Security Assignments
Bind security definitions to users and tenants
Security assignments bind a definition to a specific actor and supply the concrete parameter values for that actor. For example, a single "tenant isolation" definition can be assigned to each tenant with a different tenant_id value.
Assignment scopes determine who the policy applies to:
| Scope type | Applies to |
|---|---|
ALL_TENANTS | Every tenant in the project |
TENANT | A specific tenant |
TENANT_USER | A specific tenant user |
ORG_USER | A specific organization user |
Endpoints
| Method | Endpoint | Description |
|---|---|---|
| GET | List assignments | List all assignments in a project |
| POST | Create an assignment | Bind a definition to an actor |
| GET | Get an assignment | Retrieve a single assignment |
| PATCH | Update an assignment | Update scope, actor, or parameters |
| DELETE | Delete an assignment | Remove the binding between a definition and an actor |