Overview
- Introduction
- Authentication
- Examples
Endpoints
- Identities
- Universal Auth
- Organizations
- Projects
- Project Users
- Project Identities
- Project Roles
- Environments
- Folders
- Secret Tags
- Secrets
- Secret Imports
- Identity Specific Privilege
- Integrations
- Service Tokens
- Audit Logs
- Certificate Authorities
- Certificates
Update
Update a specific privilege of an identity.
curl --request PATCH \
--url https://app.infisical.com/api/v1/additional-privilege/identity \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '{
"privilegeSlug": "<string>",
"identityId": "<string>",
"projectSlug": "<string>",
"privilegeDetails": {
"slug": "<string>",
"permissions": [
{
"action": "read",
"subject": "role",
"conditions": {
"environment": "<string>",
"secretPath": {
"$glob": "<string>"
}
}
}
],
"privilegePermission": {
"actions": [
"read"
],
"subject": "secrets",
"conditions": {
"environment": "<string>",
"secretPath": {
"$glob": "<string>"
}
}
},
"isTemporary": true,
"temporaryMode": "relative",
"temporaryRange": "<string>",
"temporaryAccessStartTime": "2023-11-07T05:31:56Z"
}
}'{
"privilege": {
"id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
"slug": "<string>",
"projectMembershipId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
"isTemporary": false,
"temporaryMode": "<string>",
"temporaryRange": "<string>",
"temporaryAccessStartTime": "2023-11-07T05:31:56Z",
"temporaryAccessEndTime": "2023-11-07T05:31:56Z",
"permissions": [
{
"subject": "<string>",
"action": "<string>",
"conditions": {
"environment": "<string>",
"secretPath": {
"$glob": "<string>"
}
}
}
],
"createdAt": "2023-11-07T05:31:56Z",
"updatedAt": "2023-11-07T05:31:56Z"
}
}Authorizations
An access token in Infisical
Body
The slug of the privilege to update.
1The ID of the identity to update.
1The slug of the project of the identity in.
1The new slug of the privilege to update.
1 - 60@deprecated - use privilegePermission The permission object for the privilege.
- Read secrets
{ "permissions": [{"action": "read", "subject": "secrets"]}
- Read and Write secrets
{ "permissions": [{"action": "read", "subject": "secrets"], {"action": "write", "subject": "secrets"]}
- Read secrets scoped to an environment and secret path
- { "permissions": [{"action": "read", "subject": "secrets", "conditions": { "environment": "dev", "secretPath": { "$glob": "/" } }}] }
Describe what action an entity can take. Possible actions: create, edit, delete, and read
read, create, edit, delete The entity this permission pertains to. Possible options: secrets, environments
role, member, groups, settings, integrations, webhooks, service-tokens, environments, tags, audit-logs, ip-allowlist, workspace, secrets, secret-rollback, secret-approval, secret-rotation, identity, certificate-authorities, certificates When specified, only matching conditions will be allowed to access given resource.
The environment slug this permission should allow.
The permission object for the privilege.
Describe what action an entity can take. Possible actions: create, edit, delete, and read
read, create, edit, delete The entity this permission pertains to. Possible options: secrets, environments
secrets When specified, only matching conditions will be allowed to access given resource.
The environment slug this permission should allow.
Whether the privilege is temporary.
Type of temporary access given. Types: relative
relative TTL for the temporay time. Eg: 1m, 1h, 1d
ISO time for which temporary access should begin.
Response
11Was this page helpful?
curl --request PATCH \
--url https://app.infisical.com/api/v1/additional-privilege/identity \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '{
"privilegeSlug": "<string>",
"identityId": "<string>",
"projectSlug": "<string>",
"privilegeDetails": {
"slug": "<string>",
"permissions": [
{
"action": "read",
"subject": "role",
"conditions": {
"environment": "<string>",
"secretPath": {
"$glob": "<string>"
}
}
}
],
"privilegePermission": {
"actions": [
"read"
],
"subject": "secrets",
"conditions": {
"environment": "<string>",
"secretPath": {
"$glob": "<string>"
}
}
},
"isTemporary": true,
"temporaryMode": "relative",
"temporaryRange": "<string>",
"temporaryAccessStartTime": "2023-11-07T05:31:56Z"
}
}'{
"privilege": {
"id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
"slug": "<string>",
"projectMembershipId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
"isTemporary": false,
"temporaryMode": "<string>",
"temporaryRange": "<string>",
"temporaryAccessStartTime": "2023-11-07T05:31:56Z",
"temporaryAccessEndTime": "2023-11-07T05:31:56Z",
"permissions": [
{
"subject": "<string>",
"action": "<string>",
"conditions": {
"environment": "<string>",
"secretPath": {
"$glob": "<string>"
}
}
}
],
"createdAt": "2023-11-07T05:31:56Z",
"updatedAt": "2023-11-07T05:31:56Z"
}
}