As of December 31st, 2023 ThreadFix 2.X has reached End of Life and is no longer supported. For any further information please contact the Success and Implementation team.
Remove Application Role from User - API
/rest/{version}/users/{userId}/role/app/delete
Descriptor | Value |
---|---|
HTTP Method | POST |
Description | Removes the user permissions for the specified application. This only removes explicit User/Application permissions, and does not affect any other permissions the user has from their global role, attached groups, and other team/app permissions. To obtain the userId value in the endpoint, run the Get Users - API call first. The user's id value in the response is the userId value that you use in this endpoint. |
Required Permission | Manage Users |
Version Introduced | 2.5.1.13 |
Request Header Parameters
Parameter | Value | Required | Description |
---|---|---|---|
Accept | String | Yes | A value of ‘application/json’ must be provided. |
Request POST Data Parameters
Parameter | Value | Required | Description |
---|---|---|---|
appId | Integer | Yes | The ID of the application to remove permissions for. |
Sample Call:
curl -H 'Accept: application/json' -H "Authorization: APIKEY {apiKey}" --data "appId=2" https://localhost:8443/threadfix/rest/latest/users/13/role/app/delete
Sample Output:
{
"message": "Successfully removed role mapping for user: Edea from app: Sample Application",
"success": true,
"responseCode": -1,
"object": {
"userId": 13,
"appId": 2
}
}
www.threadfix.it | www.coalfire.com
Copyright © 2024 Coalfire. All rights reserved.
This Information Security Policy is CoalFire - Public: Distribution of this material is not limited.