POST Codesign/GetTrusteeRights

Returns all CodeSign Protect code signing rights for a user.

Requirements

  • Permissions

    The caller must be a Code Signing Administrator or application administrator.

  • Token scope:  Codesign:Manage

Headers

  • Content type: Content-Type:application/json.

  • Token: The bearer access token that you received. For example, Authorization:Bearer 4MyGeneratedBearerTknz==. For more information, see Passing a bearer token in your API calls.

Parameters

Input parameters

Name

Description

Trustee

The PrefixedUniversal identity. To get the value, call POST Identity/Browse.

Returns

Response description

Name

Description

HTTP 200

For valid requests, this call returns a HTTP 200 message and the following data in the message body:

  • Error: Appears only when Success is false. An error message that accompanies the Result. Check your payload input values.

  • Rightslist: An array of object rights that are assigned to the object:
    • key: The trustee has rights to this array of DNs. If you need the person or group name, call POST Identity/Browse.
    • value: The SignRight object value or the sum of various rights for the identity. For example, a value of 72 ,means the identity has Owner (8) plus ApproveUse (64) rights.

  • Result: The Result code of this API call. For more information, see Sign Result Codes.

  • Success: The result of this API call: A value of false indicates the request failed due to an Error. Otherwise, true.

HTTP 400

For invalid requests, this call returns HTTP 400 Bad Request and the following data in the message body:

  • error: The reason for the error.
  • error_description: If available, additional information about how to retry the request.

Example: Show all user rights

Request

POST https://codesign.venafi.example//vedsdk/Codesign/GetTrusteeRights
Authorization:Bearer 4MyGeneratedBearerTknz==
{
   "Trustee": "PrefixedUniversal:local:{3acf7adc-29ad-48ea-afce-c3dfa65f91d5}"
}

Response

HTTP/1.1 200 OK
{
   "Result":1,
   "RightsList":[
      {
         "key":"\\VED\\Code Signing\\Projects\\Sample",
         "value":64
      }
   ],
   "Success":true
}