Domains / Customer Management/ API Endpoint

Access Control API

REST API for managing roles, permissions, and authorization policies across tenant resources.

API Endpoint Application active

Access Control API provides endpoints for defining and evaluating authorization policies. It supports role management, permission grants, and real-time policy evaluation for API requests.

Endpoints

  • GET /api/v1/access/roles — List roles for a tenant
  • POST /api/v1/access/roles — Create a custom role
  • PUT /api/v1/access/roles/{id}/permissions — Update role permissions
  • POST /api/v1/access/evaluate — Evaluate access for a resource
  • GET /api/v1/access/policies — List tenant access policies

Relationships

Composes outgoing 1
Target Element Element Type
Access Control Service Software Subsystem
Part of incoming 1
Source Element Element Type
Access Control Service Software Subsystem
Served by incoming 11
Source Element Element Type
Audit Alert Triggered Domain Event
MFA Challenge Failed Domain Event
Permission Policy Changed Domain Event
Security Policy Updated Domain Event
Tenant Deactivated Domain Event
Tenant Reactivated Domain Event
Tenant Suspended Domain Event
User Access Revoked Domain Event
User Deactivated Domain Event
User Invited Domain Event
User Role Changed Domain Event

Architecture Context

Diagrams

Properties

Type API Endpoint
Layer Application
Domain Customer Management
Status active
Owner Platform Team

Additional Metadata

Protocol REST/JSON
Archimate Type application-interface

Meta Model

Business
Organization
Application current
Technology

Actions