Open Distro status of the tenant.

• js_policies: required(array of integer)

  Array of JS policies.

• subscription_type: required(one of PERMANENT, RENEWAL)

  Tenant subscription type.

Example:

{
  "id": "5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "realm_name": "delta-realm",
  "client_frontend_id": "16f9a9d6-1989-4cb1-a30f-6bba13aa6460",
  "client_backend_id": "727eaf72-fb73-419f-a677-50a37d8829cd",
  "client_backend_secret": "e3f8f5c7-cdf2-473d-8721-a7bfad0691e7",
  "realm_template_version": 1,
  "realm_scopes_version": 1,
  "client_backend_version": 1,
  "client_frontend_version": 1,
  "roles_version": 1,
  "resources_version": 1,
  "idp_version": 1,
  "user": 1,
  "user_roles": 1,
  "issuer": "https://{identity-provider-host}/auth/realms/5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "internal_issuer": "http://{identity-provider-host}/auth/realms/5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "status": "CREATING",
  "created": "2020-02-24T10:46:29.657054Z",
  "keycloak_server": 1,
  "package_type": 5,
  "opendistro_enabled": true,
  "js_policies": [],
  "subscription_type": "PERMANENT"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Tenant is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(string)

  Unique identifier of a tenant.

• realm_name: required(string)

  Realm name (not id!).

• client_frontend_id: required(string)

  Identifier of a client frontend.

• client_backend_id: required(string)

  Identifier of a client backend.

• client_backend_secret: required(string)

  Identifier of a client backend secret for confidential clients.

• realm_template_version: required(integer)

  Identifier of a realm template version.

• realm_scopes_version: required(integer)

  Identifier of a realm scope version.

• client_backend_version: required(integer)

  Identifier of a realm client backend version.

• client_frontend_version: required(integer)

  Identifier of a realm client frontend version.

• roles_version: required(integer)

  Identifier of a realm role version.

• resources_version: required(integer)

  Identifier of a realm resources version.

• idp_version: required(integer)

  Identifier of a realm identity provider version.

• user: (integer)

  Identifier of a tenant user.

• user_roles: required(integer)

  Defines user roles for the tenant.

• issuer: required(string)

  URL of the auth service.

• internal_issuer: (string)

  Internal URL of the auth service.

• status: required(one of AVAILABLE, SUSPENDED, CREATING, FAILED, UPDATING, DISABLED, DELETED)

  Tenant status.

• created: required(datetime)

  Tenant creation timestamp in ISO 8601 format (UTC timezone).

• keycloak_server: required(integer)

  Auth server.

• package_type: required(integer)

  Package type of the tenant.

• opendistro_enabled: (boolean)

  Open Distro status of the tenant.

• js_policies: required(array of integer)

  Array of JS policies.

• subscription_type: required(one of PERMANENT, RENEWAL)

  Tenant subscription type.

Example:

{
  "id": "5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "realm_name": "delta-realm",
  "client_frontend_id": "16f9a9d6-1989-4cb1-a30f-6bba13aa6460",
  "client_backend_id": "727eaf72-fb73-419f-a677-50a37d8829cd",
  "client_backend_secret": "e3f8f5c7-cdf2-473d-8721-a7bfad0691e7",
  "realm_template_version": 1,
  "realm_scopes_version": 1,
  "client_backend_version": 1,
  "client_frontend_version": 1,
  "roles_version": 1,
  "resources_version": 1,
  "idp_version": 1,
  "user": 1,
  "user_roles": 1,
  "issuer": "https://{identity-provider-host}/auth/realms/5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "internal_issuer": "http://{internal-provider-host/auth/realms/6d2e4ccd-4a15-4a3f-91b6-e168918e945f",
  "status": "AVAILABLE",
  "created": "2020-02-24T10:46:29.657054Z",
  "keycloak_server": 1,
  "package_type": 5,
  "opendistro_enabled": true,
  "js_policies": [1],
  "subscription_type": "RENEWAL"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Tenant is successfully updated.

Body

Media type: application/json

Type: object

• id: required(string)

  Unique identifier of a tenant.

• realm_name: required(string)

  Realm name (not id!).

• client_frontend_id: required(string)

  Identifier of a client frontend.

• client_backend_id: required(string)

  Identifier of a client backend.

• client_backend_secret: required(string)

  Identifier of a client backend secret for confidential clients.

• realm_template_version: required(integer)

  Identifier of a realm template version.

• realm_scopes_version: required(integer)

  Identifier of a realm scope version.

• client_backend_version: required(integer)

  Identifier of a realm client backend version.

• client_frontend_version: required(integer)

  Identifier of a realm client frontend version.

• roles_version: required(integer)

  Identifier of a realm role version.

• resources_version: required(integer)

  Identifier of a realm resources version.

• idp_version: required(integer)

  Identifier of a realm identity provider version.

• user: (integer)

  Identifier of a tenant user.

• user_roles: required(integer)

  Defines user roles for the tenant.

• issuer: required(string)

  URL of the auth service.

• internal_issuer: (string)

  Internal URL of the auth service.

• status: required(one of AVAILABLE, SUSPENDED, CREATING, FAILED, UPDATING, DISABLED, DELETED)

  Tenant status.

• created: required(datetime)

  Tenant creation timestamp in ISO 8601 format (UTC timezone).

• keycloak_server: required(integer)

  Auth server.

• package_type: required(integer)

  Package type of the tenant.

• opendistro_enabled: (boolean)

  Open Distro status of the tenant.

• js_policies: required(array of integer)

  Array of JS policies.

• subscription_type: required(one of PERMANENT, RENEWAL)

  Tenant subscription type.

Example:

{
  "id": "5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "realm_name": "delta-realm",
  "client_frontend_id": "16f9a9d6-1989-4cb1-a30f-6bba13aa6460",
  "client_backend_id": "727eaf72-fb73-419f-a677-50a37d8829cd",
  "client_backend_secret": "e3f8f5c7-cdf2-473d-8721-a7bfad0691e7",
  "realm_template_version": 1,
  "realm_scopes_version": 1,
  "client_backend_version": 1,
  "client_frontend_version": 1,
  "roles_version": 1,
  "resources_version": 1,
  "idp_version": 1,
  "user": 1,
  "user_roles": 1,
  "issuer": "https://{identity-provider-host}/auth/realms/5428586f-49a1-45b6-9ab7-de56ebd11e03",
  "internal_issuer": "http://{internal-provider-host/auth/realms/6d2e4ccd-4a15-4a3f-91b6-e168918e945f",
  "status": "UPDATING",
  "created": "2020-02-24T10:46:29.657054Z",
  "keycloak_server": 1,
  "package_type": 5,
  "opendistro_enabled": true,
  "js_policies": [1],
  "subscription_type": "RENEWAL"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Tenant is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Tenant's credentials are successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(string)

  Unique identifier of a tenant.

• realm_name: required(string)

  Realm name (not id!).

• client_backend_id: required(string)

  Identifier of a client backend.

• client_backend_secret: required(string)

  Identifier of a client backend secret.

• client_frontend_id: required(string)

  Identifier of a client frontend.

• issuer: required(string)

  URL of the auth service.

• internal_issuer: required(string)

  Internal URL of the auth service.

• minio_secret: required(string)

  Secret of the Minio service.

Example:

{
  "id": "1957f6df-ca08-4052-962b-b14ec96ab8f5",
  "realm_name": "delta-realm",
  "client_backend_id": "727eaf72-fb73-419f-a677-50a37d8829cd",
  "client_backend_secret": "e3f8f5c7-cdf2-473d-8721-a7bfad0691e7",
  "client_frontend_id": "16f9a9d6-1989-4cb1-a30f-6bba13aa6460",
  "issuer": "https://{identity-provider-host}/auth/realms/1957f6df-ca08-4052-962b-b14ec96ab8f5",
  "internal_issuer": "http://{identity-provider-host}/auth/realms/1957f6df-ca08-4052-962b-b14ec96ab8f5",
  "minio_secret": "e4ad7a8c-6f51-48d5-a851-ad709b7b2c2a"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Tenant's credentials are successfully updated.

Body

Media type: application/json

Type: object

• id: required(string)

  Unique identifier of a tenant.

• realm_name: required(string)

  Realm name (not id!).

• client_backend_id: required(string)

  Identifier of a client backend.

• client_backend_secret: required(string)

  Identifier of a client backend secret.

• client_frontend_id: required(string)

  Identifier of a client frontend.

• issuer: required(string)

  URL of the auth service.

• internal_issuer: required(string)

  Internal URL of the auth service.

• minio_secret: required(string)

  Secret of the Minio service.

Example:

{
  "id": "1957f6df-ca08-4052-962b-b14ec96ab8f5",
  "realm_name": "delta-realm",
  "client_backend_id": "727eaf72-fb73-419f-a677-50a37d8829cd",
  "client_backend_secret": "e3f8f5c7-cdf2-473d-8721-a7bfad0691e7",
  "client_frontend_id": "16f9a9d6-1989-4cb1-a30f-6bba13aa6460",
  "issuer": "https://{identity-provider-host}/auth/realms/1957f6df-ca08-4052-962b-b14ec96ab8f5",
  "internal_issuer": "http://{identity-provider-host}/auth/realms/1957f6df-ca08-4052-962b-b14ec96ab8f5",
  "minio_secret": "e4ad7a8c-6f51-48d5-a851-ad709b7b2c2a"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Tenant's resources are successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(string)

  Unique identifier of a tenant.

• realm_name: required(string)

  Realm name (not id!).

• resources: required(object)

  Tenant's resources.

Example:

{
  "id": "ad1c734d-b2b0-4119-95be-b3e4e764d183",
  "realm_name": "delta-realm",
  "resources": {
    "application": {
      "count": 2,
      "names": [
        "application-20245dee3e56wk2p22eg",
        "application-389ddbfc1o2n10iv596r0"
      ]
    },
    "dashboard": {
      "count": 4,
      "names": [
        "dashboard-b0df883e-da00-4bb3-9c59-2586ae039e51",
        "dashboard-525a304b-e811-4ad4-aa2a-e5131c8ac601",
        "dashboard-000b6e9a-d383-4d51-a957-e6242a7e4309",
        "dashboard-6bebac82-c603-4102-ad2e-61200659b121"
      ]
    },
    "endpoint": {
      "count": 2,
      "names": [
        "endpoint-5ea39bfb-2171-43ad-a5ac-2b9c4bafbe5d",
        "endpoint-22e587b3-ca5a-43a5-a56d-f72a3768c096"
      ]
    }
  }
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Tenant's pacakge is successfully retrieved.

Body

Media type: application/json

Type: object

• package_type: required(integer)

  Chosen package type.

• limits: required(object)

  Package details.

  • id: required(integer)

    Unique identifier of a package type.

  • name: required(string)

    Name of the a package type.

  • devices: required(integer)

    Number of devices available within package type.

  • applications: required(integer)

    Number of applications available within package type.

  • disk_size: required(integer)

    Disk size of the package type.

  • traffic: required(integer)

    Traffic of the package type.

  • description: required(string)

    Explanation of the package type.

Example:

{
  "package_type": 5,
  "limits": {
    "id": 5,
    "name": "cloud-5",
    "devices": 5,
    "applications": 5,
    "disk_size": 5,
    "traffic": 5,
    "description": "Cloud package for 5 devices"
  }
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Bulk update tenants has started.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Tenant users list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.TenantUser)

  Items: TenantUser

  • id: required(integer)

    Unique identifier of a tenant.

  • email: required(string)

    Email of a tenant user.

  • firstName: required(string)

    First name of a tenant user.

  • lastName: required(string)

    Last name of a tenant user.

  • password: required(string)

    Password of a tenant user.

  • idp_id: (string)

    Identifier of external Identity Provider.

Example:

{
  "count": 1,
  "results": [
    {
      "id": 2,
      "email": "admin@example.com",
      "firstName": "Admin",
      "lastName": "Admin",
      "password": "admin",
      "idp_id": "059d8639-b566-484b-98b7-729c02870d91"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Tenant user is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a tenant.

• email: required(string)

  Email of a tenant user.

• firstName: required(string)

  First name of a tenant user.

• lastName: required(string)

  Last name of a tenant user.

• password: required(string)

  Password of a tenant user.

• idp_id: (string)

  Identifier of external Identity Provider.

Example:

{
  "id": 2,
  "email": "admin@example.com",
  "firstName": "Admin",
  "lastName": "Admin",
  "password": "admin",
  "idp_id": "059d8639-b566-484b-98b7-729c02870d91"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Tenant user is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a tenant.

• email: required(string)

  Email of a tenant user.

• firstName: required(string)

  First name of a tenant user.

• lastName: required(string)

  Last name of a tenant user.

• password: required(string)

  Password of a tenant user.

• idp_id: (string)

  Identifier of external Identity Provider.

Example:

{
  "id": 2,
  "email": "admin@example.com",
  "firstName": "Admin",
  "lastName": "Admin",
  "password": "admin",
  "idp_id": "059d8639-b566-484b-98b7-729c02870d91"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Tenant user is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a tenant.

• email: required(string)

  Email of a tenant user.

• firstName: required(string)

  First name of a tenant user.

• lastName: required(string)

  Last name of a tenant user.

• password: required(string)

  Password of a tenant user.

• idp_id: (string)

  Identifier of external Identity Provider.

Example:

{
  "id": 2,
  "email": "admin@example.com",
  "firstName": "Admin",
  "lastName": "Admin",
  "password": "admin",
  "idp_id": "059d8639-b566-484b-98b7-729c02870d91"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Tenant user is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm templates list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmTemplate)

  Items: RealmTemplate

  • id: required(integer)

    Unique identifier of a realm template version.

  • template: required(object)

    Realm template version.
  • description: required(string)

    Realm template version description.

Example:

{
  "count": 1,
  "results": [
    {
      "id": 1,
      "template": {
        "enabled": true,
        "attributes": {
          "failureFactor": "30",
          "permanentLockout": "false",
          "bruteForceProtected": "false",
          "maxDeltaTimeSeconds": "43200",
          "waitIncrementSeconds": "60",
          "maxFailureWaitSeconds": "900",
          "offlineSessionMaxLifespan": "5184000",
          "_browser_header.xRobotsTag": "none",
          "quickLoginCheckMilliSeconds": "1000",
          "minimumQuickLoginWaitSeconds": "60",
          "_browser_header.xFrameOptions": "SAMEORIGIN",
          "_browser_header.xXSSProtection": "1; mode=block",
          "offlineSessionMaxLifespanEnabled": "false",
          "actionTokenGeneratedByUserLifespan": "300",
          "_browser_header.xContentTypeOptions": "nosniff",
          "actionTokenGeneratedByAdminLifespan": "43200",
          "_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
          "_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains",
          "_browser_header.contentSecurityPolicyReportOnly": ""
        },
        "loginTheme": "kaa",
        "rememberMe": false,
        "smtpServer": {},
        "browserFlow": "browser",
        "sslRequired": "none",
        "verifyEmail": false,
        "defaultRoles": ["uma_authorization", "offline_access"],
        "eventsEnabled": false,
        "failureFactor": 30,
        "otpPolicyType": "totp",
        "directGrantFlow": "direct grant",
        "eventsListeners": ["jboss-logging"],
        "otpPolicyDigits": 6,
        "otpPolicyPeriod": 30,
        "permanentLockout": false,
        "registrationFlow": "registration",
        "supportedLocales": [],
        "enabledEventTypes": [],
        "accessCodeLifespan": 36000,
        "adminEventsEnabled": false,
        "otpPolicyAlgorithm": "HmacSHA1",
        "revokeRefreshToken": false,
        "accessTokenLifespan": 2592000,
        "bruteForceProtected": false,
        "editUsernameAllowed": false,
        "maxDeltaTimeSeconds": 43200,
        "registrationAllowed": false,
        "requiredCredentials": ["password"],
        "refreshTokenMaxReuse": 0,
        "resetCredentialsFlow": "reset credentials",
        "resetPasswordAllowed": false,
        "waitIncrementSeconds": 60,
        "loginWithEmailAllowed": true,
        "maxFailureWaitSeconds": 900,
        "ssoSessionIdleTimeout": 2592000,
        "ssoSessionMaxLifespan": 2592000,
        "browserSecurityHeaders": {
          "xRobotsTag": "none",
          "xFrameOptions": "SAMEORIGIN",
          "xXSSProtection": "1; mode=block",
          "xContentTypeOptions": "nosniff",
          "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
          "strictTransportSecurity": "max-age=31536000; includeSubDomains",
          "contentSecurityPolicyReportOnly": ""
        },
        "duplicateEmailsAllowed": false,
        "accessCodeLifespanLogin": 108000,
        "otpPolicyInitialCounter": 0,
        "clientAuthenticationFlow": "clients",
        "dockerAuthenticationFlow": "docker auth",
        "otpPolicyLookAheadWindow": 1,
        "otpSupportedApplications": ["FreeOTP", "Google Authenticator"],
        "userManagedAccessAllowed": false,
        "adminEventsDetailsEnabled": false,
        "offlineSessionIdleTimeout": 2592000,
        "offlineSessionMaxLifespan": 5184000,
        "internationalizationEnabled": false,
        "quickLoginCheckMilliSeconds": 1000,
        "registrationEmailAsUsername": false,
        "accessCodeLifespanUserAction": 18000,
        "minimumQuickLoginWaitSeconds": 60,
        "ssoSessionIdleTimeoutRememberMe": 0,
        "ssoSessionMaxLifespanRememberMe": 0,
        "offlineSessionMaxLifespanEnabled": false,
        "accessTokenLifespanForImplicitFlow": 2592000,
        "actionTokenGeneratedByUserLifespan": 18000,
        "actionTokenGeneratedByAdminLifespan": 43200
      },
      "description": "realm template description"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm template is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm template version.

• template: required(object)

  Realm template version.
• description: required(string)

  Realm template version description.

Example:

{
  "id": 1,
  "template": {
    "enabled": true,
    "attributes": {
      "failureFactor": "30",
      "permanentLockout": "false",
      "bruteForceProtected": "false",
      "maxDeltaTimeSeconds": "43200",
      "waitIncrementSeconds": "60",
      "maxFailureWaitSeconds": "900",
      "offlineSessionMaxLifespan": "5184000",
      "_browser_header.xRobotsTag": "none",
      "quickLoginCheckMilliSeconds": "1000",
      "minimumQuickLoginWaitSeconds": "60",
      "_browser_header.xFrameOptions": "SAMEORIGIN",
      "_browser_header.xXSSProtection": "1; mode=block",
      "offlineSessionMaxLifespanEnabled": "false",
      "actionTokenGeneratedByUserLifespan": "300",
      "_browser_header.xContentTypeOptions": "nosniff",
      "actionTokenGeneratedByAdminLifespan": "43200",
      "_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
      "_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains",
      "_browser_header.contentSecurityPolicyReportOnly": ""
    },
    "loginTheme": "kaa",
    "rememberMe": false,
    "smtpServer": {},
    "browserFlow": "browser",
    "sslRequired": "none",
    "verifyEmail": false,
    "defaultRoles": ["uma_authorization", "offline_access"],
    "eventsEnabled": false,
    "failureFactor": 30,
    "otpPolicyType": "totp",
    "directGrantFlow": "direct grant",
    "eventsListeners": ["jboss-logging"],
    "otpPolicyDigits": 6,
    "otpPolicyPeriod": 30,
    "permanentLockout": false,
    "registrationFlow": "registration",
    "supportedLocales": [],
    "enabledEventTypes": [],
    "accessCodeLifespan": 36000,
    "adminEventsEnabled": false,
    "otpPolicyAlgorithm": "HmacSHA1",
    "revokeRefreshToken": false,
    "accessTokenLifespan": 2592000,
    "bruteForceProtected": false,
    "editUsernameAllowed": false,
    "maxDeltaTimeSeconds": 43200,
    "registrationAllowed": false,
    "requiredCredentials": ["password"],
    "refreshTokenMaxReuse": 0,
    "resetCredentialsFlow": "reset credentials",
    "resetPasswordAllowed": false,
    "waitIncrementSeconds": 60,
    "loginWithEmailAllowed": true,
    "maxFailureWaitSeconds": 900,
    "ssoSessionIdleTimeout": 2592000,
    "ssoSessionMaxLifespan": 2592000,
    "browserSecurityHeaders": {
      "xRobotsTag": "none",
      "xFrameOptions": "SAMEORIGIN",
      "xXSSProtection": "1; mode=block",
      "xContentTypeOptions": "nosniff",
      "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
      "strictTransportSecurity": "max-age=31536000; includeSubDomains",
      "contentSecurityPolicyReportOnly": ""
    },
    "duplicateEmailsAllowed": false,
    "accessCodeLifespanLogin": 108000,
    "otpPolicyInitialCounter": 0,
    "clientAuthenticationFlow": "clients",
    "dockerAuthenticationFlow": "docker auth",
    "otpPolicyLookAheadWindow": 1,
    "otpSupportedApplications": ["FreeOTP", "Google Authenticator"],
    "userManagedAccessAllowed": false,
    "adminEventsDetailsEnabled": false,
    "offlineSessionIdleTimeout": 2592000,
    "offlineSessionMaxLifespan": 5184000,
    "internationalizationEnabled": false,
    "quickLoginCheckMilliSeconds": 1000,
    "registrationEmailAsUsername": false,
    "accessCodeLifespanUserAction": 18000,
    "minimumQuickLoginWaitSeconds": 60,
    "ssoSessionIdleTimeoutRememberMe": 0,
    "ssoSessionMaxLifespanRememberMe": 0,
    "offlineSessionMaxLifespanEnabled": false,
    "accessTokenLifespanForImplicitFlow": 2592000,
    "actionTokenGeneratedByUserLifespan": 18000,
    "actionTokenGeneratedByAdminLifespan": 43200
  },
  "description": "realm template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm template is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm template version.

• template: required(object)

  Realm template version.
• description: required(string)

  Realm template version description.

Example:

{
  "id": 1,
  "template": {
    "enabled": true,
    "attributes": {
      "failureFactor": "30",
      "permanentLockout": "false",
      "bruteForceProtected": "false",
      "maxDeltaTimeSeconds": "43200",
      "waitIncrementSeconds": "60",
      "maxFailureWaitSeconds": "900",
      "offlineSessionMaxLifespan": "5184000",
      "_browser_header.xRobotsTag": "none",
      "quickLoginCheckMilliSeconds": "1000",
      "minimumQuickLoginWaitSeconds": "60",
      "_browser_header.xFrameOptions": "SAMEORIGIN",
      "_browser_header.xXSSProtection": "1; mode=block",
      "offlineSessionMaxLifespanEnabled": "false",
      "actionTokenGeneratedByUserLifespan": "300",
      "_browser_header.xContentTypeOptions": "nosniff",
      "actionTokenGeneratedByAdminLifespan": "43200",
      "_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
      "_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains",
      "_browser_header.contentSecurityPolicyReportOnly": ""
    },
    "loginTheme": "kaa",
    "rememberMe": false,
    "smtpServer": {},
    "browserFlow": "browser",
    "sslRequired": "none",
    "verifyEmail": false,
    "defaultRoles": ["uma_authorization", "offline_access"],
    "eventsEnabled": false,
    "failureFactor": 30,
    "otpPolicyType": "totp",
    "directGrantFlow": "direct grant",
    "eventsListeners": ["jboss-logging"],
    "otpPolicyDigits": 6,
    "otpPolicyPeriod": 30,
    "permanentLockout": false,
    "registrationFlow": "registration",
    "supportedLocales": [],
    "enabledEventTypes": [],
    "accessCodeLifespan": 36000,
    "adminEventsEnabled": false,
    "otpPolicyAlgorithm": "HmacSHA1",
    "revokeRefreshToken": false,
    "accessTokenLifespan": 2592000,
    "bruteForceProtected": false,
    "editUsernameAllowed": false,
    "maxDeltaTimeSeconds": 43200,
    "registrationAllowed": false,
    "requiredCredentials": ["password"],
    "refreshTokenMaxReuse": 0,
    "resetCredentialsFlow": "reset credentials",
    "resetPasswordAllowed": false,
    "waitIncrementSeconds": 60,
    "loginWithEmailAllowed": true,
    "maxFailureWaitSeconds": 900,
    "ssoSessionIdleTimeout": 2592000,
    "ssoSessionMaxLifespan": 2592000,
    "browserSecurityHeaders": {
      "xRobotsTag": "none",
      "xFrameOptions": "SAMEORIGIN",
      "xXSSProtection": "1; mode=block",
      "xContentTypeOptions": "nosniff",
      "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
      "strictTransportSecurity": "max-age=31536000; includeSubDomains",
      "contentSecurityPolicyReportOnly": ""
    },
    "duplicateEmailsAllowed": false,
    "accessCodeLifespanLogin": 108000,
    "otpPolicyInitialCounter": 0,
    "clientAuthenticationFlow": "clients",
    "dockerAuthenticationFlow": "docker auth",
    "otpPolicyLookAheadWindow": 1,
    "otpSupportedApplications": ["FreeOTP", "Google Authenticator"],
    "userManagedAccessAllowed": false,
    "adminEventsDetailsEnabled": false,
    "offlineSessionIdleTimeout": 2592000,
    "offlineSessionMaxLifespan": 5184000,
    "internationalizationEnabled": false,
    "quickLoginCheckMilliSeconds": 1000,
    "registrationEmailAsUsername": false,
    "accessCodeLifespanUserAction": 18000,
    "minimumQuickLoginWaitSeconds": 60,
    "ssoSessionIdleTimeoutRememberMe": 0,
    "ssoSessionMaxLifespanRememberMe": 0,
    "offlineSessionMaxLifespanEnabled": false,
    "accessTokenLifespanForImplicitFlow": 2592000,
    "actionTokenGeneratedByUserLifespan": 18000,
    "actionTokenGeneratedByAdminLifespan": 43200
  },
  "description": "realm template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

The realm template is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm template version.

• template: required(object)

  Realm template version.
• description: required(string)

  Realm template version description.

Example:

{
  "id": 1,
  "template": {
    "enabled": true,
    "attributes": {
      "failureFactor": "30",
      "permanentLockout": "false",
      "bruteForceProtected": "false",
      "maxDeltaTimeSeconds": "43200",
      "waitIncrementSeconds": "60",
      "maxFailureWaitSeconds": "900",
      "offlineSessionMaxLifespan": "5184000",
      "_browser_header.xRobotsTag": "none",
      "quickLoginCheckMilliSeconds": "1000",
      "minimumQuickLoginWaitSeconds": "60",
      "_browser_header.xFrameOptions": "SAMEORIGIN",
      "_browser_header.xXSSProtection": "1; mode=block",
      "offlineSessionMaxLifespanEnabled": "false",
      "actionTokenGeneratedByUserLifespan": "300",
      "_browser_header.xContentTypeOptions": "nosniff",
      "actionTokenGeneratedByAdminLifespan": "43200",
      "_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
      "_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains",
      "_browser_header.contentSecurityPolicyReportOnly": ""
    },
    "loginTheme": "kaa",
    "rememberMe": false,
    "smtpServer": {},
    "browserFlow": "browser",
    "sslRequired": "none",
    "verifyEmail": false,
    "defaultRoles": ["uma_authorization", "offline_access"],
    "eventsEnabled": false,
    "failureFactor": 30,
    "otpPolicyType": "totp",
    "directGrantFlow": "direct grant",
    "eventsListeners": ["jboss-logging"],
    "otpPolicyDigits": 6,
    "otpPolicyPeriod": 30,
    "permanentLockout": false,
    "registrationFlow": "registration",
    "supportedLocales": [],
    "enabledEventTypes": [],
    "accessCodeLifespan": 36000,
    "adminEventsEnabled": false,
    "otpPolicyAlgorithm": "HmacSHA1",
    "revokeRefreshToken": false,
    "accessTokenLifespan": 2592000,
    "bruteForceProtected": false,
    "editUsernameAllowed": false,
    "maxDeltaTimeSeconds": 43200,
    "registrationAllowed": false,
    "requiredCredentials": ["password"],
    "refreshTokenMaxReuse": 0,
    "resetCredentialsFlow": "reset credentials",
    "resetPasswordAllowed": false,
    "waitIncrementSeconds": 60,
    "loginWithEmailAllowed": true,
    "maxFailureWaitSeconds": 900,
    "ssoSessionIdleTimeout": 2592000,
    "ssoSessionMaxLifespan": 2592000,
    "browserSecurityHeaders": {
      "xRobotsTag": "none",
      "xFrameOptions": "SAMEORIGIN",
      "xXSSProtection": "1; mode=block",
      "xContentTypeOptions": "nosniff",
      "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
      "strictTransportSecurity": "max-age=31536000; includeSubDomains",
      "contentSecurityPolicyReportOnly": ""
    },
    "duplicateEmailsAllowed": false,
    "accessCodeLifespanLogin": 108000,
    "otpPolicyInitialCounter": 0,
    "clientAuthenticationFlow": "clients",
    "dockerAuthenticationFlow": "docker auth",
    "otpPolicyLookAheadWindow": 1,
    "otpSupportedApplications": ["FreeOTP", "Google Authenticator"],
    "userManagedAccessAllowed": false,
    "adminEventsDetailsEnabled": false,
    "offlineSessionIdleTimeout": 2592000,
    "offlineSessionMaxLifespan": 5184000,
    "internationalizationEnabled": false,
    "quickLoginCheckMilliSeconds": 1000,
    "registrationEmailAsUsername": false,
    "accessCodeLifespanUserAction": 18000,
    "minimumQuickLoginWaitSeconds": 60,
    "ssoSessionIdleTimeoutRememberMe": 0,
    "ssoSessionMaxLifespanRememberMe": 0,
    "offlineSessionMaxLifespanEnabled": false,
    "accessTokenLifespanForImplicitFlow": 2592000,
    "actionTokenGeneratedByUserLifespan": 18000,
    "actionTokenGeneratedByAdminLifespan": 43200
  },
  "description": "realm template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm template is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm frontend client template list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmFrontendClientTemplate)

  Items: RealmFrontendClientTemplate

  • id: required(integer)

    Unique identifier of a realm frontend template version.

  • template: required(object)

    Realm frontend template version.
  • description: required(string)

    Realm frontend template version description.

Example:

{
  "count": 1,
  "results": [
    {
      "id": 2,
      "template": {
        "protocol": "openid-connect",
        "webOrigins": ["+"],
        "publicClient": true,
        "redirectUris": ["*"],
        "fullScopeAllowed": false,
        "serviceAccountsEnabled": false,
        "authorizationServicesEnabled": false
      },
      "description": "realm frontend client template description"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm frontend client template is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm frontend template version.

• template: required(object)

  Realm frontend template version.
• description: required(string)

  Realm frontend template version description.

Example:

{
  "id": 2,
  "template": {
    "protocol": "openid-connect",
    "webOrigins": ["+"],
    "publicClient": true,
    "redirectUris": ["*"],
    "fullScopeAllowed": false,
    "serviceAccountsEnabled": false,
    "authorizationServicesEnabled": false
  },
  "description": "realm frontend client template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm frontend client template is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm frontend template version.

• template: required(object)

  Realm frontend template version.
• description: required(string)

  Realm frontend template version description.

Example:

{
  "id": 2,
  "template": {
    "protocol": "openid-connect",
    "webOrigins": ["+"],
    "publicClient": true,
    "redirectUris": ["*"],
    "fullScopeAllowed": false,
    "serviceAccountsEnabled": false,
    "authorizationServicesEnabled": false
  },
  "description": "realm frontend client template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm frontend client template is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm frontend template version.

• template: required(object)

  Realm frontend template version.
• description: required(string)

  Realm frontend template version description.

Example:

{
  "id": 2,
  "template": {
    "protocol": "openid-connect",
    "webOrigins": ["+"],
    "publicClient": true,
    "redirectUris": ["*"],
    "fullScopeAllowed": false,
    "serviceAccountsEnabled": false,
    "authorizationServicesEnabled": false
  },
  "description": "realm frontend client template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm frontend client template is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm backend client template list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmBackendClientTemplate)

  Items: RealmBackendClientTemplate

  • id: required(integer)

    Unique identifier of a realm backend template version.

  • template: required(object)

    Realm backend template version.
  • description: required(string)

    Realm backend template version description.

Example:

{
  "count": 1,
  "results": [
    {
      "id": 2,
      "template": {
        "protocol": "openid-connect",
        "webOrigins": ["+"],
        "publicClient": false,
        "redirectUris": ["*"],
        "fullScopeAllowed": false,
        "serviceAccountsEnabled": true,
        "authorizationServicesEnabled": true
      },
      "description": "realm backend client template description"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm backend client template is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm backend template version.

• template: required(object)

  Realm backend template version.
• description: required(string)

  Realm backend template version description.

Example:

{
  "id": 2,
  "template": {
    "protocol": "openid-connect",
    "webOrigins": ["+"],
    "publicClient": false,
    "redirectUris": ["*"],
    "fullScopeAllowed": false,
    "serviceAccountsEnabled": true,
    "authorizationServicesEnabled": true
  },
  "description": "realm backend client template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm backend client template is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm backend template version.

• template: required(object)

  Realm backend template version.
• description: required(string)

  Realm backend template version description.

Example:

{
  "id": 2,
  "template": {
    "protocol": "openid-connect",
    "webOrigins": ["+"],
    "publicClient": false,
    "redirectUris": ["*"],
    "fullScopeAllowed": false,
    "serviceAccountsEnabled": true,
    "authorizationServicesEnabled": true
  },
  "description": "realm backend client template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm backend client template is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm backend template version.

• template: required(object)

  Realm backend template version.
• description: required(string)

  Realm backend template version description.

Example:

{
  "id": 2,
  "template": {
    "protocol": "openid-connect",
    "webOrigins": ["+"],
    "publicClient": false,
    "redirectUris": ["*"],
    "fullScopeAllowed": false,
    "serviceAccountsEnabled": true,
    "authorizationServicesEnabled": true
  },
  "description": "realm backend client template description"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm backend client template is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scopes list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmScope)

  Items: RealmScope

  • name: required(string)

    Unique identifier of a realm scope.

  • dispalayName: required(string)

    Name of a realm scope.

Example:

{
  "count": 10,
  "results": [
    {
      "name": "application:read",
      "displayName": "application:read"
    },
    {
      "name": "application:software:read",
      "displayName": "application:software:read"
    },
    {
      "name": "application:software:update",
      "displayName": "application:software:update"
    },
    {
      "name": "application:timeseries-config:read",
      "displayName": "application:timeseries-config:read"
    },
    {
      "name": "application:update",
      "displayName": "application:update"
    },
    {
      "name": "dashboard:read",
      "displayName": "dashboard:read"
    },
    {
      "name": "endpoint:delete",
      "displayName": "endpoint:delete"
    },
    {
      "name": "endpoint:read",
      "displayName": "endpoint:read"
    },
    {
      "name": "endpoint:update",
      "displayName": "endpoint:update"
    },
    {
      "name": "kaa:application:create",
      "displayName": "kaa:application:create"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm scope is successfully created.

Body

Media type: application/json

Type: object

• name: required(string)

  Unique identifier of a realm scope.

• dispalayName: required(string)

  Name of a realm scope.

Example:

{
  "name": "application:read",
  "displayName": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scope is successfully retrieved.

Body

Media type: application/json

Type: object

• name: required(string)

  Unique identifier of a realm scope.

• dispalayName: required(string)

  Name of a realm scope.

Example:

{
  "name": "application:read",
  "displayName": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scope is successfully updated.

Body

Media type: application/json

Type: object

• name: required(string)

  Unique identifier of a realm scope.

• dispalayName: required(string)

  Name of a realm scope.

Example:

{
  "name": "application:read",
  "displayName": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm scope is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scopes versions list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmScopeVersion)

  Items: RealmScopeVersion

  • id: required(integer)

    Unique identifier of a realm scope version.

  • scopes: required(array of string)

    Array of scopes.

Example:

{
  "count": 2,
  "results": [
    {
      "id": 1,
      "scopes": [
        "application:delete",
        "application:endpoint-command:read",
        "application:endpoint-config:delete",
        "application:endpoint-config:read",
        "application:endpoint-config:update",
        "application:endpoint:create",
        "application:endpoint-filter:create",
        "application:endpoint-filter:delete",
        "application:endpoint-filter:read",
        "application:endpoint-filter:update",
        "application:endpoints-metadata-keys:read",
        "application:read",
        "application:software:delete",
        "application:software:read",
        "application:software:update",
        "application:timeseries-config:read",
        "application:ttn-app-integration:create",
        "application:update",
        "dashboard:read",
        "endpoint:delete",
        "endpoint:read",
        "endpoint:update",
        "kaa:application:create",
        "kaa:application:create",
        "kaa:application:read",
        "kaa:application:read",
        "kaa:application:read",
        "kaa:application:update",
        "kaa:application:update",
        "kaa:client-credentials:create",
        "kaa:client-credentials:create",
        "kaa:client-credentials:read",
        "kaa:client-credentials:read",
        "kaa:client-credentials:update",
        "kaa:client-credentials:update",
        "kaa:tenant:configuration:read",
        "kaa:tenant:configuration:read",
        "kaa:tenant:create",
        "kaa:tenant:default-resource:create",
        "kaa:tenant:default-resource:delete",
        "kaa:tenant:default-resource:read",
        "kaa:tenant:default-resource-scope-mapping:create",
        "kaa:tenant:default-resource-scope-mapping:delete",
        "kaa:tenant:default-resource-scope-mapping:read",
        "kaa:tenant:default-resource-scope-mapping:update",
        "kaa:tenant:default-resource:update",
        "kaa:tenant:default-resource-version:create",
        "kaa:tenant:default-resource-version:delete",
        "kaa:tenant:default-resource-version-mapping:create",
        "kaa:tenant:default-resource-version-mapping:delete",
        "kaa:tenant:default-resource-version-mapping:read",
        "kaa:tenant:default-resource-version-mapping:update",
        "kaa:tenant:default-resource-version:read",
        "kaa:tenant:default-resource-version:update",
        "kaa:tenant:delete",
        "kaa:tenant:files:update",
        "kaa:tenant:idp:create",
        "kaa:tenant:idp:delete",
        "kaa:tenant:idp:read",
        "kaa:tenant:idp:update",
        "kaa:tenant:js-policy:create",
        "kaa:tenant:js-policy:delete",
        "kaa:tenant:js-policy:read",
        "kaa:tenant:js-policy:update",
        "kaa:tenant:keycloak-server:create",
        "kaa:tenant:keycloak-server:delete",
        "kaa:tenant:keycloak-server:read",
        "kaa:tenant:keycloak-server:update",
        "kaa:tenant:package-type:create",
        "kaa:tenant:package-type:delete",
        "kaa:tenant:package-type:read",
        "kaa:tenant:package-type:update",
        "kaa:tenant:read",
        "kaa:tenant:realm-backend-client-template:create",
        "kaa:tenant:realm-backend-client-template:delete",
        "kaa:tenant:realm-backend-client-template:read",
        "kaa:tenant:realm-backend-client-template:update",
        "kaa:tenant:realm-frontend-client-template:create",
        "kaa:tenant:realm-frontend-client-template:delete",
        "kaa:tenant:realm-frontend-client-template:read",
        "kaa:tenant:realm-frontend-client-template:update",
        "kaa:tenant:realm-template:create",
        "kaa:tenant:realm-template:delete",
        "kaa:tenant:realm-template:read",
        "kaa:tenant:realm-template:update",
        "kaa:tenant:role:create",
        "kaa:tenant:role:delete",
        "kaa:tenant:role:read",
        "kaa:tenant:role-scope-mapping:create",
        "kaa:tenant:role-scope-mapping:delete",
        "kaa:tenant:role-scope-mapping:read",
        "kaa:tenant:role-scope-mapping:update",
        "kaa:tenant:role:update",
        "kaa:tenant:role-version:create",
        "kaa:tenant:role-version:delete",
        "kaa:tenant:role-version-mapping:create",
        "kaa:tenant:role-version-mapping:delete",
        "kaa:tenant:role-version-mapping:read",
        "kaa:tenant:role-version-mapping:update",
        "kaa:tenant:role-version:read",
        "kaa:tenant:role-version:update",
        "kaa:tenant:scope:create",
        "kaa:tenant:scope:delete",
        "kaa:tenant:scope:read",
        "kaa:tenant:scope:update",
        "kaa:tenant:scope-version:create",
        "kaa:tenant:scope-version:delete",
        "kaa:tenant:scope-version-mapping:create",
        "kaa:tenant:scope-version-mapping:delete",
        "kaa:tenant:scope-version-mapping:read",
        "kaa:tenant:scope-version-mapping:update",
        "kaa:tenant:scope-version:read",
        "kaa:tenant:scope-version:update",
        "kaa:tenant:tenant-js-policy-mapping:create",
        "kaa:tenant:tenant-js-policy-mapping:delete",
        "kaa:tenant:tenant-js-policy-mapping:read",
        "kaa:tenant:tenant-js-policy-mapping:update",
        "kaa:tenant:tenant-subscription:create",
        "kaa:tenant:tenant-subscription:delete",
        "kaa:tenant:tenant-subscription:read",
        "kaa:tenant:tenant-subscription:update",
        "kaa:tenant:tenant-user:create",
        "kaa:tenant:tenant-user:delete",
        "kaa:tenant:tenant-user:read",
        "kaa:tenant:tenant-user:update",
        "kaa:tenant:update",
        "kaa:ui:update",
        "tenant:application:create",
        "tenant:application:read",
        "tenant:basic-credentials:create",
        "tenant:basic-credentials:read",
        "tenant:basic-credentials:update",
        "tenant:branding:update",
        "tenant:configuration:read",
        "tenant:configuration:update",
        "tenant:files:update",
        "tenant:ttn-app-integration:create",
        "tenant:ttn-app-integration:read",
        "tenant:x509-credentials:create",
        "tenant:x509-credentials:read",
        "tenant:x509-credentials:update",
        "traffic-statistic:read",
        "ttn-app-integration:delete",
        "ttn-app-integration:read",
        "ttn-app-integration:ttn-device-integration:create",
        "ttn-app-integration:update",
        "ttn-device-integration:delete",
        "ttn-device-integration:read",
        "ttn-device-integration:update"
      ]
    },
    {
      "id": 2,
      "scopes": [
        "application:delete",
        "application:endpoint-command:read",
        "application:endpoint-config:delete",
        "application:endpoint-config:read",
        "application:endpoint-config:update",
        "application:endpoint:create",
        "application:endpoint-filter:create",
        "application:endpoint-filter:delete",
        "application:endpoint-filter:read",
        "application:endpoint-filter:update",
        "application:endpoints-metadata-keys:read",
        "application:read",
        "application:software:delete",
        "application:software:read",
        "application:software:update",
        "application:timeseries-config:read",
        "application:ttn-app-integration:create",
        "application:update",
        "dashboard:read",
        "endpoint:delete",
        "endpoint:read",
        "endpoint:update",
        "kaa:application:create",
        "kaa:application:create",
        "kaa:application:read",
        "kaa:application:update",
        "kaa:application:update",
        "kaa:client-credentials:create",
        "kaa:client-credentials:create",
        "kaa:client-credentials:read",
        "kaa:client-credentials:read",
        "kaa:client-credentials:update",
        "kaa:client-credentials:update",
        "kaa:tenant:files:update",
        "tenant:application:create",
        "tenant:application:read",
        "tenant:basic-credentials:create",
        "tenant:basic-credentials:read",
        "tenant:basic-credentials:update",
        "tenant:branding:update",
        "tenant:configuration:read",
        "tenant:configuration:update",
        "tenant:files:update",
        "tenant:ttn-app-integration:create",
        "tenant:ttn-app-integration:read",
        "tenant:x509-credentials:create",
        "tenant:x509-credentials:read",
        "tenant:x509-credentials:update",
        "traffic-statistic:read",
        "ttn-app-integration:delete",
        "ttn-app-integration:read",
        "ttn-app-integration:ttn-device-integration:create",
        "ttn-app-integration:update",
        "ttn-device-integration:delete",
        "ttn-device-integration:read",
        "ttn-device-integration:update"
      ]
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scope version is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm scope version.

• scopes: required(array of string)

  Array of scopes.

Example:

{
  "id": 1,
  "scopes": [
    "kaa:tenant:realm-backend-client-template:create",
    "kaa:tenant:realm-backend-client-template:delete",
    "kaa:tenant:realm-backend-client-template:read",
    "kaa:tenant:realm-backend-client-template:update",
    "kaa:tenant:realm-frontend-client-template:create",
    "kaa:tenant:realm-frontend-client-template:delete",
    "kaa:tenant:realm-frontend-client-template:read",
    "kaa:tenant:realm-frontend-client-template:update",
    "kaa:tenant:default-resource:create",
    "kaa:tenant:default-resource:delete"
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm scope version is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scopes versions mappings list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmScopeVersionMapping)

  Items: RealmScopeVersionMapping

  • id: required(integer)

    Unique identifier of a realm scope version mapping.

  • verision: required(integer)

    Identifier of a realm scope version.

  • scope: required(string)

    Identifier of a realm scope.

Example:

{
  "count": 4,
  "results": [
    {
      "id": 11,
      "version": 1,
      "scope": "application:endpoint-config:read"
    },
    {
      "id": 12,
      "version": 1,
      "scope": "application:endpoint-config:update"
    },
    {
      "id": 13,
      "version": 1,
      "scope": "application:endpoint-config:delete"
    },
    {
      "id": 14,
      "version": 1,
      "scope": "application:software:read"
    },
    {
      "id": 15,
      "version": 1,
      "scope": "application:software:update"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

The realm scope version is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm scope version mapping.

• verision: required(integer)

  Identifier of a realm scope version.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "version": 1,
  "scope": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scope version mapping is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm scope version mapping.

• verision: required(integer)

  Identifier of a realm scope version.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "version": 1,
  "scope": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm scope version mapping is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm scope version mapping.

• verision: required(integer)

  Identifier of a realm scope version.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "version": 1,
  "scope": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm scope version mapping is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm roles list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmRole)

  Items: RealmRole

  • name: required(string)

    Unique identifier of a realm role.

  • scopes: required(array of string)

    Array of scopes.

Example:

{
  "count": 10,
  "results": [
    {
      "name": "analytics-admin",
      "scopes": []
    },
    {
      "name": "analytics-reader",
      "scopes": []
    },
    {
      "name": "application-admin",
      "scopes": [
        "application:delete",
        "application:endpoint-config:delete",
        "application:endpoint-config:read",
        "application:endpoint-config:update",
        "application:endpoint:create",
        "application:endpoint-filter:create",
        "application:endpoint-filter:delete",
        "application:endpoint-filter:read",
        "application:endpoint-filter:update",
        "application:endpoints-metadata-keys:read",
        "application:read",
        "application:software:delete",
        "application:software:read",
        "application:software:update",
        "application:timeseries-config:read",
        "application:ttn-app-integration:create",
        "application:update",
        "kaa:application:read",
        "kaa:client-credentials:read",
        "tenant:application:create",
        "tenant:ttn-app-integration:create",
        "tenant:ttn-app-integration:read",
        "tenant:x509-credentials:read"
      ]
    },
    {
      "name": "application-reader",
      "scopes": [
        "application:endpoint-config:read",
        "application:endpoint-filter:read",
        "application:endpoints-metadata-keys:read",
        "application:read",
        "application:software:read",
        "application:timeseries-config:read",
        "dashboard:read",
        "endpoint:read",
        "kaa:application:read",
        "kaa:client-credentials:read",
        "tenant:ttn-app-integration:read",
        "tenant:x509-credentials:read"
      ]
    },
    {
      "name": "basic-credentials-admin",
      "scopes": [
        "tenant:basic-credentials:create",
        "tenant:basic-credentials:read",
        "tenant:basic-credentials:update"
      ]
    },
    {
      "name": "basic-credentials-reader",
      "scopes": ["tenant:basic-credentials:read"]
    },
    {
      "name": "dashboard-admin",
      "scopes": ["dashboard:read"]
    },
    {
      "name": "dashboard-reader",
      "scopes": ["dashboard:read"]
    },
    {
      "name": "endpoint-admin",
      "scopes": ["endpoint:delete", "endpoint:read", "endpoint:update"]
    },
    {
      "name": "endpoint-reader",
      "scopes": ["endpoint:read"]
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm role is successfully created.

Body

Media type: application/json

Type: object

• name: required(string)

  Unique identifier of a realm role.

• scopes: required(array of string)

  Array of scopes.

Example:

{
  "name": "application:read",
  "scopes": []
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm role is successfully retrieved.

Body

Media type: application/json

Type: object

• name: required(string)

  Unique identifier of a realm role.

• scopes: required(array of string)

  Array of scopes.

Example:

{
  "name": "application:read",
  "scopes": ["application:read", "application:endpoint-config:delete"]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm role is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm roles versions list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmRoleVersion)

  Items: RealmRoleVersion

  • id: required(integer)

    Unique identifier of a realm role version.

  • roles: required(array of string)

    Array of roles.

Example:

{
  "count": 2,
  "results": [
    {
      "id": 1,
      "roles": [
        "analytics-admin",
        "analytics-reader",
        "application-admin",
        "application-reader",
        "basic-credentials-admin",
        "basic-credentials-reader",
        "dashboard-admin",
        "dashboard-reader",
        "endpoint-admin",
        "endpoint-reader",
        "platform-admin",
        "platform-application-admin",
        "platform-application-admin",
        "platform-client-credentials-admin",
        "platform-client-credentials-reader",
        "platform-client-credentials-reader",
        "platform-reader",
        "tenant-admin",
        "tenant-reader",
        "ttn-app-integration-admin",
        "ttn-app-integration-reader",
        "ttn-device-integration-admin",
        "ttn-device-integration-reader",
        "x509-credentials-admin",
        "x509-credentials-reader"
      ]
    },
    {
      "id": 2,
      "roles": [
        "analytics-admin",
        "analytics-reader",
        "application-admin",
        "application-reader",
        "basic-credentials-admin",
        "basic-credentials-reader",
        "dashboard-admin",
        "dashboard-reader",
        "endpoint-admin",
        "endpoint-reader",
        "platform-application-admin",
        "platform-application-admin",
        "platform-client-credentials-admin",
        "platform-client-credentials-reader",
        "platform-client-credentials-reader",
        "tenant-admin",
        "tenant-reader",
        "ttn-app-integration-admin",
        "ttn-app-integration-reader",
        "ttn-device-integration-admin",
        "ttn-device-integration-reader",
        "x509-credentials-admin",
        "x509-credentials-reader"
      ]
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm role version is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm role version.

• roles: required(array of string)

  Array of roles.

Example:

{
  "id": 1,
  "roles": ["application-admin", "application-reader"]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm role version is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm roles versions mappings list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmRoleVersionMapping)

  Items: RealmRoleVersionMapping

  • id: required(integer)

    Unique identifier of a realm role version mapping.

  • verision: required(integer)

    Identifier of a realm role version.

  • role: required(string)

    Identifier of a realm role.

Example:

{
  "count": 2,
  "results": [
    {
      "id": 3,
      "version": 1,
      "role": "application-admin"
    },
    {
      "id": 4,
      "version": 1,
      "role": "application-reader"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

The realm role version is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm role version mapping.

• verision: required(integer)

  Identifier of a realm role version.

• role: required(string)

  Identifier of a realm role.

Example:

{
  "id": 1,
  "version": 1,
  "role": "application-admin"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm role version mapping is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm role version mapping.

• verision: required(integer)

  Identifier of a realm role version.

• role: required(string)

  Identifier of a realm role.

Example:

{
  "id": 1,
  "version": 1,
  "role": "application-admin"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm role version mapping is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm role version mapping.

• verision: required(integer)

  Identifier of a realm role version.

• role: required(string)

  Identifier of a realm role.

Example:

{
  "id": 1,
  "version": 1,
  "role": "application-admin"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm role version mapping is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm roles and scopes mappings list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmRoleScopeMapping)

  Items: RealmRoleScopeMapping

  • id: required(integer)
  • role: required(string)

    Identifier of a realm role.

  • scope: required(string)

    Identifier of a realm scope.

Example:

{
  "count": 2,
  "results": [
    {
      "id": 3,
      "role": "platform-admin",
      "scope": "application:delete"
    },
    {
      "id": 4,
      "role": "platform-admin",
      "scope": "application:endpoint:create"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm role and scope mapping is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)
• role: required(string)

  Identifier of a realm role.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "role": "platform-admin",
  "scope": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm role-scope mapping is successfully retrieved.

Body

Media type: application/json

Type: object

• id: required(integer)
• role: required(string)

  Identifier of a realm role.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "role": "platform-admin",
  "scope": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm role-scope mapping is successfully updated.

Body

Media type: application/json

Type: object

• id: required(integer)
• role: required(string)

  Identifier of a realm role.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "role": "platform-admin",
  "scope": "application:read"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm role-scope mapping is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm default resources list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmDefaultResource)

  Items: RealmDefaultResource

  • resource_name: required(string)

    Unique identifier of a realm default resource.

  • resource_type: required(string)

    Name of a realm default resource type.

  • display_name: required(string)

    Name of a realm default resource.

  • scopes: required(array of string)

    Array of scopes.

Example:

{
  "count": 1,
  "results": [
    {
      "resource_name": "keycloak-client-frontend-template-version",
      "resource_type": "keycloak-client-frontend-template-version",
      "display_name": "keycloak-client-frontend-template-version",
      "scopes": [
        "kaa:tenant:realm-frontend-client-template:create",
        "kaa:tenant:realm-frontend-client-template:delete",
        "kaa:tenant:realm-frontend-client-template:read",
        "kaa:tenant:realm-frontend-client-template:update"
      ]
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm default resource is successfully created.

Body

Media type: application/json

Type: object

• resource_name: required(string)

  Unique identifier of a realm default resource.

• resource_type: required(string)

  Name of a realm default resource type.

• display_name: required(string)

  Name of a realm default resource.

• scopes: required(array of string)

  Array of scopes.

Example:

{
  "resource_name": "tenant-user",
  "resource_type": "tenant-user",
  "display_name": "tenant-user",
  "scopes": []
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm default resource is successfully retrieved.

Body

Media type: application/json

Type: object

• resource_name: required(string)

  Unique identifier of a realm default resource.

• resource_type: required(string)

  Name of a realm default resource type.

• display_name: required(string)

  Name of a realm default resource.

• scopes: required(array of string)

  Array of scopes.

Example:

{
  "resource_name": "keycloak-client-frontend-template-version",
  "resource_type": "keycloak-client-frontend-template-version",
  "display_name": "keycloak-client-frontend-template-version",
  "scopes": [
    "kaa:tenant:realm-frontend-client-template:create",
    "kaa:tenant:realm-frontend-client-template:delete",
    "kaa:tenant:realm-frontend-client-template:read",
    "kaa:tenant:realm-frontend-client-template:update"
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm default resource is successfully updated.

Body

Media type: application/json

Type: object

• resource_name: required(string)

  Unique identifier of a realm default resource.

• resource_type: required(string)

  Name of a realm default resource type.

• display_name: required(string)

  Name of a realm default resource.

• scopes: required(array of string)

  Array of scopes.

Example:

{
  "resource_name": "keycloak-client-frontend-template-version",
  "resource_type": "keycloak-client-frontend-template-version",
  "display_name": "keycloak-client-frontend-template-version",
  "scopes": [
    "kaa:tenant:realm-frontend-client-template:create",
    "kaa:tenant:realm-frontend-client-template:delete",
    "kaa:tenant:realm-frontend-client-template:read",
    "kaa:tenant:realm-frontend-client-template:update"
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 204

Realm default resource is successfully deleted.

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

HTTP status code 404

Resource not found or querying user is not authorized for it.

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 200

Realm default resource mappings list is successfully retrieved.

Body

Media type: application/json

Type: object

• count: required(integer)

  Total number of elements available for retrieval.

• results: required(array of tenant-manager-api-types.RealmDefaultResourceMapping)

  Items: RealmDefaultResourceMapping

  • id: required(integer)

    Unique identifier of a realm default resource.

  • resource: required(string)

    Identifier of a realm default resource.

  • scope: required(string)

    Identifier of a realm scope.

Example:

{
  "count": 4,
  "results": [
    {
      "id": 6,
      "resource": "tenant-system",
      "scope": "kaa:tenant:delete"
    },
    {
      "id": 7,
      "resource": "tenant-system",
      "scope": "kaa:tenant:delete"
    },
    {
      "id": 8,
      "resource": "tenant-system",
      "scope": "kaa:tenant:delete"
    },
    {
      "id": 9,
      "resource": "tenant-system",
      "scope": "tenant:application:create"
    }
  ]
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.

HTTP status code 201

Realm default resource mapping is successfully created.

Body

Media type: application/json

Type: object

• id: required(integer)

  Unique identifier of a realm default resource.

• resource: required(string)

  Identifier of a realm default resource.

• scope: required(string)

  Identifier of a realm scope.

Example:

{
  "id": 1,
  "resource": "tenant",
  "scope": "kaa:tenant:add"
}

HTTP status code 400

Invalid request

HTTP status code 401

Unauthenticated request

Secured by oauth_2_0

Headers

• Authorization: (string)

  Used to send a valid OAuth 2 access token. Example: "Authorization: Bearer 'access_token'" where 'access_token' must be replaced by a valid OAuth access token. This header is needed only if API authentication is enabled for the service.