Get all resources authorized by the user

This document is automatically generated based on https://github.com/authing/authing-docs-factory based on https://api-explorer.genauth.ai V3 API, and is consistent with API parameters and return results. If the document description is incorrect, please refer to V3 API.

Get all resources authorized by the user through the user ID. You can choose to specify the user ID type, etc. The resources authorized by the user are the collections of the user's own grants, inherited by groups, inherited by roles, and inherited by organizations.

Method name

ManagementClient.get_user_authorized_resources

Request parameters

Name	Type	Required	Default value	Description	Sample value
userId	string	yes	-	The unique identifier of the user, which can be user ID, user name, email, phone number, externalId, or ID in an external identity source. For details, see the description of the userIdType field. The default is user id.	6229ffaxxxxxxxxcade3e3d9
userIdType	string	No	user_id	User ID type, the default value is user_id, the optional values are: - user_id: GenAuth user ID, such as 6319a1504f3xxxxf214dd5b7 - phone: User phone number - email: User email - username: User name - external_id: User ID in the external system, corresponding to the externalId field of GenAuth user information - identity: User's external identity source information, the format is <extIdpId>:<userIdInIdp>, where <extIdpId> is the ID of the GenAuth identity source, and <userIdInIdp> is the ID of the user in the external identity source. Example value: 62f20932716fbcc10d966ee5:ou_8bae746eac07cd2564654140d2a9ac61. - sync_relation: User's external identity source information, in the format of <provier>:<userIdInIdp>, where <provier> is the type of sync identity source, such as wechatwork, lark; <userIdInIdp> is the ID of the user in the external identity source. Example value: lark:ou_8bae746eac07cd2564654140d2a9ac61.	user_id
namespace	string	No	-	Code of the permission group (permission space). If not passed, the default permission group will be obtained.	default
resourceType	string	no	-	Resource type, e.g. data, API, menu, button

Request Response

Type: AuthorizedResourcePaginatedRespDto

Name	Type	Description
statusCode	number	Business status code, which can be used to determine whether the operation is successful. 200 means success.
message	string	Description
apiCode	number	Segmented error code, which can be used to get the specific error type (successful request does not return). For a detailed list of error codes, please see: API Code List
requestId	string	Request ID. Returned when the request fails.
data	<a AuthorizedResourcePagingDto	Response data

Sample result:

{
  "statusCode": 200,
  "message": "Success",
  "requestId": "934108e5-9fbf-4d24-8da1-c330328abd6c",
  "data": {
    "list": {
      "resourceCode": "ecs:1",
      "description": "SERVER",
      "condition": {
        "param": "AppId",
        "operator": "StringEquals",
        "value": "1"
      },
      "resourceType": "API",
      "apiIdentifier": "/api/v1/example",
      "actions": "[\"ecs:Start\",\"ecs:Stop\"]",
      "effect": "ALLOW"
    }
  }
}

Data Structure

AuthorizedResourcePagingDto

Name	Type	Required	Description	Sample value
totalCount	number	Yes	Total number of records
list	array	Yes	Response data Nested type: <a AuthorizedResourceDto.

AuthorizedResourceDto

Name	Type	Required	Description	Sample value
resourceCode	string	Yes	Resource descriptor	ecs:1
description	string	No	Resource description information	Server
condition	array	No	Policy Condition Nested type: <a PolicyCondition.
resourceType	string	yes	Resource type	DATA
apiIdentifier	string	yes	API URL	/api/v1/example
actions	array	yes	List of authorized actions	["ecs:Start","ecs:Stop"]
effect	string	yes	Allow or deny	ALLOW

PolicyCondition

Name	Type	Is it required?	Description	Example value
param	string	yes	Condition Param	UserPoolId
operator	string	yes	Condition Operator	Bool
value	string	yes	Condition Value	1