Cloud Services

ModernOps

APIs for legacy authorization
Published On May 16, 2024 - 1:22 PM

APIs for legacy authorization

The legacy authorization APIs enable you to configure the user access management capabilities.
To access the Developer Console, follow these steps:
  1. Click the
    user profile icon
    in the upper-right side of the Kyndryl Modern Operations Applications portal.
  2. Select
    Developer Console
    .

User Team

The following APIs allow you to work with users and teams, including adding, removing and bulk actions, among others.

Add user to team

POST /authorization/v2/userteam
After creating context, role, team and user info, you need to add a user to a team using this API.
Example:
"teamcode": "DGDEV", "isdefaultteam": false, "userid": "[email protected]"
Team Code and User ID must exist to add a user to a team.

Remove user from team

POST /authorization/v2/userteam/remove
Remove a user from a team using this API.
Example:
"teamcode": "DGDEV", "userid": "[email protected]"

Get team of user

GET /authorization/v2/userteam/{userid}
This API allows the system to retrieve users' data from external IdPs groups. By bringing your external IdP groups to Lightweight Directory Access Protocol (LDAP), you will fully enable the capability to map your users grouping to Teams in Kyndryl Modern Operations Applications (i.e. assign order approval user and notify external group users by mail).
Get a team of a particular user based in the User ID, and Get external groups using this API.
In case of hybrid authorization, teams are maintained externally and you should bring in the LDAP credentials to the system by using this API in the configuration service. The
configurationkey
should be
_ldap_config
and all the fields under
configurationvalue
are mandatory.
Example:
"configurationkey": "_ldap_config", "configurationvalue": { "base":"dc=testdomain,dc=com", "host":"ldap.example.com", "username":"readonlyuser", "password":"test", "useSSL": false

Add users to teams

POST /authorization/v2/users/teams
After creating context, role, team and user info, you may need to add a
list
of users to a
list
of teams using this API.
Example:
"team_code_list": [ "string" ], "user_id_list": [ "string"

Remove users from teams

POST /authorization/v2/users/teams/remove
Remove a
list
of users from a
list
of teams using this API.
Example:
"team_code_list": [ "string" ], "user_id_list": [ "string"
Do you have two minutes for a quick survey?
Take Survey