Policy match

List policies with optional glob pattern and pagination via next. Each item matches the GET shape: policy plus definition (principals, actions, objects).

GET
{{host}}/v1/policy/match?next={{next}}&pattern={{pattern}}
VERB:GET
BASE URL:{{host}}/v1/policy/match
QUERY STRING:?next={{next}}&pattern={{pattern}}

Query parameters#

  • nextnumber
    Required

    Pagination cursor (required): use `0` for the first page; thereafter use the value returned by the previous response as the `next` query parameter. The response body returns the cursor for the next page. A value of `-1` means there is no further page — you have the last page of data.

    example: 0
  • patternstring
    Optional

    Optional glob-style pattern to filter.

    Values

    • pattern
    • *pattern
    • pattern*
    • *pattern*
    example: *

Headers#

Send these headers with the request. Names are case-insensitive per HTTP rules.
  • x-api-keyRequired

    Your BigState API key.

    *provide api key here*
  • Content-TypeRequired

    MIME type of the request body.

    application/json
  • AcceptRequired

    MIME types the client can understand in the response.

    application/json

See authentication headers here.

Response parameters#

  • 200Response body · object

    Success. Returns a pagination cursor and matching policies; each row has `policy` and nested `definition` (principals, actions, objects).

    • nextnumber

      Pagination cursor (required): use `0` for the first page; thereafter use the value returned by the previous response as the `next` query parameter. The response body returns the cursor for the next page. A value of `-1` means there is no further page — you have the last page of data.

      example: 0
    • policiesarray[object]

      Policies that matched the pattern on this page.

      • policies[0].policystring

        Unique identifier of this policy.

        example: all
      • policies[0].definitionobject

        Rule lists: principals, actions, and objects.

        • policies[0].definition.principalsarray[string]

          Principal patterns this policy applies to (e.g. `"*"` for all).

        • policies[0].definition.actionsarray[string]

          Allowed actions or patterns.

        • policies[0].definition.objectsarray[string]

          Object name patterns this policy governs.

  • 401

    Unauthorized.

  • 403

    Access denied. The caller does not have sufficient rights to perform this operation.

  • 400Response body · object

    Bad request.

    {

      "error": 6,

      "desc": "Invalid request"

    }
    • errornumber

      Numeric error code. See the error codes reference for the full list.

    • descstring

      Human-readable description of the error.

Examples#

Match policies

List policies with optional glob pattern; each row has `policy` and nested `definition` (paginated with `next`).

curl https://api.bigstate.dev/v1/policy/match?next=0&pattern=* \

  --header 'x-api-key: YOUR_API_KEY' \

  --header 'Content-Type: application/json' \

  --header 'Accept: application/json'
DeleteUpsert

© 2024 BigState