components: schemas: c1.api.a2ui.v1.A2UIComponent: description: | A2UIComponent - typed discriminated union for UI components. Uses oneof for proper TypeScript discrimination. This message contains a oneof named component. Only a single field of the following list may be set at a time: - text - textField - checkBox - choicePicker - dateTimeInput - slider - progressBar - button - row - column - card - divider - c1StatusIndicator - c1CodeBlock - c1ResourcePicker - c1DurationPicker - c1TodoList - c1SlackNotifications - c1MsTeamsNotifications - c1ConnectorSyncProgress - c1ConnectorConfigForm - c1OnboardingWelcome - c1OnboardingPlan - c1ConnectorSyncDetail properties: button: $ref: '#/components/schemas/c1.api.a2ui.v1.ButtonComponent' c1CodeBlock: $ref: '#/components/schemas/c1.api.a2ui.v1.C1CodeBlockComponent' c1ConnectorConfigForm: $ref: '#/components/schemas/c1.api.a2ui.v1.C1ConnectorConfigFormComponent' c1ConnectorSyncDetail: $ref: '#/components/schemas/c1.api.a2ui.v1.C1ConnectorSyncDetailComponent' c1ConnectorSyncProgress: $ref: '#/components/schemas/c1.api.a2ui.v1.C1ConnectorSyncProgressComponent' c1DurationPicker: $ref: '#/components/schemas/c1.api.a2ui.v1.C1DurationPickerComponent' c1MsTeamsNotifications: $ref: '#/components/schemas/c1.api.a2ui.v1.C1MSTeamsNotificationsComponent' c1OnboardingPlan: $ref: '#/components/schemas/c1.api.a2ui.v1.C1OnboardingPlanComponent' c1OnboardingWelcome: $ref: '#/components/schemas/c1.api.a2ui.v1.C1OnboardingWelcomeComponent' c1ResourcePicker: $ref: '#/components/schemas/c1.api.a2ui.v1.C1ResourcePickerComponent' c1SlackNotifications: $ref: '#/components/schemas/c1.api.a2ui.v1.C1SlackNotificationsComponent' c1StatusIndicator: $ref: '#/components/schemas/c1.api.a2ui.v1.C1StatusIndicatorComponent' c1TodoList: $ref: '#/components/schemas/c1.api.a2ui.v1.C1TodoListComponent' card: $ref: '#/components/schemas/c1.api.a2ui.v1.CardComponent' checkBox: $ref: '#/components/schemas/c1.api.a2ui.v1.CheckBoxComponent' choicePicker: $ref: '#/components/schemas/c1.api.a2ui.v1.ChoicePickerComponent' column: $ref: '#/components/schemas/c1.api.a2ui.v1.ColumnComponent' dateTimeInput: $ref: '#/components/schemas/c1.api.a2ui.v1.DateTimeInputComponent' divider: $ref: '#/components/schemas/c1.api.a2ui.v1.DividerComponent' id: description: The id field. readOnly: false type: string progressBar: $ref: '#/components/schemas/c1.api.a2ui.v1.ProgressBarComponent' row: $ref: '#/components/schemas/c1.api.a2ui.v1.RowComponent' slider: $ref: '#/components/schemas/c1.api.a2ui.v1.SliderComponent' text: $ref: '#/components/schemas/c1.api.a2ui.v1.TextComponent' textField: $ref: '#/components/schemas/c1.api.a2ui.v1.TextFieldComponent' weight: description: The weight field. format: int32 readOnly: false type: integer title: A 2 Ui Component type: object x-speakeasy-name-override: A2UIComponent c1.api.a2ui.v1.A2UIServiceCreateSurfaceFeedbackRequestInput: description: A2UIServiceCreateSurfaceFeedbackRequest creates feedback for a surface. properties: conversationId: description: The conversationId field. readOnly: false type: string sentiment: description: The sentiment field. enum: - A2UI_SURFACE_FEEDBACK_SENTIMENT_UNSPECIFIED - A2UI_SURFACE_FEEDBACK_SENTIMENT_POSITIVE - A2UI_SURFACE_FEEDBACK_SENTIMENT_NEGATIVE readOnly: false type: string x-speakeasy-unknown-values: allow text: description: The text field. readOnly: false type: string title: A 2 Ui Service Create Surface Feedback Request type: object x-speakeasy-name-override: A2UIServiceCreateSurfaceFeedbackRequest c1.api.a2ui.v1.A2UIServiceCreateSurfaceFeedbackResponse: description: A2UIServiceCreateSurfaceFeedbackResponse returns the created feedback. properties: feedback: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UISurfaceFeedback' title: A 2 Ui Service Create Surface Feedback Response type: object x-speakeasy-name-override: A2UIServiceCreateSurfaceFeedbackResponse c1.api.a2ui.v1.A2UIServiceListSurfaceFeedbackResponse: description: A2UIServiceListSurfaceFeedbackResponse returns feedback for a surface. properties: feedback: description: The feedback field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UISurfaceFeedback' nullable: true readOnly: false type: array title: A 2 Ui Service List Surface Feedback Response type: object x-speakeasy-name-override: A2UIServiceListSurfaceFeedbackResponse c1.api.a2ui.v1.A2UIServiceListSurfacesResponse: description: A2UIServiceListSurfacesResponse returns active surfaces. properties: surfaces: description: The surfaces field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UISurface' nullable: true readOnly: false type: array title: A 2 Ui Service List Surfaces Response type: object x-speakeasy-name-override: A2UIServiceListSurfacesResponse c1.api.a2ui.v1.A2UIServiceSubmitActionRequestInput: description: A2UIServiceSubmitActionRequest submits a user action. properties: actionName: description: The actionName field. readOnly: false type: string clientTimestamp: format: date-time readOnly: false type: string context: additionalProperties: type: string description: The context field. readOnly: false type: object conversationId: description: The conversationId field. readOnly: false type: string dataModelJson: description: The dataModelJson field. readOnly: false type: string sourceComponentId: description: The sourceComponentId field. readOnly: false type: string title: A 2 Ui Service Submit Action Request type: object x-speakeasy-name-override: A2UIServiceSubmitActionRequest c1.api.a2ui.v1.A2UIServiceSubmitActionResponse: description: A2UIServiceSubmitActionResponse returns the result of an action. properties: accepted: description: The accepted field. readOnly: false type: boolean errorMessage: description: The errorMessage field. readOnly: false type: string title: A 2 Ui Service Submit Action Response type: object x-speakeasy-name-override: A2UIServiceSubmitActionResponse c1.api.a2ui.v1.A2UISurface: description: A2UISurface represents a rendered UI surface within a conversation. properties: catalogId: description: The catalogId field. readOnly: false type: string components: description: The components field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIComponent' nullable: true readOnly: false type: array conversationId: description: The conversationId field. readOnly: false type: string createdAt: format: date-time readOnly: false type: string dataModelJson: description: The dataModelJson field. readOnly: false type: string deletedAt: format: date-time readOnly: false type: string schemaVersion: description: The schemaVersion field. format: int64 readOnly: false type: string sendDataModel: description: The sendDataModel field. readOnly: false type: boolean state: description: The state field. enum: - SURFACE_LIFECYCLE_STATE_UNSPECIFIED - SURFACE_LIFECYCLE_STATE_ACTIVE - SURFACE_LIFECYCLE_STATE_COMPLETE - SURFACE_LIFECYCLE_STATE_DELETED readOnly: false type: string x-speakeasy-unknown-values: allow surfaceId: description: The surfaceId field. readOnly: false type: string tenantId: description: The tenantId field. readOnly: false type: string updatedAt: format: date-time readOnly: false type: string title: A 2 Ui Surface type: object x-speakeasy-name-override: A2UISurface c1.api.a2ui.v1.A2UISurfaceFeedback: description: A2UISurfaceFeedback represents user feedback for a surface. properties: actionName: description: The actionName field. readOnly: false type: string componentsSnapshot: description: The componentsSnapshot field. readOnly: false type: string conversationId: description: The conversationId field. readOnly: false type: string createdAt: format: date-time readOnly: false type: string dataModelSnapshot: description: The dataModelSnapshot field. readOnly: false type: string id: description: The id field. readOnly: false type: string schemaVersion: description: The schemaVersion field. format: int64 readOnly: false type: string sentiment: description: The sentiment field. enum: - A2UI_SURFACE_FEEDBACK_SENTIMENT_UNSPECIFIED - A2UI_SURFACE_FEEDBACK_SENTIMENT_POSITIVE - A2UI_SURFACE_FEEDBACK_SENTIMENT_NEGATIVE readOnly: false type: string x-speakeasy-unknown-values: allow surfaceId: description: The surfaceId field. readOnly: false type: string text: description: The text field. readOnly: false type: string title: A 2 Ui Surface Feedback type: object x-speakeasy-name-override: A2UISurfaceFeedback c1.api.a2ui.v1.Action: description: | Action represents what happens when a component is activated (e.g., button click). This message contains a oneof named action_type. Only a single field of the following list may be set at a time: - event - functionCall properties: event: $ref: '#/components/schemas/c1.api.a2ui.v1.ServerEvent' functionCall: $ref: '#/components/schemas/c1.api.a2ui.v1.FunctionCall' title: Action type: object x-speakeasy-name-override: A2UIAction c1.api.a2ui.v1.AndCheck: description: AndCheck requires all checks to pass. nullable: true properties: checks: description: The checks field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.ValidationCheck' nullable: true readOnly: false type: array title: And Check type: object x-speakeasy-name-override: AndCheck c1.api.a2ui.v1.ButtonComponent: description: ButtonComponent triggers actions. nullable: true properties: action: $ref: '#/components/schemas/c1.api.a2ui.v1.Action' checks: description: The checks field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.ValidationCheck' nullable: true readOnly: false type: array disabled: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicBool' label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' variant: description: The variant field. enum: - BUTTON_VARIANT_UNSPECIFIED - BUTTON_VARIANT_PRIMARY - BUTTON_VARIANT_SECONDARY - BUTTON_VARIANT_TEXT readOnly: false type: string x-speakeasy-unknown-values: allow title: Button Component type: object x-speakeasy-name-override: ButtonComponent c1.api.a2ui.v1.C1CodeBlockComponent: description: C1CodeBlockComponent displays code with syntax highlighting. nullable: true properties: code: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' copyable: description: The copyable field. readOnly: false type: boolean language: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: C 1 Code Block Component type: object x-speakeasy-name-override: C1CodeBlockComponent c1.api.a2ui.v1.C1ConnectorConfigFormComponent: description: |- C1ConnectorConfigFormComponent renders the shared admin connector-settings form inside an A2UI surface. The frontend resolves the catalog, connector, and config schema itself from the ids below, keeping the configuration field values out of the agent's data model — the agent never receives API keys, passwords, or other secrets entered by the user. nullable: true properties: appId: description: The appId field. readOnly: false type: string connectorId: description: The connectorId field. readOnly: false type: string skipActionName: description: The skipActionName field. readOnly: false type: string submitActionName: description: The submitActionName field. readOnly: false type: string title: C 1 Connector Config Form Component type: object x-speakeasy-name-override: C1ConnectorConfigFormComponent c1.api.a2ui.v1.C1ConnectorSyncDetailComponent: description: |- C1ConnectorSyncDetailComponent renders the same live card as C1ConnectorSyncProgressComponent but pre-expanded with the phase checklist, live count tiles, and "What's happening" explainer visible from the first paint. Intended for message-body placement — emit one after each `submit_app_config` so the transcript carries a clear "this is what just happened" receipt for the connector the user just connected. nullable: true properties: appId: description: The appId field. readOnly: false type: string connectorId: description: The connectorId field. readOnly: false type: string title: description: The title field. readOnly: false type: string title: C 1 Connector Sync Detail Component type: object x-speakeasy-name-override: C1ConnectorSyncDetailComponent c1.api.a2ui.v1.C1ConnectorSyncProgressComponent: description: |- C1ConnectorSyncProgressComponent renders a live connector sync status card. Subscribes to WebSocket updates for real-time sync lifecycle status. nullable: true properties: appId: description: The appId field. readOnly: false type: string connectorId: description: The connectorId field. readOnly: false type: string title: description: The title field. readOnly: false type: string title: C 1 Connector Sync Progress Component type: object x-speakeasy-name-override: C1ConnectorSyncProgressComponent c1.api.a2ui.v1.C1DurationPickerComponent: description: |- C1DurationPickerComponent is the access-request duration picker (presets + custom with number/unit). Value is duration in seconds bound to the given path. nullable: true properties: label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' maxDurationSeconds: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' title: C 1 Duration Picker Component type: object x-speakeasy-name-override: C1DurationPickerComponent c1.api.a2ui.v1.C1MSTeamsNotificationsComponent: description: |- C1MSTeamsNotificationsComponent renders a self-contained Microsoft Teams integration card. Fetches status and consent URLs via frontend API calls. nullable: true title: C 1 Ms Teams Notifications Component type: object x-speakeasy-name-override: C1MSTeamsNotificationsComponent c1.api.a2ui.v1.C1OnboardingPlanCategory: description: C1OnboardingPlanCategory groups related plan steps under a section heading. properties: id: description: The id field. readOnly: false type: string steps: description: The steps field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.C1OnboardingPlanStep' nullable: true readOnly: false type: array title: description: The title field. readOnly: false type: string title: C 1 Onboarding Plan Category type: object x-speakeasy-name-override: C1OnboardingPlanCategory c1.api.a2ui.v1.C1OnboardingPlanComponent: description: |- C1OnboardingPlanComponent renders a personalized onboarding plan with categorized steps. The agent dynamically populates categories and steps based on user intent and context. nullable: true properties: categories: description: The categories field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.C1OnboardingPlanCategory' nullable: true readOnly: false type: array title: C 1 Onboarding Plan Component type: object x-speakeasy-name-override: C1OnboardingPlanComponent c1.api.a2ui.v1.C1OnboardingPlanStep: description: C1OnboardingPlanStep is a single actionable item in the onboarding plan. properties: agentAssisted: description: The agentAssisted field. readOnly: false type: boolean description: description: The description field. readOnly: false type: string id: description: The id field. readOnly: false type: string title: description: The title field. readOnly: false type: string title: C 1 Onboarding Plan Step type: object x-speakeasy-name-override: C1OnboardingPlanStep c1.api.a2ui.v1.C1OnboardingWelcomeComponent: description: |- C1OnboardingWelcomeComponent renders the onboarding welcome screen with org context and intent collection. Backend pre-populates recommended_catalog_id / recommended_display_name from detected IDP. Frontend detects auth backend via introspect for contextual UI text. nullable: true properties: recommendedCatalogId: description: The recommendedCatalogId field. readOnly: false type: string recommendedDisplayName: description: The recommendedDisplayName field. readOnly: false type: string title: C 1 Onboarding Welcome Component type: object x-speakeasy-name-override: C1OnboardingWelcomeComponent c1.api.a2ui.v1.C1ResourcePickerComponent: description: C1ResourcePickerComponent allows selecting C1 resources. nullable: true properties: label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' multiSelect: description: The multiSelect field. readOnly: false type: boolean resourceType: description: The resourceType field. readOnly: false type: string value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: C 1 Resource Picker Component type: object x-speakeasy-name-override: C1ResourcePickerComponent c1.api.a2ui.v1.C1SlackNotificationsComponent: description: |- C1SlackNotificationsComponent renders a self-contained Slack integration card. Fetches status and OAuth URLs via frontend API calls. nullable: true title: C 1 Slack Notifications Component type: object x-speakeasy-name-override: C1SlackNotificationsComponent c1.api.a2ui.v1.C1StatusIndicatorComponent: description: C1StatusIndicatorComponent shows agent progress status. nullable: true properties: message: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' showSpinner: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicBool' status: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' toolName: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: C 1 Status Indicator Component type: object x-speakeasy-name-override: C1StatusIndicatorComponent c1.api.a2ui.v1.C1TodoItem: description: The C1TodoItem message. properties: description: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' id: description: The id field. readOnly: false type: string label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' section: description: The section field. readOnly: false type: string status: description: The status field. readOnly: false type: string trailingAction: $ref: '#/components/schemas/c1.api.a2ui.v1.ServerEvent' trailingActionLabel: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: C 1 Todo Item type: object x-speakeasy-name-override: C1TodoItem c1.api.a2ui.v1.C1TodoListComponent: description: C1TodoListComponent renders a phase/step checklist with progress tracking. nullable: true properties: items: description: The items field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.C1TodoItem' nullable: true readOnly: false type: array title: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: C 1 Todo List Component type: object x-speakeasy-name-override: C1TodoListComponent c1.api.a2ui.v1.CardComponent: description: CardComponent is a container with styling. nullable: true properties: children: $ref: '#/components/schemas/c1.api.a2ui.v1.ChildList' title: Card Component type: object x-speakeasy-name-override: CardComponent c1.api.a2ui.v1.CheckBoxComponent: description: CheckBoxComponent is a boolean checkbox. nullable: true properties: label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicBool' title: Check Box Component type: object x-speakeasy-name-override: CheckBoxComponent c1.api.a2ui.v1.ChildList: description: ChildList contains references to child component IDs. properties: ids: description: The ids field. items: type: string nullable: true readOnly: false type: array title: Child List type: object x-speakeasy-name-override: ChildList c1.api.a2ui.v1.Choice: description: Choice represents a single option in a choice picker. properties: description: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' id: description: The id field. readOnly: false type: string label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: Choice type: object x-speakeasy-name-override: Choice c1.api.a2ui.v1.ChoicePickerComponent: description: ChoicePickerComponent allows selection from predefined choices. nullable: true properties: choices: description: The choices field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.Choice' nullable: true readOnly: false type: array label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' multiSelect: description: The multiSelect field. readOnly: false type: boolean required: description: The required field. readOnly: false type: boolean value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: Choice Picker Component type: object x-speakeasy-name-override: ChoicePickerComponent c1.api.a2ui.v1.ColumnComponent: description: ColumnComponent arranges children vertically. nullable: true properties: alignment: description: The alignment field. readOnly: false type: string children: $ref: '#/components/schemas/c1.api.a2ui.v1.ChildList' distribution: description: The distribution field. readOnly: false type: string gap: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' title: Column Component type: object x-speakeasy-name-override: ColumnComponent c1.api.a2ui.v1.DateTimeInputComponent: description: DateTimeInputComponent for date/time selection. nullable: true properties: inputType: description: The inputType field. enum: - DATE_TIME_INPUT_TYPE_UNSPECIFIED - DATE_TIME_INPUT_TYPE_DATE - DATE_TIME_INPUT_TYPE_TIME - DATE_TIME_INPUT_TYPE_DATE_TIME readOnly: false type: string x-speakeasy-unknown-values: allow label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' max: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' min: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: Date Time Input Component type: object x-speakeasy-name-override: DateTimeInputComponent c1.api.a2ui.v1.DividerComponent: description: DividerComponent is a visual separator. nullable: true properties: orientation: description: The orientation field. readOnly: false type: string title: Divider Component type: object x-speakeasy-name-override: DividerComponent c1.api.a2ui.v1.DynamicBool: description: | DynamicBool can be a literal value, a JSON pointer path, or a function call. This message contains a oneof named value. Only a single field of the following list may be set at a time: - literal - path - call properties: call: $ref: '#/components/schemas/c1.api.a2ui.v1.FunctionCall' literal: description: |- The literal field. This field is part of the `value` oneof. See the documentation for `c1.api.a2ui.v1.DynamicBool` for more details. nullable: true readOnly: false type: boolean path: description: |- The path field. This field is part of the `value` oneof. See the documentation for `c1.api.a2ui.v1.DynamicBool` for more details. nullable: true readOnly: false type: string title: Dynamic Bool type: object x-speakeasy-name-override: DynamicBool c1.api.a2ui.v1.DynamicNumber: description: | DynamicNumber can be a literal value, a JSON pointer path, or a function call. This message contains a oneof named value. Only a single field of the following list may be set at a time: - literal - path - call properties: call: $ref: '#/components/schemas/c1.api.a2ui.v1.FunctionCall' literal: description: |- The literal field. This field is part of the `value` oneof. See the documentation for `c1.api.a2ui.v1.DynamicNumber` for more details. nullable: true readOnly: false type: number path: description: |- The path field. This field is part of the `value` oneof. See the documentation for `c1.api.a2ui.v1.DynamicNumber` for more details. nullable: true readOnly: false type: string title: Dynamic Number type: object x-speakeasy-name-override: DynamicNumber c1.api.a2ui.v1.DynamicString: description: | DynamicString can be a literal value, a JSON pointer path, or a function call. This message contains a oneof named value. Only a single field of the following list may be set at a time: - literal - path - call properties: call: $ref: '#/components/schemas/c1.api.a2ui.v1.FunctionCall' literal: description: |- The literal field. This field is part of the `value` oneof. See the documentation for `c1.api.a2ui.v1.DynamicString` for more details. nullable: true readOnly: false type: string path: description: |- The path field. This field is part of the `value` oneof. See the documentation for `c1.api.a2ui.v1.DynamicString` for more details. nullable: true readOnly: false type: string title: Dynamic String type: object x-speakeasy-name-override: DynamicString c1.api.a2ui.v1.FunctionCall: description: FunctionCall represents a client-side function invocation. nullable: true properties: args: additionalProperties: type: string description: The args field. readOnly: false type: object call: description: The call field. readOnly: false type: string message: description: The message field. readOnly: false type: string title: Function Call type: object x-speakeasy-name-override: FunctionCall c1.api.a2ui.v1.OrCheck: description: OrCheck requires at least one check to pass. nullable: true properties: checks: description: The checks field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.ValidationCheck' nullable: true readOnly: false type: array title: Or Check type: object x-speakeasy-name-override: OrCheck c1.api.a2ui.v1.ProgressBarComponent: description: ProgressBarComponent shows a read-only progress bar (label, value %, min/max). nullable: true properties: label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' max: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' min: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' step: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' title: Progress Bar Component type: object x-speakeasy-name-override: ProgressBarComponent c1.api.a2ui.v1.RowComponent: description: RowComponent arranges children horizontally. nullable: true properties: alignment: description: The alignment field. readOnly: false type: string children: $ref: '#/components/schemas/c1.api.a2ui.v1.ChildList' distribution: description: The distribution field. readOnly: false type: string gap: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' title: Row Component type: object x-speakeasy-name-override: RowComponent c1.api.a2ui.v1.ServerEvent: description: ServerEvent triggers a server-side action. nullable: true properties: context: additionalProperties: type: string description: The context field. readOnly: false type: object name: description: The name field. readOnly: false type: string title: Server Event type: object x-speakeasy-name-override: ServerEvent c1.api.a2ui.v1.SliderComponent: description: SliderComponent is an interactive numeric range input (e.g. for forms). nullable: true properties: label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' max: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' min: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' step: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicNumber' title: Slider Component type: object x-speakeasy-name-override: SliderComponent c1.api.a2ui.v1.TextComponent: description: TextComponent displays text content. nullable: true properties: markdown: description: The markdown field. readOnly: false type: boolean text: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' title: Text Component type: object x-speakeasy-name-override: TextComponent c1.api.a2ui.v1.TextFieldComponent: description: TextFieldComponent is a text input field. nullable: true properties: checks: description: The checks field. items: $ref: '#/components/schemas/c1.api.a2ui.v1.FunctionCall' nullable: true readOnly: false type: array label: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' placeholder: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' value: $ref: '#/components/schemas/c1.api.a2ui.v1.DynamicString' variant: description: The variant field. enum: - TEXT_FIELD_VARIANT_UNSPECIFIED - TEXT_FIELD_VARIANT_SHORT_TEXT - TEXT_FIELD_VARIANT_LONG_TEXT - TEXT_FIELD_VARIANT_NUMBER - TEXT_FIELD_VARIANT_OBSCURED readOnly: false type: string x-speakeasy-unknown-values: allow title: Text Field Component type: object x-speakeasy-name-override: TextFieldComponent c1.api.a2ui.v1.ValidationCheck: description: | ValidationCheck for client-side validation rules. This message contains a oneof named check. Only a single field of the following list may be set at a time: - call - and - or properties: and: $ref: '#/components/schemas/c1.api.a2ui.v1.AndCheck' call: $ref: '#/components/schemas/c1.api.a2ui.v1.FunctionCall' or: $ref: '#/components/schemas/c1.api.a2ui.v1.OrCheck' title: Validation Check type: object x-speakeasy-name-override: ValidationCheck c1.api.accessconflict.v1.AppEntitlementMonitorBinding: description: Represents the association of an app entitlement with one side (A or B) of a conflict monitor. properties: appEntitlementId: description: The unique identifier of the bound app entitlement. readOnly: false type: - string - "null" appId: description: The unique identifier of the application containing the entitlement. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" entitlementGroup: description: Which side of the conflict monitor (A or B) this entitlement is assigned to. enum: - ENTITLEMENT_GROUP_UNSPECIFIED - ENTITLEMENT_GROUP_A - ENTITLEMENT_GROUP_B readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow monitorId: description: The unique identifier of the conflict monitor this binding belongs to. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: App Entitlement Monitor Binding type: object x-speakeasy-name-override: AppEntitlementMonitorBinding c1.api.accessconflict.v1.ConflictMonitor: description: |- A conflict monitor defines a Separation of Duty rule between two entitlement sets. It detects when any user holds entitlements from both set A and set B simultaneously. properties: createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" description: description: A description explaining the purpose of this Separation of Duty rule. readOnly: false type: - string - "null" displayName: description: The human-readable name of the conflict monitor. readOnly: false type: - string - "null" enabled: description: Whether the conflict monitor is actively scanning for violations. readOnly: false type: - boolean - "null" entitlementSetAId: description: The identifier of entitlement set A in the conflict rule. readOnly: false type: - string - "null" entitlementSetBId: description: The identifier of entitlement set B in the conflict rule. readOnly: false type: - string - "null" id: description: The unique identifier of this conflict monitor. readOnly: false type: - string - "null" notificationConfig: oneOf: - $ref: '#/components/schemas/c1.api.accessconflict.v1.NotificationConfig' - type: "null" updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Conflict Monitor type: object x-speakeasy-name-override: ConflictMonitor c1.api.accessconflict.v1.ConflictMonitorCreateRequest: description: The request message for creating a new conflict monitor. properties: description: description: An optional description explaining the purpose of this Separation of Duty rule. readOnly: false type: - string - "null" displayName: description: The human-readable name for the conflict monitor. readOnly: false type: string notificationConfig: oneOf: - $ref: '#/components/schemas/c1.api.accessconflict.v1.NotificationConfig' - type: "null" required: - displayName title: Conflict Monitor Create Request type: object x-speakeasy-name-override: ConflictMonitorCreateRequest c1.api.accessconflict.v1.ConflictMonitorDeleteRequestInput: description: The request message for deleting a conflict monitor. title: Conflict Monitor Delete Request type: object x-speakeasy-name-override: ConflictMonitorDeleteRequest c1.api.accessconflict.v1.ConflictMonitorDeleteResponse: description: The response message for deleting a conflict monitor. title: Conflict Monitor Delete Response type: object x-speakeasy-name-override: ConflictMonitorDeleteResponse c1.api.accessconflict.v1.ConflictMonitorRef: description: The ConflictMonitorRef message. properties: id: description: The id field. readOnly: false type: - string - "null" title: Conflict Monitor Ref type: object x-speakeasy-name-override: ConflictMonitorRef c1.api.accessconflict.v1.ConflictMonitorUpdateRequestInput: description: The request message for updating an existing conflict monitor. properties: description: description: The updated description for the conflict monitor. readOnly: false type: - string - "null" displayName: description: The updated human-readable name for the conflict monitor. readOnly: false type: - string - "null" notificationConfig: oneOf: - $ref: '#/components/schemas/c1.api.accessconflict.v1.NotificationConfig' - type: "null" title: Conflict Monitor Update Request type: object x-speakeasy-name-override: ConflictMonitorUpdateRequest c1.api.accessconflict.v1.CreateAppEntitlementMonitorBindingRequest: description: The request message for creating a new app entitlement monitor binding. properties: appEntitlementId: description: The unique identifier of the app entitlement to bind. readOnly: false type: - string - "null" appId: description: The unique identifier of the application containing the entitlement. readOnly: false type: - string - "null" entitlementGroup: description: Which side of the conflict monitor (A or B) to place this entitlement in. enum: - ENTITLEMENT_GROUP_UNSPECIFIED - ENTITLEMENT_GROUP_A - ENTITLEMENT_GROUP_B readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow monitorId: description: The unique identifier of the conflict monitor to bind the entitlement to. readOnly: false type: - string - "null" title: Create App Entitlement Monitor Binding Request type: object x-speakeasy-name-override: CreateAppEntitlementMonitorBindingRequest c1.api.accessconflict.v1.DeleteAppEntitlementMonitorBindingRequest: description: The request message for deleting an app entitlement monitor binding. properties: appEntitlementId: description: The unique identifier of the app entitlement to unbind. readOnly: false type: - string - "null" appId: description: The unique identifier of the application containing the entitlement. readOnly: false type: - string - "null" entitlementGroup: description: Which side of the conflict monitor (A or B) the binding belongs to. enum: - ENTITLEMENT_GROUP_UNSPECIFIED - ENTITLEMENT_GROUP_A - ENTITLEMENT_GROUP_B readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow monitorId: description: The unique identifier of the conflict monitor. readOnly: false type: - string - "null" title: Delete App Entitlement Monitor Binding Request type: object x-speakeasy-name-override: DeleteAppEntitlementMonitorBindingRequest c1.api.accessconflict.v1.DeleteAppEntitlementMonitorBindingResponse: description: The response message for deleting an app entitlement monitor binding. title: Delete App Entitlement Monitor Binding Response type: object x-speakeasy-name-override: DeleteAppEntitlementMonitorBindingResponse c1.api.accessconflict.v1.EmailNotifications: description: The EmailNotifications message. properties: enabled: description: The enabled field. readOnly: false type: - boolean - "null" identityUserIds: description: The identityUserIds field. items: type: string readOnly: false type: - array - "null" title: Email Notifications type: object x-speakeasy-name-override: EmailNotifications c1.api.accessconflict.v1.GetAppEntitlementMonitorBindingRequest: description: The request message for retrieving a single app entitlement monitor binding. properties: appEntitlementId: description: The unique identifier of the app entitlement bound to the monitor. readOnly: false type: - string - "null" appId: description: The unique identifier of the application containing the entitlement. readOnly: false type: - string - "null" entitlementGroup: description: Which side of the conflict monitor (A or B) this binding belongs to. enum: - ENTITLEMENT_GROUP_UNSPECIFIED - ENTITLEMENT_GROUP_A - ENTITLEMENT_GROUP_B readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow monitorId: description: The unique identifier of the conflict monitor. readOnly: false type: - string - "null" title: Get App Entitlement Monitor Binding Request type: object x-speakeasy-name-override: GetAppEntitlementMonitorBindingRequest c1.api.accessconflict.v1.NotificationConfig: description: The NotificationConfig message. properties: emailNotifications: oneOf: - $ref: '#/components/schemas/c1.api.accessconflict.v1.EmailNotifications' - type: "null" slackNotifications: oneOf: - $ref: '#/components/schemas/c1.api.accessconflict.v1.SlackNotifications' - type: "null" title: Notification Config type: object x-speakeasy-name-override: AccessConflictNotificationConfig c1.api.accessconflict.v1.SlackNotifications: description: The SlackNotifications message. properties: channelId: description: The channelId field. readOnly: false type: - string - "null" channelName: description: The channelName field. readOnly: false type: - string - "null" enabled: description: The enabled field. readOnly: false type: - boolean - "null" title: Slack Notifications type: object x-speakeasy-name-override: SlackNotifications c1.api.accessreview.v1.AccessReview: description: | An access review campaign (also called a certification campaign) that verifies whether users still need their access entitlements. This message contains a oneof named setup_metadata. Only a single field of the following list may be set at a time: - singleApp - multiApp - bindings properties: accessReviewTemplateId: description: The ID of the template if the campaign was created from one readOnly: false type: string accuracyIssueAction: description: The accuracyIssueAction field. enum: - ACCURACY_ISSUE_ACTION_UNSPECIFIED - ACCURACY_ISSUE_ACTION_CONTINUE - ACCURACY_ISSUE_ACTION_WAIT readOnly: false type: string x-speakeasy-unknown-values: allow autoCloseCampaign: description: |- Auto-close configuration completion_date is used as the scheduled close date readOnly: false type: boolean autoCloseDecision: description: The autoCloseDecision field. enum: - CLOSE_DECISION_UNSPECIFIED - CLOSE_DECISION_REVOKED - CLOSE_DECISION_SKIP - CLOSE_DECISION_NO_ACTION readOnly: false type: string x-speakeasy-unknown-values: allow autoGenerateReport: description: The autoGenerateReport field. readOnly: false type: boolean autoResolve: description: When true, selections are automatically resolved if the entitlement grant no longer exists. readOnly: false type: boolean autoStartCampaign: description: Auto-start configuration readOnly: false type: boolean bindings: $ref: '#/components/schemas/c1.api.accessreview.v1.BindingObjectSetup' campaignHealth: $ref: '#/components/schemas/c1.api.accessreview.v1.CampaignHealthSnapshot' campaignInsights: $ref: '#/components/schemas/c1.api.accessreview.v1.CampaignInsights' closedAt: format: date-time readOnly: false type: string columnConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewColumnConfig' completionDate: format: date-time readOnly: false type: string connectorSourcesFrozenAt: format: date-time readOnly: false type: string createdAt: format: date-time readOnly: true type: string createdById: description: The ID of the user who created this campaign. readOnly: false type: string defaultView: description: the default view that reviewers will see when they complete their access reviews enum: - ACCESS_REVIEW_VIEW_TYPE_UNSPECIFIED - ACCESS_REVIEW_VIEW_TYPE_BY_APP - ACCESS_REVIEW_VIEW_TYPE_BY_USER - ACCESS_REVIEW_VIEW_TYPE_UNSTRUCTURED - ACCESS_REVIEW_VIEW_TYPE_BY_RESOURCE readOnly: false type: string x-speakeasy-unknown-values: allow description: description: An optional description providing context about this campaign. readOnly: false type: string displayName: description: The human-readable name of this campaign. readOnly: false type: string errorState: description: |- Error state set when a prepare action fails with a recoverable condition. Cleared when the campaign scope is changed. enum: - ACCESS_REVIEW_ERROR_STATE_UNSPECIFIED - ACCESS_REVIEW_ERROR_STATE_SELECTION_QUOTA_EXCEED_ERROR readOnly: true type: string x-speakeasy-unknown-values: allow exclusionScope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewExclusionScope' exemptCertifiedAccessConflicts: description: this setting is used for access conflict type scope readOnly: false type: boolean expectedTicketCount: description: The estimated number of review tasks that will be generated when the campaign starts. format: int32 readOnly: false type: integer hasAccuracySupport: description: Whether the connectors in this campaign support accuracy checking. readOnly: false type: boolean id: description: The unique identifier of this access review campaign. readOnly: false type: string inclusionScope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewInclusionScope' multiApp: $ref: '#/components/schemas/c1.api.accessreview.v1.MultiAppSetup' notificationConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.NotificationConfig' policyId: description: The ID of the review policy that governs how review tasks are assigned and resolved. readOnly: false type: string reviewInstructions: description: Optional instructions displayed to reviewers when completing their review tasks. readOnly: false type: string scheduledStartDate: format: date-time readOnly: false type: string scope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScope' scopeType: description: this sets the scope type for the access review enum: - ACCESS_REVIEW_SCOPE_TYPE_UNSPECIFIED - ACCESS_REVIEW_SCOPE_TYPE_BY_ENTITLEMENTS - ACCESS_REVIEW_SCOPE_TYPE_BY_ACCESS_CONFLICTS - ACCESS_REVIEW_SCOPE_TYPE_BY_RESOURCE - ACCESS_REVIEW_SCOPE_TYPE_BY_INHERITANCE readOnly: false type: string x-speakeasy-unknown-values: allow scopeV2: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' scopingVersion: description: Internal version counter incremented when the campaign scope changes. format: int64 readOnly: false type: string signatureConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.ReviewSignatureConfig' singleApp: $ref: '#/components/schemas/c1.api.accessreview.v1.SingleAppSetup' startedAt: format: date-time readOnly: false type: string state: description: The current lifecycle state of the campaign (e.g., draft, open, closed). enum: - ACCESS_REVIEW_STATE_UNSPECIFIED - ACCESS_REVIEW_STATE_OPEN - ACCESS_REVIEW_STATE_CLOSED - ACCESS_REVIEW_STATE_PENDING - ACCESS_REVIEW_STATE_REVIEW - ACCESS_REVIEW_STATE_PREPARING - ACCESS_REVIEW_STATE_STARTING - ACCESS_REVIEW_STATE_DRAFT - ACCESS_REVIEW_STATE_DELETING - ACCESS_REVIEW_STATE_DELETED - ACCESS_REVIEW_STATE_RESETTING_POLICIES - ACCESS_REVIEW_STATE_COPYING_SETUP_ENTITLEMENTS - ACCESS_REVIEW_STATE_COPYING_RESOURCE_TYPE_SELECTIONS readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: true type: string usePolicyOverride: description: |- Determines the policy applied to the campaign. Default is false, using the campaign policy. If true, the order of precedence is entitlement → app → campaign policy. readOnly: false type: boolean title: Access Review type: object x-speakeasy-entity: Access Review x-speakeasy-name-override: AccessReview c1.api.accessreview.v1.AccessReviewColumnConfig: description: Configuration for which columns are visible in the reviewer task list. properties: columns: description: |- Ordered list of columns visible to reviewers. If empty, the default column set for the campaign's default_view is used. items: enum: - ACCESS_REVIEW_TASK_COLUMN_UNSPECIFIED - ACCESS_REVIEW_TASK_COLUMN_VIEW_LINK - ACCESS_REVIEW_TASK_COLUMN_CURRENT_STATE - ACCESS_REVIEW_TASK_COLUMN_ACCOUNT - ACCESS_REVIEW_TASK_COLUMN_ACCOUNT_OWNER - ACCESS_REVIEW_TASK_COLUMN_ENTITLEMENT - ACCESS_REVIEW_TASK_COLUMN_ENTITLEMENT_DESCRIPTION - ACCESS_REVIEW_TASK_COLUMN_RESOURCE - ACCESS_REVIEW_TASK_COLUMN_RESOURCE_TYPE - ACCESS_REVIEW_TASK_COLUMN_INSIGHTS - ACCESS_REVIEW_TASK_COLUMN_RECOMMENDATION - ACCESS_REVIEW_TASK_COLUMN_ASSIGNED_TO - ACCESS_REVIEW_TASK_COLUMN_STATUS - ACCESS_REVIEW_TASK_COLUMN_APP - ACCESS_REVIEW_TASK_COLUMN_DUE - ACCESS_REVIEW_TASK_COLUMN_PROJECT - ACCESS_REVIEW_TASK_COLUMN_CREATED_ON - ACCESS_REVIEW_TASK_COLUMN_TASK_AGE - ACCESS_REVIEW_TASK_COLUMN_RESOLVED_ON - ACCESS_REVIEW_TASK_COLUMN_ENROLLMENT_STATUS - ACCESS_REVIEW_TASK_COLUMN_INHERITED_FROM - ACCESS_REVIEW_TASK_COLUMN_DEPARTMENT - ACCESS_REVIEW_TASK_COLUMN_JOB_TITLE - ACCESS_REVIEW_TASK_COLUMN_CREATED_BY - ACCESS_REVIEW_TASK_COLUMN_LAST_LOGIN - ACCESS_REVIEW_TASK_COLUMN_RESOURCE_PARENT - ACCESS_REVIEW_TASK_COLUMN_RESOURCE_CHILDREN type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Access Review Column Config type: object x-speakeasy-name-override: AccessReviewColumnConfig c1.api.accessreview.v1.AccessReviewExclusionScope: description: The AccessReviewExclusionScope message. properties: appUserStatuses: description: The appUserStatuses field. items: enum: - APP_USER_STATUS_UNSPECIFIED - APP_USER_STATUS_ENABLED - APP_USER_STATUS_DISABLED - APP_USER_STATUS_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array appUserTypes: description: The appUserTypes field. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Access Review Exclusion Scope type: object x-speakeasy-name-override: AccessReviewExclusionScope c1.api.accessreview.v1.AccessReviewExpandMask: description: The AccessReviewExpandMask message. properties: paths: description: The paths field. items: type: string nullable: true readOnly: false type: array title: Access Review Expand Mask type: object x-speakeasy-name-override: AccessReviewExpandMask c1.api.accessreview.v1.AccessReviewInclusionScope: description: The AccessReviewInclusionScope message. properties: appUserStatuses: description: The appUserStatuses field. items: enum: - APP_USER_STATUS_UNSPECIFIED - APP_USER_STATUS_ENABLED - APP_USER_STATUS_DISABLED - APP_USER_STATUS_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array appUserTypes: description: The appUserTypes field. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array managerIds: description: The managerIds field. items: type: string nullable: true readOnly: false type: array multiUserProfileAttributes: additionalProperties: $ref: '#/components/schemas/c1.api.accessreview.v1.IncludedUserAttributeValues' description: The multiUserProfileAttributes field. readOnly: false type: object noAccountOwners: description: The noAccountOwners field. readOnly: false type: boolean userIds: description: The userIds field. items: type: string nullable: true readOnly: false type: array userStatuses: description: The userStatuses field. items: enum: - USER_UNKNOWN - USER_ENABLED - USER_DISABLED - USER_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Access Review Inclusion Scope type: object x-speakeasy-name-override: AccessReviewInclusionScope c1.api.accessreview.v1.AccessReviewScope: description: The AccessReviewScope message. properties: appUserStatuses: description: The appUserStatuses field. items: enum: - APP_USER_STATUS_UNSPECIFIED - APP_USER_STATUS_ENABLED - APP_USER_STATUS_DISABLED - APP_USER_STATUS_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array appUserTypes: description: The appUserTypes field. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Access Review Scope type: object x-speakeasy-name-override: AccessReviewScope c1.api.accessreview.v1.AccessReviewScopeV2: description: | The AccessReviewScopeV2 message. This message contains a oneof named apps_and_resources_scope. Only a single field of the following list may be set at a time: - appAccess - specificResources - appSelectionCriteria - resourceTypeSelections This message contains a oneof named users_scope. Only a single field of the following list may be set at a time: - allUsers - selectedUsers - userCriteria - celExpression This message contains a oneof named accounts_scope. Only a single field of the following list may be set at a time: - allAccounts - accountCriteria - accountCelExpression This message contains a oneof named grants_scope. Only a single field of the following list may be set at a time: - allGrants - grantsByCriteria This message contains a oneof named access_conflicts_scope. Only a single field of the following list may be set at a time: - allAccessConflicts - specificAccessConflicts This message contains a oneof named resource_scope. Only a single field of the following list may be set at a time: - resourceSelection properties: accountCelExpression: $ref: '#/components/schemas/c1.api.accessreview.v1.CelExpressionScope' accountCriteria: $ref: '#/components/schemas/c1.api.accessreview.v1.AccountCriteriaScope' allAccessConflicts: $ref: '#/components/schemas/c1.api.accessreview.v1.AllAccessConflictsScope' allAccounts: $ref: '#/components/schemas/c1.api.accessreview.v1.AllAccountsScope' allGrants: $ref: '#/components/schemas/c1.api.accessreview.v1.AllGrantsScope' allUsers: $ref: '#/components/schemas/c1.api.accessreview.v1.AllUsersScope' appAccess: $ref: '#/components/schemas/c1.api.accessreview.v1.ApplicationAccessScope' appSelectionCriteria: $ref: '#/components/schemas/c1.api.accessreview.v1.AppSelectionCriteriaScope' celExpression: $ref: '#/components/schemas/c1.api.accessreview.v1.CelExpressionScope' grantsByCriteria: $ref: '#/components/schemas/c1.api.accessreview.v1.GrantsByCriteriaScope' resourceSelection: $ref: '#/components/schemas/c1.api.accessreview.v1.ResourceSelectionScope' resourceTypeSelections: $ref: '#/components/schemas/c1.api.accessreview.v1.ResourceTypeSelectionScope' selectedUsers: $ref: '#/components/schemas/c1.api.accessreview.v1.SelectedUsersScope' specificAccessConflicts: $ref: '#/components/schemas/c1.api.accessreview.v1.SpecificAccessConflictsScope' specificResources: $ref: '#/components/schemas/c1.api.accessreview.v1.SpecificResourcesScope' userCriteria: $ref: '#/components/schemas/c1.api.accessreview.v1.UserCriteriaScope' title: Access Review Scope V 2 type: object x-speakeasy-name-override: AccessReviewScopeV2 c1.api.accessreview.v1.AccessReviewServiceCreateRequest: description: The AccessReviewServiceCreateRequest message. properties: completionDate: format: date-time readOnly: false type: string description: description: An optional description providing context about the campaign. readOnly: false type: string displayName: description: The display name for the new campaign. readOnly: false type: string duplicateFrom: description: The ID of an existing campaign to copy scope and entitlement configuration from. Optional. readOnly: false type: string expandMask: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewExpandMask' notificationConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.NotificationConfig' ownerIds: description: The IDs of the users who own and manage this campaign. At least one owner is required. items: type: string nullable: true readOnly: false type: array policyId: description: The ID of the review policy that governs task assignment and resolution. readOnly: false type: string scopeType: description: The type of scoping method for the campaign (e.g., by entitlements, by access conflicts, or by resource). enum: - ACCESS_REVIEW_SCOPE_TYPE_UNSPECIFIED - ACCESS_REVIEW_SCOPE_TYPE_BY_ENTITLEMENTS - ACCESS_REVIEW_SCOPE_TYPE_BY_ACCESS_CONFLICTS - ACCESS_REVIEW_SCOPE_TYPE_BY_RESOURCE - ACCESS_REVIEW_SCOPE_TYPE_BY_INHERITANCE readOnly: false type: string x-speakeasy-unknown-values: allow scopeV2: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Service Create Request type: object x-speakeasy-name-override: AccessReviewServiceCreateRequest c1.api.accessreview.v1.AccessReviewServiceCreateResponse: description: The AccessReviewServiceCreateResponse message. properties: accessReview: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewView' expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array title: Access Review Service Create Response type: object x-speakeasy-name-override: AccessReviewServiceCreateResponse c1.api.accessreview.v1.AccessReviewServiceDeleteRequestInput: description: The AccessReviewServiceDeleteRequest message. title: Access Review Service Delete Request type: object x-speakeasy-name-override: AccessReviewServiceDeleteRequest c1.api.accessreview.v1.AccessReviewServiceDeleteResponse: description: The AccessReviewServiceDeleteResponse message. title: Access Review Service Delete Response type: object x-speakeasy-name-override: AccessReviewServiceDeleteResponse c1.api.accessreview.v1.AccessReviewServiceGetResponse: description: The AccessReviewServiceGetResponse message. properties: accessReview: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewView' expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array title: Access Review Service Get Response type: object x-speakeasy-name-override: AccessReviewServiceGetResponse c1.api.accessreview.v1.AccessReviewServiceListResponse: description: The AccessReviewServiceListResponse message. properties: expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array list: description: The list of access review campaigns for the current page. items: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewView' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page, or empty if there are no more results. readOnly: false type: string title: Access Review Service List Response type: object x-speakeasy-name-override: AccessReviewServiceListResponse c1.api.accessreview.v1.AccessReviewServiceUpdateRequestInput: description: The AccessReviewServiceUpdateRequest message. properties: accessReview: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReview' expandMask: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewExpandMask' updateMask: nullable: true readOnly: false type: string title: Access Review Service Update Request type: object x-speakeasy-name-override: AccessReviewServiceUpdateRequest c1.api.accessreview.v1.AccessReviewServiceUpdateResponse: description: The AccessReviewServiceUpdateResponse message. properties: accessReview: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewView' expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array title: Access Review Service Update Response type: object x-speakeasy-name-override: AccessReviewServiceUpdateResponse c1.api.accessreview.v1.AccessReviewSetScopeByResourceTypeRequestInput: description: The AccessReviewSetScopeByResourceTypeRequest message. properties: resourceTypeSelections: description: The resource types to include in the campaign scope. Replaces all previously selected resource types. items: $ref: '#/components/schemas/c1.api.accessreview.v1.ResourceTypeIdRef' nullable: true readOnly: false type: array scopeV2: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Set Scope By Resource Type Request type: object x-speakeasy-name-override: AccessReviewSetScopeByResourceTypeRequest c1.api.accessreview.v1.AccessReviewSetScopeByResourceTypeResponse: description: The AccessReviewSetScopeByResourceTypeResponse message. title: Access Review Set Scope By Resource Type Response type: object x-speakeasy-name-override: AccessReviewSetScopeByResourceTypeResponse c1.api.accessreview.v1.AccessReviewSetupEntitlement: description: An entitlement that has been selected for inclusion in an access review campaign during setup. properties: accessReviewId: description: The ID of the access review campaign this entitlement belongs to. readOnly: false type: string appEntitlementId: description: The ID of the entitlement being reviewed. readOnly: false type: string appId: description: The ID of the application that owns the entitlement. readOnly: false type: string appResourceId: description: The ID of the specific resource associated with this entitlement, if applicable. readOnly: false type: string appResourceTypeId: description: The ID of the resource type associated with this entitlement, if applicable. readOnly: false type: string createdAt: format: date-time readOnly: true type: string customPolicyId: description: An override policy ID for this specific entitlement. Populated when use_policy_override is enabled on the campaign. readOnly: false type: string deletedAt: format: date-time readOnly: true type: string policyId: description: The ID of the review policy applied to this entitlement. Defaults to the campaign policy. readOnly: false type: string tenantId: description: The tenant that owns this setup entitlement. readOnly: false type: string updatedAt: format: date-time readOnly: true type: string title: Access Review Setup Entitlement type: object x-speakeasy-name-override: AccessReviewSetupEntitlement c1.api.accessreview.v1.AccessReviewSetupEntitlementAndScopeServiceSetRequestInput: description: The AccessReviewSetupEntitlementAndScopeServiceSetRequest message. properties: entitlements: description: The entitlements to include in the campaign. Replaces all previously selected entitlements. items: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlementInput' nullable: true readOnly: false type: array expandMask: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlementExpandMask' scopeV2: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Setup Entitlement And Scope Service Set Request type: object x-speakeasy-name-override: AccessReviewSetupEntitlementAndScopeServiceSetRequest c1.api.accessreview.v1.AccessReviewSetupEntitlementAndScopeServiceSetResponse: description: The AccessReviewSetupEntitlementAndScopeServiceSetResponse message. properties: expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array list: description: The current list of setup entitlements for the campaign. items: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlementView' nullable: true readOnly: false type: array scopeV2: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Setup Entitlement And Scope Service Set Response type: object x-speakeasy-name-override: AccessReviewSetupEntitlementAndScopeServiceSetResponse c1.api.accessreview.v1.AccessReviewSetupEntitlementExpandMask: description: The AccessReviewSetupEntitlementExpandMask message. properties: paths: description: The paths field. items: type: string nullable: true readOnly: false type: array title: Access Review Setup Entitlement Expand Mask type: object x-speakeasy-name-override: AccessReviewSetupEntitlementExpandMask c1.api.accessreview.v1.AccessReviewSetupEntitlementInput: description: Identifies an entitlement to add or remove from a campaign's setup. properties: appEntitlementId: description: The ID of the entitlement. readOnly: false type: string appId: description: The ID of the application that owns the entitlement. readOnly: false type: string title: Access Review Setup Entitlement Input type: object x-speakeasy-name-override: AccessReviewSetupEntitlementInput c1.api.accessreview.v1.AccessReviewSetupEntitlementView: description: The AccessReviewSetupEntitlementView message. properties: accessReviewEntitlement: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlement' appPath: description: The appPath field. readOnly: false type: string entitlementPath: description: The entitlementPath field. readOnly: false type: string policyPath: description: The policyPath field. readOnly: false type: string title: Access Review Setup Entitlement View type: object x-speakeasy-name-override: AccessReviewSetupEntitlementView c1.api.accessreview.v1.AccessReviewTemplate: description: | A reusable template that defines the configuration for creating access review campaigns. Templates can optionally be scheduled to automatically create campaigns on a recurring basis. This message contains a oneof named slack_channel_details. Only a single field of the following list may be set at a time: - slackChannel properties: accessReviewDuration: format: duration readOnly: false type: string accuracyIssueAction: description: The accuracyIssueAction field. enum: - ACCURACY_ISSUE_ACTION_UNSPECIFIED - ACCURACY_ISSUE_ACTION_CONTINUE - ACCURACY_ISSUE_ACTION_WAIT readOnly: false type: string x-speakeasy-unknown-values: allow autoCloseCampaign: description: |- Auto-close configuration start date and access_review_duration will be used to calculate the scheduled close date readOnly: false type: boolean autoCloseDecision: description: The autoCloseDecision field. enum: - CLOSE_DECISION_UNSPECIFIED - CLOSE_DECISION_REVOKED - CLOSE_DECISION_SKIP - CLOSE_DECISION_NO_ACTION readOnly: false type: string x-speakeasy-unknown-values: allow autoGenerateReport: description: auto generate report when campaign is closed readOnly: false type: boolean autoStartCampaign: description: |- Auto-start configuration next_scheduled_campaign_at will be used as the scheduled start date readOnly: false type: boolean columnConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewColumnConfig' createdAt: format: date-time readOnly: true type: string defaultView: description: The defaultView field. enum: - ACCESS_REVIEW_VIEW_TYPE_UNSPECIFIED - ACCESS_REVIEW_VIEW_TYPE_BY_APP - ACCESS_REVIEW_VIEW_TYPE_BY_USER - ACCESS_REVIEW_VIEW_TYPE_UNSTRUCTURED - ACCESS_REVIEW_VIEW_TYPE_BY_RESOURCE readOnly: false type: string x-speakeasy-unknown-values: allow deletedAt: format: date-time readOnly: true type: string description: description: An optional description providing context about this template. readOnly: false type: string displayName: description: The human-readable name of this template. readOnly: false type: string exemptCertifiedAccessConflicts: description: The exemptCertifiedAccessConflicts field. readOnly: false type: boolean id: description: The unique identifier of this template. readOnly: false type: string inclusionScope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewInclusionScope' isCampaignScheduleEnabled: description: Whether automatic campaign creation on the recurrence schedule is enabled. readOnly: false type: boolean nextScheduledCampaignAt: format: date-time readOnly: false type: string notificationConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.NotificationConfig' occurrences: description: The number of campaigns that have been created from this template. format: int32 readOnly: false type: integer policyId: description: The ID of the default review policy applied to campaigns created from this template. readOnly: false type: string recurrenceRule: $ref: '#/components/schemas/c1.api.accessreview.v1.RecurrenceRule' reviewInstructions: description: The reviewInstructions field. readOnly: false type: string scope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' scopeType: description: The scopeType field. enum: - ACCESS_REVIEW_SCOPE_TYPE_UNSPECIFIED - ACCESS_REVIEW_SCOPE_TYPE_BY_ENTITLEMENTS - ACCESS_REVIEW_SCOPE_TYPE_BY_ACCESS_CONFLICTS - ACCESS_REVIEW_SCOPE_TYPE_BY_RESOURCE - ACCESS_REVIEW_SCOPE_TYPE_BY_INHERITANCE readOnly: false type: string x-speakeasy-unknown-values: allow signatureConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.ReviewSignatureConfig' slackChannel: $ref: '#/components/schemas/c1.api.accessreview.v1.SlackChannel' updatedAt: format: date-time readOnly: true type: string usePolicyOverride: description: The usePolicyOverride field. readOnly: false type: boolean title: Access Review Template type: object x-speakeasy-entity: Access Review Template x-speakeasy-name-override: AccessReviewTemplate c1.api.accessreview.v1.AccessReviewTemplateServiceCreateRequest: description: The AccessReviewTemplateServiceCreateRequest message. properties: accessReviewDuration: format: duration readOnly: false type: string accuracyIssueAction: description: The accuracyIssueAction field. enum: - ACCURACY_ISSUE_ACTION_UNSPECIFIED - ACCURACY_ISSUE_ACTION_CONTINUE - ACCURACY_ISSUE_ACTION_WAIT readOnly: false type: string x-speakeasy-unknown-values: allow autoCloseCampaign: description: The autoCloseCampaign field. readOnly: false type: boolean autoCloseDecision: description: The autoCloseDecision field. enum: - CLOSE_DECISION_UNSPECIFIED - CLOSE_DECISION_REVOKED - CLOSE_DECISION_SKIP - CLOSE_DECISION_NO_ACTION readOnly: false type: string x-speakeasy-unknown-values: allow autoGenerateReport: description: auto generate report when campaign is closed readOnly: false type: boolean autoStartCampaign: description: The autoStartCampaign field. readOnly: false type: boolean columnConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewColumnConfig' defaultView: description: The defaultView field. enum: - ACCESS_REVIEW_VIEW_TYPE_UNSPECIFIED - ACCESS_REVIEW_VIEW_TYPE_BY_APP - ACCESS_REVIEW_VIEW_TYPE_BY_USER - ACCESS_REVIEW_VIEW_TYPE_UNSTRUCTURED - ACCESS_REVIEW_VIEW_TYPE_BY_RESOURCE readOnly: false type: string x-speakeasy-unknown-values: allow description: description: An optional description providing context about the template. readOnly: false type: string displayName: description: The display name for the new template. readOnly: false type: string exemptCertifiedAccessConflicts: description: The exemptCertifiedAccessConflicts field. readOnly: false type: boolean isCampaignScheduleEnabled: description: The isCampaignScheduleEnabled field. readOnly: false type: boolean notificationConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.NotificationConfig' ownerIds: description: The IDs of the users who own this template. At least one owner is required. items: type: string nullable: true readOnly: false type: array policyId: description: The ID of the default review policy for campaigns created from this template. readOnly: false type: string recurrenceRule: $ref: '#/components/schemas/c1.api.accessreview.v1.RecurrenceRule' reviewInstructions: description: The reviewInstructions field. readOnly: false type: string scope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' scopeType: description: The scopeType field. enum: - ACCESS_REVIEW_SCOPE_TYPE_UNSPECIFIED - ACCESS_REVIEW_SCOPE_TYPE_BY_ENTITLEMENTS - ACCESS_REVIEW_SCOPE_TYPE_BY_ACCESS_CONFLICTS - ACCESS_REVIEW_SCOPE_TYPE_BY_RESOURCE - ACCESS_REVIEW_SCOPE_TYPE_BY_INHERITANCE readOnly: false type: string x-speakeasy-unknown-values: allow signatureConfig: $ref: '#/components/schemas/c1.api.accessreview.v1.ReviewSignatureConfig' usePolicyOverride: description: The usePolicyOverride field. readOnly: false type: boolean title: Access Review Template Service Create Request type: object x-speakeasy-name-override: AccessReviewTemplateServiceCreateRequest c1.api.accessreview.v1.AccessReviewTemplateServiceCreateResponse: description: The AccessReviewTemplateServiceCreateResponse message. properties: accessReviewTemplate: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplate' title: Access Review Template Service Create Response type: object x-speakeasy-name-override: AccessReviewTemplateServiceCreateResponse c1.api.accessreview.v1.AccessReviewTemplateServiceDeleteRequestInput: description: The AccessReviewTemplateServiceDeleteRequest message. title: Access Review Template Service Delete Request type: object x-speakeasy-name-override: AccessReviewTemplateServiceDeleteRequest c1.api.accessreview.v1.AccessReviewTemplateServiceDeleteResponse: description: The AccessReviewTemplateServiceDeleteResponse message. title: Access Review Template Service Delete Response type: object x-speakeasy-name-override: AccessReviewTemplateServiceDeleteResponse c1.api.accessreview.v1.AccessReviewTemplateServiceGetResponse: description: The AccessReviewTemplateServiceGetResponse message. properties: accessReviewTemplate: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplate' title: Access Review Template Service Get Response type: object x-speakeasy-name-override: AccessReviewTemplateServiceGetResponse c1.api.accessreview.v1.AccessReviewTemplateServiceUpdateRequestInput: description: The AccessReviewTemplateServiceUpdateRequest message. properties: accessReviewTemplate: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplate' updateMask: nullable: true readOnly: false type: string title: Access Review Template Service Update Request type: object x-speakeasy-name-override: AccessReviewTemplateServiceUpdateRequest c1.api.accessreview.v1.AccessReviewTemplateServiceUpdateResponse: description: The AccessReviewTemplateServiceUpdateResponse message. properties: accessReviewTemplate: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplate' title: Access Review Template Service Update Response type: object x-speakeasy-name-override: AccessReviewTemplateServiceUpdateResponse c1.api.accessreview.v1.AccessReviewTemplateSetScopeByResourceTypeRequestInput: description: The AccessReviewTemplateSetScopeByResourceTypeRequest message. properties: resourceTypeSelections: description: The resource types to include in the template scope. Replaces all previously selected resource types. items: $ref: '#/components/schemas/c1.api.accessreview.v1.ResourceTypeIdRef' nullable: true readOnly: false type: array scope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Template Set Scope By Resource Type Request type: object x-speakeasy-name-override: AccessReviewTemplateSetScopeByResourceTypeRequest c1.api.accessreview.v1.AccessReviewTemplateSetScopeByResourceTypeResponse: description: The AccessReviewTemplateSetScopeByResourceTypeResponse message. title: Access Review Template Set Scope By Resource Type Response type: object x-speakeasy-name-override: AccessReviewTemplateSetScopeByResourceTypeResponse c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlement: description: An entitlement that has been selected for inclusion in an access review template's scope. properties: accessReviewTemplateId: description: The ID of the access review template this entitlement belongs to. readOnly: false type: string appEntitlementId: description: The ID of the entitlement to be reviewed. readOnly: false type: string appId: description: The ID of the application that owns the entitlement. readOnly: false type: string appResourceId: description: The ID of the specific resource associated with this entitlement, if applicable. readOnly: false type: string appResourceTypeId: description: The ID of the resource type associated with this entitlement, if applicable. readOnly: false type: string createdAt: format: date-time readOnly: true type: string customPolicyId: description: An override policy ID for this specific entitlement. Populated when use_policy_override is enabled on the template. readOnly: false type: string deletedAt: format: date-time readOnly: true type: string policyId: description: The ID of the review policy applied to this entitlement. Defaults to the template policy. readOnly: false type: string tenantId: description: The tenant that owns this setup entitlement. readOnly: false type: string updatedAt: format: date-time readOnly: true type: string title: Access Review Template Setup Entitlement type: object x-speakeasy-name-override: AccessReviewTemplateSetupEntitlement c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementExpandMask: description: The AccessReviewTemplateSetupEntitlementExpandMask message. properties: paths: description: The paths field. items: type: string nullable: true readOnly: false type: array title: Access Review Template Setup Entitlement Expand Mask type: object x-speakeasy-name-override: AccessReviewTemplateSetupEntitlementExpandMask c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementInput: description: Identifies an entitlement to add or remove from a template's setup. properties: appEntitlementId: description: The ID of the entitlement. readOnly: false type: string appId: description: The ID of the application that owns the entitlement. readOnly: false type: string title: Access Review Template Setup Entitlement Input type: object x-speakeasy-name-override: AccessReviewTemplateSetupEntitlementInput c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementServiceSetRequestInput: description: The AccessReviewTemplateSetupEntitlementServiceSetRequest message. properties: entitlements: description: The entitlements to include in the template. Replaces all previously selected entitlements. items: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementInput' nullable: true readOnly: false type: array expandMask: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementExpandMask' scope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Template Setup Entitlement Service Set Request type: object x-speakeasy-name-override: AccessReviewTemplateSetupEntitlementServiceSetRequest c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementServiceSetResponse: description: The AccessReviewTemplateSetupEntitlementServiceSetResponse message. properties: expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array list: description: The current list of setup entitlements for the template. items: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementView' nullable: true readOnly: false type: array scope: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewScopeV2' title: Access Review Template Setup Entitlement Service Set Response type: object x-speakeasy-name-override: AccessReviewTemplateSetupEntitlementServiceSetResponse c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementView: description: The AccessReviewTemplateSetupEntitlementView message. properties: accessReviewTemplateEntitlement: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlement' appPath: description: The appPath field. readOnly: false type: string entitlementPath: description: The entitlementPath field. readOnly: false type: string policyPath: description: The policyPath field. readOnly: false type: string title: Access Review Template Setup Entitlement View type: object x-speakeasy-name-override: AccessReviewTemplateSetupEntitlementView c1.api.accessreview.v1.AccessReviewView: description: The AccessReviewView message. properties: accessReview: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReview' createdByUserPath: description: The createdByUserPath field. readOnly: false type: string objectPermissions: $ref: '#/components/schemas/c1.api.iam.v1.ActorObjectPermissions' policyPath: description: The policyPath field. readOnly: false type: string title: Access Review View type: object x-speakeasy-name-override: AccessReviewView c1.api.accessreview.v1.AccountCriteriaScope: description: The AccountCriteriaScope message. nullable: true properties: accountDomain: description: The accountDomain field. enum: - APP_USER_DOMAIN_UNSPECIFIED - APP_USER_DOMAIN_EXTERNAL - APP_USER_DOMAIN_TRUSTED readOnly: false type: string x-speakeasy-unknown-values: allow accountTypes: description: The accountTypes field. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array appUserStatuses: description: The appUserStatuses field. items: enum: - APP_USER_STATUS_UNSPECIFIED - APP_USER_STATUS_ENABLED - APP_USER_STATUS_DISABLED - APP_USER_STATUS_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array noAccountOwner: description: The noAccountOwner field. readOnly: false type: boolean title: Account Criteria Scope type: object x-speakeasy-name-override: AccountCriteriaScope c1.api.accessreview.v1.AllAccessConflictsScope: description: The AllAccessConflictsScope message. nullable: true title: All Access Conflicts Scope type: object x-speakeasy-name-override: AllAccessConflictsScope c1.api.accessreview.v1.AllAccountsScope: description: The AllAccountsScope message. nullable: true title: All Accounts Scope type: object x-speakeasy-name-override: AllAccountsScope c1.api.accessreview.v1.AllGrantsScope: description: The AllGrantsScope message. nullable: true title: All Grants Scope type: object x-speakeasy-name-override: AllGrantsScope c1.api.accessreview.v1.AllUsersScope: description: The AllUsersScope message. nullable: true title: All Users Scope type: object x-speakeasy-name-override: AllUsersScope c1.api.accessreview.v1.AppSelectionCriteriaScope: description: The AppSelectionCriteriaScope message. nullable: true properties: complianceFrameworkAttributeValueIds: description: The complianceFrameworkAttributeValueIds field. items: type: string nullable: true readOnly: false type: array riskLevelAttributeValueIds: description: The riskLevelAttributeValueIds field. items: type: string nullable: true readOnly: false type: array title: App Selection Criteria Scope type: object x-speakeasy-name-override: AppSelectionCriteriaScope c1.api.accessreview.v1.ApplicationAccessScope: description: The ApplicationAccessScope message. nullable: true title: Application Access Scope type: object x-speakeasy-name-override: ApplicationAccessScope c1.api.accessreview.v1.BindingObjectSetup: description: The BindingObjectSetup message. nullable: true title: Binding Object Setup type: object x-speakeasy-name-override: BindingObjectSetup c1.api.accessreview.v1.CampaignEntitlementDetails: description: The CampaignEntitlementDetails message. properties: appId: description: The appId field. readOnly: false type: string entitlementId: description: The entitlementId field. readOnly: false type: string policyId: description: The policyId field. readOnly: false type: string title: Campaign Entitlement Details type: object x-speakeasy-name-override: CampaignEntitlementDetails c1.api.accessreview.v1.CampaignHealthSnapshot: description: Campaign health snapshot. Read-only; updated by backend maintenance processors. properties: checkedAt: format: date-time readOnly: false type: string phantomLockedCount: description: Number of pending actions locked by terminal (dead) submissions. format: int32 readOnly: false type: integer title: Campaign Health Snapshot type: object x-speakeasy-name-override: CampaignHealthSnapshot c1.api.accessreview.v1.CampaignInsights: description: AI-generated campaign insights (markdown). Read-only; set by backend when campaign is closed. properties: markdown: description: The markdown field. readOnly: false type: string title: Campaign Insights type: object x-speakeasy-name-override: CampaignInsights c1.api.accessreview.v1.CelExpressionScope: description: The CelExpressionScope message. nullable: true properties: expression: description: The expression field. readOnly: false type: string title: Cel Expression Scope type: object x-speakeasy-name-override: CelExpressionScope c1.api.accessreview.v1.EntitlementToDetails: description: The EntitlementToDetails message. properties: entitlementDetails: additionalProperties: $ref: '#/components/schemas/c1.api.accessreview.v1.CampaignEntitlementDetails' description: The entitlementDetails field. readOnly: false type: object title: Entitlement To Details type: object x-speakeasy-name-override: EntitlementToDetails c1.api.accessreview.v1.GrantAccessProfileFilter: description: The GrantAccessProfileFilter message. properties: excludedAccessProfileIds: description: |- Access profile IDs to EXCLUDE from the campaign Used when filter_type = EXCLUDE_SPECIFIC Max 32 profile IDs items: type: string nullable: true readOnly: false type: array filterType: description: The filterType field. enum: - ACCESS_PROFILE_FILTER_TYPE_UNSPECIFIED - ACCESS_PROFILE_FILTER_TYPE_INCLUDE_ALL - ACCESS_PROFILE_FILTER_TYPE_EXCLUDE_ALL - ACCESS_PROFILE_FILTER_TYPE_EXCLUDE_SPECIFIC - ACCESS_PROFILE_FILTER_TYPE_INCLUDE_SPECIFIC readOnly: false type: string x-speakeasy-unknown-values: allow includedAccessProfileIds: description: |- Access profile IDs to INCLUDE in the campaign Used when filter_type = INCLUDE_SPECIFIC Max 32 profile IDs items: type: string nullable: true readOnly: false type: array title: Grant Access Profile Filter type: object x-speakeasy-name-override: GrantAccessProfileFilter c1.api.accessreview.v1.GrantsAddedBetween: description: The GrantsAddedBetween message. nullable: true properties: endDate: format: date-time readOnly: false type: string startDate: format: date-time readOnly: false type: string title: Grants Added Between type: object x-speakeasy-name-override: GrantsAddedBetween c1.api.accessreview.v1.GrantsByCriteriaScope: description: | The GrantsByCriteriaScope message. This message contains a oneof named criteria_filter. Only a single field of the following list may be set at a time: - daysSinceAdded - daysSinceReviewed - grantsAddedBetween nullable: true properties: accessProfileFilter: $ref: '#/components/schemas/c1.api.accessreview.v1.GrantAccessProfileFilter' daysSinceAdded: format: duration readOnly: false type: string daysSinceLastUsed: format: duration readOnly: false type: string daysSinceReviewed: format: duration readOnly: false type: string grantsAddedBetween: $ref: '#/components/schemas/c1.api.accessreview.v1.GrantsAddedBetween' sourceFilter: description: The sourceFilter field. enum: - GRANT_SOURCE_FILTER_UNSPECIFIED - GRANT_SOURCE_FILTER_DIRECT - GRANT_SOURCE_FILTER_INHERITED readOnly: false type: string x-speakeasy-unknown-values: allow typeFilter: description: The typeFilter field. enum: - GRANT_FILTER_TYPE_UNSPECIFIED - GRANT_FILTER_TYPE_PERMANENT - GRANT_FILTER_TYPE_TEMPORARY readOnly: false type: string x-speakeasy-unknown-values: allow title: Grants By Criteria Scope type: object x-speakeasy-name-override: GrantsByCriteriaScope c1.api.accessreview.v1.IncludedUserAttributeValue: description: The IncludedUserAttributeValue message. properties: value: description: The value field. readOnly: false type: string title: Included User Attribute Value type: object x-speakeasy-name-override: IncludedUserAttributeValue c1.api.accessreview.v1.IncludedUserAttributeValues: description: The IncludedUserAttributeValues message. properties: values: description: The values field. items: $ref: '#/components/schemas/c1.api.accessreview.v1.IncludedUserAttributeValue' nullable: true readOnly: false type: array title: Included User Attribute Values type: object x-speakeasy-name-override: IncludedUserAttributeValues c1.api.accessreview.v1.MultiAppEntitlement: description: The MultiAppEntitlement message. properties: appId: description: The appId field. readOnly: false type: string entitlementIds: description: The entitlementIds field. items: type: string nullable: true readOnly: false type: array title: Multi App Entitlement type: object x-speakeasy-name-override: MultiAppEntitlement c1.api.accessreview.v1.MultiAppSetup: description: The MultiAppSetup message. nullable: true properties: appEntitlementDetails: additionalProperties: $ref: '#/components/schemas/c1.api.accessreview.v1.EntitlementToDetails' description: The appEntitlementDetails field. readOnly: false type: object appEntitlements: additionalProperties: $ref: '#/components/schemas/c1.api.accessreview.v1.MultiAppEntitlement' description: The appEntitlements field. readOnly: false type: object title: Multi App Setup type: object x-speakeasy-name-override: MultiAppSetup c1.api.accessreview.v1.NotificationConfig: description: Controls which email notifications are sent during the access review lifecycle. properties: sendClose: description: Whether to send a notification when the campaign is closed. readOnly: false type: boolean sendKickoff: description: Whether to send a notification when the campaign is started. readOnly: false type: boolean sendReminders: description: Whether to send periodic reminder emails to reviewers with outstanding tasks. readOnly: false type: boolean title: Notification Config type: object x-speakeasy-name-override: NotificationConfig c1.api.accessreview.v1.RecurrenceRule: description: | The RecurrenceRule message. This message contains a oneof named end_condition. Only a single field of the following list may be set at a time: - endDate - occurrences properties: endDate: format: date-time readOnly: false type: string frequency: description: The frequency field. enum: - FREQUENCY_UNSPECIFIED - FREQUENCY_NONE - FREQUENCY_DAILY - FREQUENCY_WEEKLY - FREQUENCY_MONTHLY - FREQUENCY_YEARLY readOnly: false type: string x-speakeasy-unknown-values: allow interval: description: The interval field. format: int32 readOnly: false type: integer occurrences: description: |- The occurrences field. This field is part of the `end_condition` oneof. See the documentation for `c1.api.accessreview.v1.RecurrenceRule` for more details. format: int32 nullable: true readOnly: false type: integer startDate: format: date-time readOnly: false type: string title: Recurrence Rule type: object x-speakeasy-name-override: RecurrenceRule c1.api.accessreview.v1.ResourceSelectionScope: description: The ResourceSelectionScope message. nullable: true title: Resource Selection Scope type: object x-speakeasy-name-override: ResourceSelectionScope c1.api.accessreview.v1.ResourceTypeIdRef: description: A reference to a resource type within an application. properties: appId: description: The ID of the application that owns the resource type. readOnly: false type: string resourceTypeId: description: The ID of the resource type. readOnly: false type: string title: Resource Type Id Ref type: object x-speakeasy-name-override: ResourceTypeIdRef c1.api.accessreview.v1.ResourceTypeSelectionScope: description: The ResourceTypeSelectionScope message. nullable: true title: Resource Type Selection Scope type: object x-speakeasy-name-override: ResourceTypeSelectionScope c1.api.accessreview.v1.ReviewSignatureConfig: description: Signature configuration for access review submissions properties: meaningOfSignature: description: The meaningOfSignature field. readOnly: false type: string requireSignature: description: The requireSignature field. readOnly: false type: boolean stepUpProviderId: description: The stepUpProviderId field. readOnly: false type: string tspUrl: description: The tspUrl field. readOnly: false type: string title: Review Signature Config type: object x-speakeasy-name-override: ReviewSignatureConfig c1.api.accessreview.v1.SelectedUsersScope: description: The SelectedUsersScope message. nullable: true properties: userIds: description: The userIds field. items: type: string nullable: true readOnly: false type: array title: Selected Users Scope type: object x-speakeasy-name-override: SelectedUsersScope c1.api.accessreview.v1.SingleAppSetup: description: The SingleAppSetup message. nullable: true properties: appId: description: The appId field. readOnly: false type: string title: Single App Setup type: object x-speakeasy-name-override: SingleAppSetup c1.api.accessreview.v1.SlackChannel: description: The SlackChannel message. nullable: true properties: description: description: The description field. readOnly: false type: string name: description: The name field. readOnly: false type: string title: Slack Channel type: object x-speakeasy-name-override: SlackChannel c1.api.accessreview.v1.SpecificAccessConflictsScope: description: The SpecificAccessConflictsScope message. nullable: true title: Specific Access Conflicts Scope type: object x-speakeasy-name-override: SpecificAccessConflictsScope c1.api.accessreview.v1.SpecificResourcesScope: description: The SpecificResourcesScope message. nullable: true title: Specific Resources Scope type: object x-speakeasy-name-override: SpecificResourcesScope c1.api.accessreview.v1.UserCriteriaScope: description: The UserCriteriaScope message. nullable: true properties: groupAppEntitlementsRef: description: The groupAppEntitlementsRef field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array managerUserIds: description: The managerUserIds field. items: type: string nullable: true readOnly: false type: array multiUserProfileAttributes: additionalProperties: $ref: '#/components/schemas/c1.api.accessreview.v1.IncludedUserAttributeValues' description: The multiUserProfileAttributes field. readOnly: false type: object userStatus: description: The userStatus field. items: enum: - UNKNOWN - ENABLED - DISABLED - DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: User Criteria Scope type: object x-speakeasy-name-override: UserCriteriaScope c1.api.app.v1.AddAppEntitlementOwnerRequestInput: description: The request message for adding an app entitlement owner. properties: userId: description: The user_id field for the user to add as an owner of the app entitlement. readOnly: false type: - string - "null" title: Add App Entitlement Owner Request type: object x-speakeasy-name-override: AddAppEntitlementOwnerRequest c1.api.app.v1.AddAppEntitlementOwnerResponse: description: The empty response message for adding an app entitlement owner. title: Add App Entitlement Owner Response type: object x-speakeasy-name-override: AddAppEntitlementOwnerResponse c1.api.app.v1.AddAppOwnerRequestInput: description: Empty request body. Just placeholder for the add app owner request which uses URL values for input. title: Add App Owner Request type: object x-speakeasy-name-override: AddAppOwnerRequest c1.api.app.v1.AddAppOwnerResponse: description: Empty response with a status code indicating success title: Add App Owner Response type: object x-speakeasy-name-override: AddAppOwnerResponse c1.api.app.v1.AddAppResourceOwnerRequestInput: description: The request message for adding an owner to an app resource. properties: userId: description: The C1 user ID to add as an owner. readOnly: false type: - string - "null" title: Add App Resource Owner Request type: object x-speakeasy-name-override: AddAppResourceOwnerRequest c1.api.app.v1.AddAppResourceOwnerResponse: description: The empty response message for adding an owner to an app resource. title: Add App Resource Owner Response type: object x-speakeasy-name-override: AddAppResourceOwnerResponse c1.api.app.v1.AddAutomationExclusionRequestInput: description: The AddAutomationExclusionRequest message. properties: userIds: description: The IDs of users to add to the automation exclusion list. items: type: string readOnly: false type: - array - "null" title: Add Automation Exclusion Request type: object x-speakeasy-name-override: AddAutomationExclusionRequest c1.api.app.v1.AddAutomationExclusionResponse: description: Empty response with a status code indicating success. title: Add Automation Exclusion Response type: object x-speakeasy-name-override: AddAutomationExclusionResponse c1.api.app.v1.AddManuallyManagedUsersRequestInput: description: The AddManuallyManagedUsersRequest message. properties: userIds: description: The IDs of users to add as manually managed members. items: type: string readOnly: false type: - array - "null" title: Add Manually Managed Users Request type: object x-speakeasy-name-override: AddManuallyManagedUsersRequest c1.api.app.v1.App: description: The App object provides all of the details for an app, as well as some configuration. properties: accessModel: description: |- How this app models access. Derived during uplift from the app's resource type traits. Sparse ACL feature. enum: - APP_ACCESS_MODEL_UNSPECIFIED - APP_ACCESS_MODEL_CLASSIC - APP_ACCESS_MODEL_HYBRID - APP_ACCESS_MODEL_SPARSE readOnly: false type: string x-speakeasy-unknown-values: allow appAccountId: description: The ID of the Account named by AccountName. readOnly: true type: - string - "null" appAccountName: description: The AccountName of the app. For example, AWS is AccountID, Github is Org Name, and Okta is Okta Subdomain. readOnly: true type: - string - "null" appOwners: description: The owners of the app. items: $ref: '#/components/schemas/c1.api.user.v1.User' readOnly: true type: - array - "null" appUserMapper: $ref: '#/components/schemas/c1.api.app.v1.AppUserMapper' certifyPolicyId: description: The ID of the Certify Policy associated with this App. readOnly: false type: - string - "null" connectorVersion: description: The connectorVersion field. format: uint32 readOnly: false type: - integer - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" defaultRequestCatalogId: description: The ID for the default request catalog for this app. readOnly: false type: - string - "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The app's description. readOnly: false type: - string - "null" displayName: description: The app's display name. readOnly: false type: - string - "null" enableConnectorSourcedOwnership: description: When enabled, resource ownership is sourced from the connector. readOnly: false type: boolean fieldMask: oneOf: - readOnly: true type: - string - "null" - type: "null" grantPolicyId: description: The ID of the Grant Policy associated with this App. readOnly: false type: - string - "null" iconUrl: description: The URL of an icon to display for the app. readOnly: false type: - string - "null" id: description: The ID of the app. readOnly: true type: - string - "null" identityMatching: description: The identityMatching field. enum: - APP_USER_IDENTITY_MATCHING_UNSPECIFIED - APP_USER_IDENTITY_MATCHING_STRICT - APP_USER_IDENTITY_MATCHING_DISPLAY_NAME - APP_USER_IDENTITY_MATCHING_CUSTOM readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow instructions: description: If you add instructions here, they will be shown to users in the access request form when requesting access for this app. readOnly: false type: - string - "null" isDirectory: description: Specifies if the app is a directory. readOnly: true type: - boolean - "null" isManuallyManaged: description: The isManuallyManaged field. readOnly: false type: - boolean - "null" logoUri: description: The URL of a logo to display for the app. readOnly: true type: - string - "null" monthlyCostUsd: description: The cost of an app per-seat, so that total cost can be calculated by the grant count. format: int32 readOnly: false type: - integer - "null" parentAppId: description: The ID of the app that created this app, if any. readOnly: true type: - string - "null" revokePolicyId: description: The ID of the Revoke Policy associated with this App. readOnly: false type: - string - "null" strictAccessEntitlementProvisioning: description: The strictAccessEntitlementProvisioning field. readOnly: false type: - boolean - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userCount: description: The number of users with grants to this app. format: int64 readOnly: true type: - string - "null" title: App type: object x-speakeasy-entity: App x-speakeasy-name-override: App c1.api.app.v1.AppAccessRequestDefaults: description: | The AppAccessRequestDefaults message. This message contains a oneof named max_grant_duration. Only a single field of the following list may be set at a time: - durationUnset - durationGrant properties: appId: description: The app id for the app access request rule readOnly: false type: - string - "null" catalogIds: description: The request catalog ids for the app access request rule. items: type: string readOnly: false type: - array - "null" defaultsEnabled: description: If true the app level request configuration will be applied to specified resource types. readOnly: false type: - boolean - "null" durationGrant: oneOf: - format: duration readOnly: false type: string - type: "null" durationUnset: oneOf: - readOnly: false type: - object - "null" - type: "null" emergencyGrantEnabled: description: If emergency grants are enabled for this app access request rule. readOnly: false type: - boolean - "null" emergencyGrantPolicyId: description: The policy id for the emergency grant policy. readOnly: false type: - string - "null" requestPolicyId: description: The ID of the request policy to apply to entitlements matching this rule. readOnly: false type: - string - "null" requestSchemaId: description: The ID of the request schema to apply to entitlements matching this rule. readOnly: false type: string resourceTypeIds: description: The app resource type ids for which the app access request defaults are applied. items: type: string readOnly: false type: - array - "null" state: description: The last applied state of the app access request defaults. enum: - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_UNSPECIFIED - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_RUNNING - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_SUCCESS - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_FAILED - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_CANCELING - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_CANCEL_SUCCESS - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_CANCEL_ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: App Access Request Defaults type: object x-speakeasy-name-override: AppAccessRequestDefaults c1.api.app.v1.AppAccessRequestDefaultsInput: description: | The AppAccessRequestDefaults message. This message contains a oneof named max_grant_duration. Only a single field of the following list may be set at a time: - durationUnset - durationGrant properties: catalogIds: description: The request catalog ids for the app access request rule. items: type: string readOnly: false type: - array - "null" defaultsEnabled: description: If true the app level request configuration will be applied to specified resource types. readOnly: false type: - boolean - "null" durationGrant: oneOf: - format: duration readOnly: false type: string - type: "null" durationUnset: oneOf: - readOnly: false type: - object - "null" - type: "null" emergencyGrantEnabled: description: If emergency grants are enabled for this app access request rule. readOnly: false type: - boolean - "null" emergencyGrantPolicyId: description: The policy id for the emergency grant policy. readOnly: false type: - string - "null" requestPolicyId: description: The ID of the request policy to apply to entitlements matching this rule. readOnly: false type: - string - "null" requestSchemaId: description: The ID of the request schema to apply to entitlements matching this rule. readOnly: false type: string resourceTypeIds: description: The app resource type ids for which the app access request defaults are applied. items: type: string readOnly: false type: - array - "null" state: description: The last applied state of the app access request defaults. enum: - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_UNSPECIFIED - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_RUNNING - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_SUCCESS - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_FAILED - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_CANCELING - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_CANCEL_SUCCESS - APP_ACCESS_REQUEST_DEFAULTS_LAST_APPLY_STATE_CANCEL_ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: App Access Request Defaults type: object x-speakeasy-name-override: AppAccessRequestDefaults c1.api.app.v1.AppActionsServiceGenerateReportRequestInput: description: Empty request body. Just placeholder for the generate app report request which uses URL values for input. title: App Actions Service Generate Report Request type: object x-speakeasy-name-override: AppActionsServiceGenerateReportRequest c1.api.app.v1.AppActionsServiceGenerateReportResponse: description: Empty response body. Status code indicates success. title: App Actions Service Generate Report Response type: object x-speakeasy-name-override: AppActionsServiceGenerateReportResponse c1.api.app.v1.AppEntitlement: description: | The app entitlement represents one permission in a downstream App (SAAS) that can be granted. For example, GitHub Read vs GitHub Write. This message contains a oneof named max_grant_duration. Only a single field of the following list may be set at a time: - durationUnset - durationGrant properties: alias: description: The alias of the app entitlement used by Cone. Also exact-match queryable. readOnly: false type: - string - "null" appId: description: The ID of the app that is associated with the app entitlement. readOnly: false type: - string - "null" appResourceId: description: The ID of the app resource that is associated with the app entitlement readOnly: false type: - string - "null" appResourceTypeId: description: The ID of the app resource type that is associated with the app entitlement readOnly: false type: - string - "null" certifyPolicyId: description: The ID of the policy that will be used for certify tickets related to the app entitlement. readOnly: false type: - string - "null" complianceFrameworkValueIds: description: The IDs of different compliance frameworks associated with this app entitlement ex (SOX, HIPAA, PCI, etc.) items: type: string readOnly: false type: - array - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" defaultValuesApplied: description: Flag to indicate if app-level access request defaults have been applied to the entitlement readOnly: false type: - boolean - "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deprovisionerPolicy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ProvisionPolicy' - type: "null" description: description: The description of the app entitlement. readOnly: false type: - string - "null" displayName: description: The display name of the app entitlement. readOnly: false type: - string - "null" durationGrant: oneOf: - format: duration readOnly: false type: string - type: "null" durationUnset: oneOf: - readOnly: false type: - object - "null" - type: "null" emergencyGrantEnabled: description: This enables tasks to be created in an emergency and use a selected emergency access policy. readOnly: false type: - boolean - "null" emergencyGrantPolicyId: description: The ID of the policy that will be used for emergency access grant tasks. readOnly: false type: - string - "null" externalId: description: |- The upstream product's native external ID for this entitlement (e.g. an Okta group ID). Populated from the connector's external ID during sync. readOnly: true type: string grantCount: description: The amount of grants open for this entitlement format: int64 readOnly: true type: - string - "null" grantPolicyId: description: The ID of the policy that will be used for grant tickets related to the app entitlement. readOnly: false type: - string - "null" id: description: The unique ID for the App Entitlement. readOnly: true type: - string - "null" isAutomationEnabled: description: Flag to indicate whether automation (for adding users to entitlement based on rules) has been enabled. readOnly: true type: - boolean - "null" isManuallyManaged: description: Flag to indicate if the app entitlement is manually managed. readOnly: false type: - boolean - "null" matchBatonId: description: An identifier used to match this entitlement to a connector-synced entitlement during sync. readOnly: false type: - string - "null" overrideAccessRequestsDefaults: description: Flag to indicate if the app-level access request settings have been overridden for the entitlement readOnly: false type: - boolean - "null" provisionerPolicy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ProvisionPolicy' - type: "null" purpose: description: The purpose of this entitlement (e.g., assignment, permission, ownership). enum: - APP_ENTITLEMENT_PURPOSE_VALUE_UNSPECIFIED - APP_ENTITLEMENT_PURPOSE_VALUE_ASSIGNMENT - APP_ENTITLEMENT_PURPOSE_VALUE_PERMISSION - APP_ENTITLEMENT_PURPOSE_VALUE_OWNERSHIP readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow requestSchemaId: description: The ID of the request schema associated with this app entitlement. readOnly: false type: - string - "null" revokePolicyId: description: The ID of the policy that will be used for revoke tickets related to the app entitlement readOnly: false type: - string - "null" riskLevelValueId: description: The ID of the risk level assigned to this entitlement. readOnly: false type: - string - "null" slug: description: The slug is displayed as an oval next to the name in the frontend of C1, it tells you what permission the entitlement grants. See https://www.conductorone.com/docs/product/admin/entitlements/ readOnly: false type: - string - "null" sourceConnectorIds: additionalProperties: type: string description: Map to tell us which connector the entitlement came from. readOnly: false type: - object - "null" systemBuiltin: description: This field indicates if this is a system builtin entitlement. readOnly: true type: - boolean - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userEditedMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: App Entitlement type: object x-speakeasy-entity: Custom App Entitlement x-speakeasy-name-override: AppEntitlement c1.api.app.v1.AppEntitlementAutomation: description: | The AppEntitlementAutomation message. This message contains a oneof named conditions. Only a single field of the following list may be set at a time: - none - entitlements - cel - basic properties: appEntitlementId: description: The unique ID for the App Entitlement. readOnly: true type: - string - "null" appId: description: The ID of the app that is associated with the app entitlement. readOnly: true type: - string - "null" basic: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleBasic' - type: "null" cel: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleCEL' - type: "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description of the app entitlement. readOnly: false type: - string - "null" displayName: description: The display name of the app entitlement. readOnly: false type: - string - "null" entitlements: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleEntitlement' - type: "null" lastRunStatus: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationLastRunStatus' - type: "null" managedByRequestCatalogId: description: |- When set, this automation is managed by an access profile's bundle automation. Read-only. Not settable via this API. readOnly: true type: string none: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleNone' - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: App Entitlement Automation type: object x-speakeasy-entity: App Entitlement Automation x-speakeasy-name-override: AppEntitlementAutomation c1.api.app.v1.AppEntitlementAutomationLastRunStatus: description: The AppEntitlementAutomationLastRunStatus message. properties: errorMessage: description: The errorMessage field. readOnly: true type: - string - "null" lastCompletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" status: description: The status field. enum: - APP_ENTITLEMENT_AUTOMATION_RUN_STATUS_UNSPECIFIED - APP_ENTITLEMENT_AUTOMATION_RUN_STATUS_SUCCESS - APP_ENTITLEMENT_AUTOMATION_RUN_STATUS_FAILED - APP_ENTITLEMENT_AUTOMATION_RUN_STATUS_IN_PROGRESS readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow title: App Entitlement Automation Last Run Status type: object x-speakeasy-name-override: AppEntitlementAutomationLastRunStatus c1.api.app.v1.AppEntitlementAutomationRuleBasic: description: The AppEntitlementAutomationRuleBasic message. properties: expression: description: The expression field. readOnly: false type: - string - "null" title: App Entitlement Automation Rule Basic type: object x-speakeasy-name-override: AppEntitlementAutomationRuleBasic c1.api.app.v1.AppEntitlementAutomationRuleCEL: description: The AppEntitlementAutomationRuleCEL message. properties: expression: description: The expression field. readOnly: false type: - string - "null" title: App Entitlement Automation Rule Cel type: object x-speakeasy-name-override: AppEntitlementAutomationRuleCEL c1.api.app.v1.AppEntitlementAutomationRuleEntitlement: description: The AppEntitlementAutomationRuleEntitlement message. properties: entitlementRefs: description: The entitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: App Entitlement Automation Rule Entitlement type: object x-speakeasy-name-override: AppEntitlementAutomationRuleEntitlement c1.api.app.v1.AppEntitlementAutomationRuleNone: description: The AppEntitlementAutomationRuleNone message. title: App Entitlement Automation Rule None type: object x-speakeasy-name-override: AppEntitlementAutomationRuleNone c1.api.app.v1.AppEntitlementExpandMask: description: The app entitlement expand mask allows the user to get additional information when getting responses containing app entitlement views. properties: paths: description: Array of strings to describe which items to expand on the return value. Can be any combination of "*", "app_id", "app_resource_type_id", or "app_resource_id". items: type: string readOnly: false type: - array - "null" title: App Entitlement Expand Mask type: object x-speakeasy-name-override: AppEntitlementExpandMask c1.api.app.v1.AppEntitlementProxy: description: An entitlement proxy binding that defines a hierarchical relationship between two entitlements. properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" disabledAt: format: date-time readOnly: false type: string dstAppEntitlementId: description: The ID of the destination (child) entitlement. readOnly: false type: - string - "null" dstAppId: description: The ID of the app that owns the destination entitlement. readOnly: false type: - string - "null" implicit: description: If true, the binding does not exist yet and is inferred from the entitlements of the parent app. readOnly: false type: - boolean - "null" srcAppEntitlementId: description: The ID of the source (parent) entitlement. readOnly: false type: - string - "null" srcAppId: description: The ID of the app that owns the source entitlement. readOnly: false type: - string - "null" systemBuiltin: description: If true, this binding was created by the system and cannot be removed by the user. readOnly: false type: - boolean - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: App Entitlement Proxy type: object x-speakeasy-entity: App Entitlement Proxy Binding x-speakeasy-name-override: AppEntitlementProxy c1.api.app.v1.AppEntitlementProxyExpandMask: description: The AppEntitlementProxyExpandMask message. properties: paths: description: The paths field. items: type: string readOnly: false type: - array - "null" title: App Entitlement Proxy Expand Mask type: object x-speakeasy-name-override: AppEntitlementProxyExpandMask c1.api.app.v1.AppEntitlementProxyView: description: The AppEntitlementProxyView message. properties: appProxyEntitlement: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementProxy' - type: "null" dstAppEntitlementPath: description: The dstAppEntitlementPath field. readOnly: false type: - string - "null" dstAppPath: description: The dstAppPath field. readOnly: false type: - string - "null" srcAppEntitlementPath: description: The srcAppEntitlementPath field. readOnly: false type: - string - "null" srcAppPath: description: The srcAppPath field. readOnly: false type: - string - "null" title: App Entitlement Proxy View type: object x-speakeasy-name-override: AppEntitlementProxyView c1.api.app.v1.AppEntitlementRef: description: The AppEntitlementRef message. properties: appId: description: The appId field. readOnly: false type: - string - "null" id: description: The id field. readOnly: false type: - string - "null" title: App Entitlement Ref type: object x-speakeasy-name-override: AppEntitlementRef c1.api.app.v1.AppEntitlementSearchServiceSearchGrantsRequest: description: The AppEntitlementSearchServiceSearchGrantsRequest message. properties: appIds: description: Search for grants contained in any of these apps. items: type: string readOnly: false type: - array - "null" appUserIds: description: Search for grants that are granted to any of these app user ids. items: type: string readOnly: false type: - array - "null" entitlementRefs: description: Search for grants of an entitlement items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" entitlementSlugs: description: Filter for entitlements whose slug is in this list (e.g. "enrollment" for access profiles) items: type: string nullable: true readOnly: false type: array expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementExpandMask' - type: "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" purpose: description: Filter for entitlements with these purposes (e.g., ASSIGNMENT for membership entitlements) items: enum: - APP_ENTITLEMENT_PURPOSE_VALUE_UNSPECIFIED - APP_ENTITLEMENT_PURPOSE_VALUE_ASSIGNMENT - APP_ENTITLEMENT_PURPOSE_VALUE_PERMISSION - APP_ENTITLEMENT_PURPOSE_VALUE_OWNERSHIP type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array resourceIds: description: Search for grants within a resource. items: type: string readOnly: false type: - array - "null" resourceTypeIds: description: Search grants for given resource types. items: type: string readOnly: false type: - array - "null" userId: description: Search for grants of a user readOnly: false type: - string - "null" title: App Entitlement Search Service Search Grants Request type: object x-speakeasy-name-override: AppEntitlementSearchServiceSearchGrantsRequest c1.api.app.v1.AppEntitlementSearchServiceSearchGrantsResponse: description: The AppEntitlementSearchServiceSearchGrantsResponse message. properties: expanded: description: The expanded field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementWithUserBinding' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: App Entitlement Search Service Search Grants Response type: object x-speakeasy-name-override: AppEntitlementSearchServiceSearchGrantsResponse c1.api.app.v1.AppEntitlementSearchServiceSearchRequest: description: Search app entitlements by a variety of filters. properties: accessReviewId: description: Search for app entitlements that are being reviewed as part of this access review campaign. readOnly: false type: - string - "null" alias: description: Search for app entitlements that have this alias (exact match). readOnly: false type: - string - "null" appIds: description: Search for app entitlements contained in any of these apps. items: type: string readOnly: false type: - array - "null" appUserIds: description: Search for app entitlements that are granted to any of these app user ids. items: type: string readOnly: false type: - array - "null" complianceFrameworkIds: description: Search for app entitlements that are part of these compliance frameworks. items: type: string readOnly: false type: - array - "null" displayName: description: Filter results to entitlements with this exact display name. readOnly: false type: - string - "null" excludeAppIds: description: Exclude app entitlements from the results that are in these app IDs. items: type: string readOnly: false type: - array - "null" excludeAppUserIds: description: Exclude entitlements from results that are granted to any of these app users. items: type: string readOnly: false type: - array - "null" excludeImmutable: description: If true, exclude immutable entitlements (e.g., system-managed entitlements that cannot be modified). readOnly: false type: - boolean - "null" excludeResourceTypeIds: description: Exclude entitlements with any of these resource type IDs from results. items: type: string readOnly: false type: - array - "null" excludedEntitlementRefs: description: Exclude these specific entitlements from results. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementExpandMask' - type: "null" includeDeleted: description: Include deleted app entitlements, this includes app entitlements that have a deleted parent object (app, app resource, app resource type) readOnly: false type: - boolean - "null" isAutomated: description: If true, restrict results to entitlements that have an automation rule configured. readOnly: false type: - boolean - "null" membershipType: description: Filter results to entitlements where the user has any of these membership types (e.g., member, owner, admin). items: enum: - APP_ENTITLEMENT_MEMBERSHIP_TYPE_UNSPECIFIED - APP_ENTITLEMENT_MEMBERSHIP_TYPE_MEMBER - APP_ENTITLEMENT_MEMBERSHIP_TYPE_OWNER - APP_ENTITLEMENT_MEMBERSHIP_TYPE_EXCLUSION - APP_ENTITLEMENT_MEMBERSHIP_TYPE_ADMIN type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" onlyGetExpiring: description: If true, restrict results to entitlements that have at least one expiring grant. readOnly: false type: - boolean - "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" policyRefs: description: Search for app entitlements that use any of these policies. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyRef' readOnly: false type: - array - "null" query: description: Query the app entitlements with a fuzzy search on display name and description. readOnly: false type: - string - "null" refs: description: Filter results to only these specific entitlements. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" resourceIds: description: Search for app entitlements that belongs to these resources. items: type: string readOnly: false type: - array - "null" resourceTraitIds: description: Filter results to entitlements whose resource types have any of these trait IDs. items: type: string readOnly: false type: - array - "null" resourceTypeIds: description: Search for app entitlements that are for items with resources types that have matching names. Example names are "group", "role", and "app". items: type: string readOnly: false type: - array - "null" riskLevelIds: description: Search for app entitlements with these risk levels. items: type: string readOnly: false type: - array - "null" sourceConnectorId: description: Filter results to entitlements synced from this connector. readOnly: false type: - string - "null" title: App Entitlement Search Service Search Request type: object x-speakeasy-name-override: AppEntitlementSearchServiceSearchRequest c1.api.app.v1.AppEntitlementSearchServiceSearchResponse: description: The AppEntitlementSearchServiceSearchResponse message. properties: expanded: description: List of related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" facets: oneOf: - $ref: '#/components/schemas/c1.api.search.v1.Facets' - type: "null" list: description: List of app entitlement view objects. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: App Entitlement Search Service Search Response type: object x-speakeasy-name-override: AppEntitlementSearchServiceSearchResponse c1.api.app.v1.AppEntitlementServiceGetAutomationResponse: description: The AppEntitlementServiceGetAutomationResponse message. properties: AppEntitlementAutomation: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomation' - type: "null" title: App Entitlement Service Get Automation Response type: object x-speakeasy-name-override: AppEntitlementServiceGetAutomationResponse c1.api.app.v1.AppEntitlementServiceUpdateAutomationRequestInput: description: | The AppEntitlementServiceUpdateAutomationRequest message. This message contains a oneof named conditions. Only a single field of the following list may be set at a time: - none - entitlements - cel - basic properties: basic: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleBasic' - type: "null" cel: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleCEL' - type: "null" description: description: The description of the app entitlement. readOnly: false type: - string - "null" displayName: description: The display name of the app entitlement. readOnly: false type: - string - "null" entitlements: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleEntitlement' - type: "null" none: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomationRuleNone' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: App Entitlement Service Update Automation Request type: object x-speakeasy-name-override: AppEntitlementServiceUpdateAutomationRequest c1.api.app.v1.AppEntitlementServiceUpdateAutomationResponse: description: The AppEntitlementServiceUpdateAutomationResponse message. properties: AppEntitlementAutomation: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomation' - type: "null" title: App Entitlement Service Update Automation Response type: object x-speakeasy-name-override: AppEntitlementServiceUpdateAutomationResponse c1.api.app.v1.AppEntitlementUserBinding: description: The AppEntitlementUserBinding represents the relationship that gives an app user access to an app entitlement properties: appEntitlementId: description: The ID of the app entitlement that the app user has access to readOnly: false type: - string - "null" appId: description: The ID of the app associated with the app entitlement readOnly: false type: - string - "null" appUserId: description: The ID of the app user that has access to the app entitlement readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deprovisionAt: oneOf: - format: date-time readOnly: true type: string - type: "null" grantSources: description: The grantSources field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: App Entitlement User Binding type: object x-speakeasy-name-override: AppEntitlementUserBinding c1.api.app.v1.AppEntitlementUserBindingExpandHistoryMask: description: The AppEntitlementUserBindingExpandHistoryMask message. properties: paths: description: The paths field. items: type: string readOnly: false type: - array - "null" title: App Entitlement User Binding Expand History Mask type: object x-speakeasy-name-override: AppEntitlementUserBindingExpandHistoryMask c1.api.app.v1.AppEntitlementUserBindingFeed: description: The AppEntitlementUserBindingFeed message. properties: appEntitlementId: description: The ID of the app entitlement that the app user has access to readOnly: false type: - string - "null" appId: description: The ID of the app associated with the app entitlement readOnly: false type: - string - "null" appUserId: description: The ID of the app user that has access to the app entitlement readOnly: false type: - string - "null" date: oneOf: - format: date-time readOnly: false type: string - type: "null" eventType: description: The eventType field. enum: - GRANT_EVENT_TYPE_UNSPECIFIED - GRANT_EVENT_TYPE_ADDED - GRANT_EVENT_TYPE_REMOVED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow ticketId: description: The ticketId field. readOnly: false type: - string - "null" title: App Entitlement User Binding Feed type: object x-speakeasy-name-override: AppEntitlementUserBindingFeed c1.api.app.v1.AppEntitlementUserBindingFeedView: description: The AppEntitlementUserBindingFeedView message. properties: appPath: description: The appPath field. readOnly: false type: - string - "null" appUserPath: description: The appUserPath field. readOnly: false type: - string - "null" entitlementPath: description: The entitlementPath field. readOnly: false type: - string - "null" feed: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBindingFeed' - type: "null" ticketPath: description: The ticketPath field. readOnly: false type: - string - "null" title: App Entitlement User Binding Feed View type: object x-speakeasy-name-override: AppEntitlementUserBindingFeedView c1.api.app.v1.AppEntitlementUserBindingHistory: description: The AppEntitlementUserBindingHistory message. properties: appEntitlementId: description: The ID of the app entitlement that the app user has access to readOnly: false type: - string - "null" appId: description: The ID of the app associated with the app entitlement readOnly: false type: - string - "null" appUserId: description: The ID of the app user that has access to the app entitlement readOnly: false type: - string - "null" grantedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" revokedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: App Entitlement User Binding History type: object x-speakeasy-name-override: AppEntitlementUserBindingHistory c1.api.app.v1.AppEntitlementUserBindingHistoryView: description: The AppEntitlementUserBindingHistoryView message. properties: appPath: description: The appPath field. readOnly: false type: - string - "null" appUserPath: description: The appUserPath field. readOnly: false type: - string - "null" entitlementPath: description: The entitlementPath field. readOnly: false type: - string - "null" history: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBindingHistory' - type: "null" title: App Entitlement User Binding History View type: object x-speakeasy-name-override: AppEntitlementUserBindingHistoryView c1.api.app.v1.AppEntitlementUserView: description: The AppEntitlementUserView (aka grant view) describes the relationship between an app user and an entitlement. They have more recently been referred to as grants. properties: appEntitlementUserBindingCreatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" appEntitlementUserBindingDeprovisionAt: oneOf: - format: date-time readOnly: true type: string - type: "null" appUser: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUserView' - type: "null" grantSources: description: List of sources for the grant, ie. groups, roles, etc. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" originatingTicketId: description: The originating ticket ID for the grant (e.g. from a request ticket). readOnly: false type: string title: App Entitlement User View type: object x-speakeasy-name-override: AppEntitlementUserView c1.api.app.v1.AppEntitlementView: description: The app entitlement view contains the serialized app entitlement and paths to objects referenced by the app entitlement. properties: appEntitlement: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlement' - type: "null" appPath: description: JSONPATH expression indicating the location of the App object in the array. readOnly: false type: - string - "null" appResourcePath: description: JSONPATH expression indicating the location of the App Resource Type object in the expanded array. readOnly: false type: - string - "null" appResourceTypePath: description: JSONPATH expression indicating the location of the App Resource object in the array. readOnly: false type: - string - "null" objectPermissions: $ref: '#/components/schemas/c1.api.iam.v1.ActorObjectPermissions' title: App Entitlement View type: object x-speakeasy-name-override: AppEntitlementView c1.api.app.v1.AppEntitlementWithExpired: description: A grant with its expiry and discovery timestamps, along with the associated app user and ConductorOne user. properties: appEntitlementId: description: The ID of the app entitlement. readOnly: false type: - string - "null" appId: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" appUser: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUser' - type: "null" appUserId: description: The ID of the app user who holds the grant. readOnly: false type: - string - "null" discovered: oneOf: - format: date-time readOnly: false type: string - type: "null" expired: oneOf: - format: date-time readOnly: false type: string - type: "null" grantReasons: description: The reasons this grant was given (e.g., access request, automation). items: $ref: '#/components/schemas/c1.api.app.v1.GrantReason' readOnly: false type: - array - "null" grantSources: description: Entitlements that are the source of this grant (e.g., a group membership that implies a role). items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" user: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.User' - type: "null" title: App Entitlement With Expired type: object x-speakeasy-name-override: AppEntitlementWithExpired c1.api.app.v1.AppEntitlementWithUserBinding: description: The AppEntitlementWithUserBinding message. properties: appEntitlementUserBinding: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserView' - type: "null" entitlement: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' - type: "null" title: App Entitlement With User Binding type: object x-speakeasy-name-override: AppEntitlementWithUserBinding c1.api.app.v1.AppManagedStateBindingRef: description: The AppManagedStateBindingRef message. properties: appId: description: The appId field. readOnly: false type: - string - "null" resourceId: description: The resourceId field. readOnly: false type: - string - "null" resourceTypeId: description: The resourceTypeId field. readOnly: false type: - string - "null" title: App Managed State Binding Ref type: object x-speakeasy-name-override: AppManagedStateBindingRef c1.api.app.v1.AppPopulationReport: description: The AppPopulationReport is a generated report for a specific app that gives details about the app's users. These details include what groups, roles, and other entitlements the users have access to. properties: appId: description: The appId is the Id of the app which the report is generated for. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" downloadUrl: description: The downloadUrl is the url used for downloading the AppPopulationReport. readOnly: false type: - string - "null" hashes: additionalProperties: type: string description: The hashes field contains the file hashes of the report. readOnly: false type: - object - "null" id: description: The id field. readOnly: false type: - string - "null" state: description: The state field tracks the state of the AppPopulationReport. This state field can be one of REPORT_STATE_PENDING, REPORT_STATE_UNSPECIFIED, REPORT_STATE_OK, REPORT_STATE_ERROR. enum: - REPORT_STATE_UNSPECIFIED - REPORT_STATE_PENDING - REPORT_STATE_OK - REPORT_STATE_ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: App Population Report type: object x-speakeasy-name-override: AppPopulationReport c1.api.app.v1.AppRef: description: The AppRef message. properties: id: description: The id field. readOnly: false type: - string - "null" title: App Ref type: object x-speakeasy-name-override: AppRef c1.api.app.v1.AppReportServiceListResponse: description: The AppReportServiceListResponse message contains a list of results and a nextPageToken if applicable. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppPopulationReport' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: App Report Service List Response type: object x-speakeasy-name-override: AppReportServiceListResponse c1.api.app.v1.AppResource: description: | The app resource message is a single resource that can have entitlements. This message contains a oneof named metadata. Only a single field of the following list may be set at a time: - secretTrait properties: accessConfigId: description: |- The access config ID for this resource. May be empty. Must be one of the builtin access config IDs or empty. readOnly: false type: string appId: description: The app that this resource belongs to. readOnly: false type: - string - "null" appResourceTypeId: description: The resource type that this resource is. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" customDescription: description: A custom description that can be set for a resource. readOnly: false type: - string - "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description set for the resource. readOnly: false type: - string - "null" displayName: description: The display name for this resource. readOnly: false type: - string - "null" externalId: description: |- The upstream product's native external ID for this resource (e.g. an Okta group ID). Populated from the connector's external ID during sync. readOnly: true type: string grantCount: description: The number of grants to this resource. format: int64 readOnly: false type: - string - "null" id: description: The id of the resource. readOnly: false type: - string - "null" matchBatonId: description: The matchBatonId field. readOnly: false type: - string - "null" parentAppResourceId: description: The parent resource id, if this resource is a child of another resource. readOnly: false type: - string - "null" parentAppResourceTypeId: description: The parent resource type id, if this resource is a child of another resource. readOnly: false type: - string - "null" profile: additionalProperties: true readOnly: true type: object secretTrait: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.SecretTrait' - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: App Resource type: object x-speakeasy-entity: App Resource x-speakeasy-name-override: AppResource c1.api.app.v1.AppResourceExpandMask: description: The app resource expand mask lets you get information about related objects from the request. properties: paths: description: The app resource expanded fields. Maybe be any combination of "*", "app_id", "app_resource_type_id". items: type: string readOnly: false type: - array - "null" title: App Resource Expand Mask type: object x-speakeasy-name-override: AppResourceExpandMask c1.api.app.v1.AppResourceRef: description: A reference to a specific app resource by its composite key. properties: appId: description: The ID of the app that owns the resource. readOnly: false type: - string - "null" appResourceTypeId: description: The ID of the resource type that classifies this resource. readOnly: false type: - string - "null" id: description: The unique ID of the app resource. readOnly: false type: - string - "null" title: App Resource Ref type: object x-speakeasy-name-override: AppResourceRef c1.api.app.v1.AppResourceServiceGetResponse: description: The app resource service get response contains the app resource view and array of expanded items indicated by the request's expand mask. properties: appResourceView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: App Resource Service Get Response type: object x-speakeasy-name-override: AppResourceServiceGetResponse c1.api.app.v1.AppResourceServiceListResponse: description: The AppResourceServiceListResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppResourceView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: App Resource Service List Response type: object x-speakeasy-name-override: AppResourceServiceListResponse c1.api.app.v1.AppResourceServiceUpdateRequestInput: description: The request message for updating an app resource. properties: appResource: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResource' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceExpandMask' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: App Resource Service Update Request type: object x-speakeasy-name-override: AppResourceServiceUpdateRequest c1.api.app.v1.AppResourceServiceUpdateResponse: description: The response message for updating an app resource. properties: appResourceView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: App Resource Service Update Response type: object x-speakeasy-name-override: AppResourceServiceUpdateResponse c1.api.app.v1.AppResourceType: description: The AppResourceType is referenced by an app entitlement defining its resource types. Commonly things like Group or Role. properties: appId: description: The ID of the app that is associated with the app resource type readOnly: true type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The display name of the app resource type. readOnly: false type: - string - "null" id: description: The unique ID for the app resource type. readOnly: true type: - string - "null" traitIds: description: Associated trait ids items: type: string readOnly: false type: - array - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: App Resource Type type: object x-speakeasy-entity: App Resource Type x-speakeasy-name-override: AppResourceType c1.api.app.v1.AppResourceTypeServiceGetResponse: description: |- The AppResourceTypeServiceGetResponse contains an expanded array containing the expanded values indicated by the expand mask in the request and an app resource type view containing the resource type and JSONPATHs indicating which objects are where in the expand mask. properties: appResourceTypeView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceTypeView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: App Resource Type Service Get Response type: object x-speakeasy-name-override: AppResourceTypeServiceGetResponse c1.api.app.v1.AppResourceTypeServiceListResponse: description: The AppResourceTypeServiceListResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppResourceTypeView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: App Resource Type Service List Response type: object x-speakeasy-name-override: AppResourceTypeServiceListResponse c1.api.app.v1.AppResourceTypeView: description: The AppResourceTypeView message. properties: appPath: description: JSONPATH expression indicating the location of the App object in the array readOnly: false type: - string - "null" appResourceType: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceType' - type: "null" title: App Resource Type View type: object x-speakeasy-name-override: AppResourceTypeView c1.api.app.v1.AppResourceView: description: The app resource view returns an app resource with paths for items in the expand mask filled in when this response is returned and a request expand mask has "*" or "app_id" or "resource_type_id". properties: appPath: description: JSONPATH expression indicating the location of the App object in the array readOnly: false type: - string - "null" appResource: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResource' - type: "null" objectPermissions: $ref: '#/components/schemas/c1.api.iam.v1.ActorObjectPermissions' parentResourcePath: description: JSONPATH expression indicating the location of the Parent Resource object in the array readOnly: false type: - string - "null" parentResourceTypePath: description: JSONPATH expression indicating the location of the Parent Resource Type object in the array readOnly: false type: - string - "null" resourceTypePath: description: JSONPATH expression indicating the location of the Resource Type object in the array readOnly: false type: - string - "null" title: App Resource View type: object x-speakeasy-name-override: AppResourceView c1.api.app.v1.AppUsageControls: description: The AppUsageControls object describes some peripheral configuration for an app. properties: appId: description: The app that this object belongs to. readOnly: false type: - string - "null" notify: description: Whether or not to notify some if they have access to the app, but has not used it within a configurable amount of time. readOnly: false type: - boolean - "null" notifyAfterDays: description: The duration in days after which we notify users of nonusage. format: uint32 readOnly: false type: - integer - "null" revoke: description: Whether or not to revoke a grant if they have access to the app, but has not used it within a configurable amount of time. readOnly: false type: - boolean - "null" revokeAfterDays: description: The duration in days after which we revoke users that have not used that grant. format: uint32 readOnly: false type: - integer - "null" title: App Usage Controls type: object x-speakeasy-name-override: AppUsageControls c1.api.app.v1.AppUser: description: Application User that represents an account in the application. properties: appId: description: The ID of the application. readOnly: true type: - string - "null" appUserType: description: The appplication user type. Type can be user, system or service. enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The display name of the application user. readOnly: true type: - string - "null" email: description: The email field of the application user. readOnly: true type: - string - "null" emails: description: The emails field of the application user. items: type: string readOnly: true type: - array - "null" employeeIds: description: The employee IDs field of the application user. items: type: string readOnly: true type: - array - "null" id: description: A unique idenditfier of the application user. readOnly: true type: - string - "null" identityUserId: description: The conductor one user ID of the account owner. readOnly: true type: - string - "null" isExternal: description: The isExternal field. readOnly: true type: - boolean - "null" profile: oneOf: - additionalProperties: true readOnly: true type: object - type: "null" status: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUserStatus' - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" username: description: The username field of the application user. readOnly: true type: - string - "null" usernames: description: The usernames field of the application user. items: type: string readOnly: true type: - array - "null" title: App User type: object x-speakeasy-name-override: AppUser c1.api.app.v1.AppUserCredential: description: | A credentials for the Application User that represents an account in the application. This message contains a oneof named credential. Only a single field of the following list may be set at a time: - encryptedData properties: appId: description: The ID of the application. readOnly: true type: - string - "null" appUserId: description: A unique identifier of the application user. readOnly: true type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" encryptedData: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.EncryptedData' - type: "null" expiresAt: oneOf: - format: date-time readOnly: false type: string - type: "null" id: description: A unique identifier of the credential. readOnly: true type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: App User Credential type: object x-speakeasy-name-override: AppUserCredential c1.api.app.v1.AppUserExpandMask: description: The AppUserExpandMask message contains a list of paths to expand in the response. properties: paths: description: The paths to expand in the response. May be any combination of "*", "identity_user_id", "app_id", and "last_usage". items: type: string readOnly: false type: - array - "null" title: App User Expand Mask type: object x-speakeasy-name-override: AppUserExpandMask c1.api.app.v1.AppUserMapper: description: AppUserMapper configures custom account mapping for uplift. properties: mappingCases: description: Ordered list of match cases. Each case defines a pair of CEL key extractors. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserMapperMatchCase' nullable: true readOnly: false type: array title: App User Mapper type: object x-speakeasy-name-override: AppUserMapper c1.api.app.v1.AppUserMapperMatchCase: description: AppUserMapperMatchCase defines a single matching rule for uplift account mapping. properties: appUserKeyCel: description: CEL expression evaluated against an AppUser to produce match key(s). readOnly: false type: string userKeyCel: description: CEL expression evaluated against a User to produce match key(s). readOnly: false type: string title: App User Mapper Match Case type: object x-speakeasy-name-override: AppUserMapperMatchCase c1.api.app.v1.AppUserRef: description: The AppUserRef message. properties: appId: description: The ID of the application. readOnly: false type: - string - "null" id: description: The ID of the app user. readOnly: false type: - string - "null" title: App User Ref type: object x-speakeasy-name-override: AppUserRef c1.api.app.v1.AppUserServiceListCredentialsResponse: description: The response message for listing credentials of an app user. properties: list: description: The list of credential results. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserCredential' readOnly: false type: - array - "null" nextPageToken: description: The token for fetching the next page of results. readOnly: false type: - string - "null" title: App User Service List Credentials Response type: object x-speakeasy-name-override: AppUserServiceListCredentialsResponse c1.api.app.v1.AppUserServiceListResponse: description: The response message for listing app users. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of app user results. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserView' readOnly: false type: - array - "null" nextPageToken: description: The token for fetching the next page of results. readOnly: false type: - string - "null" title: App User Service List Response type: object x-speakeasy-name-override: AppUserServiceListResponse c1.api.app.v1.AppUserServiceSearchRequest: description: Search App users based on filters specified in the request body properties: appId: description: The app ID to restrict the search to. readOnly: false type: - string - "null" appUserDomains: description: A list of account domains to restrict the search to. items: enum: - APP_USER_DOMAIN_UNSPECIFIED - APP_USER_DOMAIN_EXTERNAL - APP_USER_DOMAIN_TRUSTED type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" appUserIds: description: A list of app user IDs to restrict the search to. items: type: string readOnly: false type: - array - "null" appUserStatusDetails: description: A list of app user status details to restrict the search to. items: type: string readOnly: false type: - array - "null" appUserStatuses: description: A list of app user statuses to restrict the search to. items: enum: - STATUS_UNSPECIFIED - STATUS_ENABLED - STATUS_DISABLED - STATUS_DELETED type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" appUserTypes: description: A list of app user types to restrict the search to. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" excludeAppUserIds: description: A list of app user IDs to remove from the results. items: type: string readOnly: false type: - array - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUserExpandMask' - type: "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: Query the apps with a fuzzy search on display name and description. readOnly: false type: - string - "null" refs: description: A list of app users to limit the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserRef' readOnly: false type: - array - "null" userIds: description: A list of user IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" title: App User Service Search Request type: object x-speakeasy-name-override: AppUserServiceSearchRequest c1.api.app.v1.AppUserServiceSearchResponse: description: The AppUserServiceSearchResponse message. properties: expanded: description: List of related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retrieved. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: App User Service Search Response type: object x-speakeasy-name-override: AppUserServiceSearchResponse c1.api.app.v1.AppUserServiceUpdateRequestInput: description: The AppUserServiceUpdateRequest message contains the app user and the fields to be updated. properties: appUser: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUser' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUserExpandMask' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: App User Service Update Request type: object x-speakeasy-name-override: AppUserServiceUpdateRequest c1.api.app.v1.AppUserServiceUpdateResponse: description: The AppUserServiceUpdateResponse message. properties: appUserView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUserView' - type: "null" expanded: description: The expanded field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: App User Service Update Response type: object x-speakeasy-name-override: AppUserServiceUpdateResponse c1.api.app.v1.AppUserStatus: description: The satus of the applicaiton user. properties: details: description: The details of applicaiton user status. readOnly: true type: - string - "null" status: description: The application user status field. enum: - STATUS_UNSPECIFIED - STATUS_ENABLED - STATUS_DISABLED - STATUS_DELETED readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow title: App User Status type: object x-speakeasy-name-override: AppUserStatus c1.api.app.v1.AppUserView: description: The AppUserView contains an app user as well as paths for apps, identity users, and last usage in expanded arrays. properties: appPath: description: JSONPATH expression indicating where the app is expanded in expanded arrays indicated in the request. readOnly: false type: - string - "null" appUser: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUser' - type: "null" identityUserPath: description: JSONPATH expression indicating where the identity user is expanded in expanded arrays indicated in the request. readOnly: false type: - string - "null" lastUsagePath: description: JSONPATH expression indicating where the last usage information is expanded in expanded arrays indicated in the request. readOnly: false type: - string - "null" title: App User View type: object x-speakeasy-name-override: AppUserView c1.api.app.v1.AppUsersForUserServiceListResponse: description: The response message for listing app users correlated to a specific C1 user. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of app user results. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserView' readOnly: false type: - array - "null" nextPageToken: description: The token for fetching the next page of results. readOnly: false type: - string - "null" title: App Users For User Service List Response type: object x-speakeasy-name-override: AppUsersForUserServiceListResponse c1.api.app.v1.CancelAccessRequestDefaultsRequestInput: description: The CancelAccessRequestDefaultsRequest message. title: Cancel Access Request Defaults Request type: object x-speakeasy-name-override: CancelAccessRequestDefaultsRequest c1.api.app.v1.ConfirmSyncValidRequestInput: description: The ConfirmSyncValidRequest message contains the fields required to confirm a sync as valid. title: Confirm Sync Valid Request type: object x-speakeasy-name-override: ConfirmSyncValidRequest c1.api.app.v1.ConfirmSyncValidResponse: description: Empty response body. Status code indicates success. title: Confirm Sync Valid Response type: object x-speakeasy-name-override: ConfirmSyncValidResponse c1.api.app.v1.Connector: description: A Connector is used to sync objects into Apps properties: appId: description: The id of the app the connector is associated with. readOnly: false type: - string - "null" canResumeSync: description: The canResumeSync field. readOnly: false type: - boolean - "null" catalogId: description: The catalogId describes which catalog entry this connector is an instance of. For example, every Okta connector will have the same catalogId indicating it is an Okta connector. readOnly: false type: - string - "null" config: oneOf: - additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object - type: "null" configUpdatedAt: format: date-time readOnly: true type: string connectorApiVersion: description: The connectorApiVersion field. format: uint32 readOnly: true type: integer connectorSyncCronSchedule: $ref: '#/components/schemas/c1.api.app.v1.ConnectorSyncCronSchedule' createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description of the connector. readOnly: false type: - string - "null" disableCheckBadSync: description: The disableCheckBadSync field. readOnly: false type: - boolean - "null" displayName: description: The display name of the connector. readOnly: false type: - string - "null" downloadUrl: description: The downloadUrl for a spreadsheet if the connector was created from uploading a file. readOnly: true type: - string - "null" id: description: The id of the connector. readOnly: false type: - string - "null" oauthAuthorizedAs: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.OAuth2AuthorizedAs' - type: "null" parallelSyncWorkerCount: description: 'Number of sync workers to use for parallel sync, when the PARALLEL_SYNC feature is enabled. Zero disables parallel sync. Optional on write: omit the field in UpdateAdvancedConfig to leave the stored value unchanged. The public API allows setting up to 4.' format: int32 nullable: true readOnly: false type: integer profileAllowList: description: List of profile attributes to sync, when set only these attributes will be synced items: type: string readOnly: false type: - array - "null" profileIgnoreList: description: List of profile attributes to ignore (not sync), when set other attributes will be synced, but these will not. items: type: string readOnly: false type: - array - "null" status: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorStatus' - type: "null" syncConfig: $ref: '#/components/schemas/c1.api.app.v1.SyncConfig' syncDisabledAt: oneOf: - format: date-time readOnly: true type: string - type: "null" syncDisabledCategory: description: The category of the connector sync that was disabled. readOnly: false type: - string - "null" syncDisabledReason: description: The reason the connector sync was disabled. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userIds: description: The userIds field is used to define the integration owners of the connector. items: type: string readOnly: false type: - array - "null" title: Connector type: object x-speakeasy-name-override: Connector c1.api.app.v1.ConnectorCredential: description: ConnectorCredential is used by a connector to authenticate with conductor one. properties: appId: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" clientId: description: The client id of the ConnectorCredential. readOnly: false type: - string - "null" clientSecret: description: The client secret of the ConnectorCredential. It's only returned on creation. readOnly: false type: - string - "null" connectorId: description: The connectorId of the connector the credential is associated with. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The display name of the ConnectorCredential. readOnly: false type: - string - "null" expiresTime: oneOf: - format: date-time readOnly: true type: string - type: "null" id: description: The id of the ConnectorCredential. readOnly: false type: - string - "null" lastUsedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Connector Credential type: object x-speakeasy-entity: ConnectorCredential x-speakeasy-name-override: ConnectorCredential c1.api.app.v1.ConnectorExpandMask: description: The ConnectorExpandMask is used to expand related objects on a connector. properties: paths: description: Paths that you want expanded in the response. Possible values are "app_id" and "*". items: type: string readOnly: false type: - array - "null" title: Connector Expand Mask type: object x-speakeasy-name-override: ConnectorExpandMask c1.api.app.v1.ConnectorRef: description: The ConnectorRef message. properties: appId: description: The appId field. readOnly: false type: - string - "null" id: description: The id field. readOnly: false type: - string - "null" title: Connector Ref type: object x-speakeasy-name-override: ConnectorRef c1.api.app.v1.ConnectorScheduleCron: description: A cron-based schedule definition for connector syncs. nullable: true properties: cronSpec: description: The cron expression defining the sync schedule. readOnly: false type: string timezone: description: The IANA timezone name for the cron schedule (e.g., "America/Los_Angeles"). readOnly: false type: string title: Connector Schedule Cron type: object x-speakeasy-name-override: ConnectorScheduleCron c1.api.app.v1.ConnectorServiceCreateDelegatedRequestInput: description: The ConnectorServiceCreateDelegatedRequest message contains the fields required to create a connector. properties: appEntitlementOwnerRefs: description: Sets entitlement owners on the app. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array appManagedStateBindingRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppManagedStateBindingRef' - type: "null" catalogId: description: The catalogId describes which catalog entry this connector is an instance of. For example, every Okta connector will have the same catalogId indicating it is an Okta connector. readOnly: false type: - string - "null" description: description: The description of the connector. readOnly: false type: - string - "null" displayName: description: The displayName of the connector. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorExpandMask' - type: "null" userIds: description: The userIds field is used to define the integration owners of the connector. items: type: string readOnly: false type: - array - "null" title: Connector Service Create Delegated Request type: object x-speakeasy-name-override: ConnectorServiceCreateDelegatedRequest c1.api.app.v1.ConnectorServiceCreateRequestInput: description: The ConnectorServiceCreateRequest message. properties: catalogId: description: The catalogId field. readOnly: false type: - string - "null" config: oneOf: - additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object - type: "null" description: description: The description field. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorExpandMask' - type: "null" userIds: description: The userIds field. items: type: string readOnly: false type: - array - "null" title: Connector Service Create Request type: object x-speakeasy-name-override: ConnectorServiceCreateRequest c1.api.app.v1.ConnectorServiceCreateResponse: description: The ConnectorServiceCreateResponse is the response returned from creating a connector. properties: connectorView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorView' - type: "null" expanded: description: The array of expanded items indicated by the request. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Connector Service Create Response type: object x-speakeasy-name-override: ConnectorServiceCreateResponse c1.api.app.v1.ConnectorServiceDeleteRequestInput: description: ConnectorServiceDeleteRequest is a request for deleting a connector. It uses URL values for input. title: Connector Service Delete Request type: object x-speakeasy-name-override: ConnectorServiceDeleteRequest c1.api.app.v1.ConnectorServiceDeleteResponse: description: Empty response body. Status code indicates success. title: Connector Service Delete Response type: object x-speakeasy-name-override: ConnectorServiceDeleteResponse c1.api.app.v1.ConnectorServiceGetCredentialsResponse: description: ConnectorServiceGetCredentialsResponse is the response returned by the get method. properties: credential: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorCredential' - type: "null" title: Connector Service Get Credentials Response type: object x-speakeasy-name-override: ConnectorServiceGetCredentialsResponse c1.api.app.v1.ConnectorServiceGetResponse: description: The ConnectorServiceGetResponse message contains the connectorView, and an expand mask. properties: connectorView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorView' - type: "null" expanded: description: The array of expanded items indicated by the request. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Connector Service Get Response type: object x-speakeasy-name-override: ConnectorServiceGetResponse c1.api.app.v1.ConnectorServiceListResponse: description: The ConnectorServiceListResponse message contains a list of results and a nextPageToken if applicable properties: expanded: description: List of serialized related objects items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request items: $ref: '#/components/schemas/c1.api.app.v1.ConnectorView' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Connector Service List Response type: object x-speakeasy-name-override: ConnectorServiceListResponse c1.api.app.v1.ConnectorServiceRevokeCredentialRequestInput: description: ConnectorServiceRevokeCredentialRequest is a request for revoking connector credentials. It uses URL values for input. title: Connector Service Revoke Credential Request type: object x-speakeasy-entity: ConnectorCredential x-speakeasy-name-override: ConnectorServiceRevokeCredentialRequest c1.api.app.v1.ConnectorServiceRevokeCredentialResponse: description: Empty response body. Status code indicates success. title: Connector Service Revoke Credential Response type: object x-speakeasy-entity: ConnectorCredential x-speakeasy-name-override: ConnectorServiceRevokeCredentialResponse c1.api.app.v1.ConnectorServiceRotateCredentialRequest: description: ConnectorServiceRotateCredentialRequest is a request for rotating connector credentials. It uses URL values for input. properties: appId: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" connectorId: description: The connectorId of the connector that we are rotating the credentials for. readOnly: false type: - string - "null" title: Connector Service Rotate Credential Request type: object x-speakeasy-entity: ConnectorCredential x-speakeasy-name-override: ConnectorServiceRotateCredentialRequest c1.api.app.v1.ConnectorServiceRotateCredentialResponse: description: ConnectorServiceRotateCredentialResponse is the response returned by the rotate method. properties: credential: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorCredential' - type: "null" title: Connector Service Rotate Credential Response type: object x-speakeasy-name-override: ConnectorServiceRotateCredentialResponse c1.api.app.v1.ConnectorServiceUpdateDelegatedRequestInput: description: The ConnectorServiceUpdateDelegatedRequest message contains the fields required to update a connector. properties: connector: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.Connector' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorExpandMask' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Connector Service Update Delegated Request type: object x-speakeasy-name-override: ConnectorServiceUpdateDelegatedRequest c1.api.app.v1.ConnectorServiceUpdateRequestInput: description: The ConnectorServiceUpdateRequest message contains the fields required to update a connector. properties: connector: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.Connector' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorExpandMask' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Connector Service Update Request type: object x-speakeasy-name-override: ConnectorServiceUpdateRequest c1.api.app.v1.ConnectorServiceUpdateResponse: description: ConnectorServiceUpdateResponse is the response returned by the update method. properties: connectorView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorView' - type: "null" expanded: description: The array of expanded items indicated by the request. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Connector Service Update Response type: object x-speakeasy-name-override: ConnectorServiceUpdateResponse c1.api.app.v1.ConnectorStatus: description: The status field on the connector is used to track the status of the connectors sync, and when syncing last started, completed, or caused the connector to update. properties: completedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" lastError: description: The last error encountered by the connector. readOnly: false type: - string - "null" startedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" status: description: The status of the connector sync. enum: - SYNC_STATUS_UNSPECIFIED - SYNC_STATUS_RUNNING - SYNC_STATUS_DONE - SYNC_STATUS_ERROR - SYNC_STATUS_DISABLED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Connector Status type: object x-speakeasy-name-override: ConnectorStatus c1.api.app.v1.ConnectorSyncCronSchedule: description: The ConnectorSyncCronSchedule message. properties: cronSpec: description: The cronSpec field. readOnly: false type: string start: format: date-time readOnly: false type: string timezone: description: The timezone field. readOnly: false type: string title: Connector Sync Cron Schedule type: object x-speakeasy-name-override: ConnectorSyncCronSchedule c1.api.app.v1.ConnectorView: description: The ConnectorView object provides a connector response object, as well as JSONPATHs to related objects provided by expanders. properties: appPath: description: JSONPATH expression indicating the location of the App object in the expanded array. readOnly: false type: - string - "null" capabilitiesPath: description: JSONPATH expression indicating the location of the ConnectorCapabilities object in the expanded array. readOnly: false type: - string - "null" connector: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.Connector' - type: "null" usersPath: description: JSONPATH expression indicating the location of the User object in the expanded array. This is the user that is a direct target of the ticket without a specific relationship to a potentially non-existent app user. readOnly: false type: - string - "null" title: Connector View type: object x-speakeasy-name-override: ConnectorView c1.api.app.v1.CreateAppEntitlementProxyRequestInput: description: The request message for creating an entitlement proxy binding. properties: expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementProxyExpandMask' - type: "null" title: Create App Entitlement Proxy Request type: object x-speakeasy-name-override: CreateAppEntitlementProxyRequest c1.api.app.v1.CreateAppEntitlementProxyResponse: description: The response message for creating an entitlement proxy binding. properties: appProxyEntitlementView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementProxyView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Create App Entitlement Proxy Response type: object x-speakeasy-name-override: CreateAppEntitlementProxyResponse c1.api.app.v1.CreateAppEntitlementRequestInput: description: | The CreateAppEntitlementRequest message. This message contains a oneof named max_grant_duration. Only a single field of the following list may be set at a time: - durationUnset - durationGrant properties: alias: description: A unique alias for the entitlement, used for programmatic lookups and Cone. readOnly: false type: - string - "null" appEntitlementOwnerIds: description: The IDs of users to set as owners of this entitlement. items: type: string readOnly: false type: - array - "null" appResourceId: description: The ID of the resource that this entitlement belongs to. readOnly: false type: - string - "null" appResourceTypeId: description: The ID of the resource type that this entitlement belongs to. readOnly: false type: - string - "null" certifyPolicyId: description: The ID of the policy to use for certification tasks. readOnly: false type: - string - "null" complianceFrameworkValueIds: description: The IDs of compliance frameworks to associate with this entitlement (e.g., SOX, HIPAA). items: type: string readOnly: false type: - array - "null" description: description: The description of the new entitlement. readOnly: false type: - string - "null" displayName: description: The display name of the new entitlement. readOnly: false type: string durationGrant: oneOf: - format: duration readOnly: false type: string - type: "null" durationUnset: oneOf: - readOnly: false type: - object - "null" - type: "null" emergencyGrantEnabled: description: Whether emergency grant requests are enabled for this entitlement. readOnly: false type: - boolean - "null" emergencyGrantPolicyId: description: The ID of the policy to use for emergency grant tasks. Required if emergency_grant_enabled is true. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementExpandMask' - type: "null" grantPolicyId: description: The ID of the policy to use for grant request tasks. readOnly: false type: - string - "null" matchBatonId: description: If supplied, it's implied that the entitlement is created before sync and needs to be merged with connector entitlement. readOnly: false type: - string - "null" overrideAccessRequestsDefaults: description: Whether to override the app-level access request defaults for this entitlement. readOnly: false type: - boolean - "null" provisionPolicy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ProvisionPolicy' - type: "null" purpose: description: The purpose of the entitlement (e.g., assignment, permission, ownership). enum: - APP_ENTITLEMENT_PURPOSE_VALUE_UNSPECIFIED - APP_ENTITLEMENT_PURPOSE_VALUE_ASSIGNMENT - APP_ENTITLEMENT_PURPOSE_VALUE_PERMISSION - APP_ENTITLEMENT_PURPOSE_VALUE_OWNERSHIP readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow revokePolicyId: description: The ID of the policy to use for revoke request tasks. readOnly: false type: - string - "null" riskLevelValueId: description: The ID of the risk level to assign to this entitlement. readOnly: false type: - string - "null" slug: description: A short label describing the permission the entitlement grants (e.g., "Admin", "Read"). readOnly: false type: - string - "null" required: - displayName title: Create App Entitlement Request type: object x-speakeasy-name-override: CreateAppEntitlementRequest c1.api.app.v1.CreateAppEntitlementResponse: description: The CreateAppEntitlementResponse message. properties: appEntitlementView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' - type: "null" expanded: description: The expanded field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Create App Entitlement Response type: object x-speakeasy-name-override: CreateAppEntitlementResponse c1.api.app.v1.CreateAppRequest: description: The CreateAppRequest message is used to create a new app. properties: appEntitlementOwnerRefs: description: Sets entitlement owners on the app. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array certifyPolicyId: description: Creates the app with this certify policy. readOnly: false type: - string - "null" description: description: Creates the app with this description. readOnly: false type: - string - "null" displayName: description: Creates the app with this display name. readOnly: false type: string grantPolicyId: description: Creates the app with this grant policy. readOnly: false type: - string - "null" identityMatching: description: Define the app user identity matching strategy for this app. enum: - APP_USER_IDENTITY_MATCHING_UNSPECIFIED - APP_USER_IDENTITY_MATCHING_STRICT - APP_USER_IDENTITY_MATCHING_DISPLAY_NAME - APP_USER_IDENTITY_MATCHING_CUSTOM readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow instructions: description: Instructions shown to users in the access request form when requesting access for this app. readOnly: false type: string monthlyCostUsd: description: Creates the app with this monthly cost per seat. format: int32 readOnly: false type: - integer - "null" owners: description: Creates the app with this array of user owners. items: type: string readOnly: false type: - array - "null" revokePolicyId: description: Creates the app with this revoke policy. readOnly: false type: - string - "null" strictAccessEntitlementProvisioning: description: This flag enforces a provisioning mode where the access entitlement is always included in the provisioning flow, if the app user doesn't exist readOnly: false type: - boolean - "null" required: - displayName title: Create App Request type: object x-speakeasy-entity: App x-speakeasy-name-override: CreateAppRequest c1.api.app.v1.CreateAppResponse: description: Returns the new app's values. properties: app: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.App' - type: "null" title: Create App Response type: object x-speakeasy-name-override: CreateAppResponse c1.api.app.v1.CreateAutomationRequestInput: description: The CreateAutomationRequest message. properties: automation: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomation' - type: "null" title: Create Automation Request type: object x-speakeasy-name-override: CreateAutomationRequest c1.api.app.v1.CreateAutomationResponse: description: The CreateAutomationResponse message. properties: automation: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementAutomation' - type: "null" title: Create Automation Response type: object x-speakeasy-name-override: CreateAutomationResponse c1.api.app.v1.CreateManuallyManagedAppResourceRequestInput: description: The request message for creating a manually managed app resource. properties: description: description: An optional description for the new resource. readOnly: false type: - string - "null" displayName: description: The display name for the new resource. readOnly: false type: string matchBatonId: description: If supplied, it's implied that the resource is created before sync and needs to be merged with connector resource. readOnly: false type: - string - "null" resourceOwnerUserIds: description: C1 user IDs to assign as owners of this resource. items: type: string readOnly: false type: - array - "null" required: - displayName title: Create Manually Managed App Resource Request type: object x-speakeasy-name-override: CreateManuallyManagedAppResourceRequest c1.api.app.v1.CreateManuallyManagedAppResourceResponse: description: The response message for creating a manually managed app resource. properties: appResource: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResource' - type: "null" title: Create Manually Managed App Resource Response type: object x-speakeasy-name-override: CreateManuallyManagedAppResourceResponse c1.api.app.v1.CreateManuallyManagedResourceTypeRequestInput: description: The request message for creating a manually managed resource type. properties: displayName: description: The display name for the new resource type. readOnly: false type: string resourceType: description: The category of the resource type (e.g., ROLE, GROUP, LICENSE). enum: - ROLE - GROUP - LICENSE - PROJECT - CATALOG - CUSTOM - VAULT - PROFILE_TYPE readOnly: false type: string x-speakeasy-unknown-values: allow required: - resourceType - displayName title: Create Manually Managed Resource Type Request type: object x-speakeasy-name-override: CreateManuallyManagedResourceTypeRequest c1.api.app.v1.CreateManuallyManagedResourceTypeResponse: description: The response message for creating a manually managed resource type. properties: appResourceType: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceType' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Create Manually Managed Resource Type Response type: object x-speakeasy-name-override: CreateManuallyManagedResourceTypeResponse c1.api.app.v1.DeleteAppEntitlementOwnersRequestInput: description: The request message for deleting app entitlement owners. title: Delete App Entitlement Owners Request type: object x-speakeasy-name-override: DeleteAppEntitlementOwnersRequest c1.api.app.v1.DeleteAppEntitlementOwnersResponse: description: the empty response message for deleting app entitlement owners. title: Delete App Entitlement Owners Response type: object x-speakeasy-name-override: DeleteAppEntitlementOwnersResponse c1.api.app.v1.DeleteAppEntitlementProxyRequestInput: description: The request message for deleting an entitlement proxy binding. title: Delete App Entitlement Proxy Request type: object x-speakeasy-name-override: DeleteAppEntitlementProxyRequest c1.api.app.v1.DeleteAppEntitlementProxyResponse: description: The empty response message for deleting an entitlement proxy binding. title: Delete App Entitlement Proxy Response type: object x-speakeasy-name-override: DeleteAppEntitlementProxyResponse c1.api.app.v1.DeleteAppEntitlementRequestInput: description: The DeleteAppEntitlementRequest message. title: Delete App Entitlement Request type: object x-speakeasy-name-override: DeleteAppEntitlementRequest c1.api.app.v1.DeleteAppEntitlementResponse: description: The DeleteAppEntitlementResponse message. title: Delete App Entitlement Response type: object x-speakeasy-name-override: DeleteAppEntitlementResponse c1.api.app.v1.DeleteAppOwnersRequestInput: description: The request message for deleting app owners. properties: userIds: description: The user_ids field for the users to set as an owner of the app. items: type: string readOnly: false type: - array - "null" title: Delete App Owners Request type: object x-speakeasy-name-override: DeleteAppOwnersRequest c1.api.app.v1.DeleteAppOwnersResponse: description: the empty response message for deleting app owners. title: Delete App Owners Response type: object x-speakeasy-name-override: DeleteAppOwnersResponse c1.api.app.v1.DeleteAppRequestInput: description: Empty request body title: Delete App Request type: object x-speakeasy-entity: App x-speakeasy-name-override: DeleteAppRequest c1.api.app.v1.DeleteAppResourceOwnersRequestInput: description: The request message for deleting app resource owners. title: Delete App Resource Owners Request type: object x-speakeasy-name-override: DeleteAppResourceOwnersRequest c1.api.app.v1.DeleteAppResourceOwnersResponse: description: the empty response message for deleting app resource owners. title: Delete App Resource Owners Response type: object x-speakeasy-name-override: DeleteAppResourceOwnersResponse c1.api.app.v1.DeleteAppResponse: description: Empty response body. Status code indicates success. title: Delete App Response type: object x-speakeasy-name-override: DeleteAppResponse c1.api.app.v1.DeleteAutomationRequestInput: description: The DeleteAutomationRequest message. title: Delete Automation Request type: object x-speakeasy-name-override: DeleteAutomationRequest c1.api.app.v1.DeleteAutomationResponse: description: The DeleteAutomationResponse message. title: Delete Automation Response type: object x-speakeasy-name-override: DeleteAutomationResponse c1.api.app.v1.DeleteManuallyManagedAppResourceRequestInput: description: The request message for deleting a manually managed app resource. title: Delete Manually Managed App Resource Request type: object x-speakeasy-name-override: DeleteManuallyManagedAppResourceRequest c1.api.app.v1.DeleteManuallyManagedAppResourceResponse: description: The empty response message for deleting a manually managed app resource. title: Delete Manually Managed App Resource Response type: object x-speakeasy-name-override: DeleteManuallyManagedAppResourceResponse c1.api.app.v1.DeleteManuallyManagedResourceTypeRequestInput: description: The request message for deleting a manually managed resource type. title: Delete Manually Managed Resource Type Request type: object x-speakeasy-name-override: DeleteManuallyManagedResourceTypeRequest c1.api.app.v1.DeleteManuallyManagedResourceTypeResponse: description: The empty response message for deleting a manually managed resource type. title: Delete Manually Managed Resource Type Response type: object x-speakeasy-name-override: DeleteManuallyManagedResourceTypeResponse c1.api.app.v1.EditorValidateRequest: description: The EditorValidateRequest message contains the configuration text to validate. properties: text: description: The configuration text to validate. readOnly: false type: - string - "null" title: Editor Validate Request type: object x-speakeasy-name-override: EditorValidateRequest c1.api.app.v1.EditorValidateResponse: description: The EditorValidateResponse message contains validation results. properties: markers: description: The list of diagnostic markers found during validation. items: $ref: '#/components/schemas/c1.api.editor.v1.EditorMarker' readOnly: true type: - array - "null" title: Editor Validate Response type: object x-speakeasy-name-override: EditorValidateResponse c1.api.app.v1.EncryptedData: description: EncryptedData is a message that contains encrypted bytes and metadata. properties: description: description: The human-readable description of the encrypted data. readOnly: true type: - string - "null" encryptedBytes: description: The encrypted bytes. format: base64 readOnly: true type: - string - "null" keyId: description: The key ID used to encrypt the data. readOnly: true type: - string - "null" name: description: The human-readable name of the encrypted data. readOnly: true type: - string - "null" provider: description: The encryption provider used to encrypt the data. readOnly: true type: - string - "null" schema: description: The (optional) JSON schema of the encrypted data. readOnly: true type: - string - "null" title: Encrypted Data type: object x-speakeasy-name-override: EncryptedData c1.api.app.v1.ForceSyncRequestInput: description: Signal the connector to start syncing. This puts the sync on the queue. It does not guarantee immediate sync. Long syncs still take minutes to hours. title: Force Sync Request type: object x-speakeasy-name-override: ForceSyncRequest c1.api.app.v1.ForceSyncResponse: description: Empty response body. Status code indicates success. title: Force Sync Response type: object x-speakeasy-name-override: ForceSyncResponse c1.api.app.v1.GetAppEntitlementProxyResponse: description: The response message for getting a specific entitlement proxy binding. properties: appProxyEntitlementView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementProxyView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Get App Entitlement Proxy Response type: object x-speakeasy-name-override: GetAppEntitlementProxyResponse c1.api.app.v1.GetAppEntitlementResponse: description: The get app entitlement response returns an entitlement view containing paths in the expanded array for the objects expanded as indicated by the expand mask in the request. properties: appEntitlementView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Get App Entitlement Response type: object x-speakeasy-name-override: GetAppEntitlementResponse c1.api.app.v1.GetAppResponse: description: The GetAppResponse message contains the details of the requested app in the app field. properties: app: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.App' - type: "null" title: Get App Response type: object x-speakeasy-name-override: GetAppResponse c1.api.app.v1.GetAppUsageControlsResponse: description: The GetAppUsageControlsResponse message contains the retrieved AppUsageControls object. properties: appUsageControls: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUsageControls' - type: "null" hasUsageData: description: HasUsageData is false if the access entitlement for this app has no usage data. readOnly: false type: - boolean - "null" title: Get App Usage Controls Response type: object x-speakeasy-name-override: GetAppUsageControlsResponse c1.api.app.v1.GetConnectorSyncDownloadURLResponse: description: The GetConnectorSyncDownloadURLResponse message. properties: downloadUrl: description: Short-lived download URL for the connector sync artifact readOnly: false type: string title: Get Connector Sync Download Url Response type: object x-speakeasy-name-override: GetConnectorSyncDownloadURLResponse c1.api.app.v1.GrantReason: description: The GrantReason message. properties: appEntitlementId: description: The ID of the app entitlement that is associated with the grant reason. readOnly: false type: - string - "null" appId: description: The ID of the app that is associated with the grant reason. readOnly: false type: - string - "null" appUserId: description: The ID of the app user that is associated with the grant reason. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" derivedIdData: description: This is the other part of the derived ID which include the details like ticket_id, group_id, etc. This provides the uniqueness. readOnly: false type: - string - "null" derivedIdType: description: This is one part of the derived ID, indicating the type, like "ticket" or "group" readOnly: false type: - string - "null" reasonExpiresAt: oneOf: - format: date-time readOnly: false type: string - type: "null" referenceStrength: description: |- GrantReasonReferenceStrength is used to indicate the strength of the reference to the reason. This is used to determine if a grant should be removed when all strong reasons are removed. enum: - GRANT_REASON_REFERENCE_STRENGTH_UNSPECIFIED - GRANT_REASON_REFERENCE_STRENGTH_WEAK - GRANT_REASON_REFERENCE_STRENGTH_STRONG readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Grant Reason type: object x-speakeasy-name-override: GrantReason c1.api.app.v1.ListAppEntitlementOwnerIDsResponse: description: The response message for listing app entitlement owners IDs. properties: userIds: description: The list of owner IDs for the app entitlement. items: type: string readOnly: false type: - array - "null" title: List App Entitlement Owner I Ds Response type: object x-speakeasy-name-override: ListAppEntitlementOwnerIDsResponse c1.api.app.v1.ListAppEntitlementOwnersResponse: description: The response message for listing app entitlement owners. properties: list: description: The list of owners for the app entitlement. items: $ref: '#/components/schemas/c1.api.user.v1.User' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List App Entitlement Owners Response type: object x-speakeasy-name-override: ListAppEntitlementOwnersResponse c1.api.app.v1.ListAppEntitlementUsersResponse: description: The ListAppEntitlementUsersResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of related objects items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserView' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List App Entitlement Users Response type: object x-speakeasy-name-override: ListAppEntitlementUsersResponse c1.api.app.v1.ListAppEntitlementsResponse: description: The ListAppEntitlementsResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of related objects items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List App Entitlements Response type: object x-speakeasy-name-override: ListAppEntitlementsResponse c1.api.app.v1.ListAppOwnerIDsResponse: description: The response message for listing app owners IDs. properties: userIds: description: The list of owner IDs for the app. items: type: string readOnly: false type: - array - "null" title: List App Owner I Ds Response type: object x-speakeasy-name-override: ListAppOwnerIDsResponse c1.api.app.v1.ListAppOwnersResponse: description: The ListAppOwnersResponse message. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request items: $ref: '#/components/schemas/c1.api.user.v1.User' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List App Owners Response type: object x-speakeasy-name-override: ListAppOwnersResponse c1.api.app.v1.ListAppResourceOwnerIDsResponse: description: The response message for listing app resource owners IDs. properties: userIds: description: The list of owner IDs for the app resource. items: type: string readOnly: false type: - array - "null" title: List App Resource Owner I Ds Response type: object x-speakeasy-name-override: ListAppResourceOwnerIDsResponse c1.api.app.v1.ListAppResourceOwnersResponse: description: The ListAppResourceOwnersResponse message contains a list of results and a nextPageToken if applicable properties: immutableUserIds: description: |- User IDs of owners that are immutable and cannot be removed by the user. These owners are managed by the system (e.g., connector-sourced) and will be updated automatically. items: type: string nullable: true readOnly: false type: array list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.user.v1.User' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List App Resource Owners Response type: object x-speakeasy-name-override: ListAppResourceOwnersResponse c1.api.app.v1.ListAppUsersForIdentityWithGrantResponse: description: The ListAppUsersForIdentityWithGrantResponse message. properties: bindings: description: |- The list of app users that may also have grant information. Without a grant, only the tenant, app, and app user ID will be set. With a grant, the whole struct is populated items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBinding' readOnly: false type: - array - "null" title: List App Users For Identity With Grant Response type: object x-speakeasy-name-override: ListAppUsersForIdentityWithGrantResponse c1.api.app.v1.ListAppsResponse: description: The ListAppsResponse message contains a list of results and a nextPageToken if applicable. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.App' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List Apps Response type: object x-speakeasy-name-override: ListAppsResponse c1.api.app.v1.ListAutomationExclusionsResponse: description: The ListAutomationExclusionsResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v1.UserWithAppEntitlementUserBindingView' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: List Automation Exclusions Response type: object x-speakeasy-name-override: ListAutomationExclusionsResponse c1.api.app.v1.ManuallyManagedUsersResponse: description: The ManuallyManagedUsersResponse message. properties: bulkActionId: description: The ID of the bulk action created to process the membership additions. readOnly: false type: string failedUsersErrorMap: additionalProperties: type: string description: A map of user IDs to error messages for users that could not be added. readOnly: false type: - object - "null" title: Manually Managed Users Response type: object x-speakeasy-name-override: ManuallyManagedUsersResponse c1.api.app.v1.OAuth2AuthorizedAs: description: OAuth2AuthorizedAs tracks the user that OAuthed with the connector. properties: authEmail: description: authEmail is the email of the user that authorized the connector using OAuth. readOnly: true type: - string - "null" authorizedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: O Auth 2 Authorized As type: object x-speakeasy-name-override: OAuth2AuthorizedAs c1.api.app.v1.PauseSyncRequestInput: description: The PauseSyncRequest message contains the fields required to pause syncing for a connector. title: Pause Sync Request type: object x-speakeasy-name-override: PauseSyncRequest c1.api.app.v1.PauseSyncResponse: description: Empty response body. Status code indicates success. title: Pause Sync Response type: object x-speakeasy-name-override: PauseSyncResponse c1.api.app.v1.RemoveAppEntitlementOwnerRequestInput: description: The request message for removing an app entitlement owner. title: Remove App Entitlement Owner Request type: object x-speakeasy-name-override: RemoveAppEntitlementOwnerRequest c1.api.app.v1.RemoveAppEntitlementOwnerResponse: description: The empty response message for removing an app entitlement owner. title: Remove App Entitlement Owner Response type: object x-speakeasy-name-override: RemoveAppEntitlementOwnerResponse c1.api.app.v1.RemoveAppOwnerRequestInput: description: RemoveAppOwnerRequest is the request body for removing an app owner. It uses URL values for input. title: Remove App Owner Request type: object x-speakeasy-name-override: RemoveAppOwnerRequest c1.api.app.v1.RemoveAppOwnerResponse: description: Empty response with a status code indicating success. title: Remove App Owner Response type: object x-speakeasy-name-override: RemoveAppOwnerResponse c1.api.app.v1.RemoveAppResourceOwnerRequestInput: description: The request message for removing an owner from an app resource. properties: userId: description: The C1 user ID to remove as an owner. readOnly: false type: - string - "null" title: Remove App Resource Owner Request type: object x-speakeasy-name-override: RemoveAppResourceOwnerRequest c1.api.app.v1.RemoveAppResourceOwnerResponse: description: The empty response message for removing an owner from an app resource. title: Remove App Resource Owner Response type: object x-speakeasy-name-override: RemoveAppResourceOwnerResponse c1.api.app.v1.RemoveAutomationExclusionRequestInput: description: The RemoveAutomationExclusionRequest message. properties: userIds: description: The IDs of users to remove from the automation exclusion list. items: type: string readOnly: false type: - array - "null" title: Remove Automation Exclusion Request type: object x-speakeasy-name-override: RemoveAutomationExclusionRequest c1.api.app.v1.RemoveAutomationExclusionResponse: description: Empty response with a status code indicating success. title: Remove Automation Exclusion Response type: object x-speakeasy-name-override: RemoveAutomationExclusionResponse c1.api.app.v1.RemoveEntitlementMembershipRequestInput: description: The RemoveEntitlementMembershipRequest message. properties: appUserId: description: The ID of the app user whose membership to remove. readOnly: false type: - string - "null" title: Remove Entitlement Membership Request type: object x-speakeasy-name-override: RemoveEntitlementMembershipRequest c1.api.app.v1.RemoveEntitlementMembershipResponse: description: The RemoveEntitlementMembershipResponse message. properties: revokeTaskId: description: |- The ID of the revoke task created to remove the user from the entitlement, if the entitlement is an access profile (aka. catalog). It's aka. the JML task. readOnly: false type: - string - "null" title: Remove Entitlement Membership Response type: object x-speakeasy-name-override: RemoveEntitlementMembershipResponse c1.api.app.v1.RemoveGrantDurationRequestInput: description: The request message for removing the expiration time from a grant. title: Remove Grant Duration Request type: object x-speakeasy-name-override: RemoveGrantDurationRequest c1.api.app.v1.RemoveGrantDurationResponse: description: The response message for removing the expiration time from a grant. properties: binding: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBinding' - type: "null" title: Remove Grant Duration Response type: object x-speakeasy-name-override: RemoveGrantDurationResponse c1.api.app.v1.ResumeSyncRequestInput: description: The ResumeSyncRequest message contains the fields required to resume syncing for a connector. title: Resume Sync Request type: object x-speakeasy-name-override: ResumeSyncRequest c1.api.app.v1.ResumeSyncResponse: description: Empty response body. Status code indicates success. title: Resume Sync Response type: object x-speakeasy-name-override: ResumeSyncResponse c1.api.app.v1.SearchAppEntitlementsWithExpiredResponse: description: The SearchAppEntitlementsWithExpiredResponse message contains a list of results and a nextPageToken if applicable. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementWithExpired' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: Search App Entitlements With Expired Response type: object x-speakeasy-name-override: SearchAppEntitlementsWithExpiredResponse c1.api.app.v1.SearchAppResourceTypesRequest: description: Search for app resources based on some filters. properties: appIds: description: A list of app IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" appUserIds: description: A list of app user IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" displayName: description: Exact match on display name readOnly: false type: - string - "null" excludeResourceTypeIds: description: A list of resource type IDs to exclude from the search. items: type: string readOnly: false type: - array - "null" excludeResourceTypeTraitIds: description: A list of resource type trait IDs to exclude from the search. items: type: string readOnly: false type: - array - "null" pageSize: description: The pageSize where 10 <= pageSize <= 100, default 25. format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: Fuzzy search the display name of resource types. readOnly: false type: - string - "null" resourceTypeIds: description: A list of resource type IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" resourceTypeTraitIds: description: A list of resource type trait IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" title: Search App Resource Types Request type: object x-speakeasy-name-override: SearchAppResourceTypesRequest c1.api.app.v1.SearchAppResourceTypesResponse: description: The SearchAppResourceTypesResponse message contains a list of results and a nextPageToken if applicable. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppResourceType' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Search App Resource Types Response type: object x-speakeasy-name-override: SearchAppResourceTypesResponse c1.api.app.v1.SearchAppResourcesRequest: description: Search app resources based on filters specified in the request body. properties: appId: description: The app ID to restrict the search to. readOnly: false type: - string - "null" appUserIds: description: A list of app user IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" excludeDeletedResourceBindings: description: If true, exclude resources whose bindings have been deleted. readOnly: false type: - boolean - "null" excludeResourceIds: description: A list of resource IDs to exclude from the search results. items: type: string readOnly: false type: - array - "null" excludeResourceTypeTraitIds: description: A list of resource type trait IDs to exclude from the search. items: type: string readOnly: false type: - array - "null" ownerUserIds: description: A list of C1 user IDs to filter resources by ownership. items: type: string nullable: true readOnly: false type: array pageSize: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: The token for fetching the next page of results. readOnly: false type: - string - "null" query: description: Fuzzy search the display name of resources. readOnly: false type: - string - "null" refs: description: A list of specific app resource references to restrict the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppResourceRef' readOnly: false type: - array - "null" resourceIds: description: A list of resource IDs to restrict the search to. items: type: string readOnly: false type: - array - "null" resourceTypeIds: description: A list of resource type IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" resourceTypeTraitIds: description: A list of resource type trait IDs to restrict the search by. items: type: string readOnly: false type: - array - "null" title: Search App Resources Request type: object x-speakeasy-name-override: SearchAppResourcesRequest c1.api.app.v1.SearchAppResourcesResponse: description: The SearchAppResourcesResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of app resource results. items: $ref: '#/components/schemas/c1.api.app.v1.AppResourceView' readOnly: false type: - array - "null" nextPageToken: description: The token for fetching the next page of results. readOnly: false type: - string - "null" title: Search App Resources Response type: object x-speakeasy-name-override: SearchAppResourcesResponse c1.api.app.v1.SearchAppsRequest: description: Search Apps by a few properties. properties: appIds: description: A list of app IDs to restrict the search to. items: type: string readOnly: false type: - array - "null" displayName: description: Search for apps with a case insensitive match on the display name. readOnly: false type: - string - "null" excludeAppIds: description: A list of app IDs to remove from the results. items: type: string readOnly: false type: - array - "null" onlyDirectories: description: Only return apps which are directories readOnly: false type: - boolean - "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" policyRefs: description: Search for apps that use any of these policies. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyRef' readOnly: false type: - array - "null" query: description: Query the apps with a fuzzy search on display name and description. readOnly: false type: - string - "null" title: Search Apps Request type: object x-speakeasy-name-override: SearchAppsRequest c1.api.app.v1.SearchAppsResponse: description: The SearchAppsResponse message contains a list of results and a nextPageToken if applicable. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.App' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Search Apps Response type: object x-speakeasy-name-override: SearchAppsResponse c1.api.app.v1.SearchGrantFeedRequest: description: The SearchGrantFeedRequest message. properties: after: oneOf: - format: date-time readOnly: false type: string - type: "null" appEntitlementRefs: description: The list of app entitlements to limit the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" appRefs: description: The list of apps to limit the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppRef' readOnly: false type: - array - "null" appUserRefs: description: The list of app users to limit the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserRef' readOnly: false type: - array - "null" before: oneOf: - format: date-time readOnly: false type: string - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBindingExpandHistoryMask' - type: "null" pageSize: description: The pageSize where 10 <= pageSize <= 100, default 25. format: int32 readOnly: false type: - integer - "null" pageToken: description: The page_token field for pagination. readOnly: false type: - string - "null" userRefs: description: The list of C1 users to limit the search to. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" title: Search Grant Feed Request type: object x-speakeasy-name-override: SearchGrantFeedRequest c1.api.app.v1.SearchGrantFeedResponse: description: The SearchGrantFeedResponse message contains a list of grant event results and a nextPageToken if applicable. properties: expanded: description: The expanded field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBindingFeedView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retrieved. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Search Grant Feed Response type: object x-speakeasy-name-override: SearchGrantFeedResponse c1.api.app.v1.SearchPastGrantsRequest: description: The request message for searching historical grants. properties: appEntitlementRefs: description: A list of entitlement references to restrict the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" appIds: description: A list of app IDs to restrict the search to. items: type: string readOnly: false type: - array - "null" appUserRefs: description: A list of app user references to restrict the search to. items: $ref: '#/components/schemas/c1.api.app.v1.AppUserRef' readOnly: false type: - array - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBindingExpandHistoryMask' - type: "null" pageSize: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: The token for fetching the next page of results. readOnly: false type: - string - "null" title: Search Past Grants Request type: object x-speakeasy-name-override: SearchPastGrantsRequest c1.api.app.v1.SearchPastGrantsResponse: description: The SearchPastGrantsResponse message contains a list of past grants and a nextPageToken if applicable. properties: expanded: description: The expanded field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBindingHistoryView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retrieved. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Search Past Grants Response type: object x-speakeasy-name-override: SearchPastGrantsResponse c1.api.app.v1.SearchUserOwnershipRequest: description: |- Search for all ownership assignments for a given user. Returns apps, resources, and entitlements the user owns, each tagged with a UserOwnershipType discriminator. Filter by ownership_types to restrict results to specific kinds of ownership. properties: ownershipTypes: description: Filter results to only include these ownership types. If empty, all types are returned. items: enum: - USER_OWNERSHIP_TYPE_UNSPECIFIED - USER_OWNERSHIP_TYPE_APP - USER_OWNERSHIP_TYPE_RESOURCE - USER_OWNERSHIP_TYPE_ENTITLEMENT type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array pageSize: description: Maximum number of results to return per page. format: int32 readOnly: false type: integer pageToken: description: Pagination token from a previous response. readOnly: false type: string userId: description: The ID of the ConductorOne user whose ownership to search. readOnly: false type: string title: Search User Ownership Request type: object x-speakeasy-name-override: SearchUserOwnershipRequest c1.api.app.v1.SearchUserOwnershipResponse: description: The SearchUserOwnershipResponse message contains a paginated list of ownership entries. properties: list: description: The list of ownership entries for the requested user. items: $ref: '#/components/schemas/c1.api.app.v1.UserOwnershipEntry' nullable: true readOnly: false type: array nextPageToken: description: Pagination token for the next page of results. Empty when there are no more results. readOnly: false type: string title: Search User Ownership Response type: object x-speakeasy-name-override: SearchUserOwnershipResponse c1.api.app.v1.SecretTrait: description: The SecretTrait message. properties: identityAppUserId: description: The identityAppUserId field. readOnly: false type: - string - "null" lastUsedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" secretCreatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" secretExpiresAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Secret Trait type: object x-speakeasy-name-override: SecretTrait c1.api.app.v1.SetAppEntitlementOwnersRequestInput: description: The request message for setting the app entitlement owners. properties: userIds: description: The user_ids field for the users to set as an owner of the app entitlement. items: type: string readOnly: false type: - array - "null" title: Set App Entitlement Owners Request type: object x-speakeasy-entity: App_Entitlement_Owner x-speakeasy-name-override: SetAppEntitlementOwnersRequest c1.api.app.v1.SetAppEntitlementOwnersResponse: description: The empty response message for setting the app entitlement owners. title: Set App Entitlement Owners Response type: object x-speakeasy-name-override: SetAppEntitlementOwnersResponse c1.api.app.v1.SetAppOwnersRequestInput: description: The request message for setting the app owners. properties: userIds: description: The user_ids field for the users to set as an owner of the app. items: type: string readOnly: false type: - array - "null" title: Set App Owners Request type: object x-speakeasy-entity: App_Owner x-speakeasy-name-override: SetAppOwnersRequest c1.api.app.v1.SetAppOwnersResponse: description: The empty response message for setting the app owners. title: Set App Owners Response type: object x-speakeasy-name-override: SetAppOwnersResponse c1.api.app.v1.SetAppResourceOwnersRequestInput: description: The SetAppResourceOwnersRequest message. properties: userIds: description: The userIds field. items: type: string readOnly: false type: - array - "null" title: Set App Resource Owners Request type: object x-speakeasy-entity: App_Resource_Owner x-speakeasy-name-override: SetAppResourceOwnersRequest c1.api.app.v1.SetAppResourceOwnersResponse: description: The empty response message for setting the app resource owners. title: Set App Resource Owners Response type: object x-speakeasy-name-override: SetAppResourceOwnersResponse c1.api.app.v1.SyncConfig: description: The SyncConfig message. properties: syncResourceTypeIds: description: The syncResourceTypeIds field. items: type: string nullable: true readOnly: false type: array title: Sync Config type: object x-speakeasy-name-override: SyncConfig c1.api.app.v1.TaskAuditCancelledResult: description: The TaskAuditCancelledResult message. properties: cancelReason: description: |- Human-readable reason the action was cancelled. Already populated on the model-side CanceledResult (e.g., "action is invalid - ticket is closed"); this surfaces it to the UI. readOnly: false type: string title: Task Audit Cancelled Result type: object x-speakeasy-name-override: TaskAuditCancelledResult c1.api.app.v1.TaskAuditErrorResult: description: The TaskAuditErrorResult message. properties: errorCount: description: 'TODO(pquerna): expand' format: int64 readOnly: false type: - string - "null" errorReason: description: The errorReason field. readOnly: false type: - string - "null" title: Task Audit Error Result type: object x-speakeasy-name-override: TaskAuditErrorResult c1.api.app.v1.TaskAuditPendingResult: description: The TaskAuditPendingResult message. nullable: true properties: pendingReason: description: |- Human-readable explanation of why the action is pending. Rendered in the ticket audit log so admins can see what the action is waiting on (e.g., "GitHub org invite sent. User must accept the invitation before team membership can be granted."). Naming mirrors TaskAuditErrorResult.error_reason and TaskAuditCancelledResult.cancel_reason for consistency. readOnly: false type: string title: Task Audit Pending Result type: object x-speakeasy-name-override: TaskAuditPendingResult c1.api.app.v1.TaskAuditSuccessResult: description: The TaskAuditSuccessResult message. properties: annotations: description: The annotations field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" successReason: description: |- Optional human-readable note about the successful action. Rendered in the ticket audit log when present (e.g., "Account already existed; no change made." for the AlreadyExistsResult path). Naming mirrors TaskAuditErrorResult.error_reason and TaskAuditCancelledResult.cancel_reason for consistency. readOnly: false type: string title: Task Audit Success Result type: object x-speakeasy-name-override: TaskAuditSuccessResult c1.api.app.v1.UpdateAppEntitlementRequestInput: description: The UpdateAppEntitlementRequest message contains the app entitlement and the fields to be updated. properties: entitlement: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlement' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementExpandMask' - type: "null" overrideAccessRequestsDefaults: description: Flag to indicate that access request defaults, if any are applied to these entitlements, should be overridden. readOnly: false type: - boolean - "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update App Entitlement Request type: object x-speakeasy-name-override: UpdateAppEntitlementRequest c1.api.app.v1.UpdateAppEntitlementResponse: description: The UpdateAppEntitlementResponse message. properties: appEntitlementView: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' - type: "null" expanded: description: List of related objects items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Update App Entitlement Response type: object x-speakeasy-name-override: UpdateAppEntitlementResponse c1.api.app.v1.UpdateAppRequestInput: description: The UpdateAppRequest message contains the app to update and the fields to update. properties: app: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.App' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update App Request type: object x-speakeasy-name-override: UpdateAppRequest c1.api.app.v1.UpdateAppResponse: description: Returns the updated app's new values. properties: app: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.App' - type: "null" title: Update App Response type: object x-speakeasy-name-override: UpdateAppResponse c1.api.app.v1.UpdateAppUsageControlsRequestInput: description: The UpdateAppUsageControlsRequest message contains the AppUsageControls object to update and the update mask. properties: appUsageControls: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUsageControls' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update App Usage Controls Request type: object x-speakeasy-name-override: UpdateAppUsageControlsRequest c1.api.app.v1.UpdateAppUsageControlsResponse: description: The UpdateAppUsageControlsResponse message contains the updated AppUsageControls object. properties: appUsageControls: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppUsageControls' - type: "null" title: Update App Usage Controls Response type: object x-speakeasy-name-override: UpdateAppUsageControlsResponse c1.api.app.v1.UpdateConnectorScheduleRequestInput: description: | The UpdateConnectorScheduleRequest message contains the fields required to update a connector's sync schedule. This message contains a oneof named schedule. Only a single field of the following list may be set at a time: - cron properties: cron: $ref: '#/components/schemas/c1.api.app.v1.ConnectorScheduleCron' title: Update Connector Schedule Request type: object x-speakeasy-name-override: UpdateConnectorScheduleRequest c1.api.app.v1.UpdateConnectorScheduleResponse: description: Empty response body. Status code indicates success. title: Update Connector Schedule Response type: object x-speakeasy-name-override: UpdateConnectorScheduleResponse c1.api.app.v1.UpdateGrantDurationRequestInput: description: The request message for updating the duration of an existing grant. properties: newDeprovisionAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Update Grant Duration Request type: object x-speakeasy-name-override: UpdateGrantDurationRequest c1.api.app.v1.UpdateGrantDurationResponse: description: The response message for updating the duration of a grant. properties: binding: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBinding' - type: "null" title: Update Grant Duration Response type: object x-speakeasy-name-override: UpdateGrantDurationResponse c1.api.app.v1.UpdateManuallyManagedResourceTypeRequestInput: description: The request message for updating a manually managed resource type. properties: appResourceType: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceType' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update Manually Managed Resource Type Request type: object x-speakeasy-name-override: UpdateManuallyManagedResourceTypeRequest c1.api.app.v1.UpdateManuallyManagedResourceTypeResponse: description: The response message for updating a manually managed resource type. properties: appResourceType: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppResourceType' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Update Manually Managed Resource Type Response type: object x-speakeasy-name-override: UpdateManuallyManagedResourceTypeResponse c1.api.app.v1.UserOwnershipEntry: description: |- A single ownership entry. Fields are populated based on ownership_type: APP — only app_id and app_display_name are set. RESOURCE — app_id, app_display_name, resource_type_id, resource_id, and resource_display_name are set. ENTITLEMENT — app_id, app_display_name, resource_type_id, entitlement_id, and entitlement_display_name are set. properties: appDisplayName: description: The app display name. readOnly: false type: string appId: description: The app ID. readOnly: false type: string entitlementDisplayName: description: The entitlement display name, if applicable. readOnly: false type: string entitlementId: description: The entitlement ID, if applicable. readOnly: false type: string ownershipType: description: The type of ownership. enum: - USER_OWNERSHIP_TYPE_UNSPECIFIED - USER_OWNERSHIP_TYPE_APP - USER_OWNERSHIP_TYPE_RESOURCE - USER_OWNERSHIP_TYPE_ENTITLEMENT readOnly: false type: string x-speakeasy-unknown-values: allow resourceDisplayName: description: The resource display name, if applicable. readOnly: false type: string resourceId: description: The resource ID, if applicable. readOnly: false type: string resourceTypeId: description: The resource type ID, if applicable. readOnly: false type: string title: User Ownership Entry type: object x-speakeasy-name-override: UserOwnershipEntry c1.api.app.v1.UserWithAppEntitlementUserBindingView: description: The UserWithAppEntitlementUserBindingView message. properties: appEntitlementId: description: The ID of the app entitlement. readOnly: false type: - string - "null" appId: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" appUserId: description: The ID of the app user associated with this binding. readOnly: false type: - string - "null" user: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.User' - type: "null" title: User With App Entitlement User Binding View type: object x-speakeasy-name-override: UserWithAppEntitlementUserBindingView c1.api.app.v2.AppEntitlementOwnerEntitlement: description: AppEntitlementOwnerEntitlement represents an entitlement ownership source for an app entitlement. properties: appEntitlement: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlement' createdAt: format: date-time readOnly: false type: string roleSlug: description: The roleSlug field. readOnly: false type: string title: App Entitlement Owner Entitlement type: object x-speakeasy-name-override: AppEntitlementOwnerEntitlement c1.api.app.v2.AppEntitlementOwnerUser: description: AppEntitlementOwnerUser represents a user ownership source for an app entitlement. properties: createdAt: format: date-time readOnly: false type: string roleSlug: description: The roleSlug field. readOnly: false type: string user: $ref: '#/components/schemas/c1.api.user.v1.User' title: App Entitlement Owner User type: object x-speakeasy-name-override: AppEntitlementOwnerUser c1.api.app.v2.AppOwnerEntitlement: description: AppOwnerEntitlement represents an entitlement ownership source for an app. properties: appEntitlement: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlement' appId: description: The appId field. readOnly: false type: string createdAt: format: date-time readOnly: false type: string roleSlug: description: The roleSlug field. readOnly: false type: string title: App Owner Entitlement type: object x-speakeasy-entity: App_Owner_Entitlement x-speakeasy-name-override: AppOwnerEntitlement c1.api.app.v2.AppOwnerUser: description: AppOwnerUser represents a user ownership source for an app. properties: appId: description: The appId field. readOnly: false type: string createdAt: format: date-time readOnly: false type: string roleSlug: description: The roleSlug field. readOnly: false type: string user: $ref: '#/components/schemas/c1.api.user.v1.User' title: App Owner User type: object x-speakeasy-entity: App_Owner_User x-speakeasy-name-override: AppOwnerUser c1.api.app.v2.CreateEntitlementOwnerRequestInput: description: CreateEntitlementOwnerRequest is the request for creating an entitlement ownership source. properties: appEntitlementRef: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' title: Create Entitlement Owner Request type: object x-speakeasy-name-override: CreateEntitlementOwnerRequest c1.api.app.v2.CreateEntitlementOwnerResponse: description: CreateEntitlementOwnerResponse is the response for creating an entitlement ownership source. properties: appOwnerEntitlement: $ref: '#/components/schemas/c1.api.app.v2.AppOwnerEntitlement' title: Create Entitlement Owner Response type: object x-speakeasy-name-override: CreateEntitlementOwnerResponse c1.api.app.v2.CreateUserOwnerRequestInput: description: CreateUserOwnerRequest is the request for creating a user ownership source. properties: userRef: $ref: '#/components/schemas/c1.api.user.v1.UserRef' title: Create User Owner Request type: object x-speakeasy-name-override: CreateUserOwnerRequest c1.api.app.v2.CreateUserOwnerResponse: description: CreateUserOwnerResponse is the response for creating a user ownership source. properties: appOwnerUser: $ref: '#/components/schemas/c1.api.app.v2.AppOwnerUser' title: Create User Owner Response type: object x-speakeasy-name-override: CreateUserOwnerResponse c1.api.app.v2.DeleteEntitlementOwnerRequestInput: description: DeleteEntitlementOwnerRequest is the request for deleting an entitlement ownership source. properties: appEntitlementRef: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' title: Delete Entitlement Owner Request type: object x-speakeasy-name-override: DeleteEntitlementOwnerRequest c1.api.app.v2.DeleteEntitlementOwnerResponse: description: DeleteEntitlementOwnerResponse is the empty response for deleting an entitlement ownership source. title: Delete Entitlement Owner Response type: object x-speakeasy-name-override: DeleteEntitlementOwnerResponse c1.api.app.v2.DeleteUserOwnerRequestInput: description: DeleteUserOwnerRequest is the request for deleting a user ownership source. properties: userRef: $ref: '#/components/schemas/c1.api.user.v1.UserRef' title: Delete User Owner Request type: object x-speakeasy-name-override: DeleteUserOwnerRequest c1.api.app.v2.DeleteUserOwnerResponse: description: DeleteUserOwnerResponse is the empty response for deleting a user ownership source. title: Delete User Owner Response type: object x-speakeasy-name-override: DeleteUserOwnerResponse c1.api.app.v2.GetEntitlementOwnerResponse: description: GetEntitlementOwnerResponse is the response for getting an entitlement ownership source. properties: appOwnerEntitlement: $ref: '#/components/schemas/c1.api.app.v2.AppOwnerEntitlement' title: Get Entitlement Owner Response type: object x-speakeasy-name-override: GetEntitlementOwnerResponse c1.api.app.v2.GetUserOwnerResponse: description: GetUserOwnerResponse is the response for getting a user ownership source. properties: appOwnerUser: $ref: '#/components/schemas/c1.api.app.v2.AppOwnerUser' title: Get User Owner Response type: object x-speakeasy-name-override: GetUserOwnerResponse c1.api.app.v2.SearchAppEntitlementEntitlementOwnersResponse: description: SearchAppEntitlementEntitlementOwnersResponse is the response for searching entitlement ownership sources on an entitlement. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v2.AppEntitlementOwnerEntitlement' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Search App Entitlement Entitlement Owners Response type: object x-speakeasy-name-override: SearchAppEntitlementEntitlementOwnersResponse c1.api.app.v2.SearchAppEntitlementUserOwnersResponse: description: SearchAppEntitlementUserOwnersResponse is the response for searching user ownership sources on an entitlement. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v2.AppEntitlementOwnerUser' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Search App Entitlement User Owners Response type: object x-speakeasy-name-override: SearchAppEntitlementUserOwnersResponse c1.api.app.v2.SearchEntitlementOwnersResponse: description: SearchEntitlementOwnersResponse is the response for searching entitlement ownership sources. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v2.AppOwnerEntitlement' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Search Entitlement Owners Response type: object x-speakeasy-name-override: SearchEntitlementOwnersResponse c1.api.app.v2.SearchUserOwnersResponse: description: SearchUserOwnersResponse is the response for searching user ownership sources. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.app.v2.AppOwnerUser' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Search User Owners Response type: object x-speakeasy-name-override: SearchUserOwnersResponse c1.api.app.v2.SetAppEntitlementOwnersV2RequestInput: description: SetAppEntitlementOwnersV2Request is the request for setting the owners of an app entitlement for a given role. properties: appEntitlementRefs: description: The appEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array roleSlug: description: Empty defaults to the "primary" role on the server side. readOnly: false type: string userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' nullable: true readOnly: false type: array title: Set App Entitlement Owners V 2 Request type: object x-speakeasy-name-override: SetAppEntitlementOwnersV2Request c1.api.app.v2.SetAppEntitlementOwnersV2Response: description: SetAppEntitlementOwnersV2Response is the empty response for setting app entitlement owners. title: Set App Entitlement Owners V 2 Response type: object x-speakeasy-name-override: SetAppEntitlementOwnersV2Response c1.api.app.v2.SetAppOwnersRequestInput: description: SetAppOwnersRequest is the request for setting user owners for an app and role. properties: appEntitlementRefs: description: The appEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array roleSlug: description: The roleSlug field. readOnly: false type: string userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' nullable: true readOnly: false type: array title: Set App Owners Request type: object x-speakeasy-name-override: SetAppOwnersRequestV2 c1.api.app.v2.SetAppOwnersResponse: description: SetAppOwnersResponse is the empty response for setting app owners. title: Set App Owners Response type: object x-speakeasy-name-override: SetAppOwnersResponseV2 c1.api.app.v2.SetConnectorOwnersV2RequestInput: description: SetConnectorOwnersV2Request is the request for setting the owners of a connector for a given role. properties: appEntitlementRefs: description: The appEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array roleSlug: description: The role slug for this ownership grant. Required. readOnly: false type: string userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' nullable: true readOnly: false type: array title: Set Connector Owners V 2 Request type: object x-speakeasy-name-override: SetConnectorOwnersV2Request c1.api.app.v2.SetConnectorOwnersV2Response: description: SetConnectorOwnersV2Response is the empty response for setting connector owners. title: Set Connector Owners V 2 Response type: object x-speakeasy-name-override: SetConnectorOwnersV2Response c1.api.attribute.v1.AttributeType: description: AttributeType defines the type of an attribute. properties: id: description: The ID of the AttributeType. readOnly: false type: - string - "null" name: description: The name of the AttributeType. readOnly: false type: - string - "null" title: Attribute Type type: object x-speakeasy-name-override: AttributeType c1.api.attribute.v1.AttributeValue: description: AttributeValue is the value of an attribute of a defined type. properties: attributeTypeId: description: The ID of the AttributeType that this AttributeValue belongs to. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" id: description: The ID of the AttributeValue. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" value: description: The value of the AttributeValue. This is the string that will be displayed to the user. readOnly: false type: - string - "null" title: Attribute Value type: object x-speakeasy-name-override: AttributeValue c1.api.attribute.v1.CreateAttributeValueRequest: description: The CreateAttributeValueRequest message. properties: attributeTypeId: description: The attributeTypeId field. readOnly: false type: - string - "null" value: description: The value field. readOnly: false type: - string - "null" title: Create Attribute Value Request type: object x-speakeasy-name-override: CreateAttributeValueRequest c1.api.attribute.v1.CreateAttributeValueResponse: description: CreateAttributeValueResponse is the response for creating an attribute value. properties: value: oneOf: - $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' - type: "null" title: Create Attribute Value Response type: object x-speakeasy-name-override: CreateAttributeValueResponse c1.api.attribute.v1.CreateComplianceFrameworkAttributeValueRequest: description: The CreateComplianceFrameworkAttributeValueRequest message. properties: value: description: The value field. readOnly: false type: - string - "null" title: Create Compliance Framework Attribute Value Request type: object x-speakeasy-name-override: CreateComplianceFrameworkAttributeValueRequest c1.api.attribute.v1.CreateComplianceFrameworkAttributeValueResponse: description: The CreateComplianceFrameworkAttributeValueResponse message. properties: value: oneOf: - $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' - type: "null" title: Create Compliance Framework Attribute Value Response type: object x-speakeasy-name-override: CreateComplianceFrameworkAttributeValueResponse c1.api.attribute.v1.CreateRiskLevelAttributeValueRequest: description: The CreateRiskLevelAttributeValueRequest message. properties: value: description: The value field. readOnly: false type: - string - "null" title: Create Risk Level Attribute Value Request type: object x-speakeasy-name-override: CreateRiskLevelAttributeValueRequest c1.api.attribute.v1.CreateRiskLevelAttributeValueResponse: description: The CreateRiskLevelAttributeValueResponse message. properties: value: oneOf: - $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' - type: "null" title: Create Risk Level Attribute Value Response type: object x-speakeasy-name-override: CreateRiskLevelAttributeValueResponse c1.api.attribute.v1.DeleteAttributeValueRequestInput: description: The DeleteAttributeValueRequest message. title: Delete Attribute Value Request type: object x-speakeasy-name-override: DeleteAttributeValueRequest c1.api.attribute.v1.DeleteAttributeValueResponse: description: DeleteAttributeValueResponse is the empty response for deleting an attribute value. title: Delete Attribute Value Response type: object x-speakeasy-name-override: DeleteAttributeValueResponse c1.api.attribute.v1.DeleteComplianceFrameworkAttributeValueRequestInput: description: The DeleteComplianceFrameworkAttributeValueRequest message. title: Delete Compliance Framework Attribute Value Request type: object x-speakeasy-name-override: DeleteComplianceFrameworkAttributeValueRequest c1.api.attribute.v1.DeleteComplianceFrameworkAttributeValueResponse: description: The DeleteComplianceFrameworkAttributeValueResponse message. title: Delete Compliance Framework Attribute Value Response type: object x-speakeasy-name-override: DeleteComplianceFrameworkAttributeValueResponse c1.api.attribute.v1.DeleteRiskLevelAttributeValueRequestInput: description: The DeleteRiskLevelAttributeValueRequest message. title: Delete Risk Level Attribute Value Request type: object x-speakeasy-name-override: DeleteRiskLevelAttributeValueRequest c1.api.attribute.v1.DeleteRiskLevelAttributeValueResponse: description: The DeleteRiskLevelAttributeValueResponse message. title: Delete Risk Level Attribute Value Response type: object x-speakeasy-name-override: DeleteRiskLevelAttributeValueResponse c1.api.attribute.v1.GetAttributeValueResponse: description: GetAttributeValueResponse is the response for getting an attribute value by id. properties: value: oneOf: - $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' - type: "null" title: Get Attribute Value Response type: object x-speakeasy-name-override: GetAttributeValueResponse c1.api.attribute.v1.GetComplianceFrameworkAttributeValueResponse: description: The GetComplianceFrameworkAttributeValueResponse message. properties: value: oneOf: - $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' - type: "null" title: Get Compliance Framework Attribute Value Response type: object x-speakeasy-name-override: GetComplianceFrameworkAttributeValueResponse c1.api.attribute.v1.GetRiskLevelAttributeValueResponse: description: The GetRiskLevelAttributeValueResponse message. properties: value: oneOf: - $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' - type: "null" title: Get Risk Level Attribute Value Response type: object x-speakeasy-name-override: GetRiskLevelAttributeValueResponse c1.api.attribute.v1.ListAttributeTypesResponse: description: ListAttributeTypesResponse is the response for listing attribute types. properties: list: description: The list of AttributeTypes. items: $ref: '#/components/schemas/c1.api.attribute.v1.AttributeType' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List Attribute Types Response type: object x-speakeasy-name-override: ListAttributeTypesResponse c1.api.attribute.v1.ListAttributeValuesResponse: description: ListAttributeValuesResponse is the response for listing attribute values for a given AttributeType. properties: list: description: The list of AttributeValues. items: $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List Attribute Values Response type: object x-speakeasy-name-override: ListAttributeValuesResponse c1.api.attribute.v1.ListComplianceFrameworksResponse: description: ListComplianceFrameworksResponse is the response for listing compliance framework attribute values. properties: list: description: The list of compliance framework attribute values. items: $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' readOnly: false type: - array - "null" nextPageToken: description: The token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: List Compliance Frameworks Response type: object x-speakeasy-name-override: ListComplianceFrameworksResponse c1.api.attribute.v1.ListRiskLevelsResponse: description: ListRiskLevelsResponse is the response for listing risk level attribute values. properties: list: description: The list of risk level attribute values. items: $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' readOnly: false type: - array - "null" nextPageToken: description: The token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: List Risk Levels Response type: object x-speakeasy-name-override: ListRiskLevelsResponse c1.api.attribute.v1.SearchAttributeValuesRequest: description: Search Attributes by a few properties. properties: attributeTypeIds: description: The attribute type ids for what type of attributes to search for. items: type: string readOnly: false type: - array - "null" excludeIds: description: Exclude attributes with these ids from the search results. items: type: string readOnly: false type: - array - "null" ids: description: Include attributes with these ids in the search results. items: type: string readOnly: false type: - array - "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: Query the attributes with a fuzzy search on display name and description. readOnly: false type: - string - "null" value: description: Search for attributes with a case insensitive match on the attribute value which is the attribute name. readOnly: false type: - string - "null" title: Search Attribute Values Request type: object x-speakeasy-name-override: SearchAttributeValuesRequest c1.api.attribute.v1.SearchAttributeValuesResponse: description: SearchAttributeValuesResponse is the response for searching AttributeValues. properties: list: description: The list of returned AttributeValues. items: $ref: '#/components/schemas/c1.api.attribute.v1.AttributeValue' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Search Attribute Values Response type: object x-speakeasy-name-override: SearchAttributeValuesResponse c1.api.auth.v1.IntrospectResponse: description: IntrospectResponse contains information about the current user who is authenticated. properties: features: description: The list of feature flags enabled for the tenant the logged in user belongs to. items: type: string readOnly: false type: - array - "null" permissions: description: The list of permissions that the current logged in user has. items: type: string readOnly: false type: - array - "null" principleId: description: The principleID of the current logged in user. readOnly: false type: - string - "null" roles: description: The list of roles that the current logged in user has. items: type: string readOnly: false type: - array - "null" userId: description: The userID of the current logged in user. readOnly: false type: - string - "null" title: Introspect Response type: object x-speakeasy-name-override: IntrospectResponse c1.api.auth_config.v1.AuthConfigC1Local: description: The AuthConfigC1Local message. nullable: true properties: delegatedVerifiers: description: The delegatedVerifiers field. items: enum: - DELEGATED_VERIFIER_TYPE_UNSPECIFIED - DELEGATED_VERIFIER_TYPE_GOOGLE - DELEGATED_VERIFIER_TYPE_MICROSOFT - DELEGATED_VERIFIER_TYPE_GITHUB type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Auth Config C 1 Local type: object x-speakeasy-name-override: AuthConfigC1Local c1.api.auth_config.v1.AuthConfigGoogle: description: The AuthConfigGoogle message. nullable: true properties: hostedDomains: description: The hostedDomains field. items: type: string nullable: true readOnly: false type: array title: Auth Config Google type: object x-speakeasy-name-override: AuthConfigGoogle c1.api.auth_config.v1.AuthConfigJumpCloud: description: The AuthConfigJumpCloud message. nullable: true properties: oidcClientId: description: The oidcClientId field. readOnly: false type: string oidcClientSecret: description: Write-only. Never returned in get/list. readOnly: false type: string title: Auth Config Jump Cloud type: object x-speakeasy-name-override: AuthConfigJumpCloud c1.api.auth_config.v1.AuthConfigMicrosoft: description: The AuthConfigMicrosoft message. nullable: true properties: tenantIds: description: The tenantIds field. items: type: string nullable: true readOnly: false type: array title: Auth Config Microsoft type: object x-speakeasy-name-override: AuthConfigMicrosoft c1.api.auth_config.v1.AuthConfigOIDC: description: The AuthConfigOIDC message. nullable: true properties: exactMatchClaims: additionalProperties: type: string description: The exactMatchClaims field. readOnly: false type: object issuerId: description: The issuerId field. readOnly: false type: string oidcClientId: description: The oidcClientId field. readOnly: false type: string oidcClientSecret: description: The oidcClientSecret field. readOnly: false type: string scopes: description: The scopes field. items: type: string nullable: true readOnly: false type: array title: Auth Config Oidc type: object x-speakeasy-name-override: AuthConfigOIDC c1.api.auth_config.v1.AuthConfigOkta: description: The AuthConfigOkta message. nullable: true properties: domain: description: The domain field. readOnly: false type: string oidcClientId: description: The oidcClientId field. readOnly: false type: string oidcClientSecret: description: Write-only. Never returned in get/list. readOnly: false type: string title: Auth Config Okta type: object x-speakeasy-name-override: AuthConfigOkta c1.api.auth_config.v1.AuthConfigOneLogin: description: The AuthConfigOneLogin message. nullable: true properties: domain: description: The domain field. readOnly: false type: string oidcClientId: description: The oidcClientId field. readOnly: false type: string oidcClientSecret: description: The oidcClientSecret field. readOnly: false type: string title: Auth Config One Login type: object x-speakeasy-name-override: AuthConfigOneLogin c1.api.auth_config.v1.AuthConfigPingOne: description: The AuthConfigPingOne message. nullable: true properties: environmentId: description: The environmentId field. readOnly: false type: string oidcClientId: description: The oidcClientId field. readOnly: false type: string oidcClientSecret: description: The oidcClientSecret field. readOnly: false type: string title: Auth Config Ping One type: object x-speakeasy-name-override: AuthConfigPingOne c1.api.auth_config.v1.TenantAuthConfig: description: | The TenantAuthConfig message. This message contains a oneof named provider_config. Only a single field of the following list may be set at a time: - google - microsoft - okta - onelogin - jumpcloud - pingone - oidc - c1Local properties: bootstrapDomains: description: 'Bootstrap routing: email domains that route unknown users to this config.' items: type: string nullable: true readOnly: false type: array c1Local: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigC1Local' createdAt: format: date-time readOnly: true type: string deprecationDeadline: format: date-time readOnly: false type: string deprecationMessage: description: User-visible message shown when status=DEPRECATED. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string google: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigGoogle' id: description: The id field. readOnly: false type: string isDefaultBootstrap: description: The isDefaultBootstrap field. readOnly: false type: boolean jumpcloud: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigJumpCloud' microsoft: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigMicrosoft' oidc: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigOIDC' okta: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigOkta' onelogin: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigOneLogin' pingone: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigPingOne' providerType: description: Provider type (read-only after creation — provider config determines type). enum: - AUTH_CONFIG_PROVIDER_TYPE_UNSPECIFIED - AUTH_CONFIG_PROVIDER_TYPE_GOOGLE - AUTH_CONFIG_PROVIDER_TYPE_MICROSOFT - AUTH_CONFIG_PROVIDER_TYPE_OKTA - AUTH_CONFIG_PROVIDER_TYPE_ONELOGIN - AUTH_CONFIG_PROVIDER_TYPE_JUMPCLOUD - AUTH_CONFIG_PROVIDER_TYPE_PINGONE - AUTH_CONFIG_PROVIDER_TYPE_OIDC - AUTH_CONFIG_PROVIDER_TYPE_C1_LOCAL readOnly: true type: string x-speakeasy-unknown-values: allow status: description: The status field. enum: - AUTH_CONFIG_STATUS_UNSPECIFIED - AUTH_CONFIG_STATUS_ACTIVE - AUTH_CONFIG_STATUS_DEPRECATED - AUTH_CONFIG_STATUS_DISABLED readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: true type: string title: Tenant Auth Config type: object x-speakeasy-name-override: TenantAuthConfig c1.api.auth_config.v1.TenantAuthConfigServiceCreateRequest: description: | The TenantAuthConfigServiceCreateRequest message. This message contains a oneof named provider_config. Only a single field of the following list may be set at a time: - google - microsoft - okta - onelogin - jumpcloud - pingone - oidc - c1Local properties: bootstrapDomains: description: Email domains that route unknown users to this authentication provider during login. items: type: string nullable: true readOnly: false type: array c1Local: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigC1Local' deprecationDeadline: format: date-time readOnly: false type: string deprecationMessage: description: A user-visible message explaining why the provider is deprecated. readOnly: false type: string displayName: description: The human-readable name for this authentication provider. readOnly: false type: string google: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigGoogle' isDefaultBootstrap: description: Whether this provider is the default for users whose email domain has no explicit mapping. readOnly: false type: boolean jumpcloud: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigJumpCloud' microsoft: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigMicrosoft' oidc: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigOIDC' okta: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigOkta' onelogin: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigOneLogin' pingone: $ref: '#/components/schemas/c1.api.auth_config.v1.AuthConfigPingOne' status: description: The initial status of the authentication provider. enum: - AUTH_CONFIG_STATUS_UNSPECIFIED - AUTH_CONFIG_STATUS_ACTIVE - AUTH_CONFIG_STATUS_DEPRECATED - AUTH_CONFIG_STATUS_DISABLED readOnly: false type: string x-speakeasy-unknown-values: allow required: - displayName title: Tenant Auth Config Service Create Request type: object x-speakeasy-name-override: TenantAuthConfigServiceCreateRequest c1.api.auth_config.v1.TenantAuthConfigServiceCreateResponse: description: The TenantAuthConfigServiceCreateResponse message. properties: authConfig: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfig' title: Tenant Auth Config Service Create Response type: object x-speakeasy-name-override: TenantAuthConfigServiceCreateResponse c1.api.auth_config.v1.TenantAuthConfigServiceDeleteRequestInput: description: The TenantAuthConfigServiceDeleteRequest message. title: Tenant Auth Config Service Delete Request type: object x-speakeasy-name-override: TenantAuthConfigServiceDeleteRequest c1.api.auth_config.v1.TenantAuthConfigServiceDeleteResponse: description: The TenantAuthConfigServiceDeleteResponse message. title: Tenant Auth Config Service Delete Response type: object x-speakeasy-name-override: TenantAuthConfigServiceDeleteResponse c1.api.auth_config.v1.TenantAuthConfigServiceGetResponse: description: The TenantAuthConfigServiceGetResponse message. properties: authConfig: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfig' title: Tenant Auth Config Service Get Response type: object x-speakeasy-name-override: TenantAuthConfigServiceGetResponse c1.api.auth_config.v1.TenantAuthConfigServiceListResponse: description: The TenantAuthConfigServiceListResponse message. properties: list: description: The list of authentication provider configurations. items: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfig' nullable: true readOnly: false type: array nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: string title: Tenant Auth Config Service List Response type: object x-speakeasy-name-override: TenantAuthConfigServiceListResponse c1.api.auth_config.v1.TenantAuthConfigServiceUpdateRequestInput: description: The TenantAuthConfigServiceUpdateRequest message. properties: authConfig: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfig' updateMask: nullable: true readOnly: false type: string title: Tenant Auth Config Service Update Request type: object x-speakeasy-name-override: TenantAuthConfigServiceUpdateRequest c1.api.auth_config.v1.TenantAuthConfigServiceUpdateResponse: description: The TenantAuthConfigServiceUpdateResponse message. properties: authConfig: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfig' title: Tenant Auth Config Service Update Response type: object x-speakeasy-name-override: TenantAuthConfigServiceUpdateResponse c1.api.automations.v1.AccessConflictTrigger: description: | The AccessConflictTrigger message. This message contains a oneof named conflict_monitor_selector. Only a single field of the following list may be set at a time: - conflictMonitorRefs - allConflictMonitors properties: allConflictMonitors: description: |- The allConflictMonitors field. This field is part of the `conflict_monitor_selector` oneof. See the documentation for `c1.api.automations.v1.AccessConflictTrigger` for more details. readOnly: false type: - boolean - "null" conflictMonitorRefs: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.ConflictMonitorRefs' - type: "null" title: Access Conflict Trigger type: object x-speakeasy-name-override: AccessConflictTrigger c1.api.automations.v1.AccountInContext: description: The AccountInContext message. title: Account In Context type: object x-speakeasy-name-override: AccountInContext c1.api.automations.v1.AccountLifecycleAction: description: | The AccountLifecycleAction message. This message contains a oneof named account_identifier. Only a single field of the following list may be set at a time: - accountRef - accountInContext properties: accountInContext: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AccountInContext' - type: "null" accountRef: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AccountRef' - type: "null" actionName: description: The actionName field. readOnly: false type: - string - "null" connectorRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorRef' - type: "null" title: Account Lifecycle Action type: object x-speakeasy-name-override: AccountLifecycleAction c1.api.automations.v1.AccountRef: description: The AccountRef message. properties: accountIdCel: description: The accountIdCel field. readOnly: false type: - string - "null" title: Account Ref type: object x-speakeasy-name-override: AccountRef c1.api.automations.v1.AppUserCreatedTrigger: description: | The AppUserCreatedTrigger message. This message contains a oneof named app_identifier. Only a single field of the following list may be set at a time: - appId - appIdCel properties: appId: description: |- The appId field. This field is part of the `app_identifier` oneof. See the documentation for `c1.api.automations.v1.AppUserCreatedTrigger` for more details. readOnly: false type: - string - "null" appIdCel: description: |- The appIdCel field. This field is part of the `app_identifier` oneof. See the documentation for `c1.api.automations.v1.AppUserCreatedTrigger` for more details. readOnly: false type: - string - "null" condition: description: The condition field. readOnly: false type: - string - "null" title: App User Created Trigger type: object x-speakeasy-name-override: AppUserCreatedTrigger c1.api.automations.v1.AppUserUpdatedTrigger: description: | The AppUserUpdatedTrigger message. This message contains a oneof named app_identifier. Only a single field of the following list may be set at a time: - appId - appIdCel properties: appId: description: |- The appId field. This field is part of the `app_identifier` oneof. See the documentation for `c1.api.automations.v1.AppUserUpdatedTrigger` for more details. readOnly: false type: - string - "null" appIdCel: description: |- The appIdCel field. This field is part of the `app_identifier` oneof. See the documentation for `c1.api.automations.v1.AppUserUpdatedTrigger` for more details. readOnly: false type: - string - "null" condition: description: The condition field. readOnly: false type: - string - "null" title: App User Updated Trigger type: object x-speakeasy-name-override: AppUserUpdatedTrigger c1.api.automations.v1.Automation: description: | The Automation message. This message contains a oneof named disabled_reason. Only a single field of the following list may be set at a time: - circuitBreaker properties: appId: description: the app id this workflow_template belongs to readOnly: false type: - string - "null" automationSteps: description: The automationSteps field. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationStep' readOnly: false type: - array - "null" circuitBreaker: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.DisabledReasonCircuitBreaker' - type: "null" circuitBreakerMax: description: |- Circuit breaker rate cap: disable this automation if it executes more than circuit_breaker_max times in the trailing circuit_breaker_period. 0 = circuit breaker off (default). format: uint32 readOnly: false type: integer circuitBreakerPeriod: description: The circuitBreakerPeriod field. enum: - CIRCUIT_BREAKER_PERIOD_UNSPECIFIED - CIRCUIT_BREAKER_PERIOD_HOUR - CIRCUIT_BREAKER_PERIOD_DAY - CIRCUIT_BREAKER_PERIOD_WEEK - CIRCUIT_BREAKER_PERIOD_MONTH readOnly: false type: string x-speakeasy-unknown-values: allow context: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationContext' - type: "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" currentVersion: description: The currentVersion field. format: int64 readOnly: false type: - string - "null" description: description: The description field. readOnly: false type: - string - "null" displayName: description: The displayName field. readOnly: false type: - string - "null" draftAutomationSteps: description: The draftAutomationSteps field. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationStep' readOnly: false type: - array - "null" draftTriggers: description: The draftTriggers field. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTrigger' readOnly: false type: - array - "null" enabled: description: The enabled field. readOnly: false type: - boolean - "null" id: description: The id field. readOnly: true type: - string - "null" isDraft: description: The isDraft field. readOnly: false type: - boolean - "null" lastExecutedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" primaryTriggerType: description: The primaryTriggerType field. enum: - TRIGGER_TYPE_UNSPECIFIED - TRIGGER_TYPE_USER_PROFILE_CHANGE - TRIGGER_TYPE_APP_USER_CREATE - TRIGGER_TYPE_APP_USER_UPDATE - TRIGGER_TYPE_UNUSED_ACCESS - TRIGGER_TYPE_USER_CREATED - TRIGGER_TYPE_GRANT_FOUND - TRIGGER_TYPE_GRANT_DELETED - TRIGGER_TYPE_WEBHOOK - TRIGGER_TYPE_SCHEDULE - TRIGGER_TYPE_FORM - TRIGGER_TYPE_SCHEDULE_APP_USER - TRIGGER_TYPE_ACCESS_CONFLICT - TRIGGER_TYPE_SCHEDULE_NO_USER readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow triggers: description: The triggers field. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTrigger' readOnly: false type: - array - "null" title: Automation type: object x-speakeasy-entity: Automation x-speakeasy-name-override: Automation c1.api.automations.v1.AutomationContext: description: The AutomationContext message. properties: context: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" title: Automation Context type: object x-speakeasy-name-override: AutomationContext c1.api.automations.v1.AutomationExecution: description: The AutomationExecution message. properties: automationTemplateId: description: The automationTemplateId field. readOnly: false type: - string - "null" completedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" context: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationContext' - type: "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" currentVersion: description: The currentVersion field. format: int32 readOnly: false type: - integer - "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" duration: oneOf: - format: duration readOnly: false type: string - type: "null" id: description: The id field. format: int64 readOnly: false type: - string - "null" isDraft: description: The isDraft field. readOnly: false type: - boolean - "null" state: description: The state field. enum: - AUTOMATION_EXECUTION_STATE_UNSPECIFIED - AUTOMATION_EXECUTION_STATE_PENDING - AUTOMATION_EXECUTION_STATE_CREATING - AUTOMATION_EXECUTION_STATE_GET_STEP - AUTOMATION_EXECUTION_STATE_PROCESS_STEP - AUTOMATION_EXECUTION_STATE_COMPLETE_STEP - AUTOMATION_EXECUTION_STATE_DONE - AUTOMATION_EXECUTION_STATE_ERROR - AUTOMATION_EXECUTION_STATE_TERMINATE - AUTOMATION_EXECUTION_STATE_WAITING readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Automation Execution type: object x-speakeasy-name-override: AutomationExecution c1.api.automations.v1.AutomationExecutionExpandMask: description: The AutomationExecutionExpandMask message. properties: paths: description: The paths field. items: type: string readOnly: false type: - array - "null" title: Automation Execution Expand Mask type: object x-speakeasy-name-override: AutomationExecutionExpandMask c1.api.automations.v1.AutomationExecutionRef: description: The AutomationExecutionRef message. properties: id: description: The id field. format: int64 readOnly: false type: - string - "null" title: Automation Execution Ref type: object x-speakeasy-name-override: AutomationExecutionRef c1.api.automations.v1.AutomationExecutionView: description: The AutomationExecutionView message. properties: automationExecution: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecution' - type: "null" automationExecutionTriggerPath: description: The automationExecutionTriggerPath field. readOnly: false type: - string - "null" automationPath: description: The automationPath field. readOnly: false type: - string - "null" title: Automation Execution View type: object x-speakeasy-name-override: AutomationExecutionView c1.api.automations.v1.AutomationStep: description: | The AutomationStep message. This message contains a oneof named kind. Only a single field of the following list may be set at a time: - createAccessReview - waitForDuration - unenrollFromAllAccessProfiles - createRevokeTasks - createRevokeTasksV2 - sendEmail - removeFromDelegation - runAutomation - updateUser - taskAction - webhook - connectorAction - connectorCreateAccount - grantEntitlements - sendSlackMessage - callFunction - accountLifecycleAction - generatePassword - evaluateExpressions - setCredential - storeCredential properties: accountLifecycleAction: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AccountLifecycleAction' - type: "null" callFunction: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.CallFunction' - type: "null" connectorAction: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.ConnectorAction' - type: "null" connectorCreateAccount: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.ConnectorCreateAccount' - type: "null" createAccessReview: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.CreateAccessReview' - type: "null" createRevokeTasks: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.CreateRevokeTasks' - type: "null" createRevokeTasksV2: $ref: '#/components/schemas/c1.api.automations.v1.CreateRevokeTasksV2' evaluateExpressions: $ref: '#/components/schemas/c1.api.automations.v1.EvaluateExpressions' generatePassword: $ref: '#/components/schemas/c1.api.automations.v1.GeneratePassword' grantEntitlements: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlements' - type: "null" removeFromDelegation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.RemoveFromDelegation' - type: "null" runAutomation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.RunAutomation' - type: "null" sendEmail: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.SendEmail' - type: "null" sendSlackMessage: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.SendSlackMessage' - type: "null" setCredential: $ref: '#/components/schemas/c1.api.automations.v1.SetCredential' skipIfTrueCel: description: The skipIfTrueCel field. readOnly: false type: - string - "null" stepDisplayName: description: The stepDisplayName field. readOnly: false type: - string - "null" stepName: description: The stepName field. readOnly: false type: - string - "null" storeCredential: $ref: '#/components/schemas/c1.api.automations.v1.StoreCredential' taskAction: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.TaskAction' - type: "null" unenrollFromAllAccessProfiles: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.UnenrollFromAllAccessProfiles' - type: "null" updateUser: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.UpdateUser' - type: "null" waitForDuration: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.WaitForDuration' - type: "null" webhook: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.Webhook' - type: "null" title: Automation Step type: object x-speakeasy-name-override: AutomationStep c1.api.automations.v1.AutomationTemplateRef: description: The AutomationTemplateRef message. properties: id: description: The id field. readOnly: false type: - string - "null" title: Automation Template Ref type: object x-speakeasy-name-override: AutomationTemplateRef c1.api.automations.v1.AutomationTemplateVersion: description: The AutomationTemplateVersion message. properties: automationSteps: description: The automationSteps field. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationStep' readOnly: false type: - array - "null" automationTemplateId: description: The automationTemplateId field. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" triggers: description: The triggers field. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTrigger' readOnly: false type: - array - "null" updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" version: description: The version field. format: int64 readOnly: false type: - string - "null" title: Automation Template Version type: object x-speakeasy-name-override: AutomationTemplateVersion c1.api.automations.v1.AutomationTrigger: description: | Automation Triggers This message contains a oneof named kind. Only a single field of the following list may be set at a time: - userProfileChange - appUserCreated - appUserUpdated - usageBasedRevocation - userCreated - grantFound - grantDeleted - webhook - schedule - scheduleAppUser - accessConflict - scheduleNoUser properties: accessConflict: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AccessConflictTrigger' - type: "null" appUserCreated: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AppUserCreatedTrigger' - type: "null" appUserUpdated: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AppUserUpdatedTrigger' - type: "null" grantDeleted: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantDeletedTrigger' - type: "null" grantFound: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantFoundTrigger' - type: "null" schedule: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.ScheduleTrigger' - type: "null" scheduleAppUser: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.ScheduleTriggerAppUser' - type: "null" scheduleNoUser: $ref: '#/components/schemas/c1.api.automations.v1.ScheduleTriggerNoUser' usageBasedRevocation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.UsageBasedRevocationTrigger' - type: "null" userCreated: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.UserCreatedTrigger' - type: "null" userProfileChange: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.UserProfileChangeTrigger' - type: "null" webhook: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.WebhookAutomationTrigger' - type: "null" title: Automation Trigger type: object x-speakeasy-name-override: AutomationTrigger c1.api.automations.v1.CallFunction: description: The CallFunction message. properties: args: additionalProperties: type: string description: The args field. readOnly: false type: - object - "null" functionId: description: The functionId field. readOnly: false type: - string - "null" title: Call Function type: object x-speakeasy-name-override: CallFunction c1.api.automations.v1.ClearAutomationCircuitBreakerRequestInput: description: The ClearAutomationCircuitBreakerRequest message. title: Clear Automation Circuit Breaker Request type: object x-speakeasy-name-override: ClearAutomationCircuitBreakerRequest c1.api.automations.v1.ClearAutomationCircuitBreakerResponse: description: The ClearAutomationCircuitBreakerResponse message. title: Clear Automation Circuit Breaker Response type: object x-speakeasy-name-override: ClearAutomationCircuitBreakerResponse c1.api.automations.v1.CloseAction: description: | The CloseAction message. This message contains a oneof named user_identifier. Only a single field of the following list may be set at a time: - userIdCel - userRef properties: useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdCel: description: |- The userIdCel field. This field is part of the `user_identifier` oneof. See the documentation for `c1.api.automations.v1.CloseAction` for more details. readOnly: false type: - string - "null" userRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" title: Close Action type: object x-speakeasy-name-override: CloseAction c1.api.automations.v1.ConflictMonitorRefs: description: The ConflictMonitorRefs message. properties: conflictMonitorRefs: description: The conflictMonitorRefs field. items: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitorRef' readOnly: false type: - array - "null" title: Conflict Monitor Refs type: object x-speakeasy-name-override: ConflictMonitorRefs c1.api.automations.v1.ConnectorAction: description: | The ConnectorAction message. This message contains a oneof named connector_identifier. Only a single field of the following list may be set at a time: - connectorRef properties: actionName: description: The actionName field. readOnly: false type: - string - "null" argsTemplate: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" connectorRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorRef' - type: "null" resourceTypeId: description: The resourceTypeId field. readOnly: false type: string title: Connector Action type: object x-speakeasy-name-override: ConnectorAction c1.api.automations.v1.ConnectorCreateAccount: description: | The ConnectorCreateAccount message. This message contains a oneof named create_account_arguments. Only a single field of the following list may be set at a time: - userIdCel - userProperties properties: connectorRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.ConnectorRef' - type: "null" passwordCel: description: |- CEL expression referencing a GeneratePassword step output (e.g. "genStep.password"). When set, the resolved password is encrypted for the connector and sent as CredentialOptions.EncryptedPassword. readOnly: false type: string userIdCel: description: |- The userIdCel field. This field is part of the `create_account_arguments` oneof. See the documentation for `c1.api.automations.v1.ConnectorCreateAccount` for more details. readOnly: false type: - string - "null" userProperties: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.UserProperties' - type: "null" title: Connector Create Account type: object x-speakeasy-name-override: ConnectorCreateAccount c1.api.automations.v1.CreateAccessReview: description: The CreateAccessReview message. properties: accessReviewTemplateCel: description: The accessReviewTemplateCel field. readOnly: false type: - string - "null" accessReviewTemplateId: description: The accessReviewTemplateId field. readOnly: false type: - string - "null" campaignName: description: Optional campaign name. If not provided, the campaign name will be the access review template name. readOnly: false type: - string - "null" useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdsCel: description: The userIdsCel field. readOnly: false type: - string - "null" userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" title: Create Access Review type: object x-speakeasy-name-override: CreateAccessReview c1.api.automations.v1.CreateAutomationRequest: description: The CreateAutomationRequest message. properties: appId: description: the app id this workflow_template belongs to readOnly: false type: - string - "null" automationSteps: description: Ordered list of steps that the automation executes. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationStep' readOnly: false type: - array - "null" circuitBreakerMax: description: Circuit breaker rate cap. See Automation.circuit_breaker_max for semantics. format: uint32 readOnly: false type: integer circuitBreakerPeriod: description: The circuitBreakerPeriod field. enum: - CIRCUIT_BREAKER_PERIOD_UNSPECIFIED - CIRCUIT_BREAKER_PERIOD_HOUR - CIRCUIT_BREAKER_PERIOD_DAY - CIRCUIT_BREAKER_PERIOD_WEEK - CIRCUIT_BREAKER_PERIOD_MONTH readOnly: false type: string x-speakeasy-unknown-values: allow context: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationContext' - type: "null" description: description: Optional description explaining the automation's purpose. readOnly: false type: - string - "null" displayName: description: Human-readable name for the automation. readOnly: false type: - string - "null" draftAutomationSteps: description: Steps saved as a draft that have not yet been published. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationStep' readOnly: false type: - array - "null" draftTriggers: description: Triggers saved as a draft that have not yet been published. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTrigger' readOnly: false type: - array - "null" enabled: description: Whether the automation is active and eligible for execution. readOnly: false type: - boolean - "null" isDraft: description: Whether this automation is in draft mode. Draft automations are not eligible for trigger-based execution. readOnly: false type: - boolean - "null" triggers: description: Triggers that determine when the automation runs. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTrigger' readOnly: false type: - array - "null" title: Create Automation Request type: object x-speakeasy-name-override: AutomationsCreateAutomationRequest c1.api.automations.v1.CreateAutomationResponse: description: The CreateAutomationResponse message. properties: automation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.Automation' - type: "null" webhookCapabilityUrl: description: |- One-time absolute webhook URL for capability URL authentication, shown once at creation time. Contains the full URL including the embedded token (e.g. https://tenant.conductorone.com/api/v1/webhooks/incoming/{id}/t/{token}). Populated only when the webhook trigger uses capability URL authentication. readOnly: false type: string webhookHmacSecret: description: |- One-time HMAC shared secret, shown once at creation time. Populated only when the webhook trigger uses HMAC authentication. readOnly: false type: - string - "null" title: Create Automation Response type: object x-speakeasy-name-override: AutomationsCreateAutomationResponse c1.api.automations.v1.CreateRevokeTasks: description: The CreateRevokeTasks message. properties: appEntitlementRefs: description: The appEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" appEntitlementRefsCel: description: The appEntitlementRefsCel field. readOnly: false type: - string - "null" excludedAppEntitlementRefs: description: The excludedAppEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" excludedAppEntitlementRefsCel: description: The excludedAppEntitlementRefsCel field. readOnly: false type: - string - "null" revokeAll: description: The revokeAll field. readOnly: false type: - boolean - "null" useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdCel: description: The userIdCel field. readOnly: false type: - string - "null" userRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" title: Create Revoke Tasks type: object x-speakeasy-name-override: CreateRevokeTasks c1.api.automations.v1.CreateRevokeTasksV2: description: | The CreateRevokeTasksV2 message. This message contains a oneof named user. Only a single field of the following list may be set at a time: - userIdCel - userRef - useSubjectUser This message contains a oneof named inclusion. Only a single field of the following list may be set at a time: - inclusionList - inclusionAll - inclusionCriteria - inclusionListCel This message contains a oneof named exclusion. Only a single field of the following list may be set at a time: - exclusionNone - exclusionList - exclusionCriteria - exclusionListCel nullable: true properties: exclusionCriteria: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementExclusionCriteria' exclusionList: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementExclusionList' exclusionListCel: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementExclusionListCel' exclusionNone: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementExclusionNone' inclusionAll: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionAll' inclusionCriteria: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionCriteria' inclusionList: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionList' inclusionListCel: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionListCel' useSubjectUser: description: |- The useSubjectUser field. This field is part of the `user` oneof. See the documentation for `c1.api.automations.v1.CreateRevokeTasksV2` for more details. nullable: true readOnly: false type: boolean userIdCel: description: |- The userIdCel field. This field is part of the `user` oneof. See the documentation for `c1.api.automations.v1.CreateRevokeTasksV2` for more details. nullable: true readOnly: false type: string userRef: $ref: '#/components/schemas/c1.api.user.v1.UserRef' title: Create Revoke Tasks V 2 type: object x-speakeasy-name-override: CreateRevokeTasksV2 c1.api.automations.v1.DeleteAutomationRequestInput: description: The DeleteAutomationRequest message. title: Delete Automation Request type: object x-speakeasy-name-override: AutomationsDeleteAutomationRequest c1.api.automations.v1.DeleteAutomationResponse: description: The DeleteAutomationResponse message. title: Delete Automation Response type: object x-speakeasy-name-override: AutomationsDeleteAutomationResponse c1.api.automations.v1.DisabledReasonCircuitBreaker: description: |- DisabledReasonCircuitBreaker carries the trip context when an automation has been auto-disabled by its rate cap. Returned on the parent Automation when read; not directly settable. properties: observedCount: description: Observed execution count in the period at trip time. format: uint32 readOnly: false type: integer period: description: Snapshot of the period at trip time. enum: - CIRCUIT_BREAKER_PERIOD_UNSPECIFIED - CIRCUIT_BREAKER_PERIOD_HOUR - CIRCUIT_BREAKER_PERIOD_DAY - CIRCUIT_BREAKER_PERIOD_WEEK - CIRCUIT_BREAKER_PERIOD_MONTH readOnly: false type: string x-speakeasy-unknown-values: allow threshold: description: Snapshot of the threshold at trip time. format: uint32 readOnly: false type: integer trippedAt: format: date-time readOnly: false type: string title: Disabled Reason Circuit Breaker type: object x-speakeasy-name-override: DisabledReasonCircuitBreaker c1.api.automations.v1.EntitlementExclusionCriteria: description: The EntitlementExclusionCriteria message. nullable: true properties: excludedAppIds: description: The excludedAppIds field. items: type: string nullable: true readOnly: false type: array excludedComplianceFrameworkIds: description: The excludedComplianceFrameworkIds field. items: type: string nullable: true readOnly: false type: array excludedResourceTypeIds: description: The excludedResourceTypeIds field. items: type: string nullable: true readOnly: false type: array excludedRiskLevelIds: description: The excludedRiskLevelIds field. items: type: string nullable: true readOnly: false type: array title: Entitlement Exclusion Criteria type: object x-speakeasy-name-override: EntitlementExclusionCriteria c1.api.automations.v1.EntitlementExclusionList: description: The EntitlementExclusionList message. nullable: true properties: excludedAppEntitlementRefs: description: The excludedAppEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array title: Entitlement Exclusion List type: object x-speakeasy-name-override: EntitlementExclusionList c1.api.automations.v1.EntitlementExclusionListCel: description: The EntitlementExclusionListCel message. nullable: true properties: excludedAppEntitlementRefsCel: description: The excludedAppEntitlementRefsCel field. readOnly: false type: string title: Entitlement Exclusion List Cel type: object x-speakeasy-name-override: EntitlementExclusionListCel c1.api.automations.v1.EntitlementExclusionNone: description: The EntitlementExclusionNone message. nullable: true title: Entitlement Exclusion None type: object x-speakeasy-name-override: EntitlementExclusionNone c1.api.automations.v1.EntitlementInclusionAll: description: The EntitlementInclusionAll message. nullable: true title: Entitlement Inclusion All type: object x-speakeasy-name-override: EntitlementInclusionAll c1.api.automations.v1.EntitlementInclusionCriteria: description: The EntitlementInclusionCriteria message. nullable: true properties: appIds: description: The appIds field. items: type: string nullable: true readOnly: false type: array complianceFrameworkIds: description: The complianceFrameworkIds field. items: type: string nullable: true readOnly: false type: array resourceTypeIds: description: The resourceTypeIds field. items: type: string nullable: true readOnly: false type: array riskLevelIds: description: The riskLevelIds field. items: type: string nullable: true readOnly: false type: array title: Entitlement Inclusion Criteria type: object x-speakeasy-name-override: EntitlementInclusionCriteria c1.api.automations.v1.EntitlementInclusionList: description: The EntitlementInclusionList message. nullable: true properties: appEntitlementRefs: description: The appEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array title: Entitlement Inclusion List type: object x-speakeasy-name-override: EntitlementInclusionList c1.api.automations.v1.EntitlementInclusionListCel: description: The EntitlementInclusionListCel message. nullable: true properties: appEntitlementRefsCel: description: The appEntitlementRefsCel field. readOnly: false type: string title: Entitlement Inclusion List Cel type: object x-speakeasy-name-override: EntitlementInclusionListCel c1.api.automations.v1.EvaluateExpressions: description: The EvaluateExpressions message. nullable: true properties: expressions: description: The expressions field. items: $ref: '#/components/schemas/c1.api.automations.v1.Expression' nullable: true readOnly: false type: array title: Evaluate Expressions type: object x-speakeasy-name-override: EvaluateExpressions c1.api.automations.v1.ExecuteAutomationRequestInput: description: The ExecuteAutomationRequest message. properties: context: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationContext' - type: "null" title: Execute Automation Request type: object x-speakeasy-name-override: ExecuteAutomationRequest c1.api.automations.v1.ExecuteAutomationResponse: description: The ExecuteAutomationResponse message. properties: executionId: description: The unique identifier of the newly created execution. format: int64 readOnly: false type: - string - "null" title: Execute Automation Response type: object x-speakeasy-name-override: ExecuteAutomationResponse c1.api.automations.v1.Expression: description: The Expression message. properties: expressionCel: description: The expressionCel field. readOnly: false type: string isSecret: description: The isSecret field. readOnly: false type: boolean key: description: The key field. readOnly: false type: string title: Expression type: object x-speakeasy-name-override: Expression c1.api.automations.v1.GeneratePassword: description: The GeneratePassword message. nullable: true properties: passwordPolicyId: deprecated: true description: 'Deprecated: password policy ID lookup is no longer used.' readOnly: false type: string policy: $ref: '#/components/schemas/c1.api.automations.v1.GeneratePasswordPolicy' title: Generate Password type: object x-speakeasy-name-override: GeneratePassword c1.api.automations.v1.GeneratePasswordPolicy: description: | GeneratePasswordPolicy defines inline password generation rules. This message contains a oneof named character_rules. Only a single field of the following list may be set at a time: - noRestrictions - customCharacters - excludedCharacters properties: customCharacters: description: |- The customCharacters field. This field is part of the `character_rules` oneof. See the documentation for `c1.api.automations.v1.GeneratePasswordPolicy` for more details. nullable: true readOnly: false type: string excludedCharacters: description: |- The excludedCharacters field. This field is part of the `character_rules` oneof. See the documentation for `c1.api.automations.v1.GeneratePasswordPolicy` for more details. nullable: true readOnly: false type: string maxCharacterCount: description: The maxCharacterCount field. format: int32 readOnly: false type: integer minCharacterCount: description: The minCharacterCount field. format: int32 readOnly: false type: integer noRestrictions: description: |- The noRestrictions field. This field is part of the `character_rules` oneof. See the documentation for `c1.api.automations.v1.GeneratePasswordPolicy` for more details. nullable: true readOnly: false type: boolean requireLowercase: description: The requireLowercase field. readOnly: false type: boolean requireNumbers: description: The requireNumbers field. readOnly: false type: boolean requireSpecialCharacters: description: The requireSpecialCharacters field. readOnly: false type: boolean requireUppercase: description: The requireUppercase field. readOnly: false type: boolean title: Generate Password Policy type: object x-speakeasy-name-override: GeneratePasswordPolicy c1.api.automations.v1.GetAutomationExecutionResponse: description: The GetAutomationExecutionResponse message. properties: automationExecution: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecution' - type: "null" expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array view: $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecutionView' title: Get Automation Execution Response type: object x-speakeasy-name-override: GetAutomationExecutionResponse c1.api.automations.v1.GetAutomationResponse: description: The GetAutomationResponse message. properties: automation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.Automation' - type: "null" title: Get Automation Response type: object x-speakeasy-name-override: GetAutomationResponse c1.api.automations.v1.GrantDeletedTrigger: description: The GrantDeletedTrigger message. properties: grantTriggerFilter: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantTriggerFilter' - type: "null" title: Grant Deleted Trigger type: object x-speakeasy-name-override: GrantDeletedTrigger c1.api.automations.v1.GrantEntitlementExclusionCriteria: description: The GrantEntitlementExclusionCriteria message. nullable: true properties: excludedAppIds: description: The excludedAppIds field. items: type: string nullable: true readOnly: false type: array excludedComplianceFrameworkIds: description: The excludedComplianceFrameworkIds field. items: type: string nullable: true readOnly: false type: array excludedRiskLevelIds: description: The excludedRiskLevelIds field. items: type: string nullable: true readOnly: false type: array title: Grant Entitlement Exclusion Criteria type: object x-speakeasy-name-override: GrantEntitlementExclusionCriteria c1.api.automations.v1.GrantEntitlementExclusionList: description: The GrantEntitlementExclusionList message. nullable: true properties: excludedAppEntitlementRefs: description: The excludedAppEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array title: Grant Entitlement Exclusion List type: object x-speakeasy-name-override: GrantEntitlementExclusionList c1.api.automations.v1.GrantEntitlementExclusionListCel: description: The GrantEntitlementExclusionListCel message. nullable: true properties: excludedAppEntitlementRefsCel: description: The excludedAppEntitlementRefsCel field. readOnly: false type: string title: Grant Entitlement Exclusion List Cel type: object x-speakeasy-name-override: GrantEntitlementExclusionListCel c1.api.automations.v1.GrantEntitlementExclusionNone: description: The GrantEntitlementExclusionNone message. nullable: true title: Grant Entitlement Exclusion None type: object x-speakeasy-name-override: GrantEntitlementExclusionNone c1.api.automations.v1.GrantEntitlementInclusionCriteria: description: The GrantEntitlementInclusionCriteria message. nullable: true properties: appIds: description: The appIds field. items: type: string nullable: true readOnly: false type: array complianceFrameworkIds: description: The complianceFrameworkIds field. items: type: string nullable: true readOnly: false type: array riskLevelIds: description: The riskLevelIds field. items: type: string nullable: true readOnly: false type: array title: Grant Entitlement Inclusion Criteria type: object x-speakeasy-name-override: GrantEntitlementInclusionCriteria c1.api.automations.v1.GrantEntitlementInclusionList: description: The GrantEntitlementInclusionList message. nullable: true properties: appEntitlementRefs: description: The appEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' nullable: true readOnly: false type: array title: Grant Entitlement Inclusion List type: object x-speakeasy-name-override: GrantEntitlementInclusionList c1.api.automations.v1.GrantEntitlementInclusionListCel: description: The GrantEntitlementInclusionListCel message. nullable: true properties: appEntitlementRefsCel: description: The appEntitlementRefsCel field. readOnly: false type: string title: Grant Entitlement Inclusion List Cel type: object x-speakeasy-name-override: GrantEntitlementInclusionListCel c1.api.automations.v1.GrantEntitlements: description: | The GrantEntitlements message. This message contains a oneof named inclusion. Only a single field of the following list may be set at a time: - inclusionList - inclusionCriteria - inclusionListCel This message contains a oneof named exclusion. Only a single field of the following list may be set at a time: - exclusionNone - exclusionList - exclusionCriteria - exclusionListCel properties: exclusionCriteria: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementExclusionCriteria' exclusionList: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementExclusionList' exclusionListCel: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementExclusionListCel' exclusionNone: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementExclusionNone' inclusionCriteria: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementInclusionCriteria' inclusionList: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementInclusionList' inclusionListCel: $ref: '#/components/schemas/c1.api.automations.v1.GrantEntitlementInclusionListCel' useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdCel: description: The userIdCel field. readOnly: false type: - string - "null" userRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" title: Grant Entitlements type: object x-speakeasy-name-override: GrantEntitlements c1.api.automations.v1.GrantFoundTrigger: description: The GrantFoundTrigger message. properties: grantTriggerFilter: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantTriggerFilter' - type: "null" title: Grant Found Trigger type: object x-speakeasy-name-override: GrantFoundTrigger c1.api.automations.v1.GrantTriggerFilter: description: | The GrantTriggerFilter message. This message contains a oneof named entitlement_inclusion. Only a single field of the following list may be set at a time: - inclusionList - inclusionAll - inclusionCriteria - inclusionListCel properties: accountFilter: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantTriggerFilter.AccountFilter' - type: "null" grantFilter: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.GrantTriggerFilter.GrantFilter' - type: "null" inclusionAll: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionAll' inclusionCriteria: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionCriteria' inclusionList: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionList' inclusionListCel: $ref: '#/components/schemas/c1.api.automations.v1.EntitlementInclusionListCel' title: Grant Trigger Filter type: object x-speakeasy-name-override: GrantTriggerFilter c1.api.automations.v1.GrantTriggerFilter.AccountFilter: description: The AccountFilter message. properties: accountType: description: The accountType field. enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Account Filter type: object x-speakeasy-name-override: AccountFilter c1.api.automations.v1.GrantTriggerFilter.GrantFilter: description: The GrantFilter message. properties: grantFilterType: description: The grantFilterType field. enum: - GRANT_FILTER_TYPE_UNSPECIFIED - GRANT_FILTER_TYPE_PERMANENT - GRANT_FILTER_TYPE_TEMPORARY readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow grantJustificationType: description: The grantJustificationType field. enum: - GRANT_JUSTIFICATION_TYPE_UNSPECIFIED - GRANT_JUSTIFICATION_TYPE_ALL - GRANT_JUSTIFICATION_TYPE_CONDUCTOR_ONE - GRANT_JUSTIFICATION_TYPE_DIRECT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow grantSourceFilter: description: The grantSourceFilter field. enum: - GRANT_SOURCE_FILTER_UNSPECIFIED - GRANT_SOURCE_FILTER_DIRECT - GRANT_SOURCE_FILTER_INHERITED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Grant Filter type: object x-speakeasy-name-override: GrantFilter c1.api.automations.v1.ListAutomationExecutionsResponse: description: The ListAutomationExecutionsResponse message. properties: automationExecutions: description: The page of automation executions. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecution' readOnly: false type: - array - "null" nextPageToken: description: Token to retrieve the next page of results, empty when no more results exist. readOnly: false type: - string - "null" title: List Automation Executions Response type: object x-speakeasy-name-override: ListAutomationExecutionsResponse c1.api.automations.v1.ListAutomationsResponse: description: The ListAutomationsResponse message. properties: list: description: The page of automations. items: $ref: '#/components/schemas/c1.api.automations.v1.Automation' readOnly: false type: - array - "null" nextPageToken: description: Token to retrieve the next page of results, empty when no more results exist. readOnly: false type: - string - "null" title: List Automations Response type: object x-speakeasy-name-override: ListAutomationsResponse c1.api.automations.v1.ReassignAction: description: | The ReassignAction message. This message contains a oneof named assignee_user_identifier. Only a single field of the following list may be set at a time: - assigneeUserIdCel - assigneeUserRef This message contains a oneof named subject_user_identifier. Only a single field of the following list may be set at a time: - subjectUserIdCel - subjectUserRef properties: assigneeUserIdCel: description: |- The assigneeUserIdCel field. This field is part of the `assignee_user_identifier` oneof. See the documentation for `c1.api.automations.v1.ReassignAction` for more details. readOnly: false type: - string - "null" assigneeUserRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" subjectUserIdCel: description: |- The subjectUserIdCel field. This field is part of the `subject_user_identifier` oneof. See the documentation for `c1.api.automations.v1.ReassignAction` for more details. readOnly: false type: - string - "null" subjectUserRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" title: Reassign Action type: object x-speakeasy-name-override: ReassignAction c1.api.automations.v1.RemoveFromDelegation: description: | RemoveFromDelegation: find all users that have the target user as their delegated user, and modify the delegation. This message contains a oneof named replacement_user. Only a single field of the following list may be set at a time: - replacementUserIdCel - replacementUserRef properties: replacementUserIdCel: description: |- The user who will replace the target user's delegation This field is part of the `replacement_user` oneof. See the documentation for `c1.api.automations.v1.RemoveFromDelegation` for more details. readOnly: false type: - string - "null" replacementUserRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdCel: description: The userIdCel field. readOnly: false type: - string - "null" userRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" title: Remove From Delegation type: object x-speakeasy-name-override: RemoveFromDelegation c1.api.automations.v1.ResolvePausedAutomationExecutionsRequestInput: description: The ResolvePausedAutomationExecutionsRequest message. properties: decision: description: Whether to run or cancel the paused executions. enum: - PAUSED_EXECUTION_DECISION_UNSPECIFIED - PAUSED_EXECUTION_DECISION_RUN - PAUSED_EXECUTION_DECISION_CANCEL readOnly: false type: string x-speakeasy-unknown-values: allow reason: description: |- Optional human-readable reason for the resolution decision. Stored on the audit row (paused_run / paused_cancelled events) for post-mortem and compliance use. Surfaced in the FE as a required field on CANCEL so admins capture why bulk-cancellation happened. Up to 1024 bytes. readOnly: false type: string title: Resolve Paused Automation Executions Request type: object x-speakeasy-name-override: ResolvePausedAutomationExecutionsRequest c1.api.automations.v1.ResolvePausedAutomationExecutionsResponse: description: The ResolvePausedAutomationExecutionsResponse message. properties: erroredCount: description: |- The number of paused executions that were attempted but failed to resolve (e.g., a transient Dynamo error during the per-execution mutate). Per-execution failures do not abort the run — the loop continues, the failures are recorded on the audit row, and the affected executions remain in PAUSED_BY_CIRCUIT_BREAKER state so a subsequent call can retry them. Always 0 in the happy path. format: uint32 readOnly: false type: integer pausedCount: description: |- The number of paused executions successfully resolved by this call (transitioned to PENDING for RUN, TERMINATE for CANCEL). Paused executions are processed inline, paginated server-side. For very large paused sets (10K+) this RPC may take seconds to minutes; callers should treat the request as long-running. format: uint32 readOnly: false type: integer title: Resolve Paused Automation Executions Response type: object x-speakeasy-name-override: ResolvePausedAutomationExecutionsResponse c1.api.automations.v1.RunAutomation: description: | RunAutomation: kick off the execution of an automation template. This message contains a oneof named automation_template. Only a single field of the following list may be set at a time: - automationTemplateRef - automationTemplateIdCel properties: automationTemplateIdCel: description: |- The automationTemplateIdCel field. This field is part of the `automation_template` oneof. See the documentation for `c1.api.automations.v1.RunAutomation` for more details. readOnly: false type: - string - "null" automationTemplateRef: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationTemplateRef' - type: "null" context: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationContext' - type: "null" title: Run Automation type: object x-speakeasy-name-override: RunAutomation c1.api.automations.v1.RunDelayed: description: The RunDelayed message. properties: coldStartDelayDays: description: The coldStartDelayDays field. format: uint32 readOnly: false type: integer required: - coldStartDelayDays title: Run Delayed type: object x-speakeasy-name-override: RunDelayed c1.api.automations.v1.RunImmediately: description: No fields needed; this just indicates the trigger should run immediately title: Run Immediately type: object x-speakeasy-name-override: RunImmediately c1.api.automations.v1.ScheduleTrigger: description: The ScheduleTrigger message. properties: advanced: description: The advanced field. readOnly: false type: - boolean - "null" condition: description: The condition field. readOnly: false type: - string - "null" cronSpec: description: The cronSpec field. readOnly: false type: - string - "null" skipIfTrueCel: deprecated: true description: The skipIfTrueCel field. readOnly: false type: - string - "null" start: oneOf: - format: date-time readOnly: false type: string - type: "null" timezone: description: The timezone field. readOnly: false type: - string - "null" title: Schedule Trigger type: object x-speakeasy-name-override: ScheduleTrigger c1.api.automations.v1.ScheduleTriggerAppUser: description: The ScheduleTriggerAppUser message. properties: appId: description: The appId field. readOnly: false type: - string - "null" condition: description: The condition field. readOnly: false type: - string - "null" cronSpec: description: The cronSpec field. readOnly: false type: - string - "null" start: oneOf: - format: date-time readOnly: false type: string - type: "null" timezone: description: The timezone field. readOnly: false type: - string - "null" title: Schedule Trigger App User type: object x-speakeasy-name-override: ScheduleTriggerAppUser c1.api.automations.v1.ScheduleTriggerNoUser: description: |- ScheduleTriggerNoUser fires on a cron schedule with no subject user (e.g. reports, syncs, orchestration). Minimum cron interval is enforced at 1 hour in validation. nullable: true properties: advanced: description: The advanced field. readOnly: false type: boolean cronSpec: description: The cronSpec field. readOnly: false type: string start: format: date-time readOnly: false type: string timezone: description: The timezone field. readOnly: false type: string title: Schedule Trigger No User type: object x-speakeasy-name-override: ScheduleTriggerNoUser c1.api.automations.v1.SearchAllAutomationExecutionsRequest: description: The SearchAllAutomationExecutionsRequest message. properties: appIds: description: Filter to executions associated with one or more apps. items: type: string nullable: true readOnly: false type: array automationTemplateIds: description: Filter to one or more specific automation templates. items: type: string nullable: true readOnly: false type: array executionStates: description: Filter by execution state (e.g. DONE, ERROR). items: enum: - AUTOMATION_EXECUTION_STATE_UNSPECIFIED - AUTOMATION_EXECUTION_STATE_PENDING - AUTOMATION_EXECUTION_STATE_CREATING - AUTOMATION_EXECUTION_STATE_GET_STEP - AUTOMATION_EXECUTION_STATE_PROCESS_STEP - AUTOMATION_EXECUTION_STATE_COMPLETE_STEP - AUTOMATION_EXECUTION_STATE_DONE - AUTOMATION_EXECUTION_STATE_ERROR - AUTOMATION_EXECUTION_STATE_TERMINATE - AUTOMATION_EXECUTION_STATE_WAITING type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array expandMask: $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecutionExpandMask' pageSize: description: Maximum number of results to return per page. format: int32 readOnly: false type: integer pageToken: description: Pagination token from a previous SearchAllAutomationExecutionsResponse. readOnly: false type: string subjectUserIds: description: Filter to executions where one or more C1 users are subjects. items: type: string nullable: true readOnly: false type: array title: Search All Automation Executions Request type: object x-speakeasy-name-override: SearchAllAutomationExecutionsRequest c1.api.automations.v1.SearchAllAutomationExecutionsResponse: description: The SearchAllAutomationExecutionsResponse message. properties: expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array list: description: The page of execution views matching the search criteria. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecutionView' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page of results, empty when no more results exist. readOnly: false type: string title: Search All Automation Executions Response type: object x-speakeasy-name-override: SearchAllAutomationExecutionsResponse c1.api.automations.v1.SearchAutomationExecutionsRequest: description: The SearchAutomationExecutionsRequest message. properties: automationTemplateId: description: Filter results to executions of this automation template. readOnly: false type: - string - "null" executionId: description: Filter results to a specific execution by its numeric identifier. format: int64 readOnly: false type: - string - "null" executionStepStates: description: Filter results to executions in any of the specified states. items: enum: - AUTOMATION_EXECUTION_STATE_UNSPECIFIED - AUTOMATION_EXECUTION_STATE_PENDING - AUTOMATION_EXECUTION_STATE_CREATING - AUTOMATION_EXECUTION_STATE_GET_STEP - AUTOMATION_EXECUTION_STATE_PROCESS_STEP - AUTOMATION_EXECUTION_STATE_COMPLETE_STEP - AUTOMATION_EXECUTION_STATE_DONE - AUTOMATION_EXECUTION_STATE_ERROR - AUTOMATION_EXECUTION_STATE_TERMINATE - AUTOMATION_EXECUTION_STATE_WAITING type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecutionExpandMask' - type: "null" pageSize: description: Maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: Pagination token from a previous SearchAutomationExecutionsResponse. readOnly: false type: - string - "null" query: description: Free-text search query to filter executions. readOnly: false type: - string - "null" refs: description: Restrict results to specific execution references. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecutionRef' readOnly: false type: - array - "null" title: Search Automation Executions Request type: object x-speakeasy-name-override: SearchAutomationExecutionsRequest c1.api.automations.v1.SearchAutomationExecutionsResponse: description: The SearchAutomationExecutionsResponse message. properties: expanded: description: Related objects requested via the expand mask. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The page of execution views matching the search criteria. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationExecutionView' readOnly: false type: - array - "null" nextPageToken: description: Token to retrieve the next page of results, empty when no more results exist. readOnly: false type: - string - "null" title: Search Automation Executions Response type: object x-speakeasy-name-override: SearchAutomationExecutionsResponse c1.api.automations.v1.SearchAutomationTemplateVersionsRequest: description: The SearchAutomationTemplateVersionsRequest message. properties: automationTemplateId: description: The automation template whose version history to search. readOnly: false type: - string - "null" pageSize: description: Maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: Pagination token from a previous SearchAutomationTemplateVersionsResponse. readOnly: false type: - string - "null" title: Search Automation Template Versions Request type: object x-speakeasy-name-override: SearchAutomationTemplateVersionsRequest c1.api.automations.v1.SearchAutomationTemplateVersionsResponse: description: The SearchAutomationTemplateVersionsResponse message. properties: list: description: The page of template versions matching the search criteria. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTemplateVersion' readOnly: false type: - array - "null" nextPageToken: description: Token to retrieve the next page of results, empty when no more results exist. readOnly: false type: - string - "null" title: Search Automation Template Versions Response type: object x-speakeasy-name-override: SearchAutomationTemplateVersionsResponse c1.api.automations.v1.SearchAutomationsRequest: description: The SearchAutomationsRequest message. properties: appId: description: Filter results to automations belonging to this application. readOnly: false type: - string - "null" appIds: description: |- Filter results to automations belonging to any of the specified apps. Supersedes the singular `app_id` field when non-empty; when empty, the server falls back to `app_id` for backward compatibility. items: type: string nullable: true readOnly: false type: array direction: description: |- Direction to sort in. Unspecified falls back to ASC when sort_field is set; when sort_field is also unspecified, the server default order (created_at DESC) applies. enum: - SORT_DIRECTION_UNSPECIFIED - SORT_DIRECTION_ASC - SORT_DIRECTION_DESC readOnly: false type: string x-speakeasy-unknown-values: allow isDraft: description: |- Tri-state draft filter. Unset = include both drafts and published; `true` = drafts only; `false` = published only. nullable: true readOnly: false type: boolean pageSize: description: Maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: Pagination token from a previous SearchAutomationsResponse. readOnly: false type: - string - "null" query: description: Free-text search query to filter automations by name or description. readOnly: false type: - string - "null" refs: description: Restrict results to automations matching these template references. items: $ref: '#/components/schemas/c1.api.automations.v1.AutomationTemplateRef' readOnly: false type: - array - "null" sortField: description: Column to sort by. Unspecified (0) means sort by created_at desc (server default). enum: - AUTOMATION_SORT_FIELD_UNSPECIFIED - AUTOMATION_SORT_FIELD_DISPLAY_NAME - AUTOMATION_SORT_FIELD_CREATED_AT - AUTOMATION_SORT_FIELD_LAST_EXECUTED_AT - AUTOMATION_SORT_FIELD_ENABLED - AUTOMATION_SORT_FIELD_PRIMARY_TRIGGER_TYPE readOnly: false type: string x-speakeasy-unknown-values: allow statuses: description: |- Filter results by automation status. Empty or containing both ON and OFF applies no status filter. items: enum: - AUTOMATION_STATUS_FILTER_UNSPECIFIED - AUTOMATION_STATUS_FILTER_ON - AUTOMATION_STATUS_FILTER_OFF type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array triggerTypes: description: Filter results to automations with any of the specified trigger types. items: enum: - TRIGGER_TYPE_UNSPECIFIED - TRIGGER_TYPE_USER_PROFILE_CHANGE - TRIGGER_TYPE_APP_USER_CREATE - TRIGGER_TYPE_APP_USER_UPDATE - TRIGGER_TYPE_UNUSED_ACCESS - TRIGGER_TYPE_USER_CREATED - TRIGGER_TYPE_GRANT_FOUND - TRIGGER_TYPE_GRANT_DELETED - TRIGGER_TYPE_WEBHOOK - TRIGGER_TYPE_SCHEDULE - TRIGGER_TYPE_FORM - TRIGGER_TYPE_SCHEDULE_APP_USER - TRIGGER_TYPE_ACCESS_CONFLICT - TRIGGER_TYPE_SCHEDULE_NO_USER type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" title: Search Automations Request type: object x-speakeasy-name-override: SearchAutomationsRequest c1.api.automations.v1.SearchAutomationsResponse: description: The SearchAutomationsResponse message. properties: list: description: The page of automations matching the search criteria. items: $ref: '#/components/schemas/c1.api.automations.v1.Automation' readOnly: false type: - array - "null" nextPageToken: description: Token to retrieve the next page of results, empty when no more results exist. readOnly: false type: - string - "null" title: Search Automations Response type: object x-speakeasy-name-override: SearchAutomationsResponse c1.api.automations.v1.SendEmail: description: The SendEmail message. properties: body: description: The body field. readOnly: false type: - string - "null" email: deprecated: true description: |- Deprecated: use email_cel instead. Static email field shipped behind FF 541 (SKU_MANUAL) with zero tenant enablement. CEL subsumes static: '"ops@example.com"' is valid CEL. readOnly: false type: string emailCel: description: |- CEL expression resolving to one or more email addresses (string or list). Evaluated against the workflow execution context (trigger + completed steps). Static emails work too: '"ops@example.com"' is valid CEL. Supports list for multiple recipients: '["a@x.com", "b@x.com"]'. Requires the tenant to have a TenantEmailProvider configured. readOnly: false type: string subject: description: The subject field. readOnly: false type: - string - "null" title: description: The title field. readOnly: false type: - string - "null" useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdsCel: description: The userIdsCel field. readOnly: false type: - string - "null" userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" title: Send Email type: object x-speakeasy-name-override: SendEmail c1.api.automations.v1.SendSlackMessage: description: | SendSlackMessage posts to a channel or DMs one or more users. Delivery mode is inferred from which fields are populated: DM if any user field is set (use_subject_user, user_ids_cel, user_refs), otherwise channel. Priority for DM recipient resolution: use_subject_user > user_ids_cel > user_refs. This message contains a oneof named channel. Only a single field of the following list may be set at a time: - channelName - channelNameCel properties: body: description: The body field. readOnly: false type: - string - "null" channelName: description: |- The channelName field. This field is part of the `channel` oneof. See the documentation for `c1.api.automations.v1.SendSlackMessage` for more details. readOnly: false type: - string - "null" channelNameCel: description: |- The channelNameCel field. This field is part of the `channel` oneof. See the documentation for `c1.api.automations.v1.SendSlackMessage` for more details. readOnly: false type: - string - "null" useSubjectUser: description: The useSubjectUser field. readOnly: false type: boolean userIdsCel: description: The userIdsCel field. readOnly: false type: string userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' nullable: true readOnly: false type: array title: Send Slack Message type: object x-speakeasy-name-override: SendSlackMessage c1.api.automations.v1.SetCredential: description: | SetCredential submits a RotateCredentials baton task to the target connector, re-encrypting the given password CEL expression with the connector's public JWK. This message contains a oneof named connector_identifier. Only a single field of the following list may be set at a time: - connectorRef nullable: true properties: accountIdCel: description: The accountIdCel field. readOnly: false type: string connectorRef: $ref: '#/components/schemas/c1.api.app.v1.ConnectorRef' passwordCel: description: The passwordCel field. readOnly: false type: string title: Set Credential type: object x-speakeasy-name-override: SetCredential c1.api.automations.v1.StoreCredential: description: |- StoreCredential stores a credential from GeneratePassword in a vault. Supports Paper Vault (SSO/email) and App Vault (entitlement-bound). nullable: true properties: appIdCel: description: CEL expression that resolves to app ID (App Vault only) readOnly: false type: string authType: description: Authentication type for the paper vault recipient (Paper Vault only) enum: - STORE_CREDENTIAL_AUTH_TYPE_UNSPECIFIED - STORE_CREDENTIAL_AUTH_TYPE_SSO_INTERNAL - STORE_CREDENTIAL_AUTH_TYPE_VERIFY_EMAIL readOnly: false type: string x-speakeasy-unknown-values: allow credentialCel: description: CEL expression that resolves to the encrypted credential from GeneratePassword readOnly: false type: string expiry: format: duration readOnly: false type: string labelCel: description: Optional display label for the vault readOnly: false type: string maxViews: description: Maximum number of views (0 = unlimited, default 1) (Paper Vault only) format: uint32 readOnly: false type: integer recipientCel: description: CEL expression resolving to the C1 user ID of the recipient (SSO_INTERNAL / App Vault) readOnly: false type: string recipientEmailCel: description: CEL expression resolving to a recipient email address (Paper Vault + VERIFY_EMAIL only) readOnly: false type: string ttl: format: duration readOnly: false type: string vaultType: description: 'Vault type selector (default: PAPER_VAULT for backward compatibility)' enum: - STORE_CREDENTIAL_VAULT_TYPE_UNSPECIFIED - STORE_CREDENTIAL_VAULT_TYPE_PAPER_VAULT - STORE_CREDENTIAL_VAULT_TYPE_APP_VAULT readOnly: false type: string x-speakeasy-unknown-values: allow title: Store Credential type: object x-speakeasy-name-override: StoreCredential c1.api.automations.v1.TaskAction: description: | The TaskAction message. This message contains a oneof named action. Only a single field of the following list may be set at a time: - close - reassign properties: close: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.CloseAction' - type: "null" reassign: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.ReassignAction' - type: "null" taskTypes: description: The taskTypes field. items: enum: - TASK_TYPE_UNSPECIFIED - TASK_TYPE_REQUEST - TASK_TYPE_REVOKE - TASK_TYPE_REVIEW type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" taskUserRelation: description: The taskUserRelation field. enum: - TASK_USER_RELATION_UNSPECIFIED - TASK_USER_RELATION_ASSIGNEE - TASK_USER_RELATION_SUBJECT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Task Action type: object x-speakeasy-name-override: TaskAction c1.api.automations.v1.TerminateAutomationRequestInput: description: The TerminateAutomationRequest message. title: Terminate Automation Request type: object x-speakeasy-name-override: TerminateAutomationRequest c1.api.automations.v1.TerminateAutomationResponse: description: The TerminateAutomationResponse message. title: Terminate Automation Response type: object x-speakeasy-name-override: TerminateAutomationResponse c1.api.automations.v1.UnenrollFromAllAccessProfiles: description: The UnenrollFromAllAccessProfiles message. properties: catalogIds: description: Optional list of catalog IDs to unenroll from. If empty, unenroll from all catalogs. items: type: string readOnly: false type: - array - "null" catalogIdsCel: description: CEL expression to dynamically select catalog IDs. If provided, overrides catalog_ids. readOnly: false type: - string - "null" useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdsCel: description: The userIdsCel field. readOnly: false type: - string - "null" userRefs: description: The userRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" title: Unenroll From All Access Profiles type: object x-speakeasy-name-override: UnenrollFromAllAccessProfiles c1.api.automations.v1.UpdateAutomationRequestInput: description: The UpdateAutomationRequest message. properties: automation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.Automation' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update Automation Request type: object x-speakeasy-name-override: UpdateAutomationRequest c1.api.automations.v1.UpdateAutomationResponse: description: The UpdateAutomationResponse message. properties: automation: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.Automation' - type: "null" webhookCapabilityUrl: description: |- One-time absolute webhook URL for capability URL authentication, shown once when the trigger is saved. Contains the full URL including the embedded token (e.g. https://tenant.conductorone.com/api/v1/webhooks/incoming/{id}/t/{token}). Populated only when the webhook trigger uses capability URL authentication. readOnly: false type: string webhookHmacSecret: description: |- One-time HMAC shared secret, shown once when the trigger is saved. Populated only when the webhook trigger uses HMAC authentication. readOnly: false type: - string - "null" title: Update Automation Response type: object x-speakeasy-name-override: UpdateAutomationResponse c1.api.automations.v1.UpdateUser: description: | The UpdateUser message. This message contains a oneof named user. Only a single field of the following list may be set at a time: - userIdCel - userRef This message contains a oneof named user_status. Only a single field of the following list may be set at a time: - userStatusEnum - userStatusCel properties: useSubjectUser: description: If true, the step will use the subject user of the automation as the subject. readOnly: false type: - boolean - "null" userIdCel: description: |- The userIdCel field. This field is part of the `user` oneof. See the documentation for `c1.api.automations.v1.UpdateUser` for more details. readOnly: false type: - string - "null" userRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" userStatusCel: description: |- The userStatusCel field. This field is part of the `user_status` oneof. See the documentation for `c1.api.automations.v1.UpdateUser` for more details. readOnly: false type: - string - "null" userStatusEnum: description: |- The userStatusEnum field. This field is part of the `user_status` oneof. See the documentation for `c1.api.automations.v1.UpdateUser` for more details. enum: - UNKNOWN - ENABLED - DISABLED - DELETED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Update User type: object x-speakeasy-name-override: UpdateUser c1.api.automations.v1.UsageBasedRevocationTrigger: description: | The UsageBasedRevocationTrigger message. This message contains a oneof named cold_start_schedule. Only a single field of the following list may be set at a time: - runImmediately - runDelayed properties: appId: description: The appId field. readOnly: false type: - string - "null" enabledAt: oneOf: - format: date-time readOnly: false type: string - type: "null" excludedGroupRefs: description: The excludedGroupRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" excludedUserRefs: description: The excludedUserRefs field. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" includeUsersWithNoActivity: description: The includeUsersWithNoActivity field. readOnly: false type: - boolean - "null" runDelayed: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.RunDelayed' - type: "null" runImmediately: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.RunImmediately' - type: "null" targetedAppUserTypes: description: The targetedAppUserTypes field. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" targetedEntitlementRefs: description: The targetedEntitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" unusedForDays: description: The unusedForDays field. format: uint32 readOnly: false type: - integer - "null" title: Usage Based Revocation Trigger type: object x-speakeasy-name-override: UsageBasedRevocationTrigger c1.api.automations.v1.UserCreatedTrigger: description: The UserCreatedTrigger message. properties: condition: description: The condition field. readOnly: false type: - string - "null" title: User Created Trigger type: object x-speakeasy-name-override: UserCreatedTrigger c1.api.automations.v1.UserProfileChangeTrigger: description: The UserProfileChangeTrigger message. properties: condition: description: The condition field. readOnly: false type: - string - "null" title: User Profile Change Trigger type: object x-speakeasy-name-override: UserProfileChangeTrigger c1.api.automations.v1.UserProperties: description: The UserProperties message. properties: displayNameCel: description: The displayNameCel field. readOnly: false type: - string - "null" emailCel: description: The emailCel field. readOnly: false type: - string - "null" profileAttributeCel: description: The profileAttributeCel field. readOnly: false type: - string - "null" usernameCel: description: The usernameCel field. readOnly: false type: - string - "null" title: User Properties type: object x-speakeasy-name-override: UserProperties c1.api.automations.v1.WaitForDuration: description: The WaitForDuration message. properties: duration: oneOf: - format: duration readOnly: false type: string - type: "null" title: Wait For Duration type: object x-speakeasy-name-override: WaitForDuration c1.api.automations.v1.Webhook: description: | The Webhook message. This message contains a oneof named webhook_identifier. Only a single field of the following list may be set at a time: - webhookId - webhookIdCel properties: payload: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" webhookId: description: |- The webhookId field. This field is part of the `webhook_identifier` oneof. See the documentation for `c1.api.automations.v1.Webhook` for more details. readOnly: false type: - string - "null" webhookIdCel: description: |- The webhookIdCel field. This field is part of the `webhook_identifier` oneof. See the documentation for `c1.api.automations.v1.Webhook` for more details. readOnly: false type: - string - "null" title: Webhook type: object x-speakeasy-name-override: Webhook c1.api.automations.v1.WebhookAutomationTrigger: description: | The WebhookAutomationTrigger message. This message contains a oneof named auth_config. Only a single field of the following list may be set at a time: - jwt - hmac - capabilityUrl properties: capabilityUrl: $ref: '#/components/schemas/c1.api.automations.v1.WebhookListenerAuthCapabilityURL' hmac: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.WebhookListenerAuthHMAC' - type: "null" jwt: oneOf: - $ref: '#/components/schemas/c1.api.automations.v1.WebhookListenerAuthJWT' - type: "null" listenerId: description: Optional existing listener ID (hidden field from frontend) readOnly: false type: - string - "null" title: Webhook Automation Trigger type: object x-speakeasy-name-override: WebhookAutomationTrigger c1.api.automations.v1.WebhookListenerAuthCapabilityURL: description: |- Capability URL authentication: the URL itself contains an unguessable token that acts as the credential. This is simpler to integrate but less secure than JWT or HMAC because the token can leak via server logs, referrer headers, and URL sharing. See https://www.w3.org/TR/capability-urls/ for background. nullable: true title: Webhook Listener Auth Capability Url type: object x-speakeasy-name-override: WebhookListenerAuthCapabilityURL c1.api.automations.v1.WebhookListenerAuthHMAC: description: The WebhookListenerAuthHMAC message. title: Webhook Listener Auth Hmac type: object x-speakeasy-name-override: WebhookListenerAuthHMAC c1.api.automations.v1.WebhookListenerAuthJWT: description: The WebhookListenerAuthJWT message. properties: jwksUrl: description: The jwksUrl field. readOnly: false type: - string - "null" title: Webhook Listener Auth Jwt type: object x-speakeasy-name-override: WebhookListenerAuthJWT c1.api.directory.v1.Directory: description: | This object indicates that an app is also a directory. This message contains a oneof named account_filter. Only a single field of the following list may be set at a time: - all - celExpression properties: all: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryAccountFilterAll' - type: "null" appId: description: The ID of the app associated with the directory. readOnly: true type: - string - "null" celExpression: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryAccountFilterCel' - type: "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" mergeConfig: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryMergeConfig' updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Directory type: object x-speakeasy-name-override: Directory c1.api.directory.v1.DirectoryAccountFilterAll: description: The DirectoryAccountFilterAll message. title: Directory Account Filter All type: object x-speakeasy-name-override: DirectoryAccountFilterAll c1.api.directory.v1.DirectoryAccountFilterCel: description: The DirectoryAccountFilterCel message. properties: expression: description: The expression field. readOnly: false type: - string - "null" title: Directory Account Filter Cel type: object x-speakeasy-name-override: DirectoryAccountFilterCel c1.api.directory.v1.DirectoryExpandMask: description: The fields to be included in the directory response. properties: paths: description: An array of fields to be included in the directory response. items: type: string readOnly: false type: - array - "null" title: Directory Expand Mask type: object x-speakeasy-name-override: DirectoryExpandMask c1.api.directory.v1.DirectoryMergeConfig: description: DirectoryMergeConfig configures how AppUsers from this directory are matched to C1 Users. properties: matchCases: description: Ordered list of match cases evaluated in sequence. First match wins. items: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryMergeMatchCase' nullable: true readOnly: false type: array title: Directory Merge Config type: object x-speakeasy-name-override: DirectoryMergeConfig c1.api.directory.v1.DirectoryMergeMatchCase: description: DirectoryMergeMatchCase defines a pair of CEL key extractors for matching. properties: appUserKeyCel: description: CEL expression evaluated against an AppUser to produce match key(s). readOnly: false type: string userKeyCel: description: CEL expression evaluated against a User to produce match key(s). readOnly: false type: string title: Directory Merge Match Case type: object x-speakeasy-name-override: DirectoryMergeMatchCase c1.api.directory.v1.DirectoryServiceCreateRequest: description: | Uplevel an app into a full directory. This message contains a oneof named account_filter. Only a single field of the following list may be set at a time: - all - celExpression properties: all: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryAccountFilterAll' - type: "null" appId: description: The AppID to make into a directory, providing identities and more for the C1 app. readOnly: false type: - string - "null" celExpression: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryAccountFilterCel' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryExpandMask' - type: "null" mergeConfig: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryMergeConfig' title: Directory Service Create Request type: object x-speakeasy-name-override: DirectoryServiceCreateRequest c1.api.directory.v1.DirectoryServiceCreateResponse: description: The DirectoryServiceCreateResponse message. properties: directoryView: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Directory Service Create Response type: object x-speakeasy-name-override: DirectoryServiceCreateResponse c1.api.directory.v1.DirectoryServiceDeleteRequestInput: description: DirectoryServiceDeleteRequest is the request message for deleting a directory. It uses URL values for input. title: Directory Service Delete Request type: object x-speakeasy-name-override: DirectoryServiceDeleteRequest c1.api.directory.v1.DirectoryServiceDeleteResponse: description: Empty response with a status code indicating success. title: Directory Service Delete Response type: object x-speakeasy-name-override: DirectoryServiceDeleteResponse c1.api.directory.v1.DirectoryServiceGetResponse: description: |- The Directory Service Get Response returns a directory view with a directory and JSONPATHs indicating the location in the expanded array that items are expanded as indicated by the expand mask in the request. properties: directoryView: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Directory Service Get Response type: object x-speakeasy-name-override: DirectoryServiceGetResponse c1.api.directory.v1.DirectoryServiceListResponse: description: The DirectoryServiceListResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryView' readOnly: false type: - array - "null" nextPageToken: description: List of serialized related objects. readOnly: false type: - string - "null" title: Directory Service List Response type: object x-speakeasy-name-override: DirectoryServiceListResponse c1.api.directory.v1.DirectoryServiceUpdateRequestInput: description: | Update a directory by app_id. This message contains a oneof named account_filter. Only a single field of the following list may be set at a time: - all - celExpression properties: all: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryAccountFilterAll' - type: "null" celExpression: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryAccountFilterCel' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryExpandMask' - type: "null" mergeConfig: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryMergeConfig' title: Directory Service Update Request type: object x-speakeasy-name-override: DirectoryServiceUpdateRequest c1.api.directory.v1.DirectoryServiceUpdateResponse: description: The DirectoryServiceUpdateResponse message. properties: directoryView: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.DirectoryView' - type: "null" expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" title: Directory Service Update Response type: object x-speakeasy-name-override: DirectoryServiceUpdateResponse c1.api.directory.v1.DirectoryView: description: The directory view contains a directory and an app_path which is a JSONPATH set to the location in the expand mask that the expanded app will live if requested by the expander. properties: appPath: description: JSONPATH expression indicating the location of the App object in the array. readOnly: false type: - string - "null" directory: oneOf: - $ref: '#/components/schemas/c1.api.directory.v1.Directory' - type: "null" title: Directory View type: object x-speakeasy-name-override: DirectoryView c1.api.editor.v1.EditorMarker: description: The EditorMarker message. properties: endColumn: description: The endColumn field. format: int32 readOnly: false type: - integer - "null" endLineNumber: description: The endLineNumber field. format: int32 readOnly: false type: - integer - "null" message: description: The message field. readOnly: false type: - string - "null" severity: description: The severity field. enum: - UNKNOWN - HINT - INFO - WARNING - ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow startColumn: description: The startColumn field. format: int32 readOnly: false type: - integer - "null" startLineNumber: description: The startLineNumber field. format: int32 readOnly: false type: - integer - "null" title: Editor Marker type: object x-speakeasy-name-override: EditorMarker c1.api.finding.v1.AcceptRiskAction: description: AcceptRiskAction parameters for UpdateFindingState. nullable: true properties: expiresAt: format: date-time readOnly: false type: string justification: description: The justification field. readOnly: false type: string title: Accept Risk Action type: object x-speakeasy-name-override: AcceptRiskAction c1.api.finding.v1.AppUserTarget: description: The AppUserTarget message. nullable: true properties: appId: description: The appId field. readOnly: false type: string appUserId: description: The appUserId field. readOnly: false type: string title: App User Target type: object x-speakeasy-name-override: AppUserTarget c1.api.finding.v1.BulkAcceptRiskAction: description: The BulkAcceptRiskAction message. nullable: true properties: expiresAt: format: date-time readOnly: false type: string justification: description: The justification field. readOnly: false type: string title: Bulk Accept Risk Action type: object x-speakeasy-name-override: BulkAcceptRiskAction c1.api.finding.v1.BulkAssignOwnerAction: description: The BulkAssignOwnerAction message. nullable: true properties: owner: $ref: '#/components/schemas/c1.api.finding.v1.FindingOwnerRef' title: Bulk Assign Owner Action type: object x-speakeasy-name-override: BulkAssignOwnerAction c1.api.finding.v1.BulkCreateFindingTasksRequest: description: The BulkCreateFindingTasksRequest message. properties: policyId: description: Optional policy ID to use for the created tasks. Defaults to the app's grant policy. readOnly: false type: string refs: description: Individual finding references to create tasks for (by-ID mode). items: $ref: '#/components/schemas/c1.api.finding.v1.FindingRef' nullable: true readOnly: false type: array searchRequest: $ref: '#/components/schemas/c1.api.finding.v1.FindingSearchRequest' title: Bulk Create Finding Tasks Request type: object x-speakeasy-name-override: BulkCreateFindingTasksRequest c1.api.finding.v1.BulkCreateFindingTasksResponse: description: The BulkCreateFindingTasksResponse message. properties: bulkActionId: description: The ID of the asynchronous bulk action, which can be used to track progress. readOnly: false type: string title: Bulk Create Finding Tasks Response type: object x-speakeasy-name-override: BulkCreateFindingTasksResponse c1.api.finding.v1.BulkReopenAction: description: The BulkReopenAction message. nullable: true title: Bulk Reopen Action type: object x-speakeasy-name-override: BulkReopenAction c1.api.finding.v1.BulkSnoozeAction: description: The BulkSnoozeAction message. nullable: true properties: reason: description: The reason field. readOnly: false type: string snoozeUntil: format: date-time readOnly: false type: string title: Bulk Snooze Action type: object x-speakeasy-name-override: BulkSnoozeAction c1.api.finding.v1.BulkSuppressAction: description: The BulkSuppressAction message. nullable: true properties: reason: description: The reason field. readOnly: false type: string title: Bulk Suppress Action type: object x-speakeasy-name-override: BulkSuppressAction c1.api.finding.v1.BulkUnsuppressAction: deprecated: true description: The BulkUnsuppressAction message. nullable: true title: Bulk Unsuppress Action type: object x-speakeasy-name-override: BulkUnsuppressAction c1.api.finding.v1.BulkUpdateFindingStateRequest: description: | The BulkUpdateFindingStateRequest message. This message contains a oneof named action. Only a single field of the following list may be set at a time: - snooze - suppress - acceptRisk - unsuppress - assignOwner - reopen properties: acceptRisk: $ref: '#/components/schemas/c1.api.finding.v1.BulkAcceptRiskAction' assignOwner: $ref: '#/components/schemas/c1.api.finding.v1.BulkAssignOwnerAction' refs: description: 'By-ID mode: specify individual finding refs.' items: $ref: '#/components/schemas/c1.api.finding.v1.FindingRef' nullable: true readOnly: false type: array reopen: $ref: '#/components/schemas/c1.api.finding.v1.BulkReopenAction' searchRequest: $ref: '#/components/schemas/c1.api.finding.v1.FindingSearchRequest' snooze: $ref: '#/components/schemas/c1.api.finding.v1.BulkSnoozeAction' suppress: $ref: '#/components/schemas/c1.api.finding.v1.BulkSuppressAction' unsuppress: $ref: '#/components/schemas/c1.api.finding.v1.BulkUnsuppressAction' title: Bulk Update Finding State Request type: object x-speakeasy-name-override: BulkUpdateFindingStateRequest c1.api.finding.v1.BulkUpdateFindingStateResponse: description: The BulkUpdateFindingStateResponse message. properties: bulkActionId: description: The ID of the asynchronous bulk action, which can be used to track progress. readOnly: false type: string title: Bulk Update Finding State Response type: object x-speakeasy-name-override: BulkUpdateFindingStateResponse c1.api.finding.v1.CreateFindingRoutingRuleRequest: description: The CreateFindingRoutingRuleRequest message. properties: routingRule: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRule' title: Create Finding Routing Rule Request type: object x-speakeasy-name-override: CreateFindingRoutingRuleRequest c1.api.finding.v1.CreateFindingRoutingRuleResponse: description: The CreateFindingRoutingRuleResponse message. properties: routingRule: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRule' title: Create Finding Routing Rule Response type: object x-speakeasy-name-override: CreateFindingRoutingRuleResponse c1.api.finding.v1.CreateFindingTaskRequestInput: description: The CreateFindingTaskRequest message. properties: policyId: description: |- Optional policy ID. Defaults to the app's grant policy or the built-in "Finding Review" policy. readOnly: false type: string title: Create Finding Task Request type: object x-speakeasy-name-override: CreateFindingTaskRequest c1.api.finding.v1.CreateFindingTaskResponse: description: The CreateFindingTaskResponse message. properties: finding: $ref: '#/components/schemas/c1.api.finding.v1.Finding' taskId: description: The ID of the created task. readOnly: false type: string title: Create Finding Task Response type: object x-speakeasy-name-override: CreateFindingTaskResponse c1.api.finding.v1.CreateTaskAction: description: The CreateTaskAction message. nullable: true properties: policyId: description: The policyId field. readOnly: false type: string title: Create Task Action type: object x-speakeasy-name-override: CreateTaskAction c1.api.finding.v1.DeleteFindingRoutingRuleRequestInput: description: The DeleteFindingRoutingRuleRequest message. title: Delete Finding Routing Rule Request type: object x-speakeasy-name-override: DeleteFindingRoutingRuleRequest c1.api.finding.v1.DeleteFindingRoutingRuleResponse: description: The DeleteFindingRoutingRuleResponse message. title: Delete Finding Routing Rule Response type: object x-speakeasy-name-override: DeleteFindingRoutingRuleResponse c1.api.finding.v1.Finding: description: | The Finding message. This message contains a oneof named finding_type. Only a single field of the following list may be set at a time: - similarUsernameMatch - serviceAccountMisclassification This message contains a oneof named target. Only a single field of the following list may be set at a time: - identityUserTarget - appUserTarget This message contains a oneof named evidence. Only a single field of the following list may be set at a time: - similarUsernameMatchEvidence - serviceAccountMisclassificationEvidence properties: appId: description: The appId field. readOnly: false type: string appUserTarget: $ref: '#/components/schemas/c1.api.finding.v1.AppUserTarget' assignedOwner: $ref: '#/components/schemas/c1.api.finding.v1.FindingOwnerRef' computedOwner: $ref: '#/components/schemas/c1.api.finding.v1.FindingOwnerRef' createdAt: format: date-time readOnly: false type: string customTags: additionalProperties: type: string description: The customTags field. readOnly: false type: object fingerprint: description: The fingerprint field. readOnly: false type: string firstObservedAt: format: date-time readOnly: false type: string id: description: The id field. readOnly: false type: string identityUserTarget: $ref: '#/components/schemas/c1.api.finding.v1.IdentityUserTarget' lastObservedAt: format: date-time readOnly: false type: string recurrenceCount: description: The recurrenceCount field. format: uint32 readOnly: false type: integer remediationDescription: description: The remediationDescription field. readOnly: false type: string resolvedAt: format: date-time readOnly: false type: string riskAcceptanceExpiresAt: format: date-time readOnly: false type: string riskAcceptanceJustification: description: The riskAcceptanceJustification field. readOnly: false type: string riskScore: $ref: '#/components/schemas/c1.api.finding.v1.FindingRiskScore' serviceAccountMisclassification: $ref: '#/components/schemas/c1.api.finding.v1.ServiceAccountMisclassificationType' serviceAccountMisclassificationEvidence: $ref: '#/components/schemas/c1.api.finding.v1.ServiceAccountMisclassificationEvidence' severity: description: The severity field. enum: - FINDING_SEVERITY_UNSPECIFIED - FINDING_SEVERITY_INFO - FINDING_SEVERITY_LOW - FINDING_SEVERITY_MEDIUM - FINDING_SEVERITY_HIGH - FINDING_SEVERITY_CRITICAL readOnly: false type: string x-speakeasy-unknown-values: allow similarUsernameMatch: $ref: '#/components/schemas/c1.api.finding.v1.SimilarUsernameMatchType' similarUsernameMatchEvidence: $ref: '#/components/schemas/c1.api.finding.v1.SimilarUsernameMatchEvidence' snoozeReason: description: The snoozeReason field. readOnly: false type: string snoozeUntil: format: date-time readOnly: false type: string sourceDetectorId: description: The sourceDetectorId field. readOnly: false type: string state: description: The state field. enum: - FINDING_STATE_UNSPECIFIED - FINDING_STATE_OPEN - FINDING_STATE_IN_PROGRESS - FINDING_STATE_RESOLVED - FINDING_STATE_SNOOZED - FINDING_STATE_RISK_ACCEPTED - FINDING_STATE_SUPPRESSED readOnly: false type: string x-speakeasy-unknown-values: allow stateUpdatedById: description: The stateUpdatedById field. readOnly: false type: string suppressReason: description: The suppressReason field. readOnly: false type: string taskId: description: The taskId field. readOnly: false type: string updatedAt: format: date-time readOnly: false type: string title: Finding type: object x-speakeasy-name-override: Finding c1.api.finding.v1.FindingOwnerRef: description: | The FindingOwnerRef message. This message contains a oneof named owner. Only a single field of the following list may be set at a time: - identityUserId - appOwnerAppId - managerOfUserId - userSetId properties: appOwnerAppId: description: |- The appOwnerAppId field. This field is part of the `owner` oneof. See the documentation for `c1.api.finding.v1.FindingOwnerRef` for more details. nullable: true readOnly: false type: string identityUserId: description: |- The identityUserId field. This field is part of the `owner` oneof. See the documentation for `c1.api.finding.v1.FindingOwnerRef` for more details. nullable: true readOnly: false type: string managerOfUserId: description: |- The managerOfUserId field. This field is part of the `owner` oneof. See the documentation for `c1.api.finding.v1.FindingOwnerRef` for more details. nullable: true readOnly: false type: string userSetId: description: |- The userSetId field. This field is part of the `owner` oneof. See the documentation for `c1.api.finding.v1.FindingOwnerRef` for more details. nullable: true readOnly: false type: string title: Finding Owner Ref type: object x-speakeasy-name-override: FindingOwnerRef c1.api.finding.v1.FindingRef: description: The FindingRef message. properties: id: description: The ID of the finding. readOnly: false type: string title: Finding Ref type: object x-speakeasy-name-override: FindingRef c1.api.finding.v1.FindingRiskFactor: description: The FindingRiskFactor message. properties: description: description: The description field. readOnly: false type: string name: description: The name field. readOnly: false type: string severity: description: The severity field. enum: - FINDING_SEVERITY_UNSPECIFIED - FINDING_SEVERITY_INFO - FINDING_SEVERITY_LOW - FINDING_SEVERITY_MEDIUM - FINDING_SEVERITY_HIGH - FINDING_SEVERITY_CRITICAL readOnly: false type: string x-speakeasy-unknown-values: allow weight: description: The weight field. format: uint32 readOnly: false type: integer title: Finding Risk Factor type: object x-speakeasy-name-override: FindingRiskFactor c1.api.finding.v1.FindingRiskScore: description: The FindingRiskScore message. properties: originalScore: description: The originalScore field. format: uint32 readOnly: false type: integer overrideByUserId: description: The overrideByUserId field. readOnly: false type: string overrideScore: description: The overrideScore field. format: uint32 readOnly: false type: integer riskFactors: description: The riskFactors field. items: $ref: '#/components/schemas/c1.api.finding.v1.FindingRiskFactor' nullable: true readOnly: false type: array score: description: The score field. format: uint32 readOnly: false type: integer systemScore: description: The systemScore field. format: uint32 readOnly: false type: integer title: Finding Risk Score type: object x-speakeasy-name-override: FindingRiskScore c1.api.finding.v1.FindingRoutingRule: description: The FindingRoutingRule message. properties: action: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRuleAction' appId: description: The appId field. readOnly: false type: string condition: description: The condition field. readOnly: false type: string createdAt: format: date-time readOnly: false type: string description: description: The description field. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string enabled: description: The enabled field. readOnly: false type: boolean id: description: The id field. readOnly: false type: string priority: description: The priority field. format: int32 readOnly: false type: integer templateId: description: The templateId field. readOnly: false type: string updatedAt: format: date-time readOnly: false type: string title: Finding Routing Rule type: object x-speakeasy-name-override: FindingRoutingRule c1.api.finding.v1.FindingRoutingRuleAction: description: | The FindingRoutingRuleAction message. This message contains a oneof named action. Only a single field of the following list may be set at a time: - createTask - suppress - notify properties: createTask: $ref: '#/components/schemas/c1.api.finding.v1.CreateTaskAction' notify: $ref: '#/components/schemas/c1.api.finding.v1.NotifyAction' suppress: $ref: '#/components/schemas/c1.api.finding.v1.SuppressRoutingAction' title: Finding Routing Rule Action type: object x-speakeasy-name-override: FindingRoutingRuleAction c1.api.finding.v1.FindingSearchRequest: description: The FindingSearchRequest message. properties: appIds: description: Filter by app IDs (OR within field). items: type: string nullable: true readOnly: false type: array appUserIds: description: |- Filter by app user IDs (OR within field). Matches findings whose target.app_user_target.app_user_id is in this list. items: type: string nullable: true readOnly: false type: array findingTypes: description: Filter by finding type discriminators (OR within field). items: type: string nullable: true readOnly: false type: array pageSize: description: Maximum number of findings to return per page. format: int32 readOnly: false type: integer pageToken: description: Pagination token from a previous response. readOnly: false type: string query: description: Free text search query. readOnly: false type: string severities: description: Filter by severities (OR within field). items: enum: - FINDING_SEVERITY_UNSPECIFIED - FINDING_SEVERITY_INFO - FINDING_SEVERITY_LOW - FINDING_SEVERITY_MEDIUM - FINDING_SEVERITY_HIGH - FINDING_SEVERITY_CRITICAL type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array states: description: Filter by states (OR within field). items: enum: - FINDING_STATE_UNSPECIFIED - FINDING_STATE_OPEN - FINDING_STATE_IN_PROGRESS - FINDING_STATE_RESOLVED - FINDING_STATE_SNOOZED - FINDING_STATE_RISK_ACCEPTED - FINDING_STATE_SUPPRESSED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Finding Search Request type: object x-speakeasy-name-override: FindingSearchRequest c1.api.finding.v1.FindingSearchResponse: description: The FindingSearchResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.finding.v1.Finding' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Finding Search Response type: object x-speakeasy-name-override: FindingSearchResponse c1.api.finding.v1.GetFindingResponse: description: The GetFindingResponse message. properties: expanded: description: The expanded field. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object nullable: true readOnly: false type: array finding: $ref: '#/components/schemas/c1.api.finding.v1.Finding' title: Get Finding Response type: object x-speakeasy-name-override: GetFindingResponse c1.api.finding.v1.GetFindingRoutingRuleResponse: description: The GetFindingRoutingRuleResponse message. properties: routingRule: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRule' title: Get Finding Routing Rule Response type: object x-speakeasy-name-override: GetFindingRoutingRuleResponse c1.api.finding.v1.IdentityUserTarget: description: The IdentityUserTarget message. nullable: true properties: identityUserId: description: The identityUserId field. readOnly: false type: string title: Identity User Target type: object x-speakeasy-name-override: IdentityUserTarget c1.api.finding.v1.ListFindingRoutingRulesResponse: description: The ListFindingRoutingRulesResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRule' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: List Finding Routing Rules Response type: object x-speakeasy-name-override: ListFindingRoutingRulesResponse c1.api.finding.v1.NotifyAction: description: The NotifyAction message. nullable: true title: Notify Action type: object x-speakeasy-name-override: NotifyAction c1.api.finding.v1.ReopenAction: description: ReopenAction parameters for UpdateFindingState. nullable: true title: Reopen Action type: object x-speakeasy-name-override: ReopenAction c1.api.finding.v1.ResolveAction: description: ResolveAction parameters for UpdateFindingState (manual resolve). nullable: true properties: reason: description: The reason field. readOnly: false type: string title: Resolve Action type: object x-speakeasy-name-override: ResolveAction c1.api.finding.v1.ServiceAccountMisclassificationEvidence: description: The ServiceAccountMisclassificationEvidence message. nullable: true properties: detectionReason: description: The detectionReason field. readOnly: false type: string title: Service Account Misclassification Evidence type: object x-speakeasy-name-override: ServiceAccountMisclassificationEvidence c1.api.finding.v1.ServiceAccountMisclassificationType: description: The ServiceAccountMisclassificationType message. nullable: true properties: currentAccountType: description: The currentAccountType field. enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT readOnly: false type: string x-speakeasy-unknown-values: allow detectedAccountType: description: The detectedAccountType field. enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT readOnly: false type: string x-speakeasy-unknown-values: allow title: Service Account Misclassification Type type: object x-speakeasy-name-override: ServiceAccountMisclassificationType c1.api.finding.v1.SimilarUsernameMatchEvidence: description: The SimilarUsernameMatchEvidence message. nullable: true properties: appUsername: description: The appUsername field. readOnly: false type: string identityUsername: description: The identityUsername field. readOnly: false type: string similarityScore: description: The similarityScore field. readOnly: false type: number title: Similar Username Match Evidence type: object x-speakeasy-name-override: SimilarUsernameMatchEvidence c1.api.finding.v1.SimilarUsernameMatchType: description: The SimilarUsernameMatchType message. nullable: true properties: proposedIdentityUserId: description: The proposedIdentityUserId field. readOnly: false type: string title: Similar Username Match Type type: object x-speakeasy-name-override: SimilarUsernameMatchType c1.api.finding.v1.SnoozeAction: description: SnoozeAction parameters for UpdateFindingState. nullable: true properties: reason: description: The reason field. readOnly: false type: string snoozeUntil: format: date-time readOnly: false type: string title: Snooze Action type: object x-speakeasy-name-override: SnoozeAction c1.api.finding.v1.SuppressRoutingAction: description: The SuppressRoutingAction message. nullable: true properties: reason: description: The reason field. readOnly: false type: string title: Suppress Routing Action type: object x-speakeasy-name-override: SuppressRoutingAction c1.api.finding.v1.SuppressStateAction: description: SuppressStateAction parameters for UpdateFindingState. nullable: true properties: reason: description: The reason field. readOnly: false type: string title: Suppress State Action type: object x-speakeasy-name-override: SuppressStateAction c1.api.finding.v1.UnsuppressAction: deprecated: true description: UnsuppressAction parameters for UpdateFindingState. nullable: true title: Unsuppress Action type: object x-speakeasy-name-override: UnsuppressAction c1.api.finding.v1.UpdateFindingRoutingRuleRequestInput: description: The UpdateFindingRoutingRuleRequest message. properties: routingRule: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRule' title: Update Finding Routing Rule Request type: object x-speakeasy-name-override: UpdateFindingRoutingRuleRequest c1.api.finding.v1.UpdateFindingRoutingRuleResponse: description: The UpdateFindingRoutingRuleResponse message. properties: routingRule: $ref: '#/components/schemas/c1.api.finding.v1.FindingRoutingRule' title: Update Finding Routing Rule Response type: object x-speakeasy-name-override: UpdateFindingRoutingRuleResponse c1.api.finding.v1.UpdateFindingStateRequestInput: description: | The UpdateFindingStateRequest message. This message contains a oneof named action. Only a single field of the following list may be set at a time: - snooze - suppress - acceptRisk - unsuppress - resolve - reopen properties: acceptRisk: $ref: '#/components/schemas/c1.api.finding.v1.AcceptRiskAction' reopen: $ref: '#/components/schemas/c1.api.finding.v1.ReopenAction' resolve: $ref: '#/components/schemas/c1.api.finding.v1.ResolveAction' snooze: $ref: '#/components/schemas/c1.api.finding.v1.SnoozeAction' suppress: $ref: '#/components/schemas/c1.api.finding.v1.SuppressStateAction' unsuppress: $ref: '#/components/schemas/c1.api.finding.v1.UnsuppressAction' title: Update Finding State Request type: object x-speakeasy-name-override: UpdateFindingStateRequest c1.api.finding.v1.UpdateFindingStateResponse: description: The UpdateFindingStateResponse message. properties: finding: $ref: '#/components/schemas/c1.api.finding.v1.Finding' title: Update Finding State Response type: object x-speakeasy-name-override: UpdateFindingStateResponse c1.api.form.v1.AdminProviderConfig: description: The AdminProviderConfig message. nullable: true properties: defaultValueCel: description: The defaultValueCel field. readOnly: false type: string showToUser: description: The showToUser field. readOnly: false type: boolean title: Admin Provider Config type: object x-speakeasy-name-override: AdminProviderConfig c1.api.form.v1.AppResourceFilter: description: The AppResourceFilter message. nullable: true properties: appId: description: The appId field. readOnly: false type: string resourceTypeId: description: The resourceTypeId field. readOnly: false type: string title: App Resource Filter type: object x-speakeasy-name-override: AppResourceFilter c1.api.form.v1.AppUserFilter: description: The AppUserFilter message. nullable: true properties: appId: description: The appId field. readOnly: false type: string title: App User Filter type: object x-speakeasy-name-override: AppUserFilter c1.api.form.v1.AtLeastOne: description: The AtLeastOne message. title: At Least One type: object x-speakeasy-name-override: AtLeastOne c1.api.form.v1.BoolField: description: | The BoolField message. This message contains a oneof named view. Only a single field of the following list may be set at a time: - checkboxField - toggleField properties: checkboxField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.CheckboxField' - type: "null" defaultValue: description: The defaultValue field. readOnly: false type: - boolean - "null" rules: oneOf: - $ref: '#/components/schemas/validate.BoolRules' - type: "null" toggleField: $ref: '#/components/schemas/c1.api.form.v1.ToggleField' title: Bool Field type: object x-speakeasy-name-override: BoolField c1.api.form.v1.C1UserFilter: description: |- C1UserFilter is used to configure a picker for selecting ConductorOne users. This is distinct from AppUserFilter which selects accounts within a connected app. nullable: true title: C 1 User Filter type: object x-speakeasy-name-override: C1UserFilter c1.api.form.v1.CheckboxField: description: The CheckboxField message. title: Checkbox Field type: object x-speakeasy-name-override: CheckboxField c1.api.form.v1.ChipsField: description: The ChipsField message. title: Chips Field type: object x-speakeasy-name-override: ChipsField c1.api.form.v1.DependentOn: description: |- DependentOn means the fields in field_names are only valid if all fields in dependency_field_names are also present nullable: true properties: dependencyFieldNames: description: The fields that must be present for the primary field_names to be valid items: type: string nullable: true readOnly: false type: array title: Dependent On type: object x-speakeasy-name-override: DependentOn c1.api.form.v1.Field: description: | A field is a single input meant to collect a piece of data from a user This message contains a oneof named type. Only a single field of the following list may be set at a time: - stringField - boolField - stringSliceField - int64Field - fileField - oauth2Field - stringMapField This message contains a oneof named provider_config. Only a single field of the following list may be set at a time: - userConfig - adminConfig - sharedConfig properties: adminConfig: $ref: '#/components/schemas/c1.api.form.v1.AdminProviderConfig' boolField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.BoolField' - type: "null" description: description: The description field. readOnly: false type: - string - "null" displayName: description: The displayName field. readOnly: false type: - string - "null" fileField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.FileField' - type: "null" int64Field: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.Int64Field' - type: "null" name: description: The name field. readOnly: false type: - string - "null" oauth2Field: $ref: '#/components/schemas/c1.api.form.v1.Oauth2Field' required: description: The required field. readOnly: false type: boolean sharedConfig: $ref: '#/components/schemas/c1.api.form.v1.SharedProviderConfig' stringField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.StringField' - type: "null" stringMapField: $ref: '#/components/schemas/c1.api.form.v1.StringMapField' stringSliceField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.StringSliceField' - type: "null" userConfig: $ref: '#/components/schemas/c1.api.form.v1.UserProviderConfig' title: Field type: object x-speakeasy-name-override: FormField c1.api.form.v1.FieldGroup: description: The FieldGroup message. properties: default: description: The default field. readOnly: false type: boolean displayName: description: The displayName field. readOnly: false type: string fields: description: The fields field. items: type: string nullable: true readOnly: false type: array helpText: description: The helpText field. readOnly: false type: string name: description: The name field. readOnly: false type: string title: Field Group type: object x-speakeasy-name-override: FormFieldGroup c1.api.form.v1.FieldRelationship: description: | FieldRelationships can be used during form validation, or they can represent information that is necessary to when it comes to visually rendering the form This message contains a oneof named kind. Only a single field of the following list may be set at a time: - requiredTogether - atLeastOne - mutuallyExclusive - dependentOn properties: atLeastOne: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.AtLeastOne' - type: "null" dependentOn: $ref: '#/components/schemas/c1.api.form.v1.DependentOn' fieldNames: description: The names of the fields that share this relationship items: type: string readOnly: false type: - array - "null" mutuallyExclusive: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.MutuallyExclusive' - type: "null" requiredTogether: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.RequiredTogether' - type: "null" title: Field Relationship type: object x-speakeasy-name-override: FieldRelationship c1.api.form.v1.FileField: description: | The FileField message. This message contains a oneof named view. Only a single field of the following list may be set at a time: - fileInputField properties: acceptedFileTypes: description: The acceptedFileTypes field. items: type: string readOnly: false type: - array - "null" fileInputField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.FileInputField' - type: "null" maxFileSize: description: The maxFileSize field. format: int64 readOnly: false type: - string - "null" title: File Field type: object x-speakeasy-name-override: FileField c1.api.form.v1.FileInputField: description: The FileInputField message. title: File Input Field type: object x-speakeasy-name-override: FileInputField c1.api.form.v1.Form: description: A form is a collection of fields to be filled out by a user properties: description: description: The description field. readOnly: false type: - string - "null" displayName: description: The displayName field. readOnly: false type: - string - "null" fieldGroups: description: The fieldGroups field. items: $ref: '#/components/schemas/c1.api.form.v1.FieldGroup' nullable: true readOnly: false type: array fieldRelationships: description: The fieldRelationships field. items: $ref: '#/components/schemas/c1.api.form.v1.FieldRelationship' readOnly: false type: - array - "null" fields: description: The fields field. items: $ref: '#/components/schemas/c1.api.form.v1.Field' readOnly: false type: - array - "null" id: description: The id field. readOnly: false type: - string - "null" title: Form type: object x-speakeasy-entity: Request_Schema x-speakeasy-name-override: RequestSchemaForm c1.api.form.v1.Int64Field: description: | The Int64Field message. This message contains a oneof named view. Only a single field of the following list may be set at a time: - numberField properties: defaultValue: description: The defaultValue field. format: int64 readOnly: false type: - string - "null" numberField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.NumberField' - type: "null" placeholder: description: The placeholder field. readOnly: false type: - string - "null" rules: oneOf: - $ref: '#/components/schemas/validate.Int64Rules' - type: "null" title: Int 64 Field type: object x-speakeasy-name-override: Int64Field c1.api.form.v1.MutuallyExclusive: description: The MutuallyExclusive message. title: Mutually Exclusive type: object x-speakeasy-name-override: MutuallyExclusive c1.api.form.v1.NumberField: description: The NumberField message. properties: maxValue: description: The maxValue field. format: int64 readOnly: false type: - string - "null" minValue: description: The minValue field. format: int64 readOnly: false type: - string - "null" step: description: The step field. format: int64 readOnly: false type: - string - "null" title: Number Field type: object x-speakeasy-name-override: NumberField c1.api.form.v1.Oauth2Field: description: | The Oauth2Field message. This message contains a oneof named view. Only a single field of the following list may be set at a time: - oauth2FieldView nullable: true properties: oauth2FieldView: $ref: '#/components/schemas/c1.api.form.v1.Oauth2FieldView' title: Oauth 2 Field type: object x-speakeasy-name-override: Oauth2Field c1.api.form.v1.Oauth2FieldView: description: The Oauth2FieldView message. nullable: true title: Oauth 2 Field View type: object x-speakeasy-name-override: Oauth2FieldView c1.api.form.v1.PasswordField: description: The PasswordField message. title: Password Field type: object x-speakeasy-name-override: PasswordField c1.api.form.v1.PickerField: description: | The PickerField message. This message contains a oneof named type. Only a single field of the following list may be set at a time: - appUserPicker - resourcePicker - c1UserPicker nullable: true properties: appUserPicker: $ref: '#/components/schemas/c1.api.form.v1.AppUserFilter' c1UserPicker: $ref: '#/components/schemas/c1.api.form.v1.C1UserFilter' resourcePicker: $ref: '#/components/schemas/c1.api.form.v1.AppResourceFilter' title: Picker Field type: object x-speakeasy-name-override: PickerField c1.api.form.v1.RequiredTogether: description: The RequiredTogether message. title: Required Together type: object x-speakeasy-name-override: RequiredTogether c1.api.form.v1.SelectField: description: The SelectField message. properties: options: description: The options field. items: $ref: '#/components/schemas/c1.api.form.v1.SelectOption' readOnly: false type: - array - "null" type: description: The type field. enum: - SELECT_TYPE_UNSPECIFIED - SELECT_TYPE_DROPDOWN - SELECT_TYPE_RADIO - SELECT_TYPE_BUTTONS readOnly: false type: string x-speakeasy-unknown-values: allow title: Select Field type: object x-speakeasy-name-override: SelectField c1.api.form.v1.SelectOption: description: The SelectOption message. properties: description: description: Used for type BUTTONS readOnly: false type: string displayName: description: The displayName field. readOnly: false type: - string - "null" value: description: The value field. readOnly: false type: - string - "null" title: Select Option type: object x-speakeasy-name-override: SelectOption c1.api.form.v1.SharedProviderConfig: description: The SharedProviderConfig message. nullable: true properties: defaultValueCel: description: The defaultValueCel field. readOnly: false type: string inputTransformationCel: description: The inputTransformationCel field. readOnly: false type: string lockDefaultValues: description: The lockDefaultValues field. readOnly: false type: boolean title: Shared Provider Config type: object x-speakeasy-name-override: SharedProviderConfig c1.api.form.v1.StringField: description: | The StringField message. This message contains a oneof named view. Only a single field of the following list may be set at a time: - textField - passwordField - selectField - pickerField properties: defaultValue: description: The defaultValue field. readOnly: false type: - string - "null" passwordField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.PasswordField' - type: "null" pickerField: $ref: '#/components/schemas/c1.api.form.v1.PickerField' placeholder: description: The placeholder field. readOnly: false type: - string - "null" rules: oneOf: - $ref: '#/components/schemas/validate.StringRules' - type: "null" selectField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.SelectField' - type: "null" textField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.TextField' - type: "null" title: String Field type: object x-speakeasy-name-override: FormStringField c1.api.form.v1.StringMapField: description: The StringMapField message. nullable: true properties: defaultValue: additionalProperties: type: string description: The defaultValue field. readOnly: false type: object rules: $ref: '#/components/schemas/c1.api.form.v1.StringMapRules' title: String Map Field type: object x-speakeasy-name-override: FormStringMapField c1.api.form.v1.StringMapRules: description: The StringMapRules message. nullable: true properties: isRequired: description: The isRequired field. readOnly: false type: boolean validateEmpty: description: The validateEmpty field. readOnly: false type: boolean title: String Map Rules type: object x-speakeasy-name-override: StringMapRules c1.api.form.v1.StringSliceField: description: | The StringSliceField message. This message contains a oneof named view. Only a single field of the following list may be set at a time: - chipsField - pickerField properties: chipsField: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.ChipsField' - type: "null" defaultValues: description: The defaultValues field. items: type: string readOnly: false type: - array - "null" pickerField: $ref: '#/components/schemas/c1.api.form.v1.PickerField' placeholder: description: The placeholder field. readOnly: false type: - string - "null" rules: oneOf: - $ref: '#/components/schemas/validate.RepeatedRules' - type: "null" title: String Slice Field type: object x-speakeasy-name-override: StringSliceField c1.api.form.v1.TextField: description: The TextField message. properties: multiline: description: The multiline field. readOnly: false type: - boolean - "null" suffix: description: Static text displayed as an end adornment (e.g. ".example.com" for domain fields). nullable: true readOnly: false type: string title: Text Field type: object x-speakeasy-name-override: TextField c1.api.form.v1.ToggleField: description: The ToggleField message. nullable: true title: Toggle Field type: object x-speakeasy-name-override: ToggleField c1.api.form.v1.UserProviderConfig: description: The UserProviderConfig message. nullable: true properties: inputTransformationCel: description: The inputTransformationCel field. readOnly: false type: string title: User Provider Config type: object x-speakeasy-name-override: UserProviderConfig c1.api.functions.v1.Function: description: Function represents a customer-provided code extension in the API properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description field. readOnly: false type: - string - "null" displayName: description: The displayName field. readOnly: false type: - string - "null" functionType: description: The functionType field. enum: - FUNCTION_TYPE_UNSPECIFIED - FUNCTION_TYPE_ANY - FUNCTION_TYPE_CODE_MODE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow head: description: The head field. readOnly: false type: - string - "null" id: description: The id field. readOnly: false type: - string - "null" isDraft: description: The isDraft field. readOnly: false type: - boolean - "null" outboundNetworkAllowlist: description: The outboundNetworkAllowlist field. items: type: string nullable: true readOnly: false type: array publishedCommitId: description: The publishedCommitId field. readOnly: false type: - string - "null" scopedRoleIds: description: |- Scoped role IDs define the permissions granted to this function when calling ConductorOne APIs. These are role IDs (not service roles) that get resolved to their service roles at authentication time. Currently only the "Read-Only Administrator" role (system:viewer) is supported. The role ID can be obtained from the roles API. items: type: string nullable: true readOnly: false type: array secret: additionalProperties: type: string description: The secret field. readOnly: false type: object updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" useSpn: description: |- FN-347 transition flag. When true, the function authenticates to c1-api as user: via the AssumeIdentity token exchange using its ServicePrincipalBinding; when false, it authenticates as function:. Read-only from clients: set by CreateFunction (when the tenant has completed the FunctionsToSPN migration) and by the migration itself, never by UpdateFunction. Retired once all functions are on SPN. readOnly: true type: boolean title: Function type: object x-speakeasy-entity: Function x-speakeasy-name-override: Function c1.api.functions.v1.FunctionCommit: description: FunctionCommit represents a single commit in a function's history properties: author: description: The author field. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" functionId: description: The functionId field. readOnly: false type: - string - "null" id: description: The id field. readOnly: false type: - string - "null" message: description: The message field. readOnly: false type: - string - "null" title: Function Commit type: object x-speakeasy-name-override: FunctionCommit c1.api.functions.v1.FunctionInvocation: description: The FunctionInvocation message. properties: commitId: description: The commitId field. readOnly: false type: string createdAt: format: date-time readOnly: false type: string error: description: The error field. readOnly: false type: string functionId: description: The functionId field. readOnly: false type: string id: description: The id field. readOnly: false type: string input: additionalProperties: true readOnly: false type: object output: additionalProperties: true readOnly: false type: object status: description: The status field. enum: - FUNCTION_INVOCATION_STATUS_UNSPECIFIED - FUNCTION_INVOCATION_STATUS_PENDING - FUNCTION_INVOCATION_STATUS_RUNNING - FUNCTION_INVOCATION_STATUS_SUCCESS - FUNCTION_INVOCATION_STATUS_ERROR readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: false type: string title: Function Invocation type: object x-speakeasy-name-override: FunctionInvocation c1.api.functions.v1.FunctionTestResult: description: FunctionTestResult contains the result of a single test case execution. properties: assertions: description: The assertions evaluated during the test. items: $ref: '#/components/schemas/c1.api.functions.v1.FunctionTestResult.FunctionTestResultAssertion' nullable: true readOnly: false type: array error: description: Error message if the test errored (distinct from assertion failure). readOnly: false type: string logs: description: The log entries captured during the test. items: $ref: '#/components/schemas/c1.api.functions.v1.FunctionTestResult.FunctionTestResultLog' nullable: true readOnly: false type: array name: description: The test name. readOnly: false type: string status: description: The test result status. enum: - FUNCTION_TEST_RESULT_STATUS_UNSPECIFIED - FUNCTION_TEST_RESULT_STATUS_OK - FUNCTION_TEST_RESULT_STATUS_FAIL - FUNCTION_TEST_RESULT_STATUS_SKIPPED readOnly: false type: string x-speakeasy-unknown-values: allow title: Function Test Result type: object x-speakeasy-name-override: FunctionTestResult c1.api.functions.v1.FunctionTestResult.FunctionTestResultAssertion: description: A single assertion within a test. properties: actual: description: The actual value. readOnly: false type: string at: description: Source location of the assertion. readOnly: false type: string description: description: Description of the assertion. readOnly: false type: string expected: description: The expected value. readOnly: false type: string operator: description: The comparison operator (e.g., "==", "!="). readOnly: false type: string pass: description: Whether the assertion passed. readOnly: false type: boolean title: Function Test Result Assertion type: object x-speakeasy-name-override: FunctionTestResultAssertion c1.api.functions.v1.FunctionTestResult.FunctionTestResultLog: description: A log entry captured during a test. properties: level: description: The log level (e.g., "info", "error"). readOnly: false type: string log: description: The log message content. readOnly: false type: string source: description: The log source (e.g., "stdout", "stderr"). readOnly: false type: string title: Function Test Result Log type: object x-speakeasy-name-override: FunctionTestResultLog c1.api.functions.v1.FunctionsInvocationSearchRequestInput: description: |- FunctionsInvocationSearchRequest is the request for searching function invocations. Results are returned in descending order by created_at (newest first). properties: pageSize: description: The number of results to return per page. format: int32 readOnly: false type: integer pageToken: description: The pagination token for fetching the next page. readOnly: false type: string title: Functions Invocation Search Request type: object x-speakeasy-name-override: FunctionsInvocationSearchRequest c1.api.functions.v1.FunctionsInvocationSearchResponse: description: FunctionsInvocationSearchResponse is the response for searching function invocations. properties: list: description: The list of function invocations, ordered by created_at descending. items: $ref: '#/components/schemas/c1.api.functions.v1.FunctionInvocation' nullable: true readOnly: false type: array nextPageToken: description: The pagination token for fetching the next page. readOnly: false type: string title: Functions Invocation Search Response type: object x-speakeasy-name-override: FunctionsInvocationSearchResponse c1.api.functions.v1.FunctionsInvocationServiceGetResponse: description: The FunctionsInvocationServiceGetResponse message. properties: invocation: $ref: '#/components/schemas/c1.api.functions.v1.FunctionInvocation' title: Functions Invocation Service Get Response type: object x-speakeasy-name-override: FunctionsInvocationServiceGetResponse c1.api.functions.v1.FunctionsInvocationServiceListResponse: description: The FunctionsInvocationServiceListResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.functions.v1.FunctionInvocation' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Functions Invocation Service List Response type: object x-speakeasy-name-override: FunctionsInvocationServiceListResponse c1.api.functions.v1.FunctionsSearchRequest: description: The FunctionsSearchRequest message. properties: functionTypes: description: The functionTypes field. items: enum: - FUNCTION_TYPE_UNSPECIFIED - FUNCTION_TYPE_ANY - FUNCTION_TYPE_CODE_MODE type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" pageSize: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: The query field. readOnly: false type: - string - "null" title: Functions Search Request type: object x-speakeasy-name-override: FunctionsSearchRequest c1.api.functions.v1.FunctionsSearchResponse: description: The FunctionsSearchResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.functions.v1.Function' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: Functions Search Response type: object x-speakeasy-name-override: FunctionsSearchResponse c1.api.functions.v1.FunctionsServiceCreateFinalCommitRequestInput: description: The FunctionsServiceCreateFinalCommitRequest message. title: Functions Service Create Final Commit Request type: object x-speakeasy-name-override: FunctionsServiceCreateFinalCommitRequest c1.api.functions.v1.FunctionsServiceCreateFinalCommitResponse: description: The FunctionsServiceCreateFinalCommitResponse message. properties: commit: $ref: '#/components/schemas/c1.api.functions.v1.FunctionCommit' title: Functions Service Create Final Commit Response type: object x-speakeasy-name-override: FunctionsServiceCreateFinalCommitResponse c1.api.functions.v1.FunctionsServiceCreateFunctionRequest: description: The FunctionsServiceCreateFunctionRequest message. properties: commitMessage: description: The commit message describing the initial code submission. readOnly: false type: - string - "null" description: description: A description of what the function does. readOnly: false type: - string - "null" displayName: description: The human-readable name for the function. readOnly: false type: - string - "null" functionType: description: The type of function to create, controlling its execution environment and capabilities. enum: - FUNCTION_TYPE_UNSPECIFIED - FUNCTION_TYPE_ANY - FUNCTION_TYPE_CODE_MODE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow initialContent: additionalProperties: format: base64 type: string description: Map of filename to file content for the initial code commit. readOnly: false type: - object - "null" title: Functions Service Create Function Request type: object x-speakeasy-name-override: FunctionsServiceCreateFunctionRequest c1.api.functions.v1.FunctionsServiceCreateFunctionResponse: description: The FunctionsServiceCreateFunctionResponse message. properties: commit: oneOf: - $ref: '#/components/schemas/c1.api.functions.v1.FunctionCommit' - type: "null" function: oneOf: - $ref: '#/components/schemas/c1.api.functions.v1.Function' - type: "null" title: Functions Service Create Function Response type: object x-speakeasy-name-override: FunctionsServiceCreateFunctionResponse c1.api.functions.v1.FunctionsServiceCreateInitialCommitRequestInput: description: The FunctionsServiceCreateInitialCommitRequest message. properties: commitMessage: description: The commitMessage field. readOnly: false type: string filenames: description: The filenames field. items: type: string nullable: true readOnly: false type: array title: Functions Service Create Initial Commit Request type: object x-speakeasy-name-override: FunctionsServiceCreateInitialCommitRequest c1.api.functions.v1.FunctionsServiceCreateInitialCommitResponse: description: The FunctionsServiceCreateInitialCommitResponse message. properties: commitId: description: The commitId field. readOnly: false type: string uploadUrls: additionalProperties: type: string description: The uploadUrls field. readOnly: false type: object title: Functions Service Create Initial Commit Response type: object x-speakeasy-name-override: FunctionsServiceCreateInitialCommitResponse c1.api.functions.v1.FunctionsServiceCreateTagRequestInput: description: The FunctionsServiceCreateTagRequest message. properties: commitId: description: The commitId field. readOnly: false type: - string - "null" name: description: The name field. readOnly: false type: - string - "null" title: Functions Service Create Tag Request type: object x-speakeasy-name-override: FunctionsServiceCreateTagRequest c1.api.functions.v1.FunctionsServiceCreateTagResponse: description: The FunctionsServiceCreateTagResponse message. title: Functions Service Create Tag Response type: object x-speakeasy-name-override: FunctionsServiceCreateTagResponse c1.api.functions.v1.FunctionsServiceDeleteFunctionRequestInput: description: The FunctionsServiceDeleteFunctionRequest message. title: Functions Service Delete Function Request type: object x-speakeasy-name-override: FunctionsServiceDeleteFunctionRequest c1.api.functions.v1.FunctionsServiceDeleteFunctionResponse: description: The FunctionsServiceDeleteFunctionResponse message. title: Functions Service Delete Function Response type: object x-speakeasy-name-override: FunctionsServiceDeleteFunctionResponse c1.api.functions.v1.FunctionsServiceGetCommitContentResponse: description: FunctionsServiceGetCommitContentResponse contains a commit and all its file contents. properties: commit: $ref: '#/components/schemas/c1.api.functions.v1.FunctionCommit' files: additionalProperties: format: base64 type: string description: Map of filename to file content bytes. readOnly: false type: object title: Functions Service Get Commit Content Response type: object x-speakeasy-name-override: FunctionsServiceGetCommitContentResponse c1.api.functions.v1.FunctionsServiceGetFunctionResponse: description: The FunctionsServiceGetFunctionResponse message. properties: function: oneOf: - $ref: '#/components/schemas/c1.api.functions.v1.Function' - type: "null" title: Functions Service Get Function Response type: object x-speakeasy-name-override: FunctionsServiceGetFunctionResponse c1.api.functions.v1.FunctionsServiceGetLockFileResponse: description: FunctionsServiceGetLockFileResponse returns the deno lock file content for a commit. properties: content: description: The raw content of the deno lock file (empty if not found). format: base64 readOnly: false type: string exists: description: Whether the lock file exists for this commit. readOnly: false type: boolean title: Functions Service Get Lock File Response type: object x-speakeasy-name-override: FunctionsServiceGetLockFileResponse c1.api.functions.v1.FunctionsServiceInvokeRequestInput: description: | The FunctionsServiceInvokeRequest message. This message contains a oneof named arg. Only a single field of the following list may be set at a time: - json properties: commitId: description: The commit ID specifying which version of the function code to run. readOnly: false type: - string - "null" json: description: |- The JSON-encoded input data passed to the function. This field is part of the `arg` oneof. See the documentation for `c1.api.functions.v1.FunctionsServiceInvokeRequest` for more details. format: base64 readOnly: false type: - string - "null" vfsId: description: Optional VFS volume ID to attach to this invocation. If empty, VFS operations will error. readOnly: false type: string title: Functions Service Invoke Request type: object x-speakeasy-name-override: FunctionsServiceInvokeRequest c1.api.functions.v1.FunctionsServiceInvokeResponse: description: | The FunctionsServiceInvokeResponse message. This message contains a oneof named resp. Only a single field of the following list may be set at a time: - json properties: invocationId: description: The ID of the created invocation, used to track execution status and retrieve results. readOnly: false type: string json: deprecated: true description: |- Deprecated. The JSON-encoded output returned by the function. This field is part of the `resp` oneof. See the documentation for `c1.api.functions.v1.FunctionsServiceInvokeResponse` for more details. format: base64 readOnly: false type: - string - "null" title: Functions Service Invoke Response type: object x-speakeasy-name-override: FunctionsServiceInvokeResponse c1.api.functions.v1.FunctionsServiceListCommitsResponse: description: The FunctionsServiceListCommitsResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.functions.v1.FunctionCommit' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: Functions Service List Commits Response type: object x-speakeasy-name-override: FunctionsServiceListCommitsResponse c1.api.functions.v1.FunctionsServiceListFunctionsResponse: description: The FunctionsServiceListFunctionsResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.functions.v1.Function' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: Functions Service List Functions Response type: object x-speakeasy-name-override: FunctionsServiceListFunctionsResponse c1.api.functions.v1.FunctionsServiceListTagsResponse: description: The FunctionsServiceListTagsResponse message. properties: tags: additionalProperties: $ref: '#/components/schemas/c1.api.functions.v1.FunctionCommit' description: The tags field. readOnly: false type: - object - "null" title: Functions Service List Tags Response type: object x-speakeasy-name-override: FunctionsServiceListTagsResponse c1.api.functions.v1.FunctionsServiceTestRequestInput: description: FunctionsServiceTestRequest runs tests for a function at a specific commit. properties: commitId: description: The commit ID to test. If empty, the published commit is used. readOnly: false type: string title: Functions Service Test Request type: object x-speakeasy-name-override: FunctionsServiceTestRequest c1.api.functions.v1.FunctionsServiceTestResponse: description: FunctionsServiceTestResponse contains test execution results. properties: result: $ref: '#/components/schemas/c1.api.functions.v1.FunctionTestResult' results: description: All test results. items: $ref: '#/components/schemas/c1.api.functions.v1.FunctionTestResult' nullable: true readOnly: false type: array title: Functions Service Test Response type: object x-speakeasy-name-override: FunctionsServiceTestResponse c1.api.functions.v1.FunctionsServiceUpdateFunctionRequest: description: The FunctionsServiceUpdateFunctionRequest message. properties: function: oneOf: - $ref: '#/components/schemas/c1.api.functions.v1.Function' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Functions Service Update Function Request type: object x-speakeasy-name-override: FunctionsServiceUpdateFunctionRequest c1.api.functions.v1.FunctionsServiceUpdateFunctionResponse: description: The FunctionsServiceUpdateFunctionResponse message. properties: function: oneOf: - $ref: '#/components/schemas/c1.api.functions.v1.Function' - type: "null" title: Functions Service Update Function Response type: object x-speakeasy-name-override: FunctionsServiceUpdateFunctionResponse c1.api.hooks.v1.BuiltInPattern: description: | BuiltInPattern references a ConductorOne-maintained DLP pattern. The specific pattern and its configuration are encoded as a oneof. This message contains a oneof named config. Only a single field of the following list may be set at a time: - piiRedaction - creditCardBlocking - queryScopeLimit - writeAuthorization - sensitiveFileGuard nullable: true properties: creditCardBlocking: $ref: '#/components/schemas/c1.api.hooks.v1.CreditCardBlockingConfig' piiRedaction: $ref: '#/components/schemas/c1.api.hooks.v1.PIIRedactionConfig' queryScopeLimit: $ref: '#/components/schemas/c1.api.hooks.v1.QueryScopeLimitConfig' sensitiveFileGuard: $ref: '#/components/schemas/c1.api.hooks.v1.SensitiveFileGuardConfig' writeAuthorization: $ref: '#/components/schemas/c1.api.hooks.v1.WriteAuthorizationConfig' title: Built In Pattern type: object x-speakeasy-name-override: BuiltInPattern c1.api.hooks.v1.BusinessHours: description: BusinessHours defines a weekly time window in a specific timezone. properties: days: description: 0=Sun, 1=Mon, ..., 6=Sat. items: format: int32 type: integer nullable: true readOnly: false type: array end: description: '"HH:MM" in 24-hour format.' readOnly: false type: string start: description: '"HH:MM" in 24-hour format.' readOnly: false type: string timezone: description: The timezone field. readOnly: false type: string title: Business Hours type: object x-speakeasy-name-override: BusinessHours c1.api.hooks.v1.CreditCardBlockingConfig: description: |- CreditCardBlockingConfig denies any tool call whose output contains a Luhn-valid credit card number. No configuration fields today; the presence of the oneof arm is the whole configuration. nullable: true title: Credit Card Blocking Config type: object x-speakeasy-name-override: CreditCardBlockingConfig c1.api.hooks.v1.Hook: description: | Hook represents a customer-configured interception point for tool calls. This message contains a oneof named hook_type. Only a single field of the following list may be set at a time: - function - builtinPattern properties: builtinPattern: $ref: '#/components/schemas/c1.api.hooks.v1.BuiltInPattern' createdAt: format: date-time readOnly: true type: string description: description: The description field. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string enabled: description: The enabled field. readOnly: false type: boolean event: description: The event field. enum: - HOOK_EVENT_TYPE_UNSPECIFIED - HOOK_EVENT_TYPE_PRE_TOOL_USE - HOOK_EVENT_TYPE_POST_TOOL_USE readOnly: false type: string x-speakeasy-unknown-values: allow filter: $ref: '#/components/schemas/c1.api.hooks.v1.HookFilter' function: $ref: '#/components/schemas/c1.api.hooks.v1.HookFunctionRef' id: description: The id field. readOnly: false type: string priority: description: The priority field. format: int32 readOnly: false type: integer updatedAt: format: date-time readOnly: true type: string title: Hook type: object x-speakeasy-name-override: Hook c1.api.hooks.v1.HookFilter: description: HookFilter determines which tool calls a hook applies to. properties: celExpression: description: |- CEL expression evaluated against tool call context. Available variable: ctx.tool_name (string). Must evaluate to bool. Empty matches all tools. readOnly: false type: string title: Hook Filter type: object x-speakeasy-name-override: HookFilter c1.api.hooks.v1.HookFunctionRef: description: HookFunctionRef identifies a customer-authored function to invoke. nullable: true properties: commitId: description: If empty, the function's published commit is used at invocation time. readOnly: false type: string functionId: description: The functionId field. readOnly: false type: string title: Hook Function Ref type: object x-speakeasy-name-override: HookFunctionRef c1.api.hooks.v1.HookRef: description: The HookRef message. properties: id: description: The id field. readOnly: false type: string title: Hook Ref type: object x-speakeasy-name-override: HookRef c1.api.hooks.v1.HooksSearchRequest: description: The HooksSearchRequest message. properties: pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string query: description: The query field. readOnly: false type: string refs: description: The refs field. items: $ref: '#/components/schemas/c1.api.hooks.v1.HookRef' nullable: true readOnly: false type: array title: Hooks Search Request type: object x-speakeasy-name-override: HooksSearchRequest c1.api.hooks.v1.HooksSearchResponse: description: The HooksSearchResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.hooks.v1.Hook' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Hooks Search Response type: object x-speakeasy-name-override: HooksSearchResponse c1.api.hooks.v1.HooksServiceCreateRequest: description: | The HooksServiceCreateRequest message. This message contains a oneof named hook_type. Only a single field of the following list may be set at a time: - function - builtinPattern properties: builtinPattern: $ref: '#/components/schemas/c1.api.hooks.v1.BuiltInPattern' description: description: The description field. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string enabled: description: The enabled field. readOnly: false type: boolean event: description: The event field. enum: - HOOK_EVENT_TYPE_UNSPECIFIED - HOOK_EVENT_TYPE_PRE_TOOL_USE - HOOK_EVENT_TYPE_POST_TOOL_USE readOnly: false type: string x-speakeasy-unknown-values: allow filter: $ref: '#/components/schemas/c1.api.hooks.v1.HookFilter' function: $ref: '#/components/schemas/c1.api.hooks.v1.HookFunctionRef' priority: description: The priority field. format: int32 readOnly: false type: integer required: - displayName title: Hooks Service Create Request type: object x-speakeasy-name-override: HooksServiceCreateRequest c1.api.hooks.v1.HooksServiceCreateResponse: description: The HooksServiceCreateResponse message. properties: hook: $ref: '#/components/schemas/c1.api.hooks.v1.Hook' title: Hooks Service Create Response type: object x-speakeasy-name-override: HooksServiceCreateResponse c1.api.hooks.v1.HooksServiceDeleteRequestInput: description: The HooksServiceDeleteRequest message. title: Hooks Service Delete Request type: object x-speakeasy-name-override: HooksServiceDeleteRequest c1.api.hooks.v1.HooksServiceDeleteResponse: description: The HooksServiceDeleteResponse message. title: Hooks Service Delete Response type: object x-speakeasy-name-override: HooksServiceDeleteResponse c1.api.hooks.v1.HooksServiceGetResponse: description: The HooksServiceGetResponse message. properties: hook: $ref: '#/components/schemas/c1.api.hooks.v1.Hook' title: Hooks Service Get Response type: object x-speakeasy-name-override: HooksServiceGetResponse c1.api.hooks.v1.HooksServiceListResponse: description: The HooksServiceListResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.hooks.v1.Hook' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Hooks Service List Response type: object x-speakeasy-name-override: HooksServiceListResponse c1.api.hooks.v1.HooksServiceUpdateRequestInput: description: The HooksServiceUpdateRequest message. properties: hook: $ref: '#/components/schemas/c1.api.hooks.v1.Hook' updateMask: nullable: true readOnly: false type: string title: Hooks Service Update Request type: object x-speakeasy-name-override: HooksServiceUpdateRequest c1.api.hooks.v1.HooksServiceUpdateResponse: description: The HooksServiceUpdateResponse message. properties: hook: $ref: '#/components/schemas/c1.api.hooks.v1.Hook' title: Hooks Service Update Response type: object x-speakeasy-name-override: HooksServiceUpdateResponse c1.api.hooks.v1.PIIRedactionConfig: description: PIIRedactionConfig configures post-tool-use redaction of sensitive fields. nullable: true properties: redactFields: description: The redactFields field. items: type: string nullable: true readOnly: false type: array replacement: description: The replacement field. readOnly: false type: string title: Pii Redaction Config type: object x-speakeasy-name-override: PIIRedactionConfig c1.api.hooks.v1.QueryScopeLimitConfig: description: |- QueryScopeLimitConfig caps numeric fields (e.g. limit, page_size) in tool input so callers cannot request unbounded data. nullable: true properties: fields: description: The fields field. items: type: string nullable: true readOnly: false type: array maxLimit: description: The maxLimit field. format: int32 readOnly: false type: integer title: Query Scope Limit Config type: object x-speakeasy-name-override: QueryScopeLimitConfig c1.api.hooks.v1.SensitiveFileGuardConfig: description: |- SensitiveFileGuardConfig blocks tool calls that reference sensitive file paths or directories. nullable: true properties: blockedDirectories: description: The blockedDirectories field. items: type: string nullable: true readOnly: false type: array blockedPatterns: description: The blockedPatterns field. items: type: string nullable: true readOnly: false type: array title: Sensitive File Guard Config type: object x-speakeasy-name-override: SensitiveFileGuardConfig c1.api.hooks.v1.WriteAuthorizationConfig: description: |- WriteAuthorizationConfig blocks tool calls whose ToolClassification is in blocked_classifications, optionally permitting them within business hours. nullable: true properties: blockedClassifications: description: |- Tool classifications to block. Must have at least one entry; a hook with no blocked classifications would be a silent misconfiguration. items: enum: - TOOL_CLASSIFICATION_UNSPECIFIED - TOOL_CLASSIFICATION_READ - TOOL_CLASSIFICATION_WRITE - TOOL_CLASSIFICATION_DESTRUCTIVE - TOOL_CLASSIFICATION_SENSITIVE - TOOL_CLASSIFICATION_DANGEROUS type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array businessHours: $ref: '#/components/schemas/c1.api.hooks.v1.BusinessHours' title: Write Authorization Config type: object x-speakeasy-name-override: WriteAuthorizationConfig c1.api.iam.v1.ActorObjectPermissions: description: The ActorObjectPermissions message. properties: delete: description: The delete field. readOnly: false type: boolean edit: description: The edit field. readOnly: false type: boolean extra: additionalProperties: type: boolean description: The extra field. readOnly: false type: object read: description: The read field. readOnly: false type: boolean title: Actor Object Permissions type: object x-speakeasy-name-override: ActorObjectPermissions c1.api.iam.v1.ExternalClientInfo: description: |- ExternalClientInfo provides information about an approved external client. Used by both List (user's own grants) and Search (admin view of all grants). properties: clientId: description: OAuth2 client ID - canonical identifier for this connection (globally unique per DCR) readOnly: false type: string clientIdType: description: How the client_id was established. enum: - CLIENT_ID_TYPE_UNSPECIFIED - CLIENT_ID_TYPE_DCR - CLIENT_ID_TYPE_METADATA_URL readOnly: false type: string x-speakeasy-unknown-values: allow clientIdUrl: description: |- Original CIMD metadata URL (e.g., "https://cursor.com/.well-known/oauth-client"). Empty for DCR clients. readOnly: false type: string clientName: description: Original client name from DCR registration readOnly: false type: string createdAt: format: date-time readOnly: false type: string displayName: description: User-provided custom name (defaults to client_name if not set) readOnly: false type: string lastUsedAt: format: date-time readOnly: false type: string mcpClientId: description: MCP client record ID for AI governance tracking. May be empty for legacy grants. readOnly: false type: string roleIds: description: Role IDs granted to this client - frontend can fetch display names via SearchRoles items: type: string nullable: true readOnly: false type: array userId: description: The user who approved this external client (always populated) readOnly: false type: string verifiedDomain: description: |- Verified domain from the client_id URL (e.g., "cursor.com"). Empty for DCR clients. readOnly: false type: string wellKnownClient: description: The wellKnownClient field. enum: - WELL_KNOWN_CLIENT_UNSPECIFIED - WELL_KNOWN_CLIENT_UNKNOWN - WELL_KNOWN_CLIENT_CLAUDE_AI - WELL_KNOWN_CLIENT_CLAUDE_DESKTOP - WELL_KNOWN_CLIENT_CLAUDE_CODE - WELL_KNOWN_CLIENT_MCP_INSPECTOR - WELL_KNOWN_CLIENT_CHATGPT - WELL_KNOWN_CLIENT_VSCODE - WELL_KNOWN_CLIENT_CURSOR - WELL_KNOWN_CLIENT_WINDSURF - WELL_KNOWN_CLIENT_ZED - WELL_KNOWN_CLIENT_JETBRAINS - WELL_KNOWN_CLIENT_DOCKER_MCP_TOOLKIT readOnly: false type: string x-speakeasy-unknown-values: allow title: External Client Info type: object x-speakeasy-name-override: ExternalClientInfo c1.api.iam.v1.ExternalClientSearchServiceSearchRequest: description: The ExternalClientSearchServiceSearchRequest message. properties: clientIdUrls: description: |- Exact-match filter on client_id values (e.g., CIMD URLs). Returns only grants whose client_id matches one of these values. items: type: string nullable: true readOnly: false type: array pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string query: description: Free-text search on client_name and user display name readOnly: false type: string users: description: Filter by specific user IDs items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' nullable: true readOnly: false type: array wellKnownClients: description: Filter by well-known client type (e.g., CLAUDE_CODE, CURSOR, etc.) items: enum: - WELL_KNOWN_CLIENT_UNSPECIFIED - WELL_KNOWN_CLIENT_UNKNOWN - WELL_KNOWN_CLIENT_CLAUDE_AI - WELL_KNOWN_CLIENT_CLAUDE_DESKTOP - WELL_KNOWN_CLIENT_CLAUDE_CODE - WELL_KNOWN_CLIENT_MCP_INSPECTOR - WELL_KNOWN_CLIENT_CHATGPT - WELL_KNOWN_CLIENT_VSCODE - WELL_KNOWN_CLIENT_CURSOR - WELL_KNOWN_CLIENT_WINDSURF - WELL_KNOWN_CLIENT_ZED - WELL_KNOWN_CLIENT_JETBRAINS - WELL_KNOWN_CLIENT_DOCKER_MCP_TOOLKIT type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: External Client Search Service Search Request type: object x-speakeasy-name-override: ExternalClientSearchServiceSearchRequest c1.api.iam.v1.ExternalClientSearchServiceSearchResponse: description: The ExternalClientSearchServiceSearchResponse message. properties: list: description: Uses ExternalClientInfo with user_id populated for admin views items: $ref: '#/components/schemas/c1.api.iam.v1.ExternalClientInfo' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: External Client Search Service Search Response type: object x-speakeasy-name-override: ExternalClientSearchServiceSearchResponse c1.api.iam.v1.GetRolesResponse: description: The GetRolesResponse message contains the retrieved role. properties: role: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.Role' - type: "null" title: Get Roles Response type: object x-speakeasy-name-override: GetRolesResponse c1.api.iam.v1.ListRolesResponse: description: The ListRolesResponse message contains a list of results and a nextPageToken if applicable. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.iam.v1.Role' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List Roles Response type: object x-speakeasy-name-override: ListRolesResponse c1.api.iam.v1.PersonalClient: description: The PersonalClient message contains information about a presonal client credential. properties: allowSourceCidr: description: |- If set, only allows the CIDRs in the array to use the credential. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string readOnly: false type: - array - "null" clientId: description: The clientID of the credential. readOnly: true type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The display name of the personal client credential. readOnly: false type: - string - "null" expiresTime: oneOf: - format: date-time readOnly: false type: string - type: "null" id: description: The unique ID of the personal client credential. readOnly: true type: - string - "null" lastUsedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" scopedRoles: description: |- scoped_roles provides a list of IAM Roles that this OAuth2 Client's API permissions are reduced to. The permissions granted to OAuth2 Client are AND'ed against the owning User's own permissions. items: type: string readOnly: false type: - array - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The ID of the user that this credential is created for. readOnly: true type: - string - "null" title: Personal Client type: object x-speakeasy-name-override: PersonalClient c1.api.iam.v1.PersonalClientSearchServiceSearchRequest: description: The PersonalClientSearchServiceSearchRequest message. properties: pageSize: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: A pagination token returned from a previous Search call. readOnly: false type: - string - "null" query: description: A text query to filter personal clients by display name. readOnly: false type: - string - "null" users: description: Filter results to personal clients owned by the specified users. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" title: Personal Client Search Service Search Request type: object x-speakeasy-name-override: PersonalClientSearchServiceSearchRequest c1.api.iam.v1.PersonalClientSearchServiceSearchResponse: description: The PersonalClientSearchServiceSearchResponse message. properties: list: description: The list of personal client credentials matching the search criteria. items: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClient' readOnly: false type: - array - "null" nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: Personal Client Search Service Search Response type: object x-speakeasy-name-override: PersonalClientSearchServiceSearchResponse c1.api.iam.v1.PersonalClientServiceCreateRequest: description: The PersonalClientServiceCreateRequest message contains the fields for creating a new personal client. properties: allowSourceCidr: description: |- A list of CIDRs to restrict this credential to. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string readOnly: false type: - array - "null" displayName: description: The display name for the new personal client. readOnly: false type: - string - "null" expires: oneOf: - format: duration readOnly: false type: string - type: "null" scopedRoles: description: The list of roles to restrict the credential to. items: type: string readOnly: false type: - array - "null" title: Personal Client Service Create Request type: object x-speakeasy-name-override: PersonalClientServiceCreateRequest c1.api.iam.v1.PersonalClientServiceCreateResponse: description: The PersonalClientServiceCreateResponse message contains the created personal client and client secret. properties: client: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.PersonalClient' - type: "null" clientSecret: description: The client secret that corresponds to the personal client. Make sure to save this, because it cannot be returned or queried again. readOnly: false type: - string - "null" title: Personal Client Service Create Response type: object x-speakeasy-name-override: PersonalClientServiceCreateResponse c1.api.iam.v1.PersonalClientServiceDeleteRequestInput: description: The PersonalClientServiceDeleteRequest message. title: Personal Client Service Delete Request type: object x-speakeasy-name-override: PersonalClientServiceDeleteRequest c1.api.iam.v1.PersonalClientServiceDeleteResponse: description: The PersonalClientServiceDeleteResponse message. title: Personal Client Service Delete Response type: object x-speakeasy-name-override: PersonalClientServiceDeleteResponse c1.api.iam.v1.PersonalClientServiceGetResponse: description: The PersonalClientServiceGetResponse message. properties: client: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.PersonalClient' - type: "null" title: Personal Client Service Get Response type: object x-speakeasy-name-override: PersonalClientServiceGetResponse c1.api.iam.v1.PersonalClientServiceListResponse: description: The PersonalClientServiceListResponse message. properties: list: description: The list of personal client credentials owned by the calling user. items: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClient' readOnly: false type: - array - "null" nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: Personal Client Service List Response type: object x-speakeasy-name-override: PersonalClientServiceListResponse c1.api.iam.v1.PersonalClientServiceUpdateRequestInput: description: The PersonalClientServiceUpdateRequest message. properties: client: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.PersonalClient' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Personal Client Service Update Request type: object x-speakeasy-name-override: PersonalClientServiceUpdateRequest c1.api.iam.v1.PersonalClientServiceUpdateResponse: description: The PersonalClientServiceUpdateResponse message. properties: client: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.PersonalClient' - type: "null" title: Personal Client Service Update Response type: object x-speakeasy-name-override: PersonalClientServiceUpdateResponse c1.api.iam.v1.Role: description: Role is a role that can be assigned to a user in ConductorOne. properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The display name of the role. readOnly: false type: - string - "null" id: description: The id of the role. readOnly: true type: - string - "null" name: description: The internal name of the role. readOnly: true type: - string - "null" permissions: description: The list of permissions this role has. items: type: string readOnly: false type: - array - "null" serviceRoles: description: The list of serviceRoles that this role has. items: type: string readOnly: false type: - array - "null" systemApiOnly: description: This Role is intended for API keys usage only, and the user interface may not function as expected. readOnly: true type: - boolean - "null" systemBuiltin: description: The system builtin field. If this field is set, the role is not editable. readOnly: true type: - boolean - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Role type: object x-speakeasy-name-override: Role c1.api.iam.v1.UpdateRoleRequestInput: description: The UpdateRoleRequest message contains the role to update and the update mask. properties: role: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.Role' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update Role Request type: object x-speakeasy-name-override: UpdateRoleRequest c1.api.iam.v1.UpdateRolesResponse: description: UpdateRolesResponse is the response message containing the updated role. properties: role: oneOf: - $ref: '#/components/schemas/c1.api.iam.v1.Role' - type: "null" title: Update Roles Response type: object x-speakeasy-name-override: UpdateRolesResponse c1.api.integration.connector.v1.CheckboxField: description: The CheckboxField message. properties: checked: description: The checked field. readOnly: false type: - boolean - "null" title: Checkbox Field type: object x-speakeasy-name-override: ConnectorCheckboxField c1.api.integration.connector.v1.ConfigSchema: description: The ConfigSchema message. properties: displayName: description: The displayName field. readOnly: false type: - string - "null" fieldGroups: description: Optional. Metadata for displaying fields in the UI. items: $ref: '#/components/schemas/c1.api.integration.connector.v1.FieldGroup' readOnly: false type: - array - "null" fields: description: The fields field. items: $ref: '#/components/schemas/c1.api.integration.connector.v1.Field' readOnly: false type: - array - "null" helpUrl: description: The helpUrl field. readOnly: false type: - string - "null" iconUrl: deprecated: true description: The iconUrl field. readOnly: false type: - string - "null" isOauth2: description: The isOauth2 field. readOnly: false type: - boolean - "null" requiresExternalConnector: description: The requiresExternalConnector field. readOnly: false type: - boolean - "null" supportsExternalResources: description: The supportsExternalResources field. readOnly: false type: - boolean - "null" title: Config Schema type: object x-speakeasy-name-override: ConfigSchema c1.api.integration.connector.v1.ConnectorCatalogServiceConfigurationSchemaRequest: description: ConnectorCatalogServiceConfigurationSchemaRequest is the request for retrieving a connector's configuration schema. properties: appId: description: The ID of the app associated with the connector. Optional. readOnly: false type: - string - "null" catalogId: description: The catalog entry ID identifying the connector type. readOnly: false type: - string - "null" connectorId: description: The ID of an existing connector to retrieve its current configuration schema. Optional. readOnly: false type: - string - "null" title: Connector Catalog Service Configuration Schema Request type: object x-speakeasy-name-override: ConnectorCatalogServiceConfigurationSchemaRequest c1.api.integration.connector.v1.ConnectorCatalogServiceConfigurationSchemaResponse: description: ConnectorCatalogServiceConfigurationSchemaResponse is the response containing the connector's configuration schema. properties: formSchema: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.Form' - type: "null" schema: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.ConfigSchema' - type: "null" title: Connector Catalog Service Configuration Schema Response type: object x-speakeasy-name-override: ConnectorCatalogServiceConfigurationSchemaResponse c1.api.integration.connector.v1.Field: description: | The Field message. This message contains a oneof named field. Only a single field of the following list may be set at a time: - str - select - random - import - oauth2 - readOnly - options - checkbox - secret - strList - text - keyValue - stringMap properties: additionalPlaceholder: description: |- Optional. Additional placeholder text for the field In cases where a single placeholder is not enough to describe the field readOnly: false type: - string - "null" checkbox: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.CheckboxField' - type: "null" dependsOnFields: description: The dependsOnFields field. items: type: string readOnly: false type: - array - "null" displayName: description: Human-readable label for this Field readOnly: false type: - string - "null" helpUrl: description: empty or https URL readOnly: false type: - string - "null" import: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.ImportField' - type: "null" keyValue: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.KeyValueField' - type: "null" name: description: Must not start with `C1_` and match [a-zA-Z0-9_]{2,64}. Must be unique within a connector. readOnly: false type: - string - "null" oauth2: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.OAuth2Field' - type: "null" options: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.OptionsField' - type: "null" placeholder: description: The placeholder field. readOnly: false type: - string - "null" postCreate: description: The postCreate field. readOnly: false type: - boolean - "null" random: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.RandomStringField' - type: "null" readOnly: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.ReadOnlyField' - type: "null" secret: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.RotatableSecretField' - type: "null" select: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.SelectField' - type: "null" str: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.StringField' - type: "null" strList: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.StringListField' - type: "null" stringMap: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.StringMapField' - type: "null" text: oneOf: - $ref: '#/components/schemas/c1.api.integration.connector.v1.TextField' - type: "null" title: Field type: object x-speakeasy-name-override: Field c1.api.integration.connector.v1.FieldGroup: description: The FieldGroup message. properties: default: description: The default field. readOnly: false type: boolean displayName: description: Nice name this group (e.g. renders as a Tab label) readOnly: false type: - string - "null" fieldNames: description: Field names are "guaranteed" to be unique, but can be repeated in and between lists. items: type: string readOnly: false type: - array - "null" helpText: description: Optional. User-facing help text. readOnly: false type: - string - "null" name: description: Unique ID. readOnly: false type: - string - "null" title: Field Group type: object x-speakeasy-name-override: FieldGroup c1.api.integration.connector.v1.ImportField: description: The ImportField message. properties: allowedExtensions: description: The allowedExtensions field. items: type: string readOnly: false type: - array - "null" secret: description: The secret field. readOnly: false type: - boolean - "null" valueValidator: oneOf: - $ref: '#/components/schemas/validate.StringRules' - type: "null" title: Import Field type: object x-speakeasy-name-override: ImportField c1.api.integration.connector.v1.KeyValueField: description: The KeyValueField message. properties: secret: description: The secret field. readOnly: false type: - boolean - "null" supportsFileUpload: description: When true, UI allows file uploads per key-value entry. readOnly: false type: boolean title: Key Value Field type: object x-speakeasy-name-override: KeyValueField c1.api.integration.connector.v1.OAuth2Field: description: The OAuth2Field message. title: O Auth 2 Field type: object x-speakeasy-name-override: OAuth2Field c1.api.integration.connector.v1.OptionsField: description: The OptionsField message. title: Options Field type: object x-speakeasy-name-override: OptionsField c1.api.integration.connector.v1.RandomStringField: description: The RandomStringField message. properties: length: description: The length field. format: int32 readOnly: false type: - integer - "null" title: Random String Field type: object x-speakeasy-name-override: RandomStringField c1.api.integration.connector.v1.ReadOnlyField: description: The ReadOnlyField message. title: Read Only Field type: object x-speakeasy-name-override: ReadOnlyField c1.api.integration.connector.v1.RotatableSecretField: description: The RotatableSecretField message. title: Rotatable Secret Field type: object x-speakeasy-name-override: RotatableSecretField c1.api.integration.connector.v1.SelectField: description: The SelectField message. properties: items: description: list of items that are selected from items: $ref: '#/components/schemas/c1.api.integration.connector.v1.SelectField.Item' readOnly: false type: - array - "null" title: Select Field type: object x-speakeasy-name-override: ConnectorSelectField c1.api.integration.connector.v1.SelectField.Item: description: The Item message. properties: displayName: description: The displayName field. readOnly: false type: - string - "null" value: description: The value field. readOnly: false type: - string - "null" title: Item type: object x-speakeasy-name-override: Item c1.api.integration.connector.v1.StringField: description: The StringField message. properties: secret: description: If secret, value is write-only in UI and a password-type form is used. readOnly: false type: - boolean - "null" valueValidator: oneOf: - $ref: '#/components/schemas/validate.StringRules' - type: "null" title: String Field type: object x-speakeasy-name-override: StringField c1.api.integration.connector.v1.StringListField: description: The StringListField message. properties: valueValidator: oneOf: - $ref: '#/components/schemas/validate.StringRules' - type: "null" title: String List Field type: object x-speakeasy-name-override: StringListField c1.api.integration.connector.v1.StringMapField: description: The StringMapField message. properties: optional: description: The optional field. readOnly: false type: - boolean - "null" title: String Map Field type: object x-speakeasy-name-override: StringMapField c1.api.integration.connector.v1.TextField: description: The TextField message. properties: secret: description: The secret field. readOnly: false type: - boolean - "null" valueValidator: oneOf: - $ref: '#/components/schemas/validate.StringRules' - type: "null" title: Text Field type: object x-speakeasy-name-override: ConnectorTextField c1.api.local_directory.v1.LocalDirectoryConfig: description: |- LocalDirectoryConfig is the public representation of a C1-managed local directory configuration. The underlying directory infrastructure is provided by the linked App (identified by app_id). properties: allowSelfRegistration: description: Whether unauthenticated users may self-register in this directory. readOnly: false type: boolean appId: description: app_id is the identifier for this config and its linked App. Read-only after creation. readOnly: true type: string createdAt: format: date-time readOnly: true type: string defaultProfileTypeId: description: Optional FK to a ProfileType applied to new users created via this directory. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string invitationTtl: format: duration readOnly: false type: string isDefault: description: |- Whether this is the default local directory for the tenant. At most one config per tenant may be the default. readOnly: false type: boolean onboardingFlowId: description: Optional FK to an onboarding flow applied by default when inviting users. readOnly: false type: string organizationId: description: Optional FK to a ThirdPartyOrganization. Empty means standalone (no vendor linkage). readOnly: false type: string selfRegistrationDomains: description: |- Email domain allowlist for self-registration. Empty allows any domain when allow_self_registration is true. items: type: string nullable: true readOnly: false type: array updatedAt: format: date-time readOnly: true type: string title: Local Directory Config type: object x-speakeasy-name-override: LocalDirectoryConfig c1.api.local_directory.v1.LocalDirectoryConfigServiceCreateRequest: description: The LocalDirectoryConfigServiceCreateRequest message. properties: allowSelfRegistration: description: The allowSelfRegistration field. readOnly: false type: boolean appId: description: FK to the existing App that will back this local directory. readOnly: false type: string defaultProfileTypeId: description: The defaultProfileTypeId field. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string invitationTtl: format: duration readOnly: false type: string isDefault: description: Whether this should be the default local directory for the tenant. readOnly: false type: boolean onboardingFlowId: description: The onboardingFlowId field. readOnly: false type: string organizationId: description: Optional FK to a ThirdPartyOrganization. readOnly: false type: string selfRegistrationDomains: description: The selfRegistrationDomains field. items: type: string nullable: true readOnly: false type: array required: - appId - displayName title: Local Directory Config Service Create Request type: object x-speakeasy-name-override: LocalDirectoryConfigServiceCreateRequest c1.api.local_directory.v1.LocalDirectoryConfigServiceCreateResponse: description: The LocalDirectoryConfigServiceCreateResponse message. properties: localDirectoryConfig: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfig' title: Local Directory Config Service Create Response type: object x-speakeasy-name-override: LocalDirectoryConfigServiceCreateResponse c1.api.local_directory.v1.LocalDirectoryConfigServiceDeleteRequestInput: description: The LocalDirectoryConfigServiceDeleteRequest message. title: Local Directory Config Service Delete Request type: object x-speakeasy-name-override: LocalDirectoryConfigServiceDeleteRequest c1.api.local_directory.v1.LocalDirectoryConfigServiceDeleteResponse: description: The LocalDirectoryConfigServiceDeleteResponse message. title: Local Directory Config Service Delete Response type: object x-speakeasy-name-override: LocalDirectoryConfigServiceDeleteResponse c1.api.local_directory.v1.LocalDirectoryConfigServiceGetResponse: description: The LocalDirectoryConfigServiceGetResponse message. properties: localDirectoryConfig: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfig' title: Local Directory Config Service Get Response type: object x-speakeasy-name-override: LocalDirectoryConfigServiceGetResponse c1.api.local_directory.v1.LocalDirectoryConfigServiceListResponse: description: The LocalDirectoryConfigServiceListResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfig' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Local Directory Config Service List Response type: object x-speakeasy-name-override: LocalDirectoryConfigServiceListResponse c1.api.local_directory.v1.LocalDirectoryConfigServiceUpdateRequestInput: description: The LocalDirectoryConfigServiceUpdateRequest message. properties: localDirectoryConfig: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfig' updateMask: nullable: true readOnly: false type: string title: Local Directory Config Service Update Request type: object x-speakeasy-name-override: LocalDirectoryConfigServiceUpdateRequest c1.api.local_directory.v1.LocalDirectoryConfigServiceUpdateResponse: description: The LocalDirectoryConfigServiceUpdateResponse message. properties: localDirectoryConfig: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfig' title: Local Directory Config Service Update Response type: object x-speakeasy-name-override: LocalDirectoryConfigServiceUpdateResponse c1.api.local_directory.v1.LocalUserInvitation: description: LocalUserInvitation is the public representation of a per-directory user invitation. properties: acceptedAt: format: date-time readOnly: true type: string createdAt: format: date-time readOnly: true type: string createdUserId: description: Set when status = ACCEPTED. FK to the created User. Read-only. readOnly: true type: string directoryAppId: description: FK to the LocalDirectoryConfig (app_id) this invitation belongs to. Read-only after creation. readOnly: true type: string displayName: description: Display name to pre-populate on the new user account. readOnly: false type: string email: description: Email address the invitation was sent to. readOnly: false type: string expiresAt: format: date-time readOnly: true type: string id: description: Unique KSUID identifier. Read-only. readOnly: true type: string initialRoleIds: description: Optional initial role IDs to assign to the user upon acceptance. items: type: string nullable: true readOnly: false type: array invitedByUserId: description: FK to the User who created the invitation. Read-only. readOnly: true type: string jobId: description: Optional FK to a ThirdPartyJob. readOnly: false type: string onboardingFlowId: description: Optional onboarding flow override for this invitation. readOnly: false type: string purpose: description: Human-readable reason this user was invited. readOnly: false type: string sponsorUserId: description: Optional sponsor User override for this invitation. readOnly: false type: string status: description: Current lifecycle status. Read-only. enum: - LOCAL_INVITATION_STATUS_UNSPECIFIED - LOCAL_INVITATION_STATUS_PENDING - LOCAL_INVITATION_STATUS_ACCEPTED - LOCAL_INVITATION_STATUS_REVOKED - LOCAL_INVITATION_STATUS_EXPIRED readOnly: true type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: true type: string title: Local User Invitation type: object x-speakeasy-name-override: LocalUserInvitation c1.api.local_directory.v1.LocalUserInvitationServiceCreateRequestInput: description: The LocalUserInvitationServiceCreateRequest message. properties: displayName: description: The displayName field. readOnly: false type: string email: description: The email field. readOnly: false type: string initialRoleIds: description: Optional initial role IDs to assign upon acceptance. items: type: string nullable: true readOnly: false type: array jobId: description: Optional FK to a ThirdPartyJob. readOnly: false type: string onboardingFlowId: description: Optional onboarding flow override. readOnly: false type: string purpose: description: Human-readable reason for the invitation. readOnly: false type: string sponsorUserId: description: Optional sponsor User override. readOnly: false type: string required: - email - displayName title: Local User Invitation Service Create Request type: object x-speakeasy-name-override: LocalUserInvitationServiceCreateRequest c1.api.local_directory.v1.LocalUserInvitationServiceCreateResponse: description: The LocalUserInvitationServiceCreateResponse message. properties: invitation: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitation' title: Local User Invitation Service Create Response type: object x-speakeasy-name-override: LocalUserInvitationServiceCreateResponse c1.api.local_directory.v1.LocalUserInvitationServiceGetResponse: description: The LocalUserInvitationServiceGetResponse message. properties: invitation: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitation' title: Local User Invitation Service Get Response type: object x-speakeasy-name-override: LocalUserInvitationServiceGetResponse c1.api.local_directory.v1.LocalUserInvitationServiceRevokeRequestInput: description: The LocalUserInvitationServiceRevokeRequest message. title: Local User Invitation Service Revoke Request type: object x-speakeasy-name-override: LocalUserInvitationServiceRevokeRequest c1.api.local_directory.v1.LocalUserInvitationServiceRevokeResponse: description: The LocalUserInvitationServiceRevokeResponse message. properties: invitation: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitation' title: Local User Invitation Service Revoke Response type: object x-speakeasy-name-override: LocalUserInvitationServiceRevokeResponse c1.api.local_directory.v1.LocalUserInvitationServiceSearchRequest: description: The LocalUserInvitationServiceSearchRequest message. properties: directoryAppId: description: The directoryAppId field. readOnly: false type: string pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string statusFilter: description: Optional filter by invitation status. enum: - LOCAL_INVITATION_STATUS_UNSPECIFIED - LOCAL_INVITATION_STATUS_PENDING - LOCAL_INVITATION_STATUS_ACCEPTED - LOCAL_INVITATION_STATUS_REVOKED - LOCAL_INVITATION_STATUS_EXPIRED readOnly: false type: string x-speakeasy-unknown-values: allow title: Local User Invitation Service Search Request type: object x-speakeasy-name-override: LocalUserInvitationServiceSearchRequest c1.api.local_directory.v1.LocalUserInvitationServiceSearchResponse: description: The LocalUserInvitationServiceSearchResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitation' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Local User Invitation Service Search Response type: object x-speakeasy-name-override: LocalUserInvitationServiceSearchResponse c1.api.policy.v1.Accept: description: This policy step indicates that a ticket should have an approved outcome. This is a terminal approval state and is used to explicitly define the end of approval steps. properties: acceptMessage: description: An optional message to include in the comments when a task is automatically accepted. readOnly: false type: - string - "null" title: Accept type: object x-speakeasy-name-override: Accept c1.api.policy.v1.AcceptInstance: description: |- This policy step indicates that a ticket should have an approved outcome. This is a terminal approval state and is used to explicitly define the end of approval steps. The instance is just a marker for it being copied into an active policy. properties: acceptMessage: description: An optional message to include in the comments when a task is automatically accepted. readOnly: false type: - string - "null" title: Accept Instance type: object x-speakeasy-name-override: AcceptInstance c1.api.policy.v1.Action: description: | The Action message. This message contains a oneof named target. Only a single field of the following list may be set at a time: - automation - batonResourceAction - clientIdApproval nullable: true properties: automation: $ref: '#/components/schemas/c1.api.policy.v1.ActionTargetAutomation' batonResourceAction: $ref: '#/components/schemas/c1.api.policy.v1.ActionTargetBatonResourceAction' clientIdApproval: $ref: '#/components/schemas/c1.api.policy.v1.ActionTargetClientIdApproval' title: Action type: object x-speakeasy-name-override: Action c1.api.policy.v1.ActionInstance: description: | The ActionInstance message. This message contains a oneof named target_instance. Only a single field of the following list may be set at a time: - automation - batonResourceActionInstance - clientIdApprovalInstance This message contains a oneof named outcome. Only a single field of the following list may be set at a time: - success - denied - error - cancelled nullable: true properties: action: $ref: '#/components/schemas/c1.api.policy.v1.Action' automation: $ref: '#/components/schemas/c1.api.policy.v1.ActionTargetAutomationInstance' batonResourceActionInstance: $ref: '#/components/schemas/c1.api.policy.v1.ActionTargetBatonResourceActionInstance' cancelled: $ref: '#/components/schemas/c1.api.policy.v1.ActionOutcomeCancelled' clientIdApprovalInstance: $ref: '#/components/schemas/c1.api.policy.v1.ActionTargetClientIdApprovalInstance' denied: $ref: '#/components/schemas/c1.api.policy.v1.ActionOutcomeDenied' error: $ref: '#/components/schemas/c1.api.policy.v1.ActionOutcomeError' state: description: The current state of the action execution. enum: - ACTION_INSTANCE_STATE_UNSPECIFIED - ACTION_INSTANCE_STATE_INIT - ACTION_INSTANCE_STATE_RUNNING - ACTION_INSTANCE_STATE_DONE - ACTION_INSTANCE_STATE_ERROR readOnly: false type: string x-speakeasy-unknown-values: allow success: $ref: '#/components/schemas/c1.api.policy.v1.ActionOutcomeSuccess' title: Action Instance type: object x-speakeasy-name-override: ActionInstance c1.api.policy.v1.ActionOutcomeCancelled: description: The ActionOutcomeCancelled message. nullable: true properties: outcomeTime: format: date-time readOnly: false type: string title: Action Outcome Cancelled type: object x-speakeasy-name-override: ActionOutcomeCancelled c1.api.policy.v1.ActionOutcomeDenied: description: The ActionOutcomeDenied message. nullable: true properties: outcomeTime: format: date-time readOnly: false type: string title: Action Outcome Denied type: object x-speakeasy-name-override: ActionOutcomeDenied c1.api.policy.v1.ActionOutcomeError: description: The ActionOutcomeError message. nullable: true properties: errorCode: description: The errorCode field. readOnly: false type: string errorMessage: description: The errorMessage field. readOnly: false type: string outcomeTime: format: date-time readOnly: false type: string title: Action Outcome Error type: object x-speakeasy-name-override: ActionOutcomeError c1.api.policy.v1.ActionOutcomeSuccess: description: The ActionOutcomeSuccess message. nullable: true properties: outcomeTime: format: date-time readOnly: false type: string title: Action Outcome Success type: object x-speakeasy-name-override: ActionOutcomeSuccess c1.api.policy.v1.ActionProvision: description: This provision step indicates that account lifecycle action should be called to provision this entitlement. properties: actionName: description: The actionName field. readOnly: false type: - string - "null" appId: description: The appId field. readOnly: false type: - string - "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" displayName: description: The displayName field. readOnly: false type: - string - "null" title: Action Provision type: object x-speakeasy-name-override: ActionProvision c1.api.policy.v1.ActionTargetAutomation: description: ActionTargetAutomation targets automation templates for policy actions. nullable: true properties: automationTemplateId: description: The automationTemplateId field. readOnly: false type: string title: Action Target Automation type: object x-speakeasy-name-override: ActionTargetAutomation c1.api.policy.v1.ActionTargetAutomationInstance: description: The ActionTargetAutomationInstance message. nullable: true properties: automationExecutionId: description: The automationExecutionId field. readOnly: false type: string title: Action Target Automation Instance type: object x-speakeasy-name-override: ActionTargetAutomationInstance c1.api.policy.v1.ActionTargetBatonResourceAction: description: ActionTargetResource targets resource actions for policy actions. nullable: true properties: batonResourceActionId: description: The batonResourceActionId field. readOnly: false type: string title: Action Target Baton Resource Action type: object x-speakeasy-name-override: ActionTargetBatonResourceAction c1.api.policy.v1.ActionTargetBatonResourceActionInstance: description: The ActionTargetBatonResourceActionInstance message. nullable: true properties: batonActionInvocationId: description: The batonActionInvocationId field. readOnly: false type: string title: Action Target Baton Resource Action Instance type: object x-speakeasy-name-override: ActionTargetBatonResourceActionInstance c1.api.policy.v1.ActionTargetClientIdApproval: description: |- ActionTargetClientIdApproval targets administrator review of an external OAuth client registration (CIMD or DCR) for policy actions. nullable: true title: Action Target Client Id Approval type: object x-speakeasy-name-override: ActionTargetClientIdApproval c1.api.policy.v1.ActionTargetClientIdApprovalInstance: description: |- ActionTargetClientIdApprovalInstance carries the registration key of the external OAuth client that is being reviewed. nullable: true properties: clientIdUrl: description: The clientIdUrl field. readOnly: false type: string title: Action Target Client Id Approval Instance type: object x-speakeasy-name-override: ActionTargetClientIdApprovalInstance c1.api.policy.v1.AgentApproval: description: The agent to assign the task to. properties: agentFailureAction: description: The action to take if the agent fails to approve, deny, or reassign the task. enum: - APPROVAL_AGENT_FAILURE_ACTION_UNSPECIFIED - APPROVAL_AGENT_FAILURE_ACTION_REASSIGN_TO_USERS - APPROVAL_AGENT_FAILURE_ACTION_REASSIGN_TO_SUPER_ADMINS - APPROVAL_AGENT_FAILURE_ACTION_SKIP_POLICY_STEP readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow agentMode: description: The mode of the agent, full control, change policy only, or comment only. enum: - APPROVAL_AGENT_MODE_UNSPECIFIED - APPROVAL_AGENT_MODE_FULL_CONTROL - APPROVAL_AGENT_MODE_CHANGE_POLICY_ONLY - APPROVAL_AGENT_MODE_COMMENT_ONLY readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow agentUserId: description: The agent user ID to assign the task to. readOnly: false type: - string - "null" instructions: description: Instructions for the agent. readOnly: false type: - string - "null" policyIds: description: The allow list of policy IDs to re-route the task to. items: type: string readOnly: false type: - array - "null" reassignToUserIds: description: The users to reassign the task to if the agent failure action is reassign to users. items: type: string readOnly: false type: - array - "null" title: Agent Approval type: object x-speakeasy-name-override: AgentApproval c1.api.policy.v1.AppEntitlementReference: description: This object references an app entitlement's ID and AppID. properties: appEntitlementId: description: The ID of the Entitlement. readOnly: false type: - string - "null" appId: description: The ID of the App this entitlement belongs to. readOnly: false type: - string - "null" title: App Entitlement Reference type: object x-speakeasy-name-override: AppEntitlementReference c1.api.policy.v1.AppGroupApproval: description: The AppGroupApproval object provides the configuration for setting a group as the approvers of an approval policy step. properties: allowSelfApproval: description: Configuration to allow self approval if the target user is a member of the group during this step. readOnly: false type: - boolean - "null" appGroupId: description: The ID of the group specified for approval. readOnly: false type: - string - "null" appId: description: The ID of the app that contains the group specified for approval. readOnly: false type: - string - "null" fallback: description: Configuration to allow a fallback if the group is empty. readOnly: false type: - boolean - "null" fallbackGroupIds: description: Configuration to specify which groups to fallback to if fallback is enabled and the group is empty. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' readOnly: false type: - array - "null" fallbackUserIds: description: Configuration to specific which users to fallback to if fallback is enabled and the group is empty. items: type: string readOnly: false type: - array - "null" isGroupFallbackEnabled: description: Configuration to enable fallback for group fallback. readOnly: false type: - boolean - "null" requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean title: App Group Approval type: object x-speakeasy-name-override: AppGroupApproval c1.api.policy.v1.AppOwnerApproval: description: App owner approval provides the configuration for an approval step when the app owner is the target. properties: allowSelfApproval: description: Configuration that allows a user to self approve if they are an app owner during this approval step. readOnly: false type: - boolean - "null" requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean title: App Owner Approval type: object x-speakeasy-name-override: AppOwnerApproval c1.api.policy.v1.AppOwnerProvisioner: description: AppOwnerProvisioner resolves to app owners. nullable: true properties: allowReassignment: description: Whether the provisioner can reassign the task. readOnly: false type: boolean fallbackUserIds: description: Fallback user IDs if no app owners are found. items: type: string nullable: true readOnly: false type: array title: App Owner Provisioner type: object x-speakeasy-name-override: AppOwnerProvisioner c1.api.policy.v1.Approval: description: | The Approval message. This message contains a oneof named typ. Only a single field of the following list may be set at a time: - users - manager - appOwners - group - self - entitlementOwners - expression - webhook - resourceOwners - agent properties: agent: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.AgentApproval' - type: "null" allowDelegation: description: Whether ticket delegation is allowed for this step. readOnly: false type: - boolean - "null" allowReassignment: description: Configuration to allow reassignment by reviewers during this step. readOnly: false type: - boolean - "null" allowedReassignees: description: List of users for whom this step can be reassigned. items: type: string readOnly: false type: - array - "null" appOwners: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.AppOwnerApproval' - type: "null" assigned: description: A field indicating whether this step is assigned. readOnly: true type: - boolean - "null" entitlementOwners: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.EntitlementOwnerApproval' - type: "null" escalation: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Escalation' - type: "null" escalationEnabled: description: Whether escalation is enabled for this step. readOnly: false type: - boolean - "null" expression: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ExpressionApproval' - type: "null" group: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.AppGroupApproval' - type: "null" manager: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ManagerApproval' - type: "null" requireApprovalReason: description: Configuration to require a reason when approving this step. readOnly: false type: - boolean - "null" requireDenialReason: description: Configuration to require a reason when denying this step. readOnly: false type: - boolean - "null" requireReassignmentReason: description: Configuration to require a reason when reassigning this step. readOnly: false type: - boolean - "null" requiresStepUpProviderId: description: |- The ID of a step-up authentication provider that will be required for approvals on this step. If set, approvers must complete the step-up authentication flow before they can approve. readOnly: false type: - string - "null" resourceOwners: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ResourceOwnerApproval' - type: "null" self: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.SelfApproval' - type: "null" users: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.UserApproval' - type: "null" webhook: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WebhookApproval' - type: "null" title: Approval type: object x-speakeasy-name-override: Approval c1.api.policy.v1.ApprovalInstance: description: | The approval instance object describes the way a policy step should be approved as well as its outcomes and state. This message contains a oneof named outcome. Only a single field of the following list may be set at a time: - approved - denied - reassigned - restarted - reassignedByError - skipped properties: approval: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Approval' - type: "null" approved: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ApprovedAction' - type: "null" assignedAt: format: date-time readOnly: true type: string denied: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.DeniedAction' - type: "null" escalationInstance: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.EscalationInstance' - type: "null" reassigned: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ReassignedAction' - type: "null" reassignedByError: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ReassignedByErrorAction' - type: "null" restarted: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.RestartAction' - type: "null" skipped: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.SkippedAction' - type: "null" state: description: The state of the approval instance enum: - APPROVAL_INSTANCE_STATE_UNSPECIFIED - APPROVAL_INSTANCE_STATE_INIT - APPROVAL_INSTANCE_STATE_SENDING_NOTIFICATIONS - APPROVAL_INSTANCE_STATE_WAITING - APPROVAL_INSTANCE_STATE_DONE readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow title: Approval Instance type: object x-speakeasy-name-override: ApprovalInstance c1.api.policy.v1.ApprovedAction: description: The approved action indicates that the approvalinstance had an outcome of approved. properties: approvedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" entitlements: description: The entitlements that were approved. This will only ever be a list of one entitlement. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' readOnly: true type: - array - "null" stepUpTransactionId: description: The ID of the step-up transaction that was used for this approval, if step-up was required. readOnly: true type: - string - "null" userId: description: The UserID that approved this step. readOnly: true type: - string - "null" title: Approved Action type: object x-speakeasy-name-override: ApprovedAction c1.api.policy.v1.CancelledAction: description: The outcome of a provision instance that is cancelled. properties: cancelledAt: oneOf: - format: date-time readOnly: false type: string - type: "null" cancelledByUserId: description: The userID, usually the system, that cancells a provision instance. readOnly: false type: - string - "null" title: Cancelled Action type: object x-speakeasy-name-override: CancelledAction c1.api.policy.v1.CompletedAction: description: The outcome of a provision instance that has been completed succesfully. properties: completedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" entitlements: description: The list of entitlements that were provisioned. This is leftover from an older design, and is only ever going to be a single entitlement. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' readOnly: false type: - array - "null" userId: description: The UserID of who completed provisioning. For connector provisioning this is the system user id, for manual provisioning this is who clicked "provision complete" readOnly: false type: - string - "null" title: Completed Action type: object x-speakeasy-name-override: CompletedAction c1.api.policy.v1.ConnectorProvision: description: | Indicates that a connector should perform the provisioning. This object has no fields. This message contains a oneof named provision_type. Only a single field of the following list may be set at a time: - defaultBehavior - account - deleteAccount properties: account: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ConnectorProvision.AccountProvision' - type: "null" defaultBehavior: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ConnectorProvision.DefaultBehavior' - type: "null" deleteAccount: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ConnectorProvision.DeleteAccount' - type: "null" title: Connector Provision type: object x-speakeasy-name-override: ConnectorProvision c1.api.policy.v1.ConnectorProvision.AccountProvision: description: | The AccountProvision message. This message contains a oneof named storage_type. Only a single field of the following list may be set at a time: - saveToVault - doNotSave properties: config: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" doNotSave: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ConnectorProvision.DoNotSave' - type: "null" saveToVault: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ConnectorProvision.SaveToVault' - type: "null" schemaId: description: The schemaId field. readOnly: false type: - string - "null" title: Account Provision type: object x-speakeasy-name-override: AccountProvision c1.api.policy.v1.ConnectorProvision.DefaultBehavior: description: The DefaultBehavior message. properties: connectorId: description: |- this checks if the entitlement is enabled by provisioning in a specific connector this can happen automatically and doesn't need any extra info readOnly: false type: - string - "null" title: Default Behavior type: object x-speakeasy-name-override: DefaultBehavior c1.api.policy.v1.ConnectorProvision.DeleteAccount: description: The DeleteAccount message. properties: connectorId: description: The connectorId field. readOnly: false type: - string - "null" title: Delete Account type: object x-speakeasy-name-override: DeleteAccount c1.api.policy.v1.ConnectorProvision.DoNotSave: description: The DoNotSave message. title: Do Not Save type: object x-speakeasy-name-override: DoNotSave c1.api.policy.v1.ConnectorProvision.SaveToVault: description: The SaveToVault message. properties: vaultIds: description: The vaultIds field. items: type: string readOnly: false type: - array - "null" title: Save To Vault type: object x-speakeasy-name-override: SaveToVault c1.api.policy.v1.CreatePolicyRequest: description: The CreatePolicyRequest message is used to create a new policy. properties: description: description: The description of the new policy. readOnly: false type: - string - "null" displayName: description: The display name of the new policy. readOnly: false type: string policySteps: additionalProperties: $ref: '#/components/schemas/c1.api.policy.v1.PolicySteps' description: |- Step sequences for this policy. The map must include a baseline entry keyed by the lowercased policy type (e.g., "grant"). Additional entries with opaque keys can be added for conditional routing via the rules array. readOnly: false type: - object - "null" policyType: description: The type of policy to create (grant, revoke, or certify). enum: - POLICY_TYPE_UNSPECIFIED - POLICY_TYPE_GRANT - POLICY_TYPE_REVOKE - POLICY_TYPE_CERTIFY - POLICY_TYPE_ACCESS_REQUEST - POLICY_TYPE_PROVISION readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow postActions: description: Ordered actions to execute after the policy completes processing. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyPostActions' readOnly: false type: - array - "null" reassignTasksToDelegates: deprecated: true description: This field is no longer used. Configure delegate reassignment in the policy step instead. readOnly: false type: - boolean - "null" rules: description: Conditional routing rules. See the Policy message for details on evaluation order. items: $ref: '#/components/schemas/c1.api.policy.v1.Rule' readOnly: false type: - array - "null" required: - displayName title: Create Policy Request type: object x-speakeasy-entity: Policy x-speakeasy-name-override: CreatePolicyRequest c1.api.policy.v1.CreatePolicyResponse: description: The CreatePolicyResponse message contains the created policy object. properties: policy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Policy' - type: "null" title: Create Policy Response type: object x-speakeasy-name-override: CreatePolicyResponse c1.api.policy.v1.DelegatedProvision: description: This provision step indicates that we should delegate provisioning to the configuration of another app entitlement. This app entitlement does not have to be one from the same app, but MUST be configured as a proxy binding leading into this entitlement. properties: appId: description: The AppID of the entitlement to delegate provisioning to. readOnly: false type: - string - "null" entitlementId: description: The ID of the entitlement we are delegating provisioning to. readOnly: false type: - string - "null" implicit: description: If true, a binding will be automatically created from the entitlement of the parent app. readOnly: false type: - boolean - "null" title: Delegated Provision type: object x-speakeasy-name-override: DelegatedProvision c1.api.policy.v1.DeletePolicyRequestInput: description: The DeletePolicyRequest message contains the ID of the policy to delete. It uses URL value for input. title: Delete Policy Request type: object x-speakeasy-entity: Policy x-speakeasy-name-override: DeletePolicyRequest c1.api.policy.v1.DeletePolicyResponse: description: Empty response with a status code indicating success. title: Delete Policy Response type: object x-speakeasy-name-override: DeletePolicyResponse c1.api.policy.v1.DeniedAction: description: The denied action indicates that the c1.api.policy.v1.ApprovalInstance had an outcome of denied. properties: deniedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The UserID that denied this step. readOnly: true type: - string - "null" title: Denied Action type: object x-speakeasy-name-override: DeniedAction c1.api.policy.v1.EditorValidateRequest: description: The EditorValidateRequest message. properties: text: description: The text field. readOnly: false type: - string - "null" title: Editor Validate Request type: object x-speakeasy-name-override: PolicyEditorValidateRequest c1.api.policy.v1.EditorValidateResponse: description: The EditorValidateResponse message. properties: markers: description: The markers field. items: $ref: '#/components/schemas/c1.api.editor.v1.EditorMarker' readOnly: false type: - array - "null" title: Editor Validate Response type: object x-speakeasy-name-override: PolicyEditorValidateResponse c1.api.policy.v1.EntitlementOwnerApproval: description: The entitlement owner approval allows configuration of the approval step when the target approvers are the entitlement owners. properties: allowSelfApproval: description: Configuration to allow self approval if the target user is an entitlement owner during this step. readOnly: false type: - boolean - "null" fallback: description: Configuration to allow a fallback if the entitlement owner cannot be identified. readOnly: false type: - boolean - "null" fallbackGroupIds: description: Configuration to specify which groups to fallback to if fallback is enabled and the entitlement owner cannot be identified. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' nullable: true readOnly: false type: array fallbackUserIds: description: Configuration to specific which users to fallback to if fallback is enabled and the entitlement owner cannot be identified. items: type: string readOnly: false type: - array - "null" isGroupFallbackEnabled: description: Configuration to enable fallback for group fallback. readOnly: false type: boolean requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean title: Entitlement Owner Approval type: object x-speakeasy-name-override: EntitlementOwnerApproval c1.api.policy.v1.EntitlementOwnerProvisioner: description: EntitlementOwnerProvisioner resolves to entitlement owners. nullable: true properties: allowReassignment: description: Whether the provisioner can reassign the task. readOnly: false type: boolean fallbackUserIds: description: Fallback user IDs if no entitlement owners are found. items: type: string nullable: true readOnly: false type: array title: Entitlement Owner Provisioner type: object x-speakeasy-name-override: EntitlementOwnerProvisioner c1.api.policy.v1.ErroredAction: description: The outcome of a provision instance that has errored. properties: description: description: The description of a provision instance that has errored. readOnly: false type: - string - "null" errorCode: description: The error code of a provision instance that has errored. This is only PEC-1 for now, but more will be added in the future. readOnly: false type: - string - "null" erroredAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Errored Action type: object x-speakeasy-name-override: ErroredAction c1.api.policy.v1.Escalation: description: | The Escalation message. This message contains a oneof named escalation_policy. Only a single field of the following list may be set at a time: - replacePolicy - reassignToApprovers - cancelTicket - skipStep properties: cancelTicket: $ref: '#/components/schemas/c1.api.policy.v1.Escalation.CancelTicket' escalationComment: description: The escalationComment field. readOnly: false type: - string - "null" expiration: description: The expiration field. format: int64 readOnly: false type: - string - "null" reassignToApprovers: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Escalation.ReassignToApprovers' - type: "null" replacePolicy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Escalation.ReplacePolicy' - type: "null" skipStep: $ref: '#/components/schemas/c1.api.policy.v1.Escalation.SkipStep' title: Escalation type: object x-speakeasy-name-override: Escalation c1.api.policy.v1.Escalation.CancelTicket: description: The CancelTicket message. nullable: true title: Cancel Ticket type: object x-speakeasy-name-override: CancelTicket c1.api.policy.v1.Escalation.ReassignToApprovers: description: The ReassignToApprovers message. properties: approverIds: description: The approverIds field. items: type: string readOnly: false type: - array - "null" title: Reassign To Approvers type: object x-speakeasy-name-override: ReassignToApprovers c1.api.policy.v1.Escalation.ReplacePolicy: description: The ReplacePolicy message. properties: policyId: description: The policyId field. readOnly: false type: - string - "null" title: Replace Policy type: object x-speakeasy-name-override: ReplacePolicy c1.api.policy.v1.Escalation.SkipStep: description: The SkipStep message. nullable: true title: Skip Step type: object x-speakeasy-name-override: SkipStep c1.api.policy.v1.EscalationInstance: description: | The EscalationInstance message. This message contains a oneof named escalation_policy. Only a single field of the following list may be set at a time: - replacePolicy - reassignToApprovers - cancelTicket - skipStep properties: alreadyEscalated: description: The alreadyEscalated field. readOnly: false type: - boolean - "null" cancelTicket: $ref: '#/components/schemas/c1.api.policy.v1.EscalationInstance.CancelTicket' escalationComment: description: The escalationComment field. readOnly: false type: - string - "null" expiresAt: oneOf: - format: date-time readOnly: false type: string - type: "null" reassignToApprovers: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.EscalationInstance.ReassignToApprovers' - type: "null" replacePolicy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.EscalationInstance.ReplacePolicy' - type: "null" skipStep: $ref: '#/components/schemas/c1.api.policy.v1.EscalationInstance.SkipStep' title: Escalation Instance type: object x-speakeasy-name-override: EscalationInstance c1.api.policy.v1.EscalationInstance.CancelTicket: description: The CancelTicket message. nullable: true title: Cancel Ticket type: object x-speakeasy-name-override: EscalationInstanceCancelTicket c1.api.policy.v1.EscalationInstance.ReassignToApprovers: description: The ReassignToApprovers message. properties: approverIds: description: The approverIds field. items: type: string readOnly: false type: - array - "null" title: Reassign To Approvers type: object x-speakeasy-name-override: EscalationInstanceReassignToApprovers c1.api.policy.v1.EscalationInstance.ReplacePolicy: description: The ReplacePolicy message. properties: policyId: description: The policyId field. readOnly: false type: - string - "null" title: Replace Policy type: object x-speakeasy-name-override: EscalationInstanceReplacePolicy c1.api.policy.v1.EscalationInstance.SkipStep: description: The SkipStep message. nullable: true title: Skip Step type: object x-speakeasy-name-override: EscalationInstanceSkipStep c1.api.policy.v1.ExpressionApproval: description: The ExpressionApproval message. properties: allowSelfApproval: description: Configuration to allow self approval of if the user is specified and also the target of the ticket. readOnly: false type: - boolean - "null" assignedUserIds: description: The assignedUserIds field. items: type: string readOnly: true type: - array - "null" expressions: description: Array of dynamic expressions to determine the approvers. The first expression to return a non-empty list of users will be used. items: type: string readOnly: false type: - array - "null" fallback: description: Configuration to allow a fallback if the expression does not return a valid list of users. readOnly: false type: - boolean - "null" fallbackGroupIds: description: Configuration to specify which groups to fallback to if fallback is enabled and the expression does not return a valid list of users. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' nullable: true readOnly: false type: array fallbackUserIds: description: Configuration to specific which users to fallback to if and the expression does not return a valid list of users. items: type: string readOnly: false type: - array - "null" isGroupFallbackEnabled: description: Configuration to enable fallback for group fallback. readOnly: false type: boolean requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean title: Expression Approval type: object x-speakeasy-name-override: ExpressionApproval c1.api.policy.v1.ExpressionProvisioner: description: ExpressionProvisioner evaluates CEL expressions to determine provisioners. nullable: true properties: allowReassignment: description: Whether the provisioner can reassign the task. readOnly: false type: boolean expressions: description: The CEL expressions to evaluate. items: type: string nullable: true readOnly: false type: array fallbackUserIds: description: Fallback user IDs if expression evaluation yields no users. items: type: string nullable: true readOnly: false type: array title: Expression Provisioner type: object x-speakeasy-name-override: ExpressionProvisioner c1.api.policy.v1.ExternalTicketProvision: description: This provision step indicates that we should check an external ticket to provision this entitlement properties: appId: description: The appId field. readOnly: false type: - string - "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" externalTicketProvisionerConfigId: description: The externalTicketProvisionerConfigId field. readOnly: false type: - string - "null" instructions: description: This field indicates a text body of instructions for the provisioner to indicate. readOnly: false type: - string - "null" title: External Ticket Provision type: object x-speakeasy-name-override: ExternalTicketProvision c1.api.policy.v1.Form: description: The Form message. properties: form: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.Form' - type: "null" title: Form type: object x-speakeasy-name-override: Form c1.api.policy.v1.FormCompletedAction: description: The FormCompletedAction message. properties: completedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" userId: description: The userId field. readOnly: false type: - string - "null" title: Form Completed Action type: object x-speakeasy-name-override: FormCompletedAction c1.api.policy.v1.FormInstance: description: | The FormInstance message. This message contains a oneof named outcome. Only a single field of the following list may be set at a time: - completed - restarted - reassigned - skipped properties: completed: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.FormCompletedAction' - type: "null" data: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" form: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.Form' - type: "null" reassigned: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ReassignedAction' - type: "null" restarted: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.RestartAction' - type: "null" skipped: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.SkippedAction' - type: "null" state: description: The state field. enum: - FORM_INSTANCE_STATE_UNSPECIFIED - FORM_INSTANCE_STATE_WAITING - FORM_INSTANCE_STATE_DONE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Form Instance type: object x-speakeasy-name-override: FormInstance c1.api.policy.v1.GetPolicyResponse: description: The GetPolicyResponse message contains the policy object. properties: policy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Policy' - type: "null" title: Get Policy Response type: object x-speakeasy-name-override: GetPolicyResponse c1.api.policy.v1.GroupProvisioner: description: GroupProvisioner resolves to members of a specific group. nullable: true properties: allowReassignment: description: Whether the provisioner can reassign the task. readOnly: false type: boolean appGroupId: description: The app group ID (entitlement ID). readOnly: false type: string appId: description: The app ID containing the group. readOnly: false type: string fallbackUserIds: description: Fallback user IDs if no group members are found. items: type: string nullable: true readOnly: false type: array title: Group Provisioner type: object x-speakeasy-name-override: GroupProvisioner c1.api.policy.v1.ListPolicyResponse: description: The ListPolicyResponse message. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request items: $ref: '#/components/schemas/c1.api.policy.v1.Policy' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: List Policy Response type: object x-speakeasy-name-override: ListPolicyResponse c1.api.policy.v1.ManagerApproval: description: The manager approval object provides configuration options for approval when the target of the approval is the manager of the user in the task. properties: allowSelfApproval: description: Configuration to allow self approval if the target user is their own manager. This may occur if a service account has an identity user and manager specified as the same person. readOnly: false type: - boolean - "null" assignedUserIds: description: The array of users determined to be the manager during processing time. items: type: string readOnly: true type: - array - "null" fallback: description: Configuration to allow a fallback if no manager is found. readOnly: false type: - boolean - "null" fallbackGroupIds: description: Configuration to specify which groups to fallback to if fallback is enabled and no manager is found. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' nullable: true readOnly: false type: array fallbackUserIds: description: Configuration to specific which users to fallback to if fallback is enabled and no manager is found. items: type: string readOnly: false type: - array - "null" isGroupFallbackEnabled: description: Configuration to enable fallback for group fallback. readOnly: false type: boolean requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean title: Manager Approval type: object x-speakeasy-name-override: ManagerApproval c1.api.policy.v1.ManagerProvisioner: description: ManagerProvisioner resolves to the user's manager. nullable: true properties: allowReassignment: description: Whether the provisioner can reassign the task. readOnly: false type: boolean fallbackUserIds: description: Fallback user IDs if no manager is found. items: type: string nullable: true readOnly: false type: array title: Manager Provisioner type: object x-speakeasy-name-override: ManagerProvisioner c1.api.policy.v1.ManualProvision: description: Manual provisioning indicates that a human must intervene for the provisioning of this step. properties: assignee: $ref: '#/components/schemas/c1.api.policy.v1.ProvisionerAssignment' instructions: description: This field indicates a text body of instructions for the provisioner to indicate. readOnly: false type: - string - "null" userIds: description: |- An array of users that are required to provision during this step. Deprecated: Use assignee field instead for dynamic provisioner assignment. items: type: string readOnly: false type: - array - "null" title: Manual Provision type: object x-speakeasy-name-override: ManualProvision c1.api.policy.v1.MultiStep: description: MultiStep indicates that this provision step has multiple steps to process. properties: provisionSteps: description: The array of provision steps to process. items: $ref: '#/components/schemas/c1.api.policy.v1.ProvisionPolicy' readOnly: false type: - array - "null" title: Multi Step type: object x-speakeasy-name-override: MultiStep c1.api.policy.v1.Policy: description: |- A policy defines a workflow (sequence of steps) that runs when processing access requests, reviews, or revocations. Policies support conditional routing: different conditions can trigger different step sequences, with a baseline fallback. properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description of the Policy. readOnly: false type: - string - "null" displayName: description: The display name of the Policy. readOnly: false type: - string - "null" id: description: The ID of the Policy. readOnly: true type: - string - "null" policySteps: additionalProperties: $ref: '#/components/schemas/c1.api.policy.v1.PolicySteps' description: |- A map from string keys to step sequences. One entry is always the baseline, keyed by the lowercased policy_type (e.g., "grant", "revoke", "certify"). Additional entries have opaque keys (UUIDs) and are referenced by the rules array for conditional routing. If no conditional rules are configured, only the baseline entry exists. readOnly: false type: - object - "null" policyType: description: |- The type of this policy (grant, revoke, or certify). The lowercased type name (e.g., "grant") is also the key for the baseline entry in policy_steps. enum: - POLICY_TYPE_UNSPECIFIED - POLICY_TYPE_GRANT - POLICY_TYPE_REVOKE - POLICY_TYPE_CERTIFY - POLICY_TYPE_ACCESS_REQUEST - POLICY_TYPE_PROVISION readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow postActions: description: Ordered actions to execute after the policy completes processing. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyPostActions' readOnly: false type: - array - "null" reassignTasksToDelegates: deprecated: true description: This field is no longer used. Configure delegate reassignment in the policy step instead. readOnly: false type: - boolean - "null" rules: description: |- Ordered conditional routing rules. Evaluated top-to-bottom; the first matching rule selects a step sequence from policy_steps. If no rule matches (or if this array is empty), the baseline entry in policy_steps is used. items: $ref: '#/components/schemas/c1.api.policy.v1.Rule' readOnly: false type: - array - "null" systemBuiltin: description: Whether this policy is a builtin system policy. Builtin system policies cannot be edited. readOnly: true type: - boolean - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Policy type: object x-speakeasy-entity: Policy x-speakeasy-name-override: Policy c1.api.policy.v1.PolicyInstance: description: A policy instance is an object that contains a reference to the policy it was created from, the currently executing step, the next steps, and the history of previously completed steps. properties: current: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.PolicyStepInstance' - type: "null" history: description: An array of steps that were previously processed by the ticket with their outcomes set, in order. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyStepInstance' readOnly: true type: - array - "null" next: description: An array of steps that will be processed by the ticket, in order. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyStep' readOnly: true type: - array - "null" policy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Policy' - type: "null" title: Policy Instance type: object x-speakeasy-name-override: PolicyInstance c1.api.policy.v1.PolicyPostActions: description: | Actions to execute after a policy finishes processing. This message contains a oneof named action. Only a single field of the following list may be set at a time: - certifyRemediateImmediately properties: certifyRemediateImmediately: description: |- Only valid on certify policies. When true, any revocations resulting from the certification are applied immediately when the campaign task closes. This field is part of the `action` oneof. See the documentation for `c1.api.policy.v1.PolicyPostActions` for more details. readOnly: false type: - boolean - "null" title: Policy Post Actions type: object x-speakeasy-name-override: PolicyPostActions c1.api.policy.v1.PolicyRef: description: The PolicyRef message. properties: id: description: The id field. readOnly: false type: - string - "null" title: Policy Ref type: object x-speakeasy-name-override: PolicyRef c1.api.policy.v1.PolicyStep: description: | A single step in a policy workflow. Exactly one step type is set. This message contains a oneof named step. Only a single field of the following list may be set at a time: - approval - provision - accept - reject - wait - form - action properties: accept: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Accept' - type: "null" action: $ref: '#/components/schemas/c1.api.policy.v1.Action' approval: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Approval' - type: "null" form: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Form' - type: "null" provision: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Provision' - type: "null" reject: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Reject' - type: "null" wait: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Wait' - type: "null" title: Policy Step type: object x-speakeasy-name-override: PolicyStep c1.api.policy.v1.PolicyStepInstance: description: | The policy step instance includes a reference to an instance of a policy step that tracks state and has a unique ID. This message contains a oneof named instance. Only a single field of the following list may be set at a time: - approval - provision - accept - reject - wait - form - action properties: accept: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.AcceptInstance' - type: "null" action: $ref: '#/components/schemas/c1.api.policy.v1.ActionInstance' approval: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ApprovalInstance' - type: "null" form: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.FormInstance' - type: "null" id: description: The ID of the PolicyStepInstance. This is required by many action submission endpoints to indicate what step you're approving. readOnly: true type: - string - "null" policyGenerationId: description: The policy generation id refers to the version of the policy that this step was created from. readOnly: false type: - string - "null" provision: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ProvisionInstance' - type: "null" reject: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.RejectInstance' - type: "null" state: description: The state of the step, which is either active or done. enum: - POLICY_STEP_STATE_UNSPECIFIED - POLICY_STEP_STATE_ACTIVE - POLICY_STEP_STATE_DONE readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow wait: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitInstance' - type: "null" title: Policy Step Instance type: object x-speakeasy-name-override: PolicyStepInstance c1.api.policy.v1.PolicySteps: description: A named sequence of steps that execute in order within a policy. properties: steps: description: |- Ordered array of steps. Each step is a oneof -- exactly one step type is set per entry. Steps execute sequentially. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyStep' readOnly: false type: - array - "null" title: Policy Steps type: object x-speakeasy-name-override: PolicySteps c1.api.policy.v1.Provision: description: The provision step references a provision policy for this step. properties: assigned: description: A field indicating whether this step is assigned. readOnly: false type: - boolean - "null" provisionPolicy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ProvisionPolicy' - type: "null" provisionTarget: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ProvisionTarget' - type: "null" title: Provision type: object x-speakeasy-name-override: Provision c1.api.policy.v1.ProvisionInstance: description: | A provision instance describes the specific configuration of an executing provision policy step including actions taken and notification id. This message contains a oneof named outcome. Only a single field of the following list may be set at a time: - completed - cancelled - errored - reassignedByError - skipped properties: batonActionInvocationId: description: This indicates the account lifecycle action id for this step. readOnly: false type: - string - "null" cancelled: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.CancelledAction' - type: "null" completed: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.CompletedAction' - type: "null" errored: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ErroredAction' - type: "null" externalTicketId: description: This indicates the external ticket id for this step. readOnly: false type: - string - "null" externalTicketProvisionerConfigId: description: This indicates the external ticket provisioner config id for this step. readOnly: false type: - string - "null" notificationId: description: This indicates the notification id for this step. readOnly: false type: - string - "null" provision: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Provision' - type: "null" reassignedByError: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ReassignedByErrorAction' - type: "null" skipped: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.SkippedAction' - type: "null" state: description: This property indicates the current state of this step. enum: - PROVISION_INSTANCE_STATE_UNSPECIFIED - PROVISION_INSTANCE_STATE_INIT - PROVISION_INSTANCE_STATE_CREATE_CONNECTOR_ACTIONS_FOR_TARGET - PROVISION_INSTANCE_STATE_SENDING_NOTIFICATIONS - PROVISION_INSTANCE_STATE_WAITING - PROVISION_INSTANCE_STATE_WEBHOOK - PROVISION_INSTANCE_STATE_WEBHOOK_WAITING - PROVISION_INSTANCE_STATE_EXTERNAL_TICKET - PROVISION_INSTANCE_STATE_EXTERNAL_TICKET_WAITING - PROVISION_INSTANCE_STATE_ACCOUNT_LIFECYCLE_ACTIONS - PROVISION_INSTANCE_STATE_ACCOUNT_LIFECYCLE_ACTIONS_WAITING - PROVISION_INSTANCE_STATE_DONE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow webhookId: description: This indicates the webhook id for this step. readOnly: false type: - string - "null" webhookInstanceId: description: This indicates the webhook instance id for this step. readOnly: false type: - string - "null" title: Provision Instance type: object x-speakeasy-name-override: ProvisionInstance c1.api.policy.v1.ProvisionPolicy: description: | ProvisionPolicy is a oneOf that indicates how a provision step should be processed. This message contains a oneof named typ. Only a single field of the following list may be set at a time: - connector - manual - delegated - webhook - multiStep - externalTicket - unconfigured - action properties: action: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ActionProvision' - type: "null" connector: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ConnectorProvision' - type: "null" delegated: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.DelegatedProvision' - type: "null" externalTicket: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ExternalTicketProvision' - type: "null" manual: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ManualProvision' - type: "null" multiStep: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.MultiStep' - type: "null" unconfigured: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.UnconfiguredProvision' - type: "null" webhook: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WebhookProvision' - type: "null" title: Provision Policy type: object x-speakeasy-name-override: ProvisionPolicy c1.api.policy.v1.ProvisionTarget: description: ProvisionTarget indicates the specific app, app entitlement, and if known, the app user and grant duration of this provision step properties: appEntitlementId: description: The app entitlement that should be provisioned. readOnly: false type: - string - "null" appId: description: The app in which the entitlement should be provisioned readOnly: false type: - string - "null" appUserId: description: The app user that should be provisioned. May be unset if the app user is unknown readOnly: false type: - string - "null" grantDuration: oneOf: - format: duration readOnly: false type: string - type: "null" title: Provision Target type: object x-speakeasy-name-override: ProvisionTarget c1.api.policy.v1.ProvisionerAssignment: description: | ProvisionerAssignment defines how a provisioner is dynamically assigned. This message contains a oneof named typ. Only a single field of the following list may be set at a time: - users - appOwners - group - manager - expression - entitlementOwners properties: appOwners: $ref: '#/components/schemas/c1.api.policy.v1.AppOwnerProvisioner' entitlementOwners: $ref: '#/components/schemas/c1.api.policy.v1.EntitlementOwnerProvisioner' expression: $ref: '#/components/schemas/c1.api.policy.v1.ExpressionProvisioner' group: $ref: '#/components/schemas/c1.api.policy.v1.GroupProvisioner' manager: $ref: '#/components/schemas/c1.api.policy.v1.ManagerProvisioner' users: $ref: '#/components/schemas/c1.api.policy.v1.UserProvisioner' title: Provisioner Assignment type: object x-speakeasy-name-override: ProvisionerAssignment c1.api.policy.v1.ReassignedAction: description: The ReassignedAction object describes the outcome of a policy step that has been reassigned. properties: newPolicyStepId: description: The ID of the policy step that was created as a result of this reassignment. readOnly: true type: - string - "null" reassignedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The UserID of the person who reassigned this step. readOnly: true type: - string - "null" title: Reassigned Action type: object x-speakeasy-name-override: ReassignedAction c1.api.policy.v1.ReassignedByErrorAction: description: The ReassignedByErrorAction object describes the outcome of a policy step that has been reassigned because it had an error provisioning. properties: description: description: The description of the error with more details on why this was reassigned. readOnly: true type: - string - "null" errorCode: description: Additional information about the error, like http status codes or error messages from SDKs. readOnly: true type: - string - "null" errorUserId: description: The UserID of the user who reassigned this due to an error. This will exclusively be the System's UserID. readOnly: true type: - string - "null" erroredAt: oneOf: - format: date-time readOnly: true type: string - type: "null" newPolicyStepId: description: The ID of the policy step that was created by this reassignment. readOnly: true type: - string - "null" reassignedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Reassigned By Error Action type: object x-speakeasy-name-override: ReassignedByErrorAction c1.api.policy.v1.Reject: description: This policy step indicates that a ticket should have a denied outcome. This is a terminal approval state and is used to explicitly define the end of approval steps. properties: rejectMessage: description: An optional message to include in the comments when a task is automatically rejected. readOnly: false type: - string - "null" title: Reject type: object x-speakeasy-name-override: Reject c1.api.policy.v1.RejectInstance: description: |- This policy step indicates that a ticket should have a denied outcome. This is a terminal approval state and is used to explicitly define the end of approval steps. The instance is just a marker for it being copied into an active policy. properties: rejectMessage: description: An optional message to include in the comments when a task is automatically rejected. readOnly: false type: - string - "null" title: Reject Instance type: object x-speakeasy-name-override: RejectInstance c1.api.policy.v1.ResourceOwnerApproval: description: The resource owner approval allows configuration of the approval step when the target approvers are the resource owners. properties: allowSelfApproval: description: Configuration to allow self approval if the target user is an resource owner during this step. readOnly: false type: - boolean - "null" fallback: description: Configuration to allow a fallback if the resource owner cannot be identified. readOnly: false type: - boolean - "null" fallbackGroupIds: description: Configuration to specify which groups to fallback to if fallback is enabled and the resource owner cannot be identified. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' nullable: true readOnly: false type: array fallbackUserIds: description: Configuration to specific which users to fallback to if fallback is enabled and the resource owner cannot be identified. items: type: string readOnly: false type: - array - "null" isGroupFallbackEnabled: description: Configuration to enable fallback for group fallback. readOnly: false type: boolean requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean title: Resource Owner Approval type: object x-speakeasy-name-override: ResourceOwnerApproval c1.api.policy.v1.RestartAction: description: The restart action describes the outcome of policy steps for when the task was restarted. This can be applied to multiple steps since restart skips all pending next steps. properties: oldPolicyStepId: description: The step ID that was restarted. Potentially multiple "history" steps will reference this ID to indicate by what step they were restarted. readOnly: true type: - string - "null" restartedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The user that submitted the restart action. readOnly: true type: - string - "null" title: Restart Action type: object x-speakeasy-name-override: RestartAction c1.api.policy.v1.Rule: description: |- A conditional routing rule that maps a CEL expression to a step sequence. Rules are evaluated top-to-bottom; the first matching rule's policy_key selects the step sequence from the policy's policy_steps map. If no rule matches, the baseline entry is used. properties: condition: description: |- A CEL expression that is evaluated against the request context. If it returns true, the step sequence identified by policy_key is used. readOnly: false type: - string - "null" policyKey: description: |- A key into the policy's policy_steps map identifying which step sequence to execute when this rule's condition matches. readOnly: false type: - string - "null" title: Rule type: object x-speakeasy-name-override: Rule c1.api.policy.v1.SearchPoliciesRequest: description: Search Policies by a few properties. properties: displayName: description: Search for policies with a case insensitive match on the display name. readOnly: false type: - string - "null" excludePolicyIds: description: The policy IDs to exclude from the search. items: type: string readOnly: false type: - array - "null" includeDeleted: description: The includeDeleted field. readOnly: false type: - boolean - "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" policyTypes: description: The policy type to search on. This can be POLICY_TYPE_GRANT, POLICY_TYPE_REVOKE, POLICY_TYPE_CERTIFY, POLICY_TYPE_ACCESS_REQUEST, or POLICY_TYPE_PROVISION. items: enum: - POLICY_TYPE_UNSPECIFIED - POLICY_TYPE_GRANT - POLICY_TYPE_REVOKE - POLICY_TYPE_CERTIFY - POLICY_TYPE_ACCESS_REQUEST - POLICY_TYPE_PROVISION type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" query: description: Query the policies with a fuzzy search on display name and description. readOnly: false type: - string - "null" refs: description: The refs field. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyRef' readOnly: false type: - array - "null" title: Search Policies Request type: object x-speakeasy-name-override: SearchPoliciesRequest c1.api.policy.v1.SearchPoliciesResponse: description: The SearchPoliciesResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.policy.v1.Policy' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: Search Policies Response type: object x-speakeasy-name-override: SearchPoliciesResponse c1.api.policy.v1.SelfApproval: description: The self approval object describes the configuration of a policy step that needs to be approved by the target of the request. properties: assignedUserIds: description: The array of users determined to be themselves during approval. This should only ever be one person, but is saved because it may change if the owner of an app user changes while the ticket is open. items: type: string readOnly: true type: - array - "null" fallback: description: Configuration to allow a fallback if the identity user of the target app user cannot be determined. readOnly: false type: - boolean - "null" fallbackGroupIds: description: Configuration to specify which groups to fallback to if fallback is enabled and the identity user of the target app user cannot be determined. items: $ref: '#/components/schemas/c1.api.policy.v1.AppEntitlementReference' nullable: true readOnly: false type: array fallbackUserIds: description: Configuration to specific which users to fallback to if fallback is enabled and the identity user of the target app user cannot be determined. items: type: string readOnly: false type: - array - "null" isGroupFallbackEnabled: description: Configuration to enable fallback for group fallback. readOnly: false type: boolean title: Self Approval type: object x-speakeasy-name-override: SelfApproval c1.api.policy.v1.SkippedAction: description: The SkippedAction object describes the outcome of a policy step that has been skipped. properties: newPolicyStepId: description: The ID of the policy step that was created as a result of this skipping. readOnly: true type: - string - "null" skippedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The UserID of the user who skipped this step. readOnly: true type: - string - "null" title: Skipped Action type: object x-speakeasy-name-override: SkippedAction c1.api.policy.v1.TestAccountProvisionPolicyRequest: description: TestAccountProvisionPolicyRequest is the request for testing an account provision policy. properties: cel: description: The CEL expression to evaluate for the account provision policy. readOnly: false type: - string - "null" title: Test Account Provision Policy Request type: object x-speakeasy-name-override: TestAccountProvisionPolicyRequest c1.api.policy.v1.TestAccountProvisionPolicyResponse: description: TestAccountProvisionPolicyResponse is the response for testing an account provision policy. properties: type: description: The data type of the computed result value. readOnly: false type: - string - "null" value: description: The computed result value of the CEL expression evaluation. readOnly: false type: - string - "null" title: Test Account Provision Policy Response type: object x-speakeasy-name-override: TestAccountProvisionPolicyResponse c1.api.policy.v1.UnconfiguredProvision: description: The UnconfiguredProvision message. title: Unconfigured Provision type: object x-speakeasy-name-override: UnconfiguredProvision c1.api.policy.v1.UpdatePolicyRequestInput: description: The UpdatePolicyRequest message contains the policy object to update and a field mask to indicate which fields to update. It uses URL value for input. properties: policy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Policy' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update Policy Request type: object x-speakeasy-name-override: UpdatePolicyRequest c1.api.policy.v1.UpdatePolicyResponse: description: The UpdatePolicyResponse message contains the updated policy object. properties: policy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.Policy' - type: "null" title: Update Policy Response type: object x-speakeasy-name-override: UpdatePolicyResponse c1.api.policy.v1.UserApproval: description: The user approval object describes the approval configuration of a policy step that needs to be approved by a specific list of users. properties: allowSelfApproval: description: Configuration to allow self approval of if the user is specified and also the target of the ticket. readOnly: false type: - boolean - "null" requireDistinctApprovers: description: Configuration to require distinct approvers across approval steps of a rule. readOnly: false type: boolean userIds: description: Array of users configured for approval. items: type: string readOnly: false type: - array - "null" title: User Approval type: object x-speakeasy-name-override: UserApproval c1.api.policy.v1.UserProvisioner: description: UserProvisioner assigns specific users as provisioners. nullable: true properties: allowReassignment: description: Whether the provisioner can reassign the task. readOnly: false type: boolean userIds: description: The user IDs to assign as provisioners. items: type: string nullable: true readOnly: false type: array title: User Provisioner type: object x-speakeasy-name-override: UserProvisioner c1.api.policy.v1.Wait: description: | Define a Wait step for a policy to wait on a condition to be met. This message contains a oneof named until. Only a single field of the following list may be set at a time: - condition - duration - untilTime properties: commentOnFirstWait: description: The comment to post on first failed check. readOnly: false type: - string - "null" commentOnTimeout: description: The comment to post if we timeout. readOnly: false type: - string - "null" condition: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitCondition' - type: "null" duration: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitDuration' - type: "null" name: description: The name of our condition to show on the task details page readOnly: false type: - string - "null" timeoutDuration: oneOf: - format: duration readOnly: false type: string - type: "null" untilTime: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitUntilTime' - type: "null" title: Wait type: object x-speakeasy-name-override: Wait c1.api.policy.v1.WaitCondition: description: The WaitCondition message. properties: condition: description: The condition that has to be true for this wait condition to continue. readOnly: false type: - string - "null" title: Wait Condition type: object x-speakeasy-name-override: WaitCondition c1.api.policy.v1.WaitConditionInstance: description: Used by the policy engine to describe an instantiated condition to wait on. properties: condition: description: The condition that has to be true for this wait condition instance to continue. readOnly: false type: - string - "null" title: Wait Condition Instance type: object x-speakeasy-name-override: WaitConditionInstance c1.api.policy.v1.WaitDuration: description: The WaitDuration message. properties: duration: oneOf: - format: duration readOnly: false type: string - type: "null" title: Wait Duration type: object x-speakeasy-name-override: WaitDuration c1.api.policy.v1.WaitInstance: description: | Used by the policy engine to describe an instantiated wait step. This message contains a oneof named until. Only a single field of the following list may be set at a time: - condition - untilTime This message contains a oneof named outcome. Only a single field of the following list may be set at a time: - succeeded - timedOut - skipped properties: commentOnFirstWait: description: The comment to post on first failed check. readOnly: false type: - string - "null" commentOnTimeout: description: The comment to post if we timeout. readOnly: false type: - string - "null" condition: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitConditionInstance' - type: "null" name: description: The name field. readOnly: false type: - string - "null" skipped: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.SkippedAction' - type: "null" startedWaitingAt: oneOf: - format: date-time readOnly: false type: string - type: "null" state: description: The state field. enum: - WAIT_INSTANCE_STATE_UNSPECIFIED - WAIT_INSTANCE_STATE_WAITING - WAIT_INSTANCE_STATE_COMPLETED - WAIT_INSTANCE_STATE_TIMED_OUT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow succeeded: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitInstance.ConditionSucceeded' - type: "null" timedOut: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitInstance.ConditionTimedOut' - type: "null" timeout: oneOf: - format: date-time readOnly: false type: string - type: "null" timeoutDuration: oneOf: - format: duration readOnly: false type: string - type: "null" untilTime: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.WaitUntilTimeInstance' - type: "null" title: Wait Instance type: object x-speakeasy-name-override: WaitInstance c1.api.policy.v1.WaitInstance.ConditionSucceeded: description: The ConditionSucceeded message. properties: succeededAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Condition Succeeded type: object x-speakeasy-name-override: ConditionSucceeded c1.api.policy.v1.WaitInstance.ConditionTimedOut: description: The ConditionTimedOut message. properties: timedOutAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Condition Timed Out type: object x-speakeasy-name-override: ConditionTimedOut c1.api.policy.v1.WaitUntilTime: description: Waits until a specific time of the day (UTC) properties: hours: description: The hours field. format: uint32 readOnly: false type: - integer - "null" minutes: description: The minutes field. format: uint32 readOnly: false type: - integer - "null" timezone: description: The timezone field. readOnly: false type: - string - "null" title: Wait Until Time type: object x-speakeasy-name-override: WaitUntilTime c1.api.policy.v1.WaitUntilTimeInstance: description: The WaitUntilTimeInstance message. properties: durationIfExists: oneOf: - format: duration readOnly: false type: string - type: "null" untilTime: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Wait Until Time Instance type: object x-speakeasy-name-override: WaitUntilTimeInstance c1.api.policy.v1.WebhookApproval: description: The WebhookApproval message. properties: webhookId: description: The ID of the webhook to call for approval. readOnly: false type: - string - "null" title: Webhook Approval type: object x-speakeasy-name-override: WebhookApproval c1.api.policy.v1.WebhookProvision: description: This provision step indicates that a webhook should be called to provision this entitlement. properties: webhookId: description: The ID of the webhook to call for provisioning. readOnly: false type: - string - "null" title: Webhook Provision type: object x-speakeasy-name-override: WebhookProvision c1.api.profiletype.v1.ProfileType: description: ProfileType represents a type of profile in the system properties: description: description: The description field. readOnly: false type: - string - "null" displayToUser: description: Whether to display this profile type to users in profile page. Defaults to false if not set readOnly: false type: boolean iconUrl: description: The iconUrl field. readOnly: false type: - string - "null" id: description: The id field. readOnly: false type: - string - "null" name: description: The name field. readOnly: false type: - string - "null" priority: description: The priority field. format: uint32 readOnly: false type: - integer - "null" sizes: description: icon sizes items: format: int32 type: integer readOnly: false type: - array - "null" slug: description: Add this field to allow users to reference profile type in cel expressions readOnly: false type: string title: Profile Type type: object x-speakeasy-name-override: ProfileType c1.api.request_schema.v1.RequestSchema: description: A request schema defines a form template that users fill out when requesting access. properties: createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" form: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.Form' - type: "null" id: description: The unique identifier of this request schema. readOnly: false type: - string - "null" justificationVisibility: description: Controls whether the justification field is shown or hidden on the request form. enum: - JUSTIFICATION_VISIBILITY_UNSPECIFIED - JUSTIFICATION_VISIBILITY_SHOW - JUSTIFICATION_VISIBILITY_HIDE readOnly: false type: string x-speakeasy-unknown-values: allow modifiedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Request Schema type: object x-speakeasy-name-override: RequestSchema c1.api.request_schema.v1.RequestSchemaServiceCreateEntitlementBindingRequest: description: The request message for creating a single entitlement binding on a request schema. properties: entitlementRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' - type: "null" requestSchemaId: description: The unique identifier of the request schema to bind the entitlement to. readOnly: false type: - string - "null" title: Request Schema Service Create Entitlement Binding Request type: object x-speakeasy-name-override: RequestSchemaServiceCreateEntitlementBindingRequest c1.api.request_schema.v1.RequestSchemaServiceCreateEntitlementBindingResponse: description: The response message for creating a single entitlement binding. properties: entitlementRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' - type: "null" requestSchemaId: description: The unique identifier of the request schema the entitlement was bound to. readOnly: false type: - string - "null" title: Request Schema Service Create Entitlement Binding Response type: object x-speakeasy-name-override: RequestSchemaServiceCreateEntitlementBindingResponse c1.api.request_schema.v1.RequestSchemaServiceCreateRequest: description: The request message for creating a new request schema. properties: description: description: An optional description of the request schema's purpose. readOnly: false type: - string - "null" fieldGroups: description: Logical groupings of fields for display purposes. items: $ref: '#/components/schemas/c1.api.form.v1.FieldGroup' nullable: true readOnly: false type: array fieldRelationships: description: Dependencies between fields that control conditional visibility or validation. items: $ref: '#/components/schemas/c1.api.form.v1.FieldRelationship' nullable: true readOnly: false type: array fields: description: The form fields that users must fill out when requesting access. items: $ref: '#/components/schemas/c1.api.form.v1.Field' readOnly: false type: - array - "null" justificationVisibility: description: Controls whether the justification field is shown or hidden on the request form. enum: - JUSTIFICATION_VISIBILITY_UNSPECIFIED - JUSTIFICATION_VISIBILITY_SHOW - JUSTIFICATION_VISIBILITY_HIDE readOnly: false type: string x-speakeasy-unknown-values: allow name: description: The human-readable name for the request schema. readOnly: false type: - string - "null" title: Request Schema Service Create Request type: object x-speakeasy-name-override: RequestSchemaServiceCreateRequest c1.api.request_schema.v1.RequestSchemaServiceCreateResponse: description: The response message for creating a request schema. properties: requestSchema: oneOf: - $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchema' - type: "null" title: Request Schema Service Create Response type: object x-speakeasy-name-override: RequestSchemaServiceCreateResponse c1.api.request_schema.v1.RequestSchemaServiceDeleteRequestInput: description: The request message for deleting a request schema. title: Request Schema Service Delete Request type: object x-speakeasy-name-override: RequestSchemaServiceDeleteRequest c1.api.request_schema.v1.RequestSchemaServiceDeleteResponse: description: The response message for deleting a request schema. title: Request Schema Service Delete Response type: object x-speakeasy-name-override: RequestSchemaServiceDeleteResponse c1.api.request_schema.v1.RequestSchemaServiceFindBindingForAppEntitlementRequest: description: The request message for finding which request schema is bound to a given app entitlement. properties: entitlementRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' - type: "null" title: Request Schema Service Find Binding For App Entitlement Request type: object x-speakeasy-name-override: RequestSchemaServiceFindBindingForAppEntitlementRequest c1.api.request_schema.v1.RequestSchemaServiceFindBindingForAppEntitlementResponse: description: The response message containing the binding for the specified app entitlement. properties: entitlementRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' - type: "null" requestSchemaId: description: The unique identifier of the request schema bound to this entitlement, if any. readOnly: false type: - string - "null" title: Request Schema Service Find Binding For App Entitlement Response type: object x-speakeasy-name-override: RequestSchemaServiceFindBindingForAppEntitlementResponse c1.api.request_schema.v1.RequestSchemaServiceGetResponse: description: The response message for retrieving a request schema. properties: requestSchema: oneOf: - $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchema' - type: "null" title: Request Schema Service Get Response type: object x-speakeasy-name-override: RequestSchemaServiceGetResponse c1.api.request_schema.v1.RequestSchemaServiceRemoveEntitlementBindingRequest: description: The request message for removing a single entitlement binding from a request schema. properties: entitlementRef: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' - type: "null" requestSchemaId: description: The unique identifier of the request schema to remove the binding from. readOnly: false type: - string - "null" title: Request Schema Service Remove Entitlement Binding Request type: object x-speakeasy-name-override: RequestSchemaServiceRemoveEntitlementBindingRequest c1.api.request_schema.v1.RequestSchemaServiceRemoveEntitlementBindingResponse: description: The response message for removing a single entitlement binding. title: Request Schema Service Remove Entitlement Binding Response type: object x-speakeasy-name-override: RequestSchemaServiceRemoveEntitlementBindingResponse c1.api.request_schema.v1.RequestSchemaServiceUpdateRequestInput: description: The request message for updating an existing request schema. properties: requestSchema: oneOf: - $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchema' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Request Schema Service Update Request type: object x-speakeasy-name-override: RequestSchemaServiceUpdateRequest c1.api.request_schema.v1.RequestSchemaServiceUpdateResponse: description: The response message for updating a request schema. properties: requestSchema: oneOf: - $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchema' - type: "null" title: Request Schema Service Update Response type: object x-speakeasy-name-override: RequestSchemaServiceUpdateResponse c1.api.requestcatalog.v1.AppEntitlementWithUserBindings: description: The AppEntitlementWithUserBindings message represents an app entitlement and its associated user bindings. properties: appEntitlementUserBindings: description: An array of AppEntitlementUserBinding objects which represent the relationships that give app users access to the specific app entitlement. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementUserBinding' readOnly: false type: - array - "null" entitlement: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' - type: "null" title: App Entitlement With User Bindings type: object x-speakeasy-name-override: AppEntitlementWithUserBindings c1.api.requestcatalog.v1.BundleAutomation: description: | The BundleAutomation message. This message contains a oneof named conditions. Only a single field of the following list may be set at a time: - entitlements - cel properties: cel: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationRuleCEL' circuitBreaker: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationCircuitBreaker' - type: "null" createTasks: description: The createTasks field. readOnly: false type: - boolean - "null" createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" disableCircuitBreaker: description: The disableCircuitBreaker field. readOnly: false type: - boolean - "null" enabled: description: The enabled field. readOnly: false type: - boolean - "null" entitlements: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationRuleEntitlement' - type: "null" requestCatalogId: description: The requestCatalogId field. readOnly: false type: - string - "null" state: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationLastRunState' - type: "null" tenantId: description: The tenantId field. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Bundle Automation type: object x-speakeasy-name-override: BundleAutomation c1.api.requestcatalog.v1.BundleAutomationCelEvaluationState: description: The BundleAutomationCelEvaluationState message. properties: errorMessage: description: The errorMessage field. readOnly: false type: string lastEvaluatedAt: format: date-time readOnly: false type: string matchedUsers: description: The matchedUsers field. format: int64 readOnly: false type: string status: description: The status field. enum: - BUNDLE_AUTOMATION_RUN_STATUS_UNSPECIFIED - BUNDLE_AUTOMATION_RUN_STATUS_SUCCESS - BUNDLE_AUTOMATION_RUN_STATUS_FAILURE - BUNDLE_AUTOMATION_RUN_STATUS_IN_PROGRESS - BUNDLE_AUTOMATION_RUN_STATUS_WAITING_FOR_APPROVAL readOnly: false type: string x-speakeasy-unknown-values: allow title: Bundle Automation Cel Evaluation State type: object x-speakeasy-name-override: BundleAutomationCelEvaluationState c1.api.requestcatalog.v1.BundleAutomationCircuitBreaker: description: The BundleAutomationCircuitBreaker message. properties: removedMembersThresholdPercentage: description: The removedMembersThresholdPercentage field. format: int64 readOnly: false type: - string - "null" state: description: The state field. enum: - CIRCUIT_BREAKER_STATE_UNSPECIFIED - CIRCUIT_BREAKER_STATE_TRIGGERED - CIRCUIT_BREAKER_STATE_BYPASS - CIRCUIT_BREAKER_STATE_SUPPORT_DISABLED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" userRef: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserRef' - type: "null" title: Bundle Automation Circuit Breaker type: object x-speakeasy-name-override: BundleAutomationCircuitBreaker c1.api.requestcatalog.v1.BundleAutomationLastRunState: description: The BundleAutomationLastRunState message. properties: celEvaluation: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationCelEvaluationState' errorMessage: description: The errorMessage field. readOnly: false type: - string - "null" lastRunAt: oneOf: - format: date-time readOnly: false type: string - type: "null" status: description: The status field. enum: - BUNDLE_AUTOMATION_RUN_STATUS_UNSPECIFIED - BUNDLE_AUTOMATION_RUN_STATUS_SUCCESS - BUNDLE_AUTOMATION_RUN_STATUS_FAILURE - BUNDLE_AUTOMATION_RUN_STATUS_IN_PROGRESS - BUNDLE_AUTOMATION_RUN_STATUS_WAITING_FOR_APPROVAL readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Bundle Automation Last Run State type: object x-speakeasy-name-override: BundleAutomationLastRunState c1.api.requestcatalog.v1.BundleAutomationRuleCEL: description: The BundleAutomationRuleCEL message. nullable: true properties: expression: description: The expression field. readOnly: false type: string title: Bundle Automation Rule Cel type: object x-speakeasy-name-override: BundleAutomationRuleCEL c1.api.requestcatalog.v1.BundleAutomationRuleEntitlement: description: The BundleAutomationRuleEntitlement message. properties: entitlementRefs: description: The entitlementRefs field. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: Bundle Automation Rule Entitlement type: object x-speakeasy-name-override: BundleAutomationRuleEntitlement c1.api.requestcatalog.v1.CreateBundleAutomationRequestInput: description: | The request message for creating a new bundle automation rule on a catalog. This message contains a oneof named conditions. Only a single field of the following list may be set at a time: - entitlements - cel properties: cel: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationRuleCEL' createTasks: description: Whether to create access request tasks for matched users instead of granting directly. readOnly: false type: - boolean - "null" disableCircuitBreaker: description: Whether to disable the circuit breaker that pauses the automation when excessive membership changes are detected. readOnly: false type: - boolean - "null" enabled: description: Whether the automation should actively run on its schedule. readOnly: false type: - boolean - "null" entitlements: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationRuleEntitlement' - type: "null" title: Create Bundle Automation Request type: object x-speakeasy-name-override: CreateBundleAutomationRequest c1.api.requestcatalog.v1.DeleteBundleAutomationRequestInput: description: The request message for deleting a bundle automation from a catalog. title: Delete Bundle Automation Request type: object x-speakeasy-name-override: DeleteBundleAutomationRequest c1.api.requestcatalog.v1.DeleteBundleAutomationResponse: description: The response message for deleting a bundle automation. title: Delete Bundle Automation Response type: object x-speakeasy-name-override: DeleteBundleAutomationResponse c1.api.requestcatalog.v1.ForceRunBundleAutomationRequestInput: description: The request message for triggering an immediate bundle automation run. properties: refs: description: Optional entitlement references to scope the run to specific entitlements. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: Force Run Bundle Automation Request type: object x-speakeasy-name-override: ForceRunBundleAutomationRequest c1.api.requestcatalog.v1.ForceRunBundleAutomationResponse: description: The response message for triggering a bundle automation run. title: Force Run Bundle Automation Response type: object x-speakeasy-name-override: ForceRunBundleAutomationResponse c1.api.requestcatalog.v1.RequestCatalog: description: The RequestCatalog is used for managing which entitlements are requestable, and who can request them. properties: accessEntitlements: description: An array of app entitlements that, if the user has, can view the contents of this catalog. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlement' readOnly: false type: - array - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" createdByUserId: description: The id of the user this request catalog was created by. readOnly: false type: - string - "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description of the request catalog. readOnly: false type: - string - "null" displayName: description: The display name of the request catalog. readOnly: false type: - string - "null" enrollmentBehavior: description: Defines how to handle the request policies of the entitlements in the catalog during enrollment. enum: - REQUEST_CATALOG_ENROLLMENT_BEHAVIOR_UNSPECIFIED - REQUEST_CATALOG_ENROLLMENT_BEHAVIOR_BYPASS_ENTITLEMENT_REQUEST_POLICY - REQUEST_CATALOG_ENROLLMENT_BEHAVIOR_ENFORCE_ENTITLEMENT_REQUEST_POLICY readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow grantPolicyId: description: |- The ID of the policy to use for access requests in this catalog. This is different from the catalog AppEntitlement's grant_policy_id, which is used for catalog membership grants. readOnly: false type: string id: description: The id of the request catalog. readOnly: false type: - string - "null" published: description: Whether or not this catalog is published. readOnly: false type: - boolean - "null" requestBundle: description: Whether all the entitlements in the catalog can be requests at once. Your tenant must have the bundles feature to use this. readOnly: false type: - boolean - "null" unenrollmentBehavior: description: Defines how to handle the revocation of the entitlements in the catalog during unenrollment. enum: - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_UNSPECIFIED - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_LEAVE_ACCESS_AS_IS - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_REVOKE_ALL - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_REVOKE_UNJUSTIFIED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow unenrollmentEntitlementBehavior: description: Defines how to handle the revoke policies of the entitlements in the catalog during unenrollment. enum: - REQUEST_CATALOG_UNENROLLMENT_ENTITLEMENT_BEHAVIOR_UNSPECIFIED - REQUEST_CATALOG_UNENROLLMENT_ENTITLEMENT_BEHAVIOR_BYPASS - REQUEST_CATALOG_UNENROLLMENT_ENTITLEMENT_BEHAVIOR_ENFORCE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" visibleToEveryone: description: If this is true, the access entitlement requirement is ignored. readOnly: false type: - boolean - "null" title: Request Catalog type: object x-speakeasy-entity: Access_Profile x-speakeasy-name-override: RequestCatalog c1.api.requestcatalog.v1.RequestCatalogExpandMask: description: The RequestCatalogExpandMask includes the paths in the catalog view to expand in the return value of this call. properties: paths: description: An array of paths to be expanded in the response. May be any combination of "*", "created_by_user_id", "app_ids", and "access_entitlements". items: type: string readOnly: false type: - array - "null" title: Request Catalog Expand Mask type: object x-speakeasy-name-override: RequestCatalogExpandMask c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAccessEntitlementsRequestInput: description: |- The RequestCatalogManagementServiceAddAccessEntitlementsRequest message is used to add access entitlements to a request catalog to determine which users can view the request catalog. properties: accessEntitlements: description: List of entitlements to add to the request catalog as access entitlements. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: array required: - accessEntitlements title: Request Catalog Management Service Add Access Entitlements Request type: object x-speakeasy-entity: Access_Profile_Visibility_Bindings x-speakeasy-name-override: RequestCatalogManagementServiceAddAccessEntitlementsRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAccessEntitlementsResponse: description: Empty response with a status code indicating success. title: Request Catalog Management Service Add Access Entitlements Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceAddAccessEntitlementsResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAppEntitlementsRequestInput: description: The RequestCatalogManagementServiceAddAppEntitlementsRequest object is used to add app requestable app entitlements to a request catalog. properties: appEntitlements: description: List of entitlements to add to the request catalog. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: array createRequests: description: |- Whether or not to create requests for newly added entitlements for users in the catalog. By default, this is false and no requests are created. readOnly: false type: - boolean - "null" required: - appEntitlements title: Request Catalog Management Service Add App Entitlements Request type: object x-speakeasy-entity: Access_Profile_Requestable_Entries x-speakeasy-name-override: RequestCatalogManagementServiceAddAppEntitlementsRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAppEntitlementsResponse: description: Empty response with a status code indicating success. title: Request Catalog Management Service Add App Entitlements Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceAddAppEntitlementsResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceCreateRequest: description: Create a request catalog. properties: description: description: The description of the new request catalog. readOnly: false type: - string - "null" displayName: description: The display name of the new request catalog. readOnly: false type: string enrollmentBehavior: description: Defines how to handle the request policies of the entitlements in the catalog during enrollment. enum: - REQUEST_CATALOG_ENROLLMENT_BEHAVIOR_UNSPECIFIED - REQUEST_CATALOG_ENROLLMENT_BEHAVIOR_BYPASS_ENTITLEMENT_REQUEST_POLICY - REQUEST_CATALOG_ENROLLMENT_BEHAVIOR_ENFORCE_ENTITLEMENT_REQUEST_POLICY readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow expandMask: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogExpandMask' - type: "null" grantPolicyId: description: The ID of the grant policy for access requests in this catalog. readOnly: false type: string published: description: Whether or not the new catalog should be created as published. readOnly: false type: - boolean - "null" requestBundle: description: Whether all the entitlements in the catalog can be requests at once. Your tenant must have the bundles feature to use this. readOnly: false type: - boolean - "null" unenrollmentBehavior: description: Defines how to handle the revocation of the entitlements in the catalog during unenrollment. enum: - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_UNSPECIFIED - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_LEAVE_ACCESS_AS_IS - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_REVOKE_ALL - REQUEST_CATALOG_UNENROLLMENT_BEHAVIOR_REVOKE_UNJUSTIFIED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow unenrollmentEntitlementBehavior: description: Defines how to handle the revoke policies of the entitlements in the catalog during unenrollment. enum: - REQUEST_CATALOG_UNENROLLMENT_ENTITLEMENT_BEHAVIOR_UNSPECIFIED - REQUEST_CATALOG_UNENROLLMENT_ENTITLEMENT_BEHAVIOR_BYPASS - REQUEST_CATALOG_UNENROLLMENT_ENTITLEMENT_BEHAVIOR_ENFORCE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow visibleToEveryone: description: Whether or not the new catalog is visible to everyone by default. readOnly: false type: - boolean - "null" required: - displayName title: Request Catalog Management Service Create Request type: object x-speakeasy-entity: Access_Profile x-speakeasy-name-override: RequestCatalogManagementServiceCreateRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceCreateRequestableEntryRequestInput: description: Create a single requestable entry properties: createRequests: description: |- Whether or not to create requests for newly added entitlement for users in the catalog. By default, this is false and no requests are created. readOnly: false type: boolean title: Request Catalog Management Service Create Requestable Entry Request type: object x-speakeasy-entity: Access_Profile_Requestable_Entry x-speakeasy-name-override: RequestCatalogManagementServiceCreateRequestableEntryRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceCreateRequestableEntryResponse: description: Response containing the created requestable entry properties: requestableEntry: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestableEntry' title: Request Catalog Management Service Create Requestable Entry Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceCreateRequestableEntryResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteRequestInput: description: Delete a request catalog by Id. It uses URL value for input. title: Request Catalog Management Service Delete Request type: object x-speakeasy-entity: Access_Profile x-speakeasy-name-override: RequestCatalogManagementServiceDeleteRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteRequestableEntryRequestInput: description: Delete a single requestable entry title: Request Catalog Management Service Delete Requestable Entry Request type: object x-speakeasy-entity: Access_Profile_Requestable_Entry x-speakeasy-name-override: RequestCatalogManagementServiceDeleteRequestableEntryRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteRequestableEntryResponse: description: Empty response for delete operation title: Request Catalog Management Service Delete Requestable Entry Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceDeleteRequestableEntryResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteResponse: description: Empty response with a status code indicating success. title: Request Catalog Management Service Delete Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceDeleteResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceGetRequestableEntryResponse: description: Response containing the requested entry properties: requestableEntry: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestableEntry' title: Request Catalog Management Service Get Requestable Entry Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceGetRequestableEntryResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceGetResponse: description: The request catalog management service get response returns a request catalog view with the expanded items in the expanded array indicated by the expand mask in the request. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" requestCatalogView: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogView' - type: "null" title: Request Catalog Management Service Get Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceGetResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceListAllEntitlementIdsPerCatalogResponse: description: The response message containing all requestable entitlement references in the catalog. properties: refs: description: The complete list of app entitlement references in this catalog. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: Request Catalog Management Service List All Entitlement Ids Per Catalog Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceListAllEntitlementIdsPerCatalogResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceListEntitlementsForAccessResponse: description: The RequestCatalogManagementServiceListEntitlementsForAccessResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Request Catalog Management Service List Entitlements For Access Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceListEntitlementsForAccessResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceListEntitlementsPerCatalogResponse: description: The RequestCatalogManagementServiceListEntitlementsPerCatalogResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Request Catalog Management Service List Entitlements Per Catalog Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceListEntitlementsPerCatalogResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceListResponse: description: The RequestCatalogManagementServiceListResponse message. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of request catalogs. items: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Request Catalog Management Service List Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceListResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAccessEntitlementsRequestInput: description: |- The RequestCatalogManagementServiceRemoveAccessEntitlementsRequest message is used to remove access entitlements from a request catalog. The access entitlements are used to determine which users can view the request catalog. properties: accessEntitlements: description: The list of access entitlements to remove from the catalog. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: Request Catalog Management Service Remove Access Entitlements Request type: object x-speakeasy-entity: Access_Profile_Visibility_Bindings x-speakeasy-name-override: RequestCatalogManagementServiceRemoveAccessEntitlementsRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAccessEntitlementsResponse: description: Empty response with a status code indicating success. title: Request Catalog Management Service Remove Access Entitlements Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceRemoveAccessEntitlementsResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAppEntitlementsRequestInput: description: The RequestCatalogManagementServiceRemoveAppEntitlementsRequest message is used to remove app entitlements from a request catalog. properties: appEntitlements: description: The list of app entitlements to remove from the catalog. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: - array - "null" title: Request Catalog Management Service Remove App Entitlements Request type: object x-speakeasy-entity: Access_Profile_Requestable_Entries x-speakeasy-name-override: RequestCatalogManagementServiceRemoveAppEntitlementsRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAppEntitlementsResponse: description: Empty response with a status code indicating success title: Request Catalog Management Service Remove App Entitlements Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceRemoveAppEntitlementsResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceUpdateAppEntitlementsRequestInput: description: The RequestCatalogManagementServiceUpdateAppEntitlementsRequest object is used to update app entitlements to a request catalog id. properties: appEntitlements: description: The entitlement to get from the request catalog. items: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' readOnly: false type: array required: - appEntitlements title: Request Catalog Management Service Update App Entitlements Request type: object x-speakeasy-entity: Access_Profile_Requestable_Entries x-speakeasy-name-override: RequestCatalogManagementServiceUpdateAppEntitlementsRequest c1.api.requestcatalog.v1.RequestCatalogManagementServiceUpdateAppEntitlementsResponse: description: The RequestCatalogManagementServiceUpdateAppEntitlementsResponse object is is the response from UpdateAppEntitlements endpoint. title: Request Catalog Management Service Update App Entitlements Response type: object x-speakeasy-name-override: RequestCatalogManagementServiceUpdateAppEntitlementsResponse c1.api.requestcatalog.v1.RequestCatalogManagementServiceUpdateRequestInput: description: Update a request catalog object by ID. properties: catalog: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalog' - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogExpandMask' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Request Catalog Management Service Update Request type: object x-speakeasy-name-override: RequestCatalogManagementServiceUpdateRequest c1.api.requestcatalog.v1.RequestCatalogSearchServiceSearchEntitlementsRequest: description: The RequestCatalogSearchServiceSearchEntitlementsRequest searches entitlements, but only ones that are available to you through the open catalogs. properties: appDisplayName: description: Search entitlements that belong to this app name (exact match). readOnly: false type: - string - "null" entitlementAlias: description: Search for entitlements with this alias (exact match). readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementExpandMask' - type: "null" grantedStatus: description: Search entitlements with this granted status for your signed in user. enum: - UNSPECIFIED - ALL - GRANTED - NOT_GRANTED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow includeDeleted: description: Include deleted entitlements readOnly: false type: - boolean - "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: Fuzzy search the display name of resource types. readOnly: false type: - string - "null" title: Request Catalog Search Service Search Entitlements Request type: object x-speakeasy-name-override: RequestCatalogSearchServiceSearchEntitlementsRequest c1.api.requestcatalog.v1.RequestCatalogSearchServiceSearchEntitlementsResponse: description: The RequestCatalogSearchServiceSearchEntitlementsResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request. items: $ref: '#/components/schemas/c1.api.requestcatalog.v1.AppEntitlementWithUserBindings' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Request Catalog Search Service Search Entitlements Response type: object x-speakeasy-name-override: RequestCatalogSearchServiceSearchEntitlementsResponse c1.api.requestcatalog.v1.RequestCatalogView: description: The request catalog view contains the serialized request catalog and paths to objects referenced by the request catalog. properties: accessEntitlementsPath: description: JSONPATH expression indicating the location of the access entitlement objects, that the request catalog allows users to request, in the array. readOnly: false type: - string - "null" createdByUserPath: description: JSONPATH expression indicating the location of the User object, that created the request catalog, in the array. readOnly: false type: - string - "null" memberCount: description: Total number of the members of the catalog format: int64 readOnly: false type: - string - "null" requestCatalog: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalog' - type: "null" title: Request Catalog View type: object x-speakeasy-name-override: RequestCatalogView c1.api.requestcatalog.v1.RequestableEntry: description: A requestable entry in a catalog properties: appId: description: The ID of the app that contains the entitlement readOnly: false type: string catalogId: description: The ID of the access profile (catalog) readOnly: false type: string entitlementId: description: The ID of the entitlement readOnly: false type: string title: Requestable Entry type: object x-speakeasy-name-override: RequestableEntry c1.api.requestcatalog.v1.ResumePausedBundleAutomationRequestInput: description: The request message for resuming a paused bundle automation. title: Resume Paused Bundle Automation Request type: object x-speakeasy-name-override: ResumePausedBundleAutomationRequest c1.api.requestcatalog.v1.ResumePausedBundleAutomationResponse: description: The response message for resuming a paused bundle automation. title: Resume Paused Bundle Automation Response type: object x-speakeasy-name-override: ResumePausedBundleAutomationResponse c1.api.requestcatalog.v1.SetBundleAutomationRequestInput: description: | The request message for creating or updating a bundle automation rule on a catalog. This message contains a oneof named conditions. Only a single field of the following list may be set at a time: - entitlements - cel properties: cel: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationRuleCEL' createTasks: description: Whether to create access request tasks for matched users instead of granting directly. readOnly: false type: - boolean - "null" disableCircuitBreaker: description: Whether to disable the circuit breaker that pauses the automation when excessive membership changes are detected. readOnly: false type: - boolean - "null" enabled: description: Whether the automation should actively run on its schedule. readOnly: false type: - boolean - "null" entitlements: oneOf: - $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomationRuleEntitlement' - type: "null" title: Set Bundle Automation Request type: object x-speakeasy-name-override: SetBundleAutomationRequest c1.api.role_mining_management.v1.CohortHintInput: description: The CohortHintInput message. properties: attribute: description: The user attribute name to use for cohort grouping (e.g., "department", "job_title"). readOnly: false type: string priority: description: Relative priority of this hint. Higher values cause the analysis to weight this attribute more heavily. format: int32 readOnly: false type: integer values: description: Specific attribute values to focus on. If empty, all values for the attribute are considered. items: type: string nullable: true readOnly: false type: array title: Cohort Hint Input type: object x-speakeasy-name-override: CohortHintInput c1.api.role_mining_management.v1.CohortHintView: description: The CohortHintView message. properties: attribute: description: The user attribute name used for cohort grouping. readOnly: false type: string priority: description: Relative priority of this hint. format: int32 readOnly: false type: integer values: description: The specific attribute values targeted by this hint. items: type: string nullable: true readOnly: false type: array title: Cohort Hint View type: object x-speakeasy-name-override: CohortHintView c1.api.role_mining_management.v1.CreateAccessProfileFromCohortRequest: description: The CreateAccessProfileFromCohortRequest message. properties: createTasks: description: |- If true, the automation will create JIT tasks for access changes. If false, users are synced to membership without creating tasks. readOnly: false type: boolean description: description: Description for the access profile. readOnly: false type: string displayName: description: Display name for the access profile. readOnly: false type: string enableAutomation: description: If true, enable the dynamic membership automation immediately. readOnly: false type: boolean entitlements: description: Entitlements to add to the access profile. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.CohortEntitlement' nullable: true readOnly: false type: array profileFilters: description: Profile filters defining the cohort for dynamic membership. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.ProfileFilter' nullable: true readOnly: false type: array suggestionId: description: Optional suggestion ID to mark as accepted after creating the profile. readOnly: false type: string title: Create Access Profile From Cohort Request type: object x-speakeasy-name-override: CreateAccessProfileFromCohortRequest c1.api.role_mining_management.v1.CreateAccessProfileFromCohortResponse: description: The CreateAccessProfileFromCohortResponse message. properties: accessProfileId: description: The ID of the created access profile. readOnly: false type: string celExpression: description: The CEL expression generated for dynamic membership. readOnly: false type: string title: Create Access Profile From Cohort Response type: object x-speakeasy-name-override: CreateAccessProfileFromCohortResponse c1.api.role_mining_management.v1.GetCustomAnalysisResultResponse: description: The GetCustomAnalysisResultResponse message. properties: appsAnalyzed: description: The appsAnalyzed field. format: int32 readOnly: false type: integer clusters: description: Cluster results. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.EntitlementCluster' nullable: true readOnly: false type: array cohortSize: description: The cohortSize field. format: int32 readOnly: false type: integer entitlements: description: Entitlement coverage results. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.CohortEntitlement' nullable: true readOnly: false type: array errorMessage: description: The errorMessage field. readOnly: false type: string facetUserCount: description: The facetUserCount field. format: int32 readOnly: false type: integer facets: description: Facet results. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.AttributeFacet' nullable: true readOnly: false type: array id: description: The id field. readOnly: false type: string status: description: The status field. enum: - RUN_STATUS_UNSPECIFIED - RUN_STATUS_RUNNING - RUN_STATUS_COMPLETED - RUN_STATUS_FAILED readOnly: false type: string x-speakeasy-unknown-values: allow title: Get Custom Analysis Result Response type: object x-speakeasy-name-override: GetCustomAnalysisResultResponse c1.api.role_mining_management.v1.GetLatestRunResponse: description: The GetLatestRunResponse message. properties: run: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementRun' title: Get Latest Run Response type: object x-speakeasy-name-override: GetLatestRunResponse c1.api.role_mining_management.v1.GetRoleMiningConfigResponse: description: The GetRoleMiningConfigResponse message. properties: config: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementConfig' title: Get Role Mining Config Response type: object x-speakeasy-name-override: GetRoleMiningConfigResponse c1.api.role_mining_management.v1.GetSuggestionResponse: description: The GetSuggestionResponse message. properties: suggestion: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementSuggestion' title: Get Suggestion Response type: object x-speakeasy-name-override: GetSuggestionResponse c1.api.role_mining_management.v1.ListRunsResponse: description: The ListRunsResponse message. properties: list: description: The list of role mining analysis runs. items: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementRun' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page of results, empty if no more results. readOnly: false type: string title: List Runs Response type: object x-speakeasy-name-override: ListRunsResponse c1.api.role_mining_management.v1.ListSuggestionsResponse: description: The ListSuggestionsResponse message. properties: list: description: The list of role mining suggestions. items: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementSuggestion' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page of results, empty if no more results. readOnly: false type: string title: List Suggestions Response type: object x-speakeasy-name-override: ListSuggestionsResponse c1.api.role_mining_management.v1.RoleMiningManagementConfig: description: The RoleMiningManagementConfig message. properties: cohortHints: description: Configured cohort hints that guide which user attributes the analysis prioritizes. items: $ref: '#/components/schemas/c1.api.role_mining_management.v1.CohortHintView' nullable: true readOnly: false type: array maxSuggestions: description: Maximum number of suggestions the analysis will produce per run. format: int32 readOnly: false type: integer minCohortSize: description: Minimum number of users a cohort must contain to generate a suggestion. format: int32 readOnly: false type: integer title: Role Mining Management Config type: object x-speakeasy-name-override: RoleMiningManagementConfig c1.api.role_mining_management.v1.RoleMiningManagementRun: description: The RoleMiningManagementRun message. properties: cohortsAnalyzed: description: Number of user cohorts evaluated during the analysis. format: int32 readOnly: false type: integer completedAt: format: date-time readOnly: false type: string createdAt: format: date-time readOnly: false type: string errorMessage: description: Error message if the run failed, empty on success. readOnly: false type: string id: description: Unique identifier for this analysis run. readOnly: false type: string status: description: Current execution status of this run (e.g., running, completed, failed). enum: - RUN_STATUS_UNSPECIFIED - RUN_STATUS_RUNNING - RUN_STATUS_COMPLETED - RUN_STATUS_FAILED readOnly: false type: string x-speakeasy-unknown-values: allow suggestionsGenerated: description: Number of role suggestions produced by this run. format: int32 readOnly: false type: integer totalUsers: description: Total number of users evaluated during the analysis. format: int32 readOnly: false type: integer triggerDetail: description: Additional detail about the trigger, such as the user or schedule that initiated the run. readOnly: false type: string triggerType: description: How this run was initiated (e.g., manual, scheduled). enum: - TRIGGER_TYPE_UNSPECIFIED - TRIGGER_TYPE_MANUAL - TRIGGER_TYPE_UPLIFT_COMPLETION - TRIGGER_TYPE_SCHEDULED - TRIGGER_TYPE_DIRECTORY_MERGE readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: false type: string title: Role Mining Management Run type: object x-speakeasy-name-override: RoleMiningManagementRun c1.api.role_mining_management.v1.RoleMiningManagementSuggestion: description: The RoleMiningManagementSuggestion message. properties: avgCoverage: description: Average fraction of suggested entitlements held by each user in the cohort. readOnly: false type: number cohortFilters: description: The profile filters that define which users belong to this cohort. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.ProfileFilter' nullable: true readOnly: false type: array cohortSize: description: Total number of users in the cohort matching the profile filters. format: int32 readOnly: false type: integer confidence: description: Overall confidence score for this suggestion, from 0.0 to 1.0. readOnly: false type: number createdAt: format: date-time readOnly: false type: string createdCatalogId: description: The ID of the access profile created when this suggestion was accepted, empty if not yet accepted. readOnly: false type: string description: description: A human-readable description of the proposed role and the cohort it serves. readOnly: false type: string dimensionCount: description: Number of distinct attribute dimensions used to define the cohort. format: int32 readOnly: false type: integer entitlements: description: The entitlements that are commonly held by users in this cohort. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.CohortEntitlement' nullable: true readOnly: false type: array existingProfileMatches: description: Existing access profiles that overlap with this suggestion. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.AccessProfileMatch' nullable: true readOnly: false type: array id: description: Unique identifier for this suggestion. readOnly: false type: string insights: description: Human-readable insights explaining why this role was suggested. items: type: string nullable: true readOnly: false type: array lastGeneratedAt: format: date-time readOnly: false type: string runId: description: The ID of the analysis run that produced this suggestion. readOnly: false type: string suggestedName: description: The suggested display name for the proposed role. readOnly: false type: string suggestionState: description: Current workflow state of this suggestion (e.g., pending, accepted, dismissed). enum: - SUGGESTION_STATE_UNSPECIFIED - SUGGESTION_STATE_NEW - SUGGESTION_STATE_DISMISSED - SUGGESTION_STATE_ACCEPTED readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: false type: string usersWithAll: description: Number of users in the cohort that hold all of the suggested entitlements. format: int32 readOnly: false type: integer title: Role Mining Management Suggestion type: object x-speakeasy-name-override: RoleMiningManagementSuggestion c1.api.role_mining_management.v1.RoleMiningSearchSuggestionsRequest: description: The RoleMiningSearchSuggestionsRequest message. properties: cohortTypes: description: Filter by cohort type (e.g. "department", "job_title", "manager"). items: type: string nullable: true readOnly: false type: array matchTypes: description: Filter by match type against existing access profiles. items: enum: - ACCESS_PROFILE_MATCH_TYPE_UNSPECIFIED - ACCESS_PROFILE_MATCH_TYPE_EXACT - ACCESS_PROFILE_MATCH_TYPE_SUPERSET - ACCESS_PROFILE_MATCH_TYPE_PARTIAL type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array pageSize: description: Maximum number of suggestions to return per page. format: int32 readOnly: false type: integer pageToken: description: Pagination token from a previous response. readOnly: false type: string query: description: Text search — matches against suggested_name, description, and cohort filter values. readOnly: false type: string states: description: Filter by suggestion state. items: enum: - SUGGESTION_STATE_UNSPECIFIED - SUGGESTION_STATE_NEW - SUGGESTION_STATE_DISMISSED - SUGGESTION_STATE_ACCEPTED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Role Mining Search Suggestions Request type: object x-speakeasy-name-override: RoleMiningSearchSuggestionsRequest c1.api.role_mining_management.v1.RoleMiningSearchSuggestionsResponse: description: The RoleMiningSearchSuggestionsResponse message. properties: list: description: The list of matching role mining suggestions. items: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementSuggestion' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page of results, empty if no more results. readOnly: false type: string title: Role Mining Search Suggestions Response type: object x-speakeasy-name-override: RoleMiningSearchSuggestionsResponse c1.api.role_mining_management.v1.SearchCohortUsersRequestInput: description: The SearchCohortUsersRequest message. properties: pageSize: description: Maximum number of users to return per page. format: int32 readOnly: false type: integer pageToken: description: Pagination token from a previous response. readOnly: false type: string profileFilters: description: Additional profile filters to narrow the cohort user search. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.ProfileFilter' nullable: true readOnly: false type: array title: Search Cohort Users Request type: object x-speakeasy-name-override: SearchCohortUsersRequest c1.api.role_mining_management.v1.SearchCohortUsersResponse: description: The SearchCohortUsersResponse message. properties: list: description: The list of users matching the cohort and optional filters. items: $ref: '#/components/schemas/c1.api.user.v1.User' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page of results, empty if no more results. readOnly: false type: string title: Search Cohort Users Response type: object x-speakeasy-name-override: SearchCohortUsersResponse c1.api.role_mining_management.v1.TriggerAnalysisRequest: description: The TriggerAnalysisRequest message. title: Trigger Analysis Request type: object x-speakeasy-name-override: TriggerAnalysisRequest c1.api.role_mining_management.v1.TriggerAnalysisResponse: description: The TriggerAnalysisResponse message. properties: runId: description: The ID of the newly created analysis run. readOnly: false type: string title: Trigger Analysis Response type: object x-speakeasy-name-override: TriggerAnalysisResponse c1.api.role_mining_management.v1.TriggerCustomAnalysisRequest: description: The TriggerCustomAnalysisRequest message. properties: profileFilters: description: The profileFilters field. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.ProfileFilter' nullable: true readOnly: false type: array title: Trigger Custom Analysis Request type: object x-speakeasy-name-override: TriggerCustomAnalysisRequest c1.api.role_mining_management.v1.TriggerCustomAnalysisResponse: description: The TriggerCustomAnalysisResponse message. properties: id: description: The id field. readOnly: false type: string title: Trigger Custom Analysis Response type: object x-speakeasy-name-override: TriggerCustomAnalysisResponse c1.api.role_mining_management.v1.UpdateRoleMiningConfigRequest: description: The UpdateRoleMiningConfigRequest message. properties: cohortHints: description: Hints that guide the analysis to prioritize specific user attributes and values when forming cohorts. items: $ref: '#/components/schemas/c1.api.role_mining_management.v1.CohortHintInput' nullable: true readOnly: false type: array maxSuggestions: description: Maximum number of suggestions the analysis should produce per run. format: int32 readOnly: false type: integer minCohortSize: description: Minimum number of users a cohort must contain to generate a suggestion. format: int32 readOnly: false type: integer title: Update Role Mining Config Request type: object x-speakeasy-name-override: UpdateRoleMiningConfigRequest c1.api.role_mining_management.v1.UpdateRoleMiningConfigResponse: description: The UpdateRoleMiningConfigResponse message. properties: config: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementConfig' title: Update Role Mining Config Response type: object x-speakeasy-name-override: UpdateRoleMiningConfigResponse c1.api.role_mining_management.v1.UpdateSuggestionStateRequestInput: description: The UpdateSuggestionStateRequest message. properties: createdCatalogId: description: The ID of the access profile created from this suggestion, set when accepting. readOnly: false type: string state: description: The new state to transition the suggestion to. enum: - SUGGESTION_STATE_UNSPECIFIED - SUGGESTION_STATE_NEW - SUGGESTION_STATE_DISMISSED - SUGGESTION_STATE_ACCEPTED readOnly: false type: string x-speakeasy-unknown-values: allow title: Update Suggestion State Request type: object x-speakeasy-name-override: UpdateSuggestionStateRequest c1.api.role_mining_management.v1.UpdateSuggestionStateResponse: description: The UpdateSuggestionStateResponse message. properties: suggestion: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningManagementSuggestion' title: Update Suggestion State Response type: object x-speakeasy-name-override: UpdateSuggestionStateResponse c1.api.search.v1.FacetCategory: description: | The FacetCategory indicates a grouping of facets by type. For example, facets "OnePassword" and "Okta" would group under an "Apps" category. This message contains a oneof named item. Only a single field of the following list may be set at a time: - value - range properties: displayName: description: The display name of the category. readOnly: false type: - string - "null" iconUrl: description: An icon for the category. readOnly: false type: - string - "null" param: description: The param that is being set when checking a facet in this category. readOnly: false type: - string - "null" range: oneOf: - $ref: '#/components/schemas/c1.api.search.v1.FacetRangeItem' - type: "null" value: oneOf: - $ref: '#/components/schemas/c1.api.search.v1.FacetValueItem' - type: "null" title: Facet Category type: object x-speakeasy-name-override: FacetCategory c1.api.search.v1.FacetRange: description: The FacetRange message. properties: count: description: The count of items in the range. format: int64 readOnly: false type: - string - "null" displayName: description: The display name of the range. readOnly: false type: - string - "null" from: description: The starting value of the range. format: int64 readOnly: false type: - string - "null" iconUrl: description: The icon of the range. readOnly: false type: - string - "null" to: description: The ending value of the range. format: int64 readOnly: false type: - string - "null" title: Facet Range type: object x-speakeasy-name-override: FacetRange c1.api.search.v1.FacetRangeItem: description: The FacetRangeItem message. properties: ranges: description: An array of facet ranges. items: $ref: '#/components/schemas/c1.api.search.v1.FacetRange' readOnly: false type: - array - "null" title: Facet Range Item type: object x-speakeasy-name-override: FacetRangeItem c1.api.search.v1.FacetValue: description: A FacetValue message contains count and value of the facet entry. properties: count: description: The count of the values in this facet. format: int64 readOnly: false type: - string - "null" displayName: description: The name of this facet. readOnly: false type: - string - "null" iconUrl: description: The icon for this facet. readOnly: false type: - string - "null" value: description: The value of this facet. readOnly: false type: - string - "null" title: Facet Value type: object x-speakeasy-name-override: FacetValue c1.api.search.v1.FacetValueItem: description: The FacetValueItem message. properties: values: description: An array of facet values. items: $ref: '#/components/schemas/c1.api.search.v1.FacetValue' readOnly: false type: - array - "null" title: Facet Value Item type: object x-speakeasy-name-override: FacetValueItem c1.api.search.v1.Facets: description: Indicates one value of a facet. properties: count: description: The count of items in this facet. format: int64 readOnly: false type: - string - "null" facets: description: The facet being referenced. items: $ref: '#/components/schemas/c1.api.search.v1.FacetCategory' readOnly: false type: - array - "null" title: Facets type: object x-speakeasy-name-override: Facets c1.api.secrets.v1.PaperSecret: description: |- PaperSecret is the API view of a secret (combines Vault + PaperVault fields). The vault_id is the primary identifier (Vault.id). properties: allowedEmails: description: The allowedEmails field. items: type: string nullable: true readOnly: false type: array allowedUserIds: description: Access control items: type: string nullable: true readOnly: false type: array contentDeleted: description: The contentDeleted field. readOnly: false type: boolean contentExpiresAt: format: date-time readOnly: false type: string contentReady: description: Whether content has been set (text uploaded or file uploaded) readOnly: false type: boolean contentType: description: The contentType field. readOnly: false type: string createdAt: format: date-time readOnly: true type: string creatorUserId: description: Creator readOnly: false type: string currentViews: description: The currentViews field. format: uint32 readOnly: false type: integer deletedAt: format: date-time readOnly: true type: string displayName: description: From Vault readOnly: false type: string fileSize: description: File metadata format: int64 readOnly: false type: string filename: description: 'For FILE secrets: original filename (sanitized)' readOnly: false type: string inputFormat: description: The inputFormat field. enum: - SECRET_INPUT_FORMAT_UNSPECIFIED - SECRET_INPUT_FORMAT_PLAINTEXT - SECRET_INPUT_FORMAT_JSON - SECRET_INPUT_FORMAT_YAML - SECRET_INPUT_FORMAT_KEY_VALUE readOnly: false type: string x-speakeasy-unknown-values: allow maxViews: description: View tracking format: uint32 readOnly: false type: integer secretType: description: The secretType field. enum: - SECRET_TYPE_UNSPECIFIED - SECRET_TYPE_TEXT - SECRET_TYPE_FILE readOnly: false type: string x-speakeasy-unknown-values: allow shareCode: description: Human-friendly share code (XXXX-XXXX-XXXX) for shareable URLs readOnly: false type: string shareUrl: description: URL to share with recipients (populated when content_ready is true) readOnly: false type: string sharingMode: description: From PaperVault enum: - PAPER_VAULT_SHARING_MODE_UNSPECIFIED - PAPER_VAULT_SHARING_MODE_INTERNAL - PAPER_VAULT_SHARING_MODE_EXTERNAL readOnly: false type: string x-speakeasy-unknown-values: allow status: description: Computed status enum: - SECRET_STATUS_UNSPECIFIED - SECRET_STATUS_ACTIVE - SECRET_STATUS_EXPIRED - SECRET_STATUS_BURNED - SECRET_STATUS_REVOKED - SECRET_STATUS_DATA_DELETED readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: true type: string vaultId: description: Vault.id - primary identifier for the secret readOnly: false type: string title: Paper Secret type: object x-speakeasy-name-override: PaperSecret c1.api.secrets.v1.PaperSecretAdminServiceGetResponse: description: The PaperSecretAdminServiceGetResponse message. properties: secret: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' title: Paper Secret Admin Service Get Response type: object x-speakeasy-name-override: PaperSecretAdminServiceGetResponse c1.api.secrets.v1.PaperSecretAdminServiceRevokeRequestInput: description: The PaperSecretAdminServiceRevokeRequest message. title: Paper Secret Admin Service Revoke Request type: object x-speakeasy-name-override: PaperSecretAdminServiceRevokeRequest c1.api.secrets.v1.PaperSecretAdminServiceRevokeResponse: description: The PaperSecretAdminServiceRevokeResponse message. properties: secret: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' title: Paper Secret Admin Service Revoke Response type: object x-speakeasy-name-override: PaperSecretAdminServiceRevokeResponse c1.api.secrets.v1.PaperSecretAdminServiceSearchAuditEventsRequest: description: The PaperSecretAdminServiceSearchAuditEventsRequest message. properties: actorEmail: description: Filter by external email (partial match via full-text search) readOnly: false type: string actorUserId: description: Filter by C1 user ID (internal users) readOnly: false type: string clientIp: description: Filter by client IP (exact match) readOnly: false type: string pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string vaultId: description: Filter by specific vault readOnly: false type: string title: Paper Secret Admin Service Search Audit Events Request type: object x-speakeasy-name-override: PaperSecretAdminServiceSearchAuditEventsRequest c1.api.secrets.v1.PaperSecretAdminServiceSearchAuditEventsResponse: description: The PaperSecretAdminServiceSearchAuditEventsResponse message. properties: list: description: |- List contains OCSF events directly as JSON structs. Follows the same pattern as SystemLogServiceListEventsResponse. items: additionalProperties: true readOnly: false type: object nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Paper Secret Admin Service Search Audit Events Response type: object x-speakeasy-name-override: PaperSecretAdminServiceSearchAuditEventsResponse c1.api.secrets.v1.PaperSecretAdminServiceSearchRequest: description: Admin search request - can filter by any user's secrets. properties: createdAfter: format: date-time readOnly: false type: string createdBefore: format: date-time readOnly: false type: string creatorUserIds: description: Filter by creator user ID (admin can see all users' secrets) items: type: string nullable: true readOnly: false type: array includeDeleted: description: Include deleted secrets readOnly: false type: boolean pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string query: description: Fuzzy search by display name readOnly: false type: string secretType: description: Filter by secret type (optional) enum: - SECRET_TYPE_UNSPECIFIED - SECRET_TYPE_TEXT - SECRET_TYPE_FILE readOnly: false type: string x-speakeasy-unknown-values: allow sharingMode: description: Filter by sharing mode (optional) enum: - PAPER_VAULT_SHARING_MODE_UNSPECIFIED - PAPER_VAULT_SHARING_MODE_INTERNAL - PAPER_VAULT_SHARING_MODE_EXTERNAL readOnly: false type: string x-speakeasy-unknown-values: allow sortBy: description: Sort order enum: - SEARCH_SORT_BY_UNSPECIFIED - SEARCH_SORT_BY_CREATED_DESC - SEARCH_SORT_BY_CREATED_ASC - SEARCH_SORT_BY_EXPIRES_ASC - SEARCH_SORT_BY_NAME_ASC readOnly: false type: string x-speakeasy-unknown-values: allow statuses: description: Filter by status (optional) items: enum: - SECRET_STATUS_UNSPECIFIED - SECRET_STATUS_ACTIVE - SECRET_STATUS_EXPIRED - SECRET_STATUS_BURNED - SECRET_STATUS_REVOKED - SECRET_STATUS_DATA_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Paper Secret Admin Service Search Request type: object x-speakeasy-name-override: PaperSecretAdminServiceSearchRequest c1.api.secrets.v1.PaperSecretAdminServiceSearchResponse: description: The PaperSecretAdminServiceSearchResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Paper Secret Admin Service Search Response type: object x-speakeasy-name-override: PaperSecretAdminServiceSearchResponse c1.api.secrets.v1.PaperSecretServiceCreateExternalRequest: description: The PaperSecretServiceCreateExternalRequest message. properties: allowedEmails: description: |- External email addresses allowed to view this secret (1 to 64). Recipients authenticate via email magic link or Google OAuth. items: type: string nullable: true readOnly: false type: array contentType: description: 'For FILE secrets: MIME content type of the original file. Ignored for TEXT secrets.' readOnly: false type: string displayName: description: |- Optional cleartext label visible to the creator in "My Secrets" view. Not encrypted — do not put sensitive data here. readOnly: false type: string expiresIn: format: duration readOnly: false type: string fileSize: description: 'For FILE secrets: expected file size in bytes (max 1GB). Ignored for TEXT secrets.' format: int64 readOnly: false type: string filename: description: 'For FILE secrets: original filename (sanitized server-side). Ignored for TEXT secrets.' readOnly: false type: string inputFormat: description: |- For TEXT secrets: hint about the plaintext format (e.g., JSON, YAML, key-value). Used by the viewer UI for syntax highlighting. Does not affect encryption. enum: - SECRET_INPUT_FORMAT_UNSPECIFIED - SECRET_INPUT_FORMAT_PLAINTEXT - SECRET_INPUT_FORMAT_JSON - SECRET_INPUT_FORMAT_YAML - SECRET_INPUT_FORMAT_KEY_VALUE readOnly: false type: string x-speakeasy-unknown-values: allow maxViews: description: Maximum number of views before the secret is burned (0 = unlimited). format: uint32 readOnly: false type: integer secretType: description: |- Secret type: TEXT or FILE. TEXT secrets use SetTextContent to upload encrypted content (max 64KB). FILE secrets use the upload_url from CreateResponse to upload encrypted content (max 1GB). enum: - SECRET_TYPE_UNSPECIFIED - SECRET_TYPE_TEXT - SECRET_TYPE_FILE readOnly: false type: string x-speakeasy-unknown-values: allow title: Paper Secret Service Create External Request type: object x-speakeasy-name-override: PaperSecretServiceCreateExternalRequest c1.api.secrets.v1.PaperSecretServiceCreateInternalRequest: description: The PaperSecretServiceCreateInternalRequest message. properties: allowedUserIds: description: C1 User IDs allowed to view this secret (1 to 128). items: type: string nullable: true readOnly: false type: array contentType: description: 'For FILE secrets: MIME content type of the original file. Ignored for TEXT secrets.' readOnly: false type: string displayName: description: |- Optional cleartext label visible to the creator in "My Secrets" view. Not encrypted — do not put sensitive data here. readOnly: false type: string expiresIn: format: duration readOnly: false type: string fileSize: description: 'For FILE secrets: expected file size in bytes (max 1GB). Ignored for TEXT secrets.' format: int64 readOnly: false type: string filename: description: 'For FILE secrets: original filename (sanitized server-side). Ignored for TEXT secrets.' readOnly: false type: string inputFormat: description: |- For TEXT secrets: hint about the plaintext format (e.g., JSON, YAML, key-value). Used by the viewer UI for syntax highlighting. Does not affect encryption. enum: - SECRET_INPUT_FORMAT_UNSPECIFIED - SECRET_INPUT_FORMAT_PLAINTEXT - SECRET_INPUT_FORMAT_JSON - SECRET_INPUT_FORMAT_YAML - SECRET_INPUT_FORMAT_KEY_VALUE readOnly: false type: string x-speakeasy-unknown-values: allow maxViews: description: Maximum number of views before the secret is burned (0 = unlimited). format: uint32 readOnly: false type: integer secretType: description: |- Secret type: TEXT or FILE. TEXT secrets use SetTextContent to upload encrypted content (max 64KB). FILE secrets use the upload_url from CreateResponse to upload encrypted content (max 1GB). enum: - SECRET_TYPE_UNSPECIFIED - SECRET_TYPE_TEXT - SECRET_TYPE_FILE readOnly: false type: string x-speakeasy-unknown-values: allow title: Paper Secret Service Create Internal Request type: object x-speakeasy-name-override: PaperSecretServiceCreateInternalRequest c1.api.secrets.v1.PaperSecretServiceCreateResponse: description: The PaperSecretServiceCreateResponse message. properties: ageRecipient: description: |- Age X25519 recipient public key (format: "age1...") for client-side encryption. All content MUST be encrypted to this recipient using the Age encryption format before calling SetTextContent or uploading to upload_url. See: https://age-encryption.org readOnly: false type: string secret: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' uploadUrl: description: |- For FILE secrets: capability URL for uploading the Age-encrypted file. Send an HTTP PUT request with the Age-encrypted file bytes as the body and Content-Type: application/octet-stream. The payload MUST begin with the Age header "age-encryption.org/v1\n". Maximum file size: 1GB. Empty for TEXT secrets. readOnly: false type: string vaultId: description: Vault ID - primary identifier for this secret. readOnly: false type: string title: Paper Secret Service Create Response type: object x-speakeasy-name-override: PaperSecretServiceCreateResponse c1.api.secrets.v1.PaperSecretServiceGetContentRequestInput: description: The PaperSecretServiceGetContentRequest message. properties: readerRecipient: description: |- Client's ephemeral Age recipient (age1...) for re-encryption Server re-encrypts the content to this recipient readOnly: false type: string title: Paper Secret Service Get Content Request type: object x-speakeasy-name-override: PaperSecretServiceGetContentRequest c1.api.secrets.v1.PaperSecretServiceGetContentResponse: description: | The PaperSecretServiceGetContentResponse message. This message contains a oneof named content. Only a single field of the following list may be set at a time: - encryptedContent - downloadUrl properties: createdAt: format: date-time readOnly: false type: string creatorUserId: description: The creatorUserId field. readOnly: false type: string downloadUrl: description: |- For file secrets: presigned S3 download URL (5 minute expiry) File is still E2E encrypted - client must decrypt after download This field is part of the `content` oneof. See the documentation for `c1.api.secrets.v1.PaperSecretServiceGetContentResponse` for more details. nullable: true readOnly: false type: string encryptedContent: description: |- For text secrets: Age-encrypted content (encrypted to reader's recipient) This field is part of the `content` oneof. See the documentation for `c1.api.secrets.v1.PaperSecretServiceGetContentResponse` for more details. format: base64 nullable: true readOnly: false type: string filename: description: Original filename (file secrets only) readOnly: false type: string inputFormat: description: Input format hint for rendering (text secrets only) enum: - SECRET_INPUT_FORMAT_UNSPECIFIED - SECRET_INPUT_FORMAT_PLAINTEXT - SECRET_INPUT_FORMAT_JSON - SECRET_INPUT_FORMAT_YAML - SECRET_INPUT_FORMAT_KEY_VALUE readOnly: false type: string x-speakeasy-unknown-values: allow secretType: description: Secret metadata enum: - SECRET_TYPE_UNSPECIFIED - SECRET_TYPE_TEXT - SECRET_TYPE_FILE readOnly: false type: string x-speakeasy-unknown-values: allow viewsRemaining: description: Views remaining after this view (-1 = unlimited) format: int32 readOnly: false type: integer title: Paper Secret Service Get Content Response type: object x-speakeasy-name-override: PaperSecretServiceGetContentResponse c1.api.secrets.v1.PaperSecretServiceGetResponse: description: The PaperSecretServiceGetResponse message. properties: secret: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' title: Paper Secret Service Get Response type: object x-speakeasy-name-override: PaperSecretServiceGetResponse c1.api.secrets.v1.PaperSecretServiceRevokeRequestInput: description: The PaperSecretServiceRevokeRequest message. title: Paper Secret Service Revoke Request type: object x-speakeasy-name-override: PaperSecretServiceRevokeRequest c1.api.secrets.v1.PaperSecretServiceRevokeResponse: description: The PaperSecretServiceRevokeResponse message. properties: secret: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' title: Paper Secret Service Revoke Response type: object x-speakeasy-name-override: PaperSecretServiceRevokeResponse c1.api.secrets.v1.PaperSecretServiceSearchAuditEventsRequest: description: |- PaperSecretServiceSearchAuditEventsRequest searches audit events for a secret owned by the calling user. Only the secret creator may query events. Results are sanitized to include only time, event type, and actor information. properties: pageSize: description: Maximum number of results per page (0 uses server default, max 100). format: int32 readOnly: false type: integer pageToken: description: Pagination token from a previous response's next_page_token. readOnly: false type: string vaultId: description: Required. The vault ID of the secret whose audit events to retrieve. readOnly: false type: string title: Paper Secret Service Search Audit Events Request type: object x-speakeasy-name-override: PaperSecretServiceSearchAuditEventsRequest c1.api.secrets.v1.PaperSecretServiceSearchAuditEventsResponse: description: |- PaperSecretServiceSearchAuditEventsResponse contains a page of audit events for the requested secret. properties: list: description: |- Sanitized OCSF events containing only time, event type, and actor fields. Sensitive fields such as IP addresses, messages, and raw payloads are removed. items: additionalProperties: true readOnly: false type: object nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page of results. Empty when no more pages exist. readOnly: false type: string title: Paper Secret Service Search Audit Events Response type: object x-speakeasy-name-override: PaperSecretServiceSearchAuditEventsResponse c1.api.secrets.v1.PaperSecretServiceSearchMySecretsRequest: description: |- SearchMySecrets request - for end users viewing their own secrets. Automatically scoped to current user. properties: pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string query: description: Fuzzy search by display name readOnly: false type: string secretType: description: Filter by secret type (optional) enum: - SECRET_TYPE_UNSPECIFIED - SECRET_TYPE_TEXT - SECRET_TYPE_FILE readOnly: false type: string x-speakeasy-unknown-values: allow sharingMode: description: Filter by sharing mode (optional) enum: - PAPER_VAULT_SHARING_MODE_UNSPECIFIED - PAPER_VAULT_SHARING_MODE_INTERNAL - PAPER_VAULT_SHARING_MODE_EXTERNAL readOnly: false type: string x-speakeasy-unknown-values: allow sortBy: description: Sort order enum: - SEARCH_SORT_BY_UNSPECIFIED - SEARCH_SORT_BY_CREATED_DESC - SEARCH_SORT_BY_CREATED_ASC - SEARCH_SORT_BY_EXPIRES_ASC - SEARCH_SORT_BY_NAME_ASC readOnly: false type: string x-speakeasy-unknown-values: allow statuses: description: Filter by status (optional) items: enum: - SECRET_STATUS_UNSPECIFIED - SECRET_STATUS_ACTIVE - SECRET_STATUS_EXPIRED - SECRET_STATUS_BURNED - SECRET_STATUS_REVOKED - SECRET_STATUS_DATA_DELETED type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array title: Paper Secret Service Search My Secrets Request type: object x-speakeasy-name-override: PaperSecretServiceSearchMySecretsRequest c1.api.secrets.v1.PaperSecretServiceSearchResponse: description: Search response for user's own secrets properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Paper Secret Service Search Response type: object x-speakeasy-name-override: PaperSecretServiceSearchResponse c1.api.secrets.v1.PaperSecretServiceSetTextContentRequestInput: description: The PaperSecretServiceSetTextContentRequest message. properties: encryptedContent: description: |- Age-encrypted content bytes. The plaintext MUST be encrypted using the Age encryption format to the age_recipient returned by CreateInternal/CreateExternal. The resulting bytes begin with "age-encryption.org/v1\n" followed by the encrypted payload. Maximum 64KB after encryption — for larger content, create a FILE secret and use the upload_url instead. format: base64 readOnly: false type: string inputFormat: description: |- Input format hint for the viewer UI when the secret is decrypted. Does not affect encryption — this is metadata only. enum: - SECRET_INPUT_FORMAT_UNSPECIFIED - SECRET_INPUT_FORMAT_PLAINTEXT - SECRET_INPUT_FORMAT_JSON - SECRET_INPUT_FORMAT_YAML - SECRET_INPUT_FORMAT_KEY_VALUE readOnly: false type: string x-speakeasy-unknown-values: allow title: Paper Secret Service Set Text Content Request type: object x-speakeasy-name-override: PaperSecretServiceSetTextContentRequest c1.api.secrets.v1.PaperSecretServiceSetTextContentResponse: description: The PaperSecretServiceSetTextContentResponse message. properties: secret: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecret' title: Paper Secret Service Set Text Content Response type: object x-speakeasy-name-override: PaperSecretServiceSetTextContentResponse c1.api.service_principal.v1.ServicePrincipal: description: ServicePrincipal represents a tenant-managed non-human identity. properties: createdAt: format: date-time readOnly: true type: string displayName: description: The display name of the service principal. readOnly: false type: string id: description: The unique user ID of the service principal. readOnly: true type: string updatedAt: format: date-time readOnly: true type: string user: $ref: '#/components/schemas/c1.api.user.v1.User' title: Service Principal type: object x-speakeasy-name-override: ServicePrincipal c1.api.service_principal.v1.ServicePrincipalBinding: description: |- ServicePrincipalBinding is one row in the binding store, naming a subject's link to a single service principal. properties: createdAt: format: date-time readOnly: false type: string servicePrincipalId: description: The servicePrincipalId field. readOnly: false type: string updatedAt: format: date-time readOnly: false type: string title: Service Principal Binding type: object x-speakeasy-name-override: ServicePrincipalBinding c1.api.service_principal.v1.ServicePrincipalBindingSubject: description: | ServicePrincipalBindingSubject identifies the entity that is bound to a service principal. Open-ended oneof so future subject kinds (workflows, connectors, etc.) can be added without changing the RPC shape. This message contains a oneof named kind. Only a single field of the following list may be set at a time: - functionId properties: functionId: description: |- Function ID. The function authenticates outbound c1-api calls as user: instead of function:. This field is part of the `kind` oneof. See the documentation for `c1.api.service_principal.v1.ServicePrincipalBindingSubject` for more details. nullable: true readOnly: false type: string title: Service Principal Binding Subject type: object x-speakeasy-name-override: ServicePrincipalBindingSubject c1.api.service_principal.v1.ServicePrincipalCredential: description: ServicePrincipalCredential represents a client credential for a service principal. properties: allowSourceCidrs: description: CIDR restrictions for this credential. items: type: string nullable: true readOnly: true type: array clientId: description: 'The full client ID in format: ${cutename}@${tenant}.${installation}/spc' readOnly: true type: string createdAt: format: date-time readOnly: true type: string displayName: description: The display name of the credential. readOnly: false type: string expiresAt: format: date-time readOnly: true type: string id: description: The unique ID of the credential (cutename format). readOnly: true type: string lastUsedAt: format: date-time readOnly: true type: string requireDpop: description: Whether DPoP proof-of-possession is required for this credential. readOnly: true type: boolean scopedRoleIds: description: Scoped role IDs for this credential (intersection with SP roles at token issuance). items: type: string nullable: true readOnly: true type: array servicePrincipalId: description: The service principal user ID this credential belongs to. readOnly: true type: string title: Service Principal Credential type: object x-speakeasy-name-override: ServicePrincipalCredential c1.api.service_principal.v1.ServicePrincipalServiceAddBindingRequest: description: The ServicePrincipalServiceAddBindingRequest message. properties: servicePrincipalId: description: The servicePrincipalId field. readOnly: false type: string subject: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalBindingSubject' title: Service Principal Service Add Binding Request type: object x-speakeasy-name-override: ServicePrincipalServiceAddBindingRequest c1.api.service_principal.v1.ServicePrincipalServiceAddBindingResponse: description: The ServicePrincipalServiceAddBindingResponse message. title: Service Principal Service Add Binding Response type: object x-speakeasy-name-override: ServicePrincipalServiceAddBindingResponse c1.api.service_principal.v1.ServicePrincipalServiceCreateCredentialRequestInput: description: The ServicePrincipalServiceCreateCredentialRequest message. properties: allowSourceCidrs: description: |- A list of CIDRs to restrict this credential to. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string nullable: true readOnly: false type: array displayName: description: The display name for the new credential. readOnly: false type: string expires: format: duration readOnly: false type: string requireDpop: description: If true, requires DPoP proof-of-possession for token exchange using this credential. readOnly: false type: boolean scopedRoles: description: The list of roles to restrict the credential to. items: type: string nullable: true readOnly: false type: array title: Service Principal Service Create Credential Request type: object x-speakeasy-name-override: ServicePrincipalServiceCreateCredentialRequest c1.api.service_principal.v1.ServicePrincipalServiceCreateCredentialResponse: description: The ServicePrincipalServiceCreateCredentialResponse message. properties: clientSecret: description: The client secret. Shown exactly once at creation -- cannot be retrieved again. readOnly: false type: string credential: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalCredential' title: Service Principal Service Create Credential Response type: object x-speakeasy-name-override: ServicePrincipalServiceCreateCredentialResponse c1.api.service_principal.v1.ServicePrincipalServiceCreateRequest: description: The ServicePrincipalServiceCreateRequest message. properties: displayName: description: The display name for the new service principal. readOnly: false type: string title: Service Principal Service Create Request type: object x-speakeasy-name-override: ServicePrincipalServiceCreateRequest c1.api.service_principal.v1.ServicePrincipalServiceCreateResponse: description: The ServicePrincipalServiceCreateResponse message. properties: servicePrincipal: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipal' title: Service Principal Service Create Response type: object x-speakeasy-name-override: ServicePrincipalServiceCreateResponse c1.api.service_principal.v1.ServicePrincipalServiceDeleteBindingRequest: description: The ServicePrincipalServiceDeleteBindingRequest message. properties: servicePrincipalId: description: The servicePrincipalId field. readOnly: false type: string subject: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalBindingSubject' title: Service Principal Service Delete Binding Request type: object x-speakeasy-name-override: ServicePrincipalServiceDeleteBindingRequest c1.api.service_principal.v1.ServicePrincipalServiceDeleteBindingResponse: description: The ServicePrincipalServiceDeleteBindingResponse message. title: Service Principal Service Delete Binding Response type: object x-speakeasy-name-override: ServicePrincipalServiceDeleteBindingResponse c1.api.service_principal.v1.ServicePrincipalServiceDeleteRequestInput: description: The ServicePrincipalServiceDeleteRequest message. title: Service Principal Service Delete Request type: object x-speakeasy-name-override: ServicePrincipalServiceDeleteRequest c1.api.service_principal.v1.ServicePrincipalServiceDeleteResponse: description: The ServicePrincipalServiceDeleteResponse message. title: Service Principal Service Delete Response type: object x-speakeasy-name-override: ServicePrincipalServiceDeleteResponse c1.api.service_principal.v1.ServicePrincipalServiceGetCredentialResponse: description: The ServicePrincipalServiceGetCredentialResponse message. properties: credential: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalCredential' title: Service Principal Service Get Credential Response type: object x-speakeasy-name-override: ServicePrincipalServiceGetCredentialResponse c1.api.service_principal.v1.ServicePrincipalServiceGetResponse: description: The ServicePrincipalServiceGetResponse message. properties: servicePrincipal: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipal' title: Service Principal Service Get Response type: object x-speakeasy-name-override: ServicePrincipalServiceGetResponse c1.api.service_principal.v1.ServicePrincipalServiceListBindingsRequest: description: The ServicePrincipalServiceListBindingsRequest message. properties: pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string subject: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalBindingSubject' title: Service Principal Service List Bindings Request type: object x-speakeasy-name-override: ServicePrincipalServiceListBindingsRequest c1.api.service_principal.v1.ServicePrincipalServiceListBindingsResponse: description: The ServicePrincipalServiceListBindingsResponse message. properties: bindings: description: |- Active bindings held by the subject in this page. Empty when the subject is unbound. Order is unspecified. items: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalBinding' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Service Principal Service List Bindings Response type: object x-speakeasy-name-override: ServicePrincipalServiceListBindingsResponse c1.api.service_principal.v1.ServicePrincipalServiceListCredentialsResponse: description: The ServicePrincipalServiceListCredentialsResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalCredential' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Service Principal Service List Credentials Response type: object x-speakeasy-name-override: ServicePrincipalServiceListCredentialsResponse c1.api.service_principal.v1.ServicePrincipalServiceListResponse: description: The ServicePrincipalServiceListResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipal' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Service Principal Service List Response type: object x-speakeasy-name-override: ServicePrincipalServiceListResponse c1.api.service_principal.v1.ServicePrincipalServiceRevokeCredentialRequestInput: description: The ServicePrincipalServiceRevokeCredentialRequest message. title: Service Principal Service Revoke Credential Request type: object x-speakeasy-name-override: ServicePrincipalServiceRevokeCredentialRequest c1.api.service_principal.v1.ServicePrincipalServiceRevokeCredentialResponse: description: The ServicePrincipalServiceRevokeCredentialResponse message. title: Service Principal Service Revoke Credential Response type: object x-speakeasy-name-override: ServicePrincipalServiceRevokeCredentialResponse c1.api.service_principal.v1.ServicePrincipalServiceUpdateCredentialRequestInput: description: The ServicePrincipalServiceUpdateCredentialRequest message. properties: credential: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalCredential' updateMask: nullable: true readOnly: false type: string title: Service Principal Service Update Credential Request type: object x-speakeasy-name-override: ServicePrincipalServiceUpdateCredentialRequest c1.api.service_principal.v1.ServicePrincipalServiceUpdateCredentialResponse: description: The ServicePrincipalServiceUpdateCredentialResponse message. properties: credential: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalCredential' title: Service Principal Service Update Credential Response type: object x-speakeasy-name-override: ServicePrincipalServiceUpdateCredentialResponse c1.api.service_principal.v1.ServicePrincipalServiceUpdateRequestInput: description: The ServicePrincipalServiceUpdateRequest message. properties: servicePrincipal: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipal' updateMask: nullable: true readOnly: false type: string title: Service Principal Service Update Request type: object x-speakeasy-name-override: ServicePrincipalServiceUpdateRequest c1.api.service_principal.v1.ServicePrincipalServiceUpdateResponse: description: The ServicePrincipalServiceUpdateResponse message. properties: servicePrincipal: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipal' title: Service Principal Service Update Response type: object x-speakeasy-name-override: ServicePrincipalServiceUpdateResponse c1.api.settings.v1.AWSExternalID: description: AWSExternalID contains the tenant's external ID for AWS IAM role trust policies. properties: externalId: description: The external ID value to include in the AWS IAM role trust policy condition. readOnly: false type: - string - "null" title: Aws External Id type: object x-speakeasy-entity: AWS_EXTERNAL_ID x-speakeasy-name-override: AWSExternalID c1.api.settings.v1.AWSSESProviderConfig: description: AWSSESProviderConfig configures sending via a customer's AWS SES account. nullable: true properties: configurationSetName: description: Optional SES configuration set name for tracking/metrics. readOnly: false type: string region: description: AWS region where SES identities are verified (e.g., "us-east-1"). readOnly: false type: string roleArn: description: |- IAM role ARN for sts:AssumeRole. The trust policy should require the tenant's AWS External ID (GET /api/v1/settings/aws-external-id). readOnly: false type: string title: Awsses Provider Config type: object x-speakeasy-name-override: AWSSESProviderConfig c1.api.settings.v1.AccessProvisionedPreference: description: The AccessProvisionedPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Access Provisioned Preference type: object x-speakeasy-name-override: AccessProvisionedPreference c1.api.settings.v1.ApprovalNeededPreference: description: The ApprovalNeededPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Approval Needed Preference type: object x-speakeasy-name-override: ApprovalNeededPreference c1.api.settings.v1.C1BuiltInProviderConfig: description: |- C1BuiltInProviderConfig selects the ConductorOne built-in email provider. Emails are sent from no-reply@conductorone.com via the platform SendGrid account. Only supports sending to C1 users — external email addresses are not supported. No configuration fields required. nullable: true title: C 1 Built In Provider Config type: object x-speakeasy-name-override: C1BuiltInProviderConfig c1.api.settings.v1.CIDRRestriction: description: CIDRRestriction defines an IP-based access restriction with an enable toggle and a list of allowed CIDRs. properties: enabled: description: Whether this CIDR restriction is enforced. readOnly: false type: - boolean - "null" sourceCidr: description: |- The list of CIDR ranges that are allowed when the restriction is enabled. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string readOnly: false type: - array - "null" title: Cidr Restriction type: object x-speakeasy-name-override: CIDRRestriction c1.api.settings.v1.ChannelSettings: description: ChannelSettings groups notification preferences for all supported channels. properties: email: $ref: '#/components/schemas/c1.api.settings.v1.EmailChannelSettings' slack: $ref: '#/components/schemas/c1.api.settings.v1.SlackChannelSettings' teams: $ref: '#/components/schemas/c1.api.settings.v1.MSTeamsChannelSettings' title: Channel Settings type: object x-speakeasy-name-override: ChannelSettings c1.api.settings.v1.CommentOnRequestPreference: description: The CommentOnRequestPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Comment On Request Preference type: object x-speakeasy-name-override: CommentOnRequestPreference c1.api.settings.v1.CompletionPreference: description: The CompletionPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Completion Preference type: object x-speakeasy-name-override: CompletionPreference c1.api.settings.v1.ConnectorIssuesPreference: description: The ConnectorIssuesPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Connector Issues Preference type: object x-speakeasy-name-override: ConnectorIssuesPreference c1.api.settings.v1.Contacts: description: Contacts represents the contact configuration for an organization. properties: billingEmails: description: Email addresses of billing contacts for this organization. items: type: string nullable: true readOnly: false type: array createdAt: format: date-time readOnly: true type: string operationsEmails: description: Email addresses of operations contacts for this organization. items: type: string nullable: true readOnly: false type: array securityEmails: description: Email addresses of security contacts for this organization. items: type: string nullable: true readOnly: false type: array updatedAt: format: date-time readOnly: true type: string title: Contacts type: object x-speakeasy-name-override: Contacts c1.api.settings.v1.DigestPreference: description: DigestPreference controls whether summary digest notifications are sent and how often. properties: dayOfWeek: description: The day of the week to send weekly digests. enum: - WEEKDAY_UNSPECIFIED - WEEKDAY_MONDAY - WEEKDAY_TUESDAY - WEEKDAY_WEDNESDAY - WEEKDAY_THURSDAY - WEEKDAY_FRIDAY - WEEKDAY_SATURDAY - WEEKDAY_SUNDAY readOnly: false type: string x-speakeasy-unknown-values: allow enabled: description: Whether digest notifications are enabled. readOnly: false type: boolean frequency: description: How often digest notifications are sent. enum: - DIGEST_FREQUENCY_UNSPECIFIED - DIGEST_FREQUENCY_DAILY - DIGEST_FREQUENCY_WEEKLY readOnly: false type: string x-speakeasy-unknown-values: allow locked: description: Whether this preference is locked by org-level settings, preventing users from overriding it. readOnly: false type: boolean title: Digest Preference type: object x-speakeasy-name-override: DigestPreference c1.api.settings.v1.EmailChannelSettings: description: The EmailChannelSettings message. properties: accessProvisioned: $ref: '#/components/schemas/c1.api.settings.v1.AccessProvisionedPreference' approvalNeeded: $ref: '#/components/schemas/c1.api.settings.v1.ApprovalNeededPreference' commentOnRequest: $ref: '#/components/schemas/c1.api.settings.v1.CommentOnRequestPreference' completion: $ref: '#/components/schemas/c1.api.settings.v1.CompletionPreference' connectorIssues: $ref: '#/components/schemas/c1.api.settings.v1.ConnectorIssuesPreference' digest: $ref: '#/components/schemas/c1.api.settings.v1.DigestPreference' enabled: description: The enabled field. readOnly: false type: boolean expiringAccess: $ref: '#/components/schemas/c1.api.settings.v1.ExpiringAccessPreference' provisioningRequest: $ref: '#/components/schemas/c1.api.settings.v1.ProvisioningRequestPreference' reviews: $ref: '#/components/schemas/c1.api.settings.v1.ReviewsPreference' taskReminders: $ref: '#/components/schemas/c1.api.settings.v1.TaskRemindersPreference' title: Email Channel Settings type: object x-speakeasy-name-override: EmailChannelSettings c1.api.settings.v1.ExpiringAccessPreference: description: The ExpiringAccessPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Expiring Access Preference type: object x-speakeasy-name-override: ExpiringAccessPreference c1.api.settings.v1.GetAWSExternalIDResponse: description: The GetAWSExternalIDResponse message. properties: awsExternalId: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.AWSExternalID' - type: "null" title: Get Aws External Id Response type: object x-speakeasy-name-override: GetAWSExternalIDResponse c1.api.settings.v1.GetContactsResponse: description: The GetContactsResponse message. properties: contacts: $ref: '#/components/schemas/c1.api.settings.v1.Contacts' title: Get Contacts Response type: object x-speakeasy-name-override: GetContactsResponse c1.api.settings.v1.GetEmailCapabilitiesResponse: description: The GetEmailCapabilitiesResponse message. properties: externalEmailSupported: description: |- True when external email addresses (outside C1 users) can be used as recipients in automation email steps. False when only the C1 built-in provider is configured (C1 users only). readOnly: false type: boolean title: Get Email Capabilities Response type: object x-speakeasy-name-override: GetEmailCapabilitiesResponse c1.api.settings.v1.GetOnboardingSettingsResponse: description: The GetOnboardingSettingsResponse message. properties: conversationId: description: The identifier of the onboarding conversation thread, if one is in progress. readOnly: false type: string intents: description: The intents field. items: type: string nullable: true readOnly: false type: array orgContext: $ref: '#/components/schemas/c1.api.settings.v1.OnboardingOrgContext' status: description: The current status of the tenant onboarding process. enum: - ONBOARDING_STATUS_UNSPECIFIED - ONBOARDING_STATUS_NOT_STARTED - ONBOARDING_STATUS_IN_PROGRESS - ONBOARDING_STATUS_COMPLETE - ONBOARDING_STATUS_DISMISSED readOnly: false type: string x-speakeasy-unknown-values: allow title: Get Onboarding Settings Response type: object x-speakeasy-name-override: GetOnboardingSettingsResponse c1.api.settings.v1.GetOrgNotificationSettingsResponse: description: The GetOrgNotificationSettingsResponse message. properties: orgNotificationSettings: $ref: '#/components/schemas/c1.api.settings.v1.OrgNotificationSettings' title: Get Org Notification Settings Response type: object x-speakeasy-name-override: GetOrgNotificationSettingsResponse c1.api.settings.v1.GetSessionSettingsResponse: description: The GetSessionSettingsResponse message. properties: sessionSettings: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.SessionSettings' - type: "null" title: Get Session Settings Response type: object x-speakeasy-name-override: GetSessionSettingsResponse c1.api.settings.v1.GetTenantEmailProviderResponse: description: The GetTenantEmailProviderResponse message. properties: emailProvider: $ref: '#/components/schemas/c1.api.settings.v1.TenantEmailProvider' title: Get Tenant Email Provider Response type: object x-speakeasy-name-override: GetTenantEmailProviderResponse c1.api.settings.v1.GetUserNotificationSettingsResponse: description: The GetUserNotificationSettingsResponse message. properties: userNotificationSettings: $ref: '#/components/schemas/c1.api.settings.v1.UserNotificationSettings' title: Get User Notification Settings Response type: object x-speakeasy-name-override: GetUserNotificationSettingsResponse c1.api.settings.v1.GoogleWorkspaceProviderConfig: description: |- GoogleWorkspaceProviderConfig configures sending via Google Workspace Gmail API using domain-wide delegation with a service account. Requires: customer Workspace super admin grants DWD to the service account's OAuth client ID for the gmail.send scope. nullable: true properties: delegatedUser: description: |- The Workspace user email to impersonate via domain-wide delegation. Typically a dedicated sender like noreply@customer.com. readOnly: false type: string serviceAccountJson: description: |- Service account JSON credentials. Write-only: accepted on create/update, never returned in Get. Empty on update means "keep existing credentials". readOnly: false type: string title: Google Workspace Provider Config type: object x-speakeasy-name-override: GoogleWorkspaceProviderConfig c1.api.settings.v1.ListOrgDomainsResponse: description: The ListOrgDomainsResponse message. properties: list: description: The list of verified domains. items: $ref: '#/components/schemas/c1.api.settings.v1.OrgDomain' readOnly: false type: - array - "null" nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: List Org Domains Response type: object x-speakeasy-name-override: ListOrgDomainsResponse c1.api.settings.v1.MSTeamsChannelSettings: description: The MSTeamsChannelSettings message. properties: accessProvisioned: $ref: '#/components/schemas/c1.api.settings.v1.AccessProvisionedPreference' approvalNeeded: $ref: '#/components/schemas/c1.api.settings.v1.ApprovalNeededPreference' commentOnRequest: $ref: '#/components/schemas/c1.api.settings.v1.CommentOnRequestPreference' completion: $ref: '#/components/schemas/c1.api.settings.v1.CompletionPreference' connectorIssues: $ref: '#/components/schemas/c1.api.settings.v1.ConnectorIssuesPreference' digest: $ref: '#/components/schemas/c1.api.settings.v1.DigestPreference' enabled: description: The enabled field. readOnly: false type: boolean expiringAccess: $ref: '#/components/schemas/c1.api.settings.v1.ExpiringAccessPreference' isConfigured: description: The isConfigured field. readOnly: false type: boolean provisioningRequest: $ref: '#/components/schemas/c1.api.settings.v1.ProvisioningRequestPreference' reviews: $ref: '#/components/schemas/c1.api.settings.v1.ReviewsPreference' taskReminders: $ref: '#/components/schemas/c1.api.settings.v1.TaskRemindersPreference' title: Ms Teams Channel Settings type: object x-speakeasy-name-override: MSTeamsChannelSettings c1.api.settings.v1.MicrosoftGraphProviderConfig: description: |- MicrosoftGraphProviderConfig configures sending via Microsoft Graph sendMail API. Requires an Azure AD app registration with Mail.Send application permission (admin-consented). nullable: true properties: azureTenantId: description: Customer's Azure AD tenant ID (directory ID). readOnly: false type: string clientId: description: App registration client ID with Mail.Send application permission. readOnly: false type: string clientSecret: description: |- Client secret. Write-only: accepted on create/update, never returned in Get. Empty on update means "keep existing secret". readOnly: false type: string title: Microsoft Graph Provider Config type: object x-speakeasy-name-override: MicrosoftGraphProviderConfig c1.api.settings.v1.OnboardingOrgContext: description: The OnboardingOrgContext message. properties: industry: description: The industry field. readOnly: false type: string organizationSize: description: The organizationSize field. readOnly: false type: string title: Onboarding Org Context type: object x-speakeasy-name-override: OnboardingOrgContext c1.api.settings.v1.OrgDomain: description: OrgDomain represents a verified email domain associated with the tenant. properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" domain: description: The verified domain name (e.g., "example.com"). readOnly: false type: - string - "null" id: description: The unique identifier of the domain record. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Org Domain type: object x-speakeasy-name-override: OrgDomain c1.api.settings.v1.OrgNotificationSettings: description: OrgNotificationSettings contains organization-wide notification channel configurations and default preferences. properties: channelSettings: $ref: '#/components/schemas/c1.api.settings.v1.ChannelSettings' title: Org Notification Settings type: object x-speakeasy-name-override: OrgNotificationSettings c1.api.settings.v1.ProvisioningRequestPreference: description: The ProvisioningRequestPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Provisioning Request Preference type: object x-speakeasy-name-override: ProvisioningRequestPreference c1.api.settings.v1.ReviewsPreference: description: The ReviewsPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Reviews Preference type: object x-speakeasy-name-override: ReviewsPreference c1.api.settings.v1.SearchEmailAuditEventsRequest: description: The SearchEmailAuditEventsRequest message. properties: pageSize: description: Maximum results per page (0 = server default, max 100). format: int32 readOnly: false type: integer pageToken: description: Pagination token from previous response. readOnly: false type: string title: Search Email Audit Events Request type: object x-speakeasy-name-override: SearchEmailAuditEventsRequest c1.api.settings.v1.SearchEmailAuditEventsResponse: description: The SearchEmailAuditEventsResponse message. properties: list: description: OCSF EmailActivity events as Struct for frontend rendering. items: additionalProperties: true readOnly: false type: object nullable: true readOnly: false type: array nextPageToken: description: Token for next page. Empty when no more pages. readOnly: false type: string title: Search Email Audit Events Response type: object x-speakeasy-name-override: SearchEmailAuditEventsResponse c1.api.settings.v1.SendGridProviderConfig: description: SendGridProviderConfig configures sending via a customer's SendGrid account. nullable: true properties: apiKey: description: |- Customer's SendGrid API key. Write-only: accepted on create/update, never returned in Get. Empty on update means "keep existing key". readOnly: false type: string title: Send Grid Provider Config type: object x-speakeasy-name-override: SendGridProviderConfig c1.api.settings.v1.SessionSettings: description: SessionSettings configures session security for the tenant, including timeouts and per-role IP restrictions. properties: clientIdApprovalRequestPolicyId: description: Policy ID for REQUESTABLE mode approval routing. readOnly: false type: string clientIdMetadataDocumentPolicy: description: Policy for metadata document client_id URLs. enum: - CLIENT_ID_METADATA_DOCUMENT_POLICY_UNSPECIFIED - CLIENT_ID_METADATA_DOCUMENT_POLICY_ALLOW_ALL - CLIENT_ID_METADATA_DOCUMENT_POLICY_REQUESTABLE - CLIENT_ID_METADATA_DOCUMENT_POLICY_ALLOWLIST_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow connectorSource: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' - type: "null" externalClientSource: $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' externalClientsEnabled: description: |- Enable external client registration (OAuth 2.0 DCR) for MCP clients like Claude Desktop, Cursor, and other AI assistants. readOnly: false type: boolean maxSessionLength: oneOf: - format: duration readOnly: false type: string - type: "null" pccAdminSource: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' - type: "null" pccUserSource: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' - type: "null" ssoAdminSource: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' - type: "null" ssoUserSource: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.CIDRRestriction' - type: "null" title: Session Settings type: object x-speakeasy-name-override: SessionSettings c1.api.settings.v1.SlackChannelSettings: description: The SlackChannelSettings message. properties: accessProvisioned: $ref: '#/components/schemas/c1.api.settings.v1.AccessProvisionedPreference' approvalNeeded: $ref: '#/components/schemas/c1.api.settings.v1.ApprovalNeededPreference' commentOnRequest: $ref: '#/components/schemas/c1.api.settings.v1.CommentOnRequestPreference' completion: $ref: '#/components/schemas/c1.api.settings.v1.CompletionPreference' connectorIssues: $ref: '#/components/schemas/c1.api.settings.v1.ConnectorIssuesPreference' digest: $ref: '#/components/schemas/c1.api.settings.v1.DigestPreference' enabled: description: The enabled field. readOnly: false type: boolean expiringAccess: $ref: '#/components/schemas/c1.api.settings.v1.ExpiringAccessPreference' isConfigured: description: The isConfigured field. readOnly: false type: boolean provisioningRequest: $ref: '#/components/schemas/c1.api.settings.v1.ProvisioningRequestPreference' reviews: $ref: '#/components/schemas/c1.api.settings.v1.ReviewsPreference' taskReminders: $ref: '#/components/schemas/c1.api.settings.v1.TaskRemindersPreference' title: Slack Channel Settings type: object x-speakeasy-name-override: SlackChannelSettings c1.api.settings.v1.TaskRemindersPreference: description: The TaskRemindersPreference message. properties: enabled: description: The enabled field. readOnly: false type: boolean locked: description: The locked field. readOnly: false type: boolean title: Task Reminders Preference type: object x-speakeasy-name-override: TaskRemindersPreference c1.api.settings.v1.TenantEmailProvider: description: | TenantEmailProvider is the API representation of the tenant's email provider. This message contains a oneof named provider. Only a single field of the following list may be set at a time: - c1Builtin - awsSes - sendgrid - microsoftGraph - googleWorkspace properties: awsSes: $ref: '#/components/schemas/c1.api.settings.v1.AWSSESProviderConfig' c1Builtin: $ref: '#/components/schemas/c1.api.settings.v1.C1BuiltInProviderConfig' createdAt: format: date-time readOnly: true type: string fromAddress: description: |- Sender email address. Must be verified with the provider. Ignored when using the C1 built-in provider (uses no-reply@conductorone.com). readOnly: false type: string fromName: description: |- Sender display name shown in the recipient's inbox (e.g., "Acme Corp IT"). Used as the RFC 5322 display-name: "Acme Corp IT" . Ignored when using the C1 built-in provider. readOnly: false type: string googleWorkspace: $ref: '#/components/schemas/c1.api.settings.v1.GoogleWorkspaceProviderConfig' microsoftGraph: $ref: '#/components/schemas/c1.api.settings.v1.MicrosoftGraphProviderConfig' replyToAddress: description: Optional reply-to address. readOnly: false type: string sendgrid: $ref: '#/components/schemas/c1.api.settings.v1.SendGridProviderConfig' updatedAt: format: date-time readOnly: true type: string title: Tenant Email Provider type: object x-speakeasy-name-override: TenantEmailProvider c1.api.settings.v1.TestSourceIPRequest: description: The TestSourceIPRequest message. properties: allowCidr: description: |- The CIDR allowlist rules to test against. If empty, uses the tenant's current allowlist. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string readOnly: false type: - array - "null" sourceIp: description: |- if unset, uses the source IP of the request. Accepts IPv4 (e.g. 10.0.0.5) or IPv6 (e.g. 2001:db8::1) addresses, optionally with a CIDR prefix. readOnly: false type: - string - "null" title: Test Source Ip Request type: object x-speakeasy-name-override: TestSourceIPRequest c1.api.settings.v1.TestSourceIPResponse: description: The TestSourceIPResponse message. properties: allowed: description: Whether the tested IP address is allowed by the CIDR rules. readOnly: false type: - boolean - "null" checkedIp: description: The IP address that was checked, either from the request or inferred from the caller. readOnly: false type: - string - "null" details: oneOf: - $ref: '#/components/schemas/google.rpc.Status' - type: "null" title: Test Source Ip Response type: object x-speakeasy-name-override: TestSourceIPResponse c1.api.settings.v1.TestTenantEmailProviderRequest: description: The TestTenantEmailProviderRequest message. properties: testRecipientEmail: description: The email address to send the test email to. readOnly: false type: string title: Test Tenant Email Provider Request type: object x-speakeasy-name-override: TestTenantEmailProviderRequest c1.api.settings.v1.TestTenantEmailProviderResponse: description: The TestTenantEmailProviderResponse message. properties: message: description: Human-readable detail about the result. readOnly: false type: string success: description: Whether the test email was sent successfully. readOnly: false type: boolean title: Test Tenant Email Provider Response type: object x-speakeasy-name-override: TestTenantEmailProviderResponse c1.api.settings.v1.UpdateContactsRequest: description: The UpdateContactsRequest message. properties: contacts: $ref: '#/components/schemas/c1.api.settings.v1.Contacts' updateMask: nullable: true readOnly: false type: string title: Update Contacts Request type: object x-speakeasy-name-override: UpdateContactsRequest c1.api.settings.v1.UpdateContactsResponse: description: The UpdateContactsResponse message. properties: contacts: $ref: '#/components/schemas/c1.api.settings.v1.Contacts' title: Update Contacts Response type: object x-speakeasy-name-override: UpdateContactsResponse c1.api.settings.v1.UpdateOnboardingSettingsRequest: description: The UpdateOnboardingSettingsRequest message. properties: conversationId: description: The identifier of the onboarding conversation thread to associate. readOnly: false type: string status: description: The new onboarding status to set. enum: - ONBOARDING_STATUS_UNSPECIFIED - ONBOARDING_STATUS_NOT_STARTED - ONBOARDING_STATUS_IN_PROGRESS - ONBOARDING_STATUS_COMPLETE - ONBOARDING_STATUS_DISMISSED readOnly: false type: string x-speakeasy-unknown-values: allow title: Update Onboarding Settings Request type: object x-speakeasy-name-override: UpdateOnboardingSettingsRequest c1.api.settings.v1.UpdateOnboardingSettingsResponse: description: The UpdateOnboardingSettingsResponse message. properties: status: description: The updated onboarding status. enum: - ONBOARDING_STATUS_UNSPECIFIED - ONBOARDING_STATUS_NOT_STARTED - ONBOARDING_STATUS_IN_PROGRESS - ONBOARDING_STATUS_COMPLETE - ONBOARDING_STATUS_DISMISSED readOnly: false type: string x-speakeasy-unknown-values: allow title: Update Onboarding Settings Response type: object x-speakeasy-name-override: UpdateOnboardingSettingsResponse c1.api.settings.v1.UpdateOrgDomainRequest: description: The UpdateOrgDomainRequest message. properties: newDomains: description: The complete list of domain names that should be set as the tenant's verified domains. items: type: string readOnly: false type: - array - "null" title: Update Org Domain Request type: object x-speakeasy-name-override: UpdateOrgDomainRequest c1.api.settings.v1.UpdateOrgDomainResponse: description: The UpdateOrgDomainResponse message. properties: list: description: The resulting list of verified domains after the update. items: $ref: '#/components/schemas/c1.api.settings.v1.OrgDomain' readOnly: false type: - array - "null" title: Update Org Domain Response type: object x-speakeasy-name-override: UpdateOrgDomainResponse c1.api.settings.v1.UpdateOrgNotificationSettingsRequest: description: The UpdateOrgNotificationSettingsRequest message. properties: channelSettings: $ref: '#/components/schemas/c1.api.settings.v1.ChannelSettings' title: Update Org Notification Settings Request type: object x-speakeasy-name-override: UpdateOrgNotificationSettingsRequest c1.api.settings.v1.UpdateOrgNotificationSettingsResponse: description: The UpdateOrgNotificationSettingsResponse message. properties: orgNotificationSettings: $ref: '#/components/schemas/c1.api.settings.v1.OrgNotificationSettings' title: Update Org Notification Settings Response type: object x-speakeasy-name-override: UpdateOrgNotificationSettingsResponse c1.api.settings.v1.UpdateSessionSettingsRequest: description: The UpdateSessionSettingsRequest message. properties: sessionSettings: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.SessionSettings' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update Session Settings Request type: object x-speakeasy-name-override: UpdateSessionSettingsRequest c1.api.settings.v1.UpdateSessionSettingsResponse: description: The UpdateSessionSettingsResponse message. properties: sessionSettings: oneOf: - $ref: '#/components/schemas/c1.api.settings.v1.SessionSettings' - type: "null" title: Update Session Settings Response type: object x-speakeasy-name-override: UpdateSessionSettingsResponse c1.api.settings.v1.UpdateTenantEmailProviderRequest: description: The UpdateTenantEmailProviderRequest message. properties: emailProvider: $ref: '#/components/schemas/c1.api.settings.v1.TenantEmailProvider' updateMask: nullable: true readOnly: false type: string title: Update Tenant Email Provider Request type: object x-speakeasy-name-override: UpdateTenantEmailProviderRequest c1.api.settings.v1.UpdateTenantEmailProviderResponse: description: The UpdateTenantEmailProviderResponse message. properties: emailProvider: $ref: '#/components/schemas/c1.api.settings.v1.TenantEmailProvider' title: Update Tenant Email Provider Response type: object x-speakeasy-name-override: UpdateTenantEmailProviderResponse c1.api.settings.v1.UpdateUserNotificationSettingsRequest: description: The UpdateUserNotificationSettingsRequest message. properties: channelSettings: $ref: '#/components/schemas/c1.api.settings.v1.ChannelSettings' title: Update User Notification Settings Request type: object x-speakeasy-name-override: UpdateUserNotificationSettingsRequest c1.api.settings.v1.UpdateUserNotificationSettingsResponse: description: The UpdateUserNotificationSettingsResponse message. properties: userNotificationSettings: $ref: '#/components/schemas/c1.api.settings.v1.UserNotificationSettings' title: Update User Notification Settings Response type: object x-speakeasy-name-override: UpdateUserNotificationSettingsResponse c1.api.settings.v1.UserNotificationSettings: description: UserNotificationSettings contains the calling user's personal notification preferences. properties: channelSettings: $ref: '#/components/schemas/c1.api.settings.v1.ChannelSettings' title: User Notification Settings type: object x-speakeasy-name-override: UserNotificationSettings c1.api.ssf_receiver.v1.SSFOutboundAuthBearer: description: |- SSFOutboundAuthBearer is a static bearer token for outbound auth. Token is write-only: accepted on create/update, never returned. nullable: true properties: token: description: The token field. readOnly: false type: string title: Ssf Outbound Auth Bearer type: object x-speakeasy-name-override: SSFOutboundAuthBearer c1.api.ssf_receiver.v1.SSFOutboundAuthOAuth2: description: |- SSFOutboundAuthOAuth2 uses OAuth2 client credentials for outbound auth. client_secret is write-only: accepted on create/update, never returned. nullable: true properties: clientId: description: The clientId field. readOnly: false type: string clientSecret: description: The clientSecret field. readOnly: false type: string scopes: description: The scopes field. items: type: string nullable: true readOnly: false type: array tokenUrl: description: The tokenUrl field. readOnly: false type: string title: Ssf Outbound Auth O Auth 2 type: object x-speakeasy-name-override: SSFOutboundAuthOAuth2 c1.api.ssf_receiver.v1.SSFReceiverEvent: description: SSFReceiverEvent shows both wire-level data and C1 canonical outcome. properties: canonicalType: description: |- C1 canonical outcome (what C1 understood and did). The normalized event type after mapping from the wire event type. enum: - SSF_CANONICAL_EVENT_TYPE_UNSPECIFIED - SSF_CANONICAL_EVENT_TYPE_UNRECOGNIZED - SSF_CANONICAL_EVENT_TYPE_SESSION_REVOKED - SSF_CANONICAL_EVENT_TYPE_CREDENTIAL_CHANGED - SSF_CANONICAL_EVENT_TYPE_TOKEN_CLAIMS_CHANGED - SSF_CANONICAL_EVENT_TYPE_ASSURANCE_LEVEL_CHANGED - SSF_CANONICAL_EVENT_TYPE_DEVICE_COMPLIANCE_CHANGED - SSF_CANONICAL_EVENT_TYPE_RISK_LEVEL_CHANGED - SSF_CANONICAL_EVENT_TYPE_SESSION_ESTABLISHED - SSF_CANONICAL_EVENT_TYPE_SESSION_PRESENTED - SSF_CANONICAL_EVENT_TYPE_ACCOUNT_DISABLED - SSF_CANONICAL_EVENT_TYPE_ACCOUNT_ENABLED - SSF_CANONICAL_EVENT_TYPE_ACCOUNT_PURGED - SSF_CANONICAL_EVENT_TYPE_CREDENTIAL_COMPROMISE - SSF_CANONICAL_EVENT_TYPE_RECOVERY_ACTIVATED - SSF_CANONICAL_EVENT_TYPE_IDENTIFIER_CHANGED - SSF_CANONICAL_EVENT_TYPE_VERIFICATION - SSF_CANONICAL_EVENT_TYPE_STREAM_UPDATED readOnly: false type: string x-speakeasy-unknown-values: allow id: description: The unique identifier of this event. readOnly: false type: string matchMethod: description: How the upstream subject was resolved to a ConductorOne user. enum: - SSF_SUBJECT_MATCH_METHOD_UNSPECIFIED - SSF_SUBJECT_MATCH_METHOD_IDP_USER - SSF_SUBJECT_MATCH_METHOD_EMAIL - SSF_SUBJECT_MATCH_METHOD_NOT_FOUND - SSF_SUBJECT_MATCH_METHOD_NOT_APPLICABLE readOnly: false type: string x-speakeasy-unknown-values: allow matchedUserId: description: The ConductorOne user ID that the event subject was resolved to, if any. readOnly: false type: string outcome: description: The action ConductorOne took in response to this event. enum: - SSF_EVENT_OUTCOME_UNSPECIFIED - SSF_EVENT_OUTCOME_SESSIONS_REVOKED - SSF_EVENT_OUTCOME_LOGGED - SSF_EVENT_OUTCOME_PRINCIPAL_NOT_FOUND - SSF_EVENT_OUTCOME_VERIFIED - SSF_EVENT_OUTCOME_STREAM_STATUS_UPDATED - SSF_EVENT_OUTCOME_UNRECOGNIZED - SSF_EVENT_OUTCOME_ERROR readOnly: false type: string x-speakeasy-unknown-values: allow outcomeDetail: description: Human-readable details about the outcome (e.g., error message or revocation summary). readOnly: false type: string receivedAt: format: date-time readOnly: false type: string sessionsRevoked: description: Number of sessions that were revoked as a result of this event. format: int32 readOnly: false type: integer setJti: description: |- Wire-level data (what the transmitter sent). The SET (Security Event Token) JWT ID claim, uniquely identifying the token. readOnly: false type: string streamId: description: The SSF receiver stream that received this event. readOnly: false type: string wireEventProfile: description: The event profile URI from the SET, if present. readOnly: false type: string wireEventType: description: The raw event type URI from the SET (e.g., "https://schemas.openid.net/secevent/caep/event-type/session-revoked"). readOnly: false type: string wireInitiatingEntity: description: The entity that initiated the event, as reported by the transmitter. readOnly: false type: string wireReasonAdmin: description: The admin-facing reason string from the SET, if provided by the transmitter. readOnly: false type: string wireSubjectFormat: description: The subject identifier format from the SET (e.g., "email", "iss_sub"). readOnly: false type: string wireSubjectIdentifier: description: The raw subject identifier value from the SET. readOnly: false type: string title: Ssf Receiver Event type: object x-speakeasy-name-override: SSFReceiverEvent c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchRequest: description: SSFReceiverEventSearchServiceSearchRequest carries the search query and optional filters for narrowing results. properties: eventType: description: Restricts results to events matching this wire event type URI. Optional. readOnly: false type: string matchedUserId: description: Restricts results to events matched to this ConductorOne user ID. Optional. readOnly: false type: string outcome: description: Restricts results to events with this processing outcome. Optional. enum: - SSF_EVENT_OUTCOME_UNSPECIFIED - SSF_EVENT_OUTCOME_SESSIONS_REVOKED - SSF_EVENT_OUTCOME_LOGGED - SSF_EVENT_OUTCOME_PRINCIPAL_NOT_FOUND - SSF_EVENT_OUTCOME_VERIFIED - SSF_EVENT_OUTCOME_STREAM_STATUS_UPDATED - SSF_EVENT_OUTCOME_UNRECOGNIZED - SSF_EVENT_OUTCOME_ERROR readOnly: false type: string x-speakeasy-unknown-values: allow pageSize: description: Maximum number of events to return per page. format: int32 readOnly: false type: integer pageToken: description: Token from a previous SearchResponse to fetch the next page of results. readOnly: false type: string query: description: Full-text search query matched against event fields. readOnly: false type: string streamId: description: Restricts results to events from this SSF receiver stream. Optional. readOnly: false type: string title: Ssf Receiver Event Search Service Search Request type: object x-speakeasy-name-override: SSFReceiverEventSearchServiceSearchRequest c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchResponse: description: SSFReceiverEventSearchServiceSearchResponse contains the matching events and a pagination token. properties: list: description: The SSF events matching the search criteria. items: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEvent' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page. Empty when there are no more results. readOnly: false type: string title: Ssf Receiver Event Search Service Search Response type: object x-speakeasy-name-override: SSFReceiverEventSearchServiceSearchResponse c1.api.ssf_receiver.v1.SSFReceiverEventServiceListResponse: description: SSFReceiverEventServiceListResponse contains a page of received SSF events. properties: list: description: The SSF events in the current page. items: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEvent' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page. Empty when there are no more results. readOnly: false type: string title: Ssf Receiver Event Service List Response type: object x-speakeasy-name-override: SSFReceiverEventServiceListResponse c1.api.ssf_receiver.v1.SSFReceiverStream: description: | SSFReceiverStream is the public API representation. Secrets (push_auth_token, outbound credentials) are write-only. This message contains a oneof named outbound_auth. Only a single field of the following list may be set at a time: - outboundAuthBearer - outboundAuthOauth2 properties: accountDisabledAction: description: Action to take when an account-disabled event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow createdAt: format: date-time readOnly: true type: string credentialChangeAction: description: Action to take when a credential-change event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow credentialCompromiseAction: description: Action to take when a credential-compromise event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow deletedAt: format: date-time readOnly: true type: string deliveryMethod: description: Controls whether events are received via push (transmitter POSTs to C1) or poll (C1 fetches from transmitter). enum: - SSF_DELIVERY_METHOD_UNSPECIFIED - SSF_DELIVERY_METHOD_PUSH - SSF_DELIVERY_METHOD_POLL readOnly: false type: string x-speakeasy-unknown-values: allow description: description: Optional description of the stream's purpose or source. readOnly: false type: string displayName: description: Human-readable name for the stream shown in the UI. readOnly: false type: string enabled: description: Controls whether this stream actively processes incoming events. When false, events are ignored. readOnly: false type: boolean eventTypesEnabled: description: SSF/CAEP/RISC event type URIs that this stream is configured to accept. items: type: string nullable: true readOnly: false type: array expectedAudience: description: Expected audience (aud) claim in incoming SETs. Optional. readOnly: false type: string id: description: The unique identifier of this SSF receiver stream. readOnly: false type: string issuerUrl: description: Upstream IdP identification. readOnly: false type: string jwksUrl: description: The jwksUrl field. readOnly: false type: string lastErrorAt: format: date-time readOnly: false type: string lastErrorMessage: description: The lastErrorMessage field. readOnly: false type: string lastVerifiedAt: format: date-time readOnly: false type: string outboundAuthBearer: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFOutboundAuthBearer' outboundAuthOauth2: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFOutboundAuthOAuth2' pollEndpointUrl: description: URL of the transmitter's poll endpoint where C1 fetches events from. readOnly: false type: string pollInterval: format: duration readOnly: false type: string pushAuthToken: description: 'Push auth token: write-only. Accepted on create, never returned in get/list.' readOnly: false type: string pushEndpointUrl: description: 'Push delivery: C1 generates a unique endpoint URL.' readOnly: true type: string sessionRevokedAction: description: |- Per-canonical-type action configuration. Event types without a config here default to LOG_ONLY. Action to take when a session-revoked event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow updatedAt: format: date-time readOnly: true type: string title: Ssf Receiver Stream type: object x-speakeasy-name-override: SSFReceiverStream c1.api.ssf_receiver.v1.SSFReceiverStreamServiceCreateRequest: description: SSFReceiverStreamServiceCreateRequest contains the configuration for a new SSF receiver stream. properties: accountDisabledAction: description: Action to take when an account-disabled event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow credentialChangeAction: description: Action to take when a credential-change event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow credentialCompromiseAction: description: Action to take when a credential-compromise event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow deliveryMethod: description: Controls whether events are received via push or poll delivery. enum: - SSF_DELIVERY_METHOD_UNSPECIFIED - SSF_DELIVERY_METHOD_PUSH - SSF_DELIVERY_METHOD_POLL readOnly: false type: string x-speakeasy-unknown-values: allow description: description: Optional description of the stream's purpose or source. readOnly: false type: string displayName: description: Human-readable name for the stream. readOnly: false type: string enabled: description: Controls whether the stream starts processing events immediately after creation. readOnly: false type: boolean expectedAudience: description: Expected audience claim in incoming SETs. If set, SETs with a different audience are rejected. readOnly: false type: string issuerUrl: description: The issuer URL of the upstream SSF transmitter, used for token validation. readOnly: false type: string jwksUrl: description: URL to fetch the transmitter's JSON Web Key Set for SET signature verification. readOnly: false type: string pollEndpointUrl: description: URL of the transmitter's poll endpoint. Required when delivery_method is POLL. readOnly: false type: string pollInterval: format: duration readOnly: false type: string sessionRevokedAction: description: |- Per-event-type action configuration. Action to take when a session-revoked event is received. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow required: - displayName - issuerUrl title: Ssf Receiver Stream Service Create Request type: object x-speakeasy-name-override: SSFReceiverStreamServiceCreateRequest c1.api.ssf_receiver.v1.SSFReceiverStreamServiceCreateResponse: description: SSFReceiverStreamServiceCreateResponse returns the created stream and the push auth token in plaintext. properties: pushAuthTokenPlaintext: description: Push auth token returned in plaintext ONLY on create. readOnly: false type: string ssfReceiverStream: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStream' title: Ssf Receiver Stream Service Create Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceCreateResponse c1.api.ssf_receiver.v1.SSFReceiverStreamServiceDeleteRequestInput: description: SSFReceiverStreamServiceDeleteRequest identifies the SSF receiver stream to delete. title: Ssf Receiver Stream Service Delete Request type: object x-speakeasy-name-override: SSFReceiverStreamServiceDeleteRequest c1.api.ssf_receiver.v1.SSFReceiverStreamServiceDeleteResponse: description: SSFReceiverStreamServiceDeleteResponse is empty on success. title: Ssf Receiver Stream Service Delete Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceDeleteResponse c1.api.ssf_receiver.v1.SSFReceiverStreamServiceGetResponse: description: SSFReceiverStreamServiceGetResponse contains the requested SSF receiver stream. properties: ssfReceiverStream: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStream' title: Ssf Receiver Stream Service Get Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceGetResponse c1.api.ssf_receiver.v1.SSFReceiverStreamServiceGetStatsResponse: description: SSFReceiverStreamServiceGetStatsResponse contains the event processing statistics for the stream. properties: stats: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamStats' title: Ssf Receiver Stream Service Get Stats Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceGetStatsResponse c1.api.ssf_receiver.v1.SSFReceiverStreamServiceListResponse: description: SSFReceiverStreamServiceListResponse contains a page of SSF receiver streams. properties: list: description: The SSF receiver streams in the current page. items: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStream' nullable: true readOnly: false type: array nextPageToken: description: Token to retrieve the next page. Empty when there are no more results. readOnly: false type: string title: Ssf Receiver Stream Service List Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceListResponse c1.api.ssf_receiver.v1.SSFReceiverStreamServiceTestRequestInput: description: SSFReceiverStreamServiceTestRequest identifies the stream to test and an optional subject for identity resolution validation. properties: testSubject: description: |- The upstream identifier to test resolution with. Typically an email address (e.g., "alice@company.com") — the same value the IdP would send in a SET subject. The Test RPC runs resolveSubject on this to verify the identity mapping works. Optional: upstream identifier (email) to test identity resolution. If empty, only JWKS reachability is tested. readOnly: false type: string title: Ssf Receiver Stream Service Test Request type: object x-speakeasy-name-override: SSFReceiverStreamServiceTestRequest c1.api.ssf_receiver.v1.SSFReceiverStreamServiceTestResponse: description: SSFReceiverStreamServiceTestResponse reports the results of the stream configuration test across JWKS, identity, and action readiness checks. properties: activeRefreshTokenCount: description: Number of active refresh tokens for the matched user that would be affected. format: int32 readOnly: false type: integer activeSessionCount: description: Number of active sessions for the matched user that would be affected. format: int32 readOnly: false type: integer configuredSessionRevokedAction: description: |- Step 3: Action preview. The action configured for session-revoked events on this stream. enum: - SSF_REVOCATION_ACTION_UNSPECIFIED - SSF_REVOCATION_ACTION_REVOKE_ALL - SSF_REVOCATION_ACTION_LOG_ONLY readOnly: false type: string x-speakeasy-unknown-values: allow identityLinkFound: description: |- Step 2: Identity mapping. Whether the test subject was resolved to a ConductorOne user. readOnly: false type: boolean jwksError: description: Error message if the JWKS endpoint could not be reached or returned invalid data. readOnly: false type: string jwksKeyCount: description: Number of signing keys found at the JWKS endpoint. format: int32 readOnly: false type: integer jwksReachable: description: |- Step 1: JWKS reachability. Whether the JWKS endpoint was reachable and returned valid keys. readOnly: false type: boolean matchedUserId: description: The ConductorOne user ID the test subject maps to, if an identity link was found. readOnly: false type: string ready: description: |- Overall readiness. Whether the stream passed all test checks and is ready to process events. readOnly: false type: boolean upstreamSubject: description: The upstream IdP subject identifier (e.g., Okta user ID "00u1234") resolved from the test subject. readOnly: false type: string title: Ssf Receiver Stream Service Test Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceTestResponse c1.api.ssf_receiver.v1.SSFReceiverStreamServiceUpdateRequestInput: description: SSFReceiverStreamServiceUpdateRequest carries the stream to update and the mask of fields to modify. properties: ssfReceiverStream: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStream' updateMask: nullable: true readOnly: false type: string title: Ssf Receiver Stream Service Update Request type: object x-speakeasy-name-override: SSFReceiverStreamServiceUpdateRequest c1.api.ssf_receiver.v1.SSFReceiverStreamServiceUpdateResponse: description: SSFReceiverStreamServiceUpdateResponse contains the updated SSF receiver stream. properties: ssfReceiverStream: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStream' title: Ssf Receiver Stream Service Update Response type: object x-speakeasy-name-override: SSFReceiverStreamServiceUpdateResponse c1.api.ssf_receiver.v1.SSFReceiverStreamStats: description: SSFReceiverStreamStats is a lightweight read-only stats object. properties: eventsActedOnCount: description: Number of events that triggered an action (e.g., session revocation). format: int64 readOnly: false type: string eventsFailedCount: description: Number of events that failed processing. format: int64 readOnly: false type: string eventsReceivedCount: description: Total number of events received on this stream. format: int64 readOnly: false type: string lastErrorAt: format: date-time readOnly: false type: string lastErrorMessage: description: Human-readable description of the most recent processing error. readOnly: false type: string lastEventReceivedAt: format: date-time readOnly: false type: string lastVerifiedAt: format: date-time readOnly: false type: string streamId: description: The SSF receiver stream these stats belong to. readOnly: false type: string transmitterStatus: description: Current status reported by the transmitter (e.g., "enabled", "paused"). readOnly: false type: string transmitterStatusReason: description: Reason provided by the transmitter for its current status. readOnly: false type: string title: Ssf Receiver Stream Stats type: object x-speakeasy-name-override: SSFReceiverStreamStats c1.api.stepup.v1.CreateStepUpProviderRequest: description: | The CreateStepUpProviderRequest message. This message contains a oneof named settings. Only a single field of the following list may be set at a time: - oauth2 - microsoft properties: clientId: description: The OAuth2 client ID used to authenticate with the step-up provider. readOnly: false type: - string - "null" clientSecret: description: The OAuth2 client secret. Write-only; never returned in responses. readOnly: false type: - string - "null" displayName: description: The human-readable name for the new step-up provider. readOnly: false type: - string - "null" issuerUrl: description: The OIDC issuer URL for the step-up provider. readOnly: false type: - string - "null" microsoft: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpMicrosoftSettings' - type: "null" oauth2: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpOAuth2Settings' - type: "null" title: Create Step Up Provider Request type: object x-speakeasy-name-override: CreateStepUpProviderRequest c1.api.stepup.v1.CreateStepUpProviderResponse: description: The CreateStepUpProviderResponse message. properties: stepUpProvider: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' - type: "null" title: Create Step Up Provider Response type: object x-speakeasy-name-override: CreateStepUpProviderResponse c1.api.stepup.v1.DeleteStepUpProviderRequestInput: description: The DeleteStepUpProviderRequest message. title: Delete Step Up Provider Request type: object x-speakeasy-name-override: DeleteStepUpProviderRequest c1.api.stepup.v1.DeleteStepUpProviderResponse: description: The DeleteStepUpProviderResponse message. title: Delete Step Up Provider Response type: object x-speakeasy-name-override: DeleteStepUpProviderResponse c1.api.stepup.v1.GetStepUpProviderResponse: description: The GetStepUpProviderResponse message. properties: stepUpProvider: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' - type: "null" title: Get Step Up Provider Response type: object x-speakeasy-name-override: GetStepUpProviderResponse c1.api.stepup.v1.GetStepUpTransactionResponse: description: Response message containing the requested step-up transaction properties: transaction: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpTransaction' - type: "null" title: Get Step Up Transaction Response type: object x-speakeasy-name-override: GetStepUpTransactionResponse c1.api.stepup.v1.ListStepUpProvidersResponse: description: The ListStepUpProvidersResponse message. properties: list: description: The list of step-up authentication providers. items: $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' readOnly: false type: - array - "null" nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: List Step Up Providers Response type: object x-speakeasy-name-override: ListStepUpProvidersResponse c1.api.stepup.v1.SearchStepUpProvidersRequest: description: Request message for searching step-up providers properties: pageSize: description: Maximum number of results to return format: int32 readOnly: false type: - integer - "null" pageToken: description: Token for pagination readOnly: false type: - string - "null" providerType: description: The providerType field. enum: - PROVIDER_TYPE_UNSPECIFIED - PROVIDER_TYPE_OAUTH2 - PROVIDER_TYPE_MICROSOFT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow query: description: Filter by name (partial match) readOnly: false type: - string - "null" refs: description: Filter to specific providers by their references. items: $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProviderRef' readOnly: false type: - array - "null" title: Search Step Up Providers Request type: object x-speakeasy-name-override: SearchStepUpProvidersRequest c1.api.stepup.v1.SearchStepUpProvidersResponse: description: Response message for searching step-up providers properties: list: description: List of providers matching the search criteria items: $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' readOnly: false type: - array - "null" nextPageToken: description: Token for retrieving the next page of results readOnly: false type: - string - "null" title: Search Step Up Providers Response type: object x-speakeasy-name-override: SearchStepUpProvidersResponse c1.api.stepup.v1.SearchStepUpTransactionsRequest: description: Request message for searching step-up transactions properties: createdAfter: oneOf: - format: date-time readOnly: false type: string - type: "null" createdBefore: oneOf: - format: date-time readOnly: false type: string - type: "null" pageSize: description: Maximum number of results to return format: int32 readOnly: false type: - integer - "null" pageToken: description: Token for pagination readOnly: false type: - string - "null" providerId: description: Filter by provider ID readOnly: false type: - string - "null" state: description: Filter by transaction state enum: - STEP_UP_TRANSACTION_STATE_UNSPECIFIED - STEP_UP_TRANSACTION_STATE_PENDING - STEP_UP_TRANSACTION_STATE_VERIFIED - STEP_UP_TRANSACTION_STATE_ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow targetType: description: The targetType field. enum: - TARGET_TYPE_UNSPECIFIED - TARGET_TYPE_TICKET - TARGET_TYPE_TEST readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow taskId: description: Filter by task ID (only applicable if target_type is TICKET) readOnly: false type: - string - "null" userId: description: Filter by user ID readOnly: false type: - string - "null" title: Search Step Up Transactions Request type: object x-speakeasy-name-override: SearchStepUpTransactionsRequest c1.api.stepup.v1.SearchStepUpTransactionsResponse: description: Response message for searching step-up transactions properties: list: description: List of transactions matching the search criteria items: $ref: '#/components/schemas/c1.api.stepup.v1.StepUpTransaction' readOnly: false type: - array - "null" nextPageToken: description: Token for retrieving the next page of results readOnly: false type: - string - "null" title: Search Step Up Transactions Response type: object x-speakeasy-name-override: SearchStepUpTransactionsResponse c1.api.stepup.v1.StepUpMicrosoftSettings: description: StepUpMicrosoftSettings configures a Microsoft Entra step-up provider using Conditional Access. properties: conditionalAccessIds: description: Authentication context IDs (C1-C99). Required for ACRS mode; ignored for OIDC mode. items: type: string readOnly: false type: - array - "null" tenant: description: Microsoft Entra tenant ID (GUID or domain). Used for response validation. readOnly: false type: - string - "null" validationMode: description: Validation approach. See MicrosoftValidationMode for details on each mode. enum: - MICROSOFT_VALIDATION_MODE_UNSPECIFIED - MICROSOFT_VALIDATION_MODE_ACRS - MICROSOFT_VALIDATION_MODE_OIDC readOnly: false type: string x-speakeasy-unknown-values: allow title: Step Up Microsoft Settings type: object x-speakeasy-name-override: StepUpMicrosoftSettings c1.api.stepup.v1.StepUpOAuth2Settings: description: |- StepUpOAuth2Settings repersents an OAuth2 provider that supports RFC 9470 Common ACR values for OAuth2 providers include: - "urn:okta:loa:1fa:any" (okta) - "urn:okta:loa:1fa:pwd" (okta) - "urn:okta:loa:2fa:any" (okta) - "urn:okta:loa:2fa:any:ifpossible" (okta) - "phr" (okta) - "phrh" (okta) properties: acrValues: description: The acrValues field. items: type: string readOnly: false type: - array - "null" title: Step Up O Auth 2 Settings type: object x-speakeasy-name-override: StepUpOAuth2Settings c1.api.stepup.v1.StepUpProvider: description: | StepUpProvider represents a configured step-up authentication integration (e.g., Duo, custom OIDC). This message contains a oneof named settings. Only a single field of the following list may be set at a time: - oauth2 - microsoft properties: clientId: description: The OAuth2 client ID used to authenticate with the step-up provider. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The human-readable name of the step-up provider. readOnly: false type: - string - "null" enabled: description: Whether the step-up provider is active and available for use. readOnly: false type: - boolean - "null" id: description: The unique identifier of the step-up provider. readOnly: true type: - string - "null" issuerUrl: description: The OIDC issuer URL for the step-up provider. readOnly: false type: - string - "null" lastTestedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" microsoft: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpMicrosoftSettings' - type: "null" oauth2: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpOAuth2Settings' - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Step Up Provider type: object x-speakeasy-name-override: StepUpProvider c1.api.stepup.v1.StepUpProviderRef: description: StepUpProviderRef is a lightweight reference to a step-up authentication provider. properties: id: description: The unique identifier of the step-up provider. readOnly: false type: - string - "null" title: Step Up Provider Ref type: object x-speakeasy-name-override: StepUpProviderRef c1.api.stepup.v1.StepUpTransaction: description: | StepUpTransaction represents a record of a step-up authentication attempt This message contains a oneof named target. Only a single field of the following list may be set at a time: - approveTask - test properties: approveTask: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpTransaction.TargetTask' - type: "null" claims: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" errorMessage: description: Error message if the transaction failed readOnly: true type: - string - "null" expiresAt: oneOf: - format: date-time readOnly: true type: string - type: "null" id: description: Unique identifier for the transaction readOnly: false type: - string - "null" providerId: description: ID of the provider used for this step-up authentication readOnly: false type: - string - "null" state: description: Current state of the transaction enum: - STEP_UP_TRANSACTION_STATE_UNSPECIFIED - STEP_UP_TRANSACTION_STATE_PENDING - STEP_UP_TRANSACTION_STATE_VERIFIED - STEP_UP_TRANSACTION_STATE_ERROR readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow test: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpTransaction.TargetTest' - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: ID of the user who performed the step-up authentication readOnly: false type: - string - "null" title: Step Up Transaction type: object x-speakeasy-name-override: StepUpTransaction c1.api.stepup.v1.StepUpTransaction.TargetTask: description: Target for approving a task properties: policyStepId: description: ID of the policy step requiring step-up authentication readOnly: false type: - string - "null" taskId: description: ID of the task being approved readOnly: false type: - string - "null" title: Target Task type: object x-speakeasy-name-override: TargetTask c1.api.stepup.v1.StepUpTransaction.TargetTest: description: Target for testing a provider title: Target Test type: object x-speakeasy-name-override: TargetTest c1.api.stepup.v1.TestStepUpProviderRequestInput: description: The TestStepUpProviderRequest message. title: Test Step Up Provider Request type: object x-speakeasy-name-override: TestStepUpProviderRequest c1.api.stepup.v1.TestStepUpProviderResponse: description: The TestStepUpProviderResponse message. properties: redirectUrl: description: The URL to redirect the user to for testing the Step Up flow readOnly: false type: - string - "null" title: Test Step Up Provider Response type: object x-speakeasy-name-override: TestStepUpProviderResponse c1.api.stepup.v1.UpdateStepUpProviderRequestInput: description: The UpdateStepUpProviderRequest message. properties: stepUpProvider: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Update Step Up Provider Request type: object x-speakeasy-name-override: UpdateStepUpProviderRequest c1.api.stepup.v1.UpdateStepUpProviderResponse: description: The UpdateStepUpProviderResponse message. properties: stepUpProvider: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' - type: "null" title: Update Step Up Provider Response type: object x-speakeasy-name-override: UpdateStepUpProviderResponse c1.api.stepup.v1.UpdateStepUpProviderSecretRequestInput: description: The UpdateStepUpProviderSecretRequest message. properties: clientSecret: description: The new OAuth2 client secret. Write-only; never returned in responses. readOnly: false type: - string - "null" title: Update Step Up Provider Secret Request type: object x-speakeasy-name-override: UpdateStepUpProviderSecretRequest c1.api.stepup.v1.UpdateStepUpProviderSecretResponse: description: The UpdateStepUpProviderSecretResponse message. properties: stepUpProvider: oneOf: - $ref: '#/components/schemas/c1.api.stepup.v1.StepUpProvider' - type: "null" title: Update Step Up Provider Secret Response type: object x-speakeasy-name-override: UpdateStepUpProviderSecretResponse c1.api.systemlog.v1.ExportServiceCreateRequest: description: | The ExportServiceCreateRequest message is used to create a new system log exporter. This message contains a oneof named export_to. Only a single field of the following list may be set at a time: - datasource properties: datasource: oneOf: - $ref: '#/components/schemas/c1.api.systemlog.v1.ExportToDatasource' - type: "null" displayName: description: The display name of the new system log exporter. readOnly: false type: - string - "null" title: Export Service Create Request type: object x-speakeasy-name-override: ExportServiceCreateRequest c1.api.systemlog.v1.ExportServiceCreateResponse: description: The ExportServiceCreateResponse message. properties: exporter: oneOf: - $ref: '#/components/schemas/c1.api.systemlog.v1.Exporter' - type: "null" title: Export Service Create Response type: object x-speakeasy-name-override: ExportServiceCreateResponse c1.api.systemlog.v1.ExportServiceDeleteRequestInput: description: The ExportServiceDeleteRequest message. title: Export Service Delete Request type: object x-speakeasy-name-override: ExportServiceDeleteRequest c1.api.systemlog.v1.ExportServiceDeleteResponse: description: The ExportServiceDeleteResponse message. title: Export Service Delete Response type: object x-speakeasy-name-override: ExportServiceDeleteResponse c1.api.systemlog.v1.ExportServiceGetResponse: description: The ExportServiceGetResponse message contains the system log exporter object. properties: exporter: oneOf: - $ref: '#/components/schemas/c1.api.systemlog.v1.Exporter' - type: "null" title: Export Service Get Response type: object x-speakeasy-name-override: ExportServiceGetResponse c1.api.systemlog.v1.ExportServiceListEventsRequestInput: description: ExportServiceListEventsRequest is the request for listing audit events within a specific export. properties: pageSize: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" title: Export Service List Events Request type: object x-speakeasy-name-override: ExportServiceListEventsRequest c1.api.systemlog.v1.ExportServiceListEventsResponse: description: ExportServiceListEventsResponse is the response containing audit events for an export. properties: list: description: List contains an array of JSON OCSF events. items: additionalProperties: true readOnly: false type: object readOnly: false type: - array - "null" nextPageToken: description: The token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: Export Service List Events Response type: object x-speakeasy-name-override: ExportServiceListEventsResponse c1.api.systemlog.v1.ExportServiceListResponse: description: The ExportServiceListResponse message. properties: list: description: The list of results containing up to X results, where X is the page size defined in the request items: $ref: '#/components/schemas/c1.api.systemlog.v1.Exporter' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Export Service List Response type: object x-speakeasy-name-override: ExportServiceListResponse c1.api.systemlog.v1.ExportServiceUpdateRequestInput: description: The ExportServiceUpdateRequest message. properties: exporter: oneOf: - $ref: '#/components/schemas/c1.api.systemlog.v1.Exporter' - type: "null" updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" title: Export Service Update Request type: object x-speakeasy-name-override: ExportServiceUpdateRequest c1.api.systemlog.v1.ExportServiceUpdateResponse: description: The ExportServiceUpdateResponse message. properties: exporter: oneOf: - $ref: '#/components/schemas/c1.api.systemlog.v1.Exporter' - type: "null" title: Export Service Update Response type: object x-speakeasy-name-override: ExportServiceUpdateResponse c1.api.systemlog.v1.ExportToDatasource: description: The ExportToDatasource message. properties: datasourceId: description: The datasourceId field. readOnly: false type: - string - "null" format: description: The format field. enum: - EXPORT_FORMAT_UNSPECIFIED - EXPORT_FORMAT_OCSF_JSON_ZSTD - EXPORT_FORMAT_OCSF_JSON_GZIP readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow prefix: description: The prefix field. readOnly: false type: - string - "null" title: Export To Datasource type: object x-speakeasy-name-override: ExportToDatasource c1.api.systemlog.v1.Exporter: description: | The Exporter message. This message contains a oneof named export_to. Only a single field of the following list may be set at a time: - datasource properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" datasource: oneOf: - $ref: '#/components/schemas/c1.api.systemlog.v1.ExportToDatasource' - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" displayName: description: The displayName field. readOnly: false type: - string - "null" exportId: description: The exportId field. readOnly: true type: - string - "null" state: description: The state field. enum: - EXPORT_STATE_UNSPECIFIED - EXPORT_STATE_EXPORTING - EXPORT_STATE_WAITING - EXPORT_STATE_ERROR readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" watermarkEventId: description: we've synchorized this far readOnly: true type: - string - "null" title: Exporter type: object x-speakeasy-name-override: Exporter c1.api.systemlog.v1.ExporterRef: description: The ExporterRef message. properties: exportId: description: The exportId field. readOnly: false type: - string - "null" title: Exporter Ref type: object x-speakeasy-name-override: ExporterRef c1.api.systemlog.v1.ExportsSearchServiceSearchRequest: description: ExportsSearchServiceSearchRequest is the request for searching system log exports. properties: displayName: description: Search for system log exporters with a case insensitive match on the display name. readOnly: false type: - string - "null" pageSize: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: The query field. readOnly: false type: - string - "null" refs: description: The refs field. items: $ref: '#/components/schemas/c1.api.systemlog.v1.ExporterRef' readOnly: false type: - array - "null" title: Exports Search Service Search Request type: object x-speakeasy-name-override: ExportsSearchServiceSearchRequest c1.api.systemlog.v1.ExportsSearchServiceSearchResponse: description: ExportsSearchServiceSearchResponse is the response for searching system log exports. properties: list: description: The list of system log exports matching the search criteria. items: $ref: '#/components/schemas/c1.api.systemlog.v1.Exporter' readOnly: false type: - array - "null" nextPageToken: description: The token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: Exports Search Service Search Response type: object x-speakeasy-name-override: ExportsSearchServiceSearchResponse c1.api.systemlog.v1.SystemLogServiceListEventsRequest: description: The SystemLogServiceListEventsRequest message. properties: pageSize: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" since: oneOf: - format: date-time readOnly: false type: string - type: "null" sinceEventUid: description: The sinceEventUid field. readOnly: false type: - string - "null" sortDirection: description: The sortDirection field. enum: - SORT_DIRECTION_UNSPECIFIED - SORT_DIRECTION_ASC - SORT_DIRECTION_DESC readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow until: oneOf: - format: date-time readOnly: false type: string - type: "null" untilEventUid: description: The untilEventUid field. readOnly: false type: string title: System Log Service List Events Request type: object x-speakeasy-name-override: SystemLogServiceListEventsRequest c1.api.systemlog.v1.SystemLogServiceListEventsResponse: description: The SystemLogServiceListEventsResponse message. properties: list: description: List contains an array of JSON OCSF events. items: additionalProperties: true readOnly: false type: object readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken field. readOnly: false type: - string - "null" title: System Log Service List Events Response type: object x-speakeasy-name-override: SystemLogServiceListEventsResponse c1.api.task.v1.ActionInstance: description: | ActionInstance is the API mirror of the internal immutable snapshot of an Action captured on a TaskTypeAction at ticket-creation time. This message contains a oneof named target_ref. Only a single field of the following list may be set at a time: - connectorActionRef properties: connectorActionRef: $ref: '#/components/schemas/c1.api.task.v1.ConnectorActionRef' displayName: description: |- Display label at ticket-creation time. Same value as TaskTypeAction.display_name; repeated here so clients that walk the instance see a self-contained view. readOnly: true type: string title: Action Instance type: object x-speakeasy-name-override: TaskActionInstance c1.api.task.v1.ConnectorActionRef: description: |- ConnectorActionRef describes dispatch through a connector's built-in GrantManagerService Grant / Revoke RPC — i.e. the default connector operation, used for synthesized tickets like scope-role requests. nullable: true properties: appId: description: The app whose connector handles the operation. readOnly: true type: string connectorId: description: The connector that will execute the Grant / Revoke. readOnly: true type: string operation: description: Which connector RPC this dispatches to. enum: - OPERATION_UNSPECIFIED - OPERATION_GRANT readOnly: true type: string x-speakeasy-unknown-values: allow title: Connector Action Ref type: object x-speakeasy-name-override: ConnectorActionRef c1.api.task.v1.ExternalRef: description: A reference to an external source. This value is unused currently, but may be brought back. properties: externalRefSource: description: The source of the external reference. enum: - UNSPECIFIED - JIRA readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow name: description: The name of the external reference. readOnly: true type: - string - "null" url: description: The URL to the external reference. readOnly: true type: - string - "null" title: External Ref type: object x-speakeasy-name-override: ExternalRef c1.api.task.v1.ScopeRole: description: |- Scope-role variant of TaskTypeAction.target_object. The UI uses the embedded identifiers to build links and title strings without a separate Action fetch. nullable: true properties: appId: description: The IaaS/sparse-ACL app the (scope, role) pair lives on. readOnly: true type: string grantDuration: format: duration readOnly: true type: string roleResourceId: description: The roleResourceId field. readOnly: true type: string roleResourceTypeId: description: The roleResourceTypeId field. readOnly: true type: string scopeResourceId: description: The scopeResourceId field. readOnly: true type: string scopeResourceTypeId: description: The scopeResourceTypeId field. readOnly: true type: string title: Scope Role type: object x-speakeasy-name-override: ScopeRole c1.api.task.v1.Task: description: A fully-fleged task object. Includes its policy, references to external apps, its type, its processing history, and more. properties: actions: description: The actions that can be performed on the task by the current user. items: enum: - TASK_ACTION_TYPE_UNSPECIFIED - TASK_ACTION_TYPE_CLOSE - TASK_ACTION_TYPE_APPROVE - TASK_ACTION_TYPE_DENY - TASK_ACTION_TYPE_COMMENT - TASK_ACTION_TYPE_DELETE - TASK_ACTION_TYPE_REASSIGN - TASK_ACTION_TYPE_RESTART - TASK_ACTION_TYPE_SEND_REMINDER - TASK_ACTION_TYPE_PROVISION_COMPLETE - TASK_ACTION_TYPE_PROVISION_CANCELLED - TASK_ACTION_TYPE_PROVISION_ERRORED - TASK_ACTION_TYPE_ROLLBACK_SKIPPED - TASK_ACTION_TYPE_PROVISION_APP_USER_TARGET_CREATED - TASK_ACTION_TYPE_HARD_RESET - TASK_ACTION_TYPE_ESCALATE_TO_EMERGENCY_ACCESS - TASK_ACTION_TYPE_CHANGE_POLICY - TASK_ACTION_TYPE_RECALCULATE_DENIAL_FROM_BASE_POLICY_DECISIONS - TASK_ACTION_TYPE_SET_INSIGHTS_AND_RECOMMENDATION - TASK_ACTION_TYPE_SET_ANALYSIS_ID - TASK_ACTION_TYPE_RECALCULATE_APPROVERS_LIST - TASK_ACTION_TYPE_PROCESS_NOW - TASK_ACTION_TYPE_APPROVE_WITH_STEP_UP - TASK_ACTION_TYPE_SKIP_STEP - TASK_ACTION_TYPE_ROLLBACK_CANCELLED - TASK_ACTION_TYPE_UPDATE_REQUEST_DATA - TASK_ACTION_TYPE_UPDATE_GRANT_DURATION type: string x-speakeasy-unknown-values: allow readOnly: true type: - array - "null" analysisId: description: The ID of the analysis object associated with this task created by an analysis workflow if the analysis feature is enabled for your tenant. readOnly: true type: - string - "null" annotations: description: An array of `google.protobuf.Any` annotations with various base64-encoded data. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" approverIds: description: An array of IDs belonging to Identity Users that have approved or denied any step in this task. items: type: string nullable: true readOnly: true type: array commentCount: description: The count of comments. format: int32 readOnly: true type: - integer - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" createdByUserId: description: The ID of the user that is the creator of this task. This may not always match the userId field. readOnly: true type: - string - "null" data: oneOf: - additionalProperties: true readOnly: true type: object - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: The description of the task. This is also known as justification. readOnly: true type: - string - "null" displayName: description: The display name of the task. readOnly: true type: - string - "null" emergencyAccess: description: A field indicating whether this task was created using an emergency access flow, or escalated to emergency access. On task creation, it will also use the app entitlement's emergency policy when possible. readOnly: true type: - boolean - "null" externalRefs: description: An array of external references to the task. Historically that has been items like Jira task IDs. This is currently unused, but may come back in the future for integrations. items: $ref: '#/components/schemas/c1.api.task.v1.ExternalRef' readOnly: true type: - array - "null" form: oneOf: - $ref: '#/components/schemas/c1.api.form.v1.Form' - type: "null" id: description: The ID of the task. readOnly: true type: - string - "null" insightIds: description: The insightIds field. items: type: string readOnly: false type: - array - "null" numericId: description: A human-usable numeric ID of a task which can be included in place of the fully qualified task id in path parmeters (but not search queries). format: int64 readOnly: true type: - string - "null" origin: description: The origin field. enum: - TASK_ORIGIN_UNSPECIFIED - TASK_ORIGIN_PROFILE_MEMBERSHIP_AUTOMATION - TASK_ORIGIN_SLACK - TASK_ORIGIN_API - TASK_ORIGIN_JIRA - TASK_ORIGIN_COPILOT - TASK_ORIGIN_WEBAPP - TASK_ORIGIN_TIME_REVOKE - TASK_ORIGIN_NON_USAGE_REVOKE - TASK_ORIGIN_PROFILE_MEMBERSHIP_MANUAL - TASK_ORIGIN_PROFILE_MEMBERSHIP - TASK_ORIGIN_AUTOMATION - TASK_ORIGIN_ACCESS_REVIEW - TASK_ORIGIN_CASCADE_DELETE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow policy: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.PolicyInstance' - type: "null" policyGenerationId: description: The policy generation id refers to the current policy's generation ID. This is changed when the policy is changed on a task. readOnly: true type: - string - "null" processing: description: The processing state of a task as defined by the `processing_enum` enum: - TASK_PROCESSING_TYPE_UNSPECIFIED - TASK_PROCESSING_TYPE_PROCESSING - TASK_PROCESSING_TYPE_WAITING - TASK_PROCESSING_TYPE_DONE readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow recommendation: description: The recommendation field. enum: - INSIGHT_RECOMMENDATION_UNSPECIFIED - INSIGHT_RECOMMENDATION_APPROVE - INSIGHT_RECOMMENDATION_DENY - INSIGHT_RECOMMENDATION_REVIEW readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow revocationTargets: description: |- Ancestor entitlements that will also be revoked when this revoke task is approved. Populated at ticket creation time for inherited grant revocations. items: $ref: '#/components/schemas/c1.api.task.v1.TaskRevocationTarget' nullable: true readOnly: true type: array state: description: The current state of the task as defined by the `state_enum` enum: - TASK_STATE_UNSPECIFIED - TASK_STATE_OPEN - TASK_STATE_CLOSED readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow stepApproverIds: description: An array of IDs belonging to Identity Users that are allowed to review this step in a task. items: type: string readOnly: true type: - array - "null" type: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskType' - type: "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The ID of the user that is the target of this task. This may be empty if we're targeting a specific app user that has no known identity user. readOnly: true type: - string - "null" title: Task type: object x-speakeasy-name-override: Task c1.api.task.v1.TaskAction: description: Represents a single action that was performed on a task. properties: actionType: description: The type of action that was performed. enum: - TASK_ACTION_TYPE_UNSPECIFIED - TASK_ACTION_TYPE_CLOSE - TASK_ACTION_TYPE_APPROVE - TASK_ACTION_TYPE_DENY - TASK_ACTION_TYPE_COMMENT - TASK_ACTION_TYPE_DELETE - TASK_ACTION_TYPE_REASSIGN - TASK_ACTION_TYPE_RESTART - TASK_ACTION_TYPE_SEND_REMINDER - TASK_ACTION_TYPE_PROVISION_COMPLETE - TASK_ACTION_TYPE_PROVISION_CANCELLED - TASK_ACTION_TYPE_PROVISION_ERRORED - TASK_ACTION_TYPE_ROLLBACK_SKIPPED - TASK_ACTION_TYPE_PROVISION_APP_USER_TARGET_CREATED - TASK_ACTION_TYPE_HARD_RESET - TASK_ACTION_TYPE_ESCALATE_TO_EMERGENCY_ACCESS - TASK_ACTION_TYPE_CHANGE_POLICY - TASK_ACTION_TYPE_RECALCULATE_DENIAL_FROM_BASE_POLICY_DECISIONS - TASK_ACTION_TYPE_SET_INSIGHTS_AND_RECOMMENDATION - TASK_ACTION_TYPE_SET_ANALYSIS_ID - TASK_ACTION_TYPE_RECALCULATE_APPROVERS_LIST - TASK_ACTION_TYPE_PROCESS_NOW - TASK_ACTION_TYPE_APPROVE_WITH_STEP_UP - TASK_ACTION_TYPE_SKIP_STEP - TASK_ACTION_TYPE_ROLLBACK_CANCELLED - TASK_ACTION_TYPE_UPDATE_REQUEST_DATA - TASK_ACTION_TYPE_UPDATE_GRANT_DURATION readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow bulkActionId: description: The ID of the bulk action this action belongs to, if it was part of a bulk operation. readOnly: false type: - string - "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" id: description: The unique ID of this action. readOnly: false type: - string - "null" policyStepId: description: The ID of the policy step this action was performed on. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" userId: description: The ID of the user who performed the action. readOnly: false type: - string - "null" title: Task Action type: object x-speakeasy-name-override: SubmittedTaskAction c1.api.task.v1.TaskActionsServiceApproveRequestInput: description: The TaskActionsServiceApproveRequest object lets you approve a task. properties: comment: description: The comment attached to the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" policyStepId: description: The ID of the policy step on the given task to approve. readOnly: false type: string required: - policyStepId title: Task Actions Service Approve Request type: object x-speakeasy-name-override: TaskActionsServiceApproveRequest c1.api.task.v1.TaskActionsServiceApproveResponse: description: The TaskActionsServiceApproveResponse returns a task view with paths indicating the location of expanded items in the array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task approve action created by this request. readOnly: true type: - string - "null" title: Task Actions Service Approve Response type: object x-speakeasy-name-override: TaskActionsServiceApproveResponse c1.api.task.v1.TaskActionsServiceApproveWithStepUpRequestInput: description: TaskActionsServiceApproveWithStepUpRequest is used to approve a task with step-up authentication properties: comment: description: The comment attached to the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" policyStepId: description: The ID of the policy step on the given task to approve. readOnly: false type: string stepUpTransactionId: description: |- The step-up transaction ID that was verified. If unset, the response will include a redirect URL to complete the step-up authentication. readOnly: false type: string required: - policyStepId - stepUpTransactionId title: Task Actions Service Approve With Step Up Request type: object x-speakeasy-name-override: TaskActionsServiceApproveWithStepUpRequest c1.api.task.v1.TaskActionsServiceApproveWithStepUpResponse: description: TaskActionsServiceApproveWithStepUpResponse is the response for approving a task with step-up authentication properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" redirectUrl: description: The redirect URL the client must visit to complete the step-up authentication. readOnly: false type: - string - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task approve action created by this request. readOnly: true type: - string - "null" title: Task Actions Service Approve With Step Up Response type: object x-speakeasy-name-override: TaskActionsServiceApproveWithStepUpResponse c1.api.task.v1.TaskActionsServiceCloseRequestInput: description: The TaskActionsServiceCloseRequest object lets you close or cancel a task. properties: comment: description: An optional comment attached to the close action. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" title: Task Actions Service Close Request type: object x-speakeasy-name-override: TaskActionsServiceCloseRequest c1.api.task.v1.TaskActionsServiceCloseResponse: description: The TaskActionsServiceCloseResponse returns a task view with paths indicating the location of expanded items in the array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskActionId: description: The ID of the task close action created by this request. readOnly: true type: - string - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Actions Service Close Response type: object x-speakeasy-name-override: TaskActionsServiceCloseResponse c1.api.task.v1.TaskActionsServiceCommentRequestInput: description: The TaskActionsServiceCommentRequest object lets you create a new comment on a task. properties: comment: description: The comment to be posted to the task. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" title: Task Actions Service Comment Request type: object x-speakeasy-name-override: TaskActionsServiceCommentRequest c1.api.task.v1.TaskActionsServiceCommentResponse: description: Task actions service comment response returns the task view inluding the expanded array of items that are indicated by the expand mask on the request. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Actions Service Comment Response type: object x-speakeasy-name-override: TaskActionsServiceCommentResponse c1.api.task.v1.TaskActionsServiceDenyRequestInput: description: The TaskActionsServiceDenyRequest object lets you deny a task. properties: comment: description: The comment attached to the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" policyStepId: description: The ID of the current policy step. This is the step you want to deny. readOnly: false type: - string - "null" title: Task Actions Service Deny Request type: object x-speakeasy-name-override: TaskActionsServiceDenyRequest c1.api.task.v1.TaskActionsServiceDenyResponse: description: The TaskActionsServiceDenyResponse returns a task view with paths indicating the location of expanded items in the array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task deny action created by this request. readOnly: true type: - string - "null" title: Task Actions Service Deny Response type: object x-speakeasy-name-override: TaskActionsServiceDenyResponse c1.api.task.v1.TaskActionsServiceEscalateToEmergencyAccessRequestInput: description: The TaskActionsServiceEscalateToEmergencyAccessRequest object lets you escalate a task to the emergency access workflow. properties: comment: description: An optional comment attached to the escalation. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" policyStepId: description: The ID of the current policy step being escalated from. readOnly: false type: - string - "null" title: Task Actions Service Escalate To Emergency Access Request type: object x-speakeasy-name-override: TaskActionsServiceEscalateToEmergencyAccessRequest c1.api.task.v1.TaskActionsServiceHardResetRequestInput: description: The TaskActionsServiceHardResetRequest object lets you reset a task and recalculate its policy. properties: comment: description: The comment attached to the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" title: Task Actions Service Hard Reset Request type: object x-speakeasy-name-override: TaskActionsServiceHardResetRequest c1.api.task.v1.TaskActionsServiceHardResetResponse: description: The TaskActionsServiceHardResetResponse returns the updated task after a hard reset. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task reset action created by this request. readOnly: false type: - string - "null" title: Task Actions Service Hard Reset Response type: object x-speakeasy-name-override: TaskActionsServiceHardResetResponse c1.api.task.v1.TaskActionsServiceProcessNowRequestInput: description: The TaskActionsServiceProcessNowRequest object lets you trigger processing of a task immediately. properties: expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" title: Task Actions Service Process Now Request type: object x-speakeasy-name-override: TaskActionsServiceProcessNowRequest c1.api.task.v1.TaskActionsServiceProcessNowResponse: description: The TaskActionsServiceProcessNowResponse returns the task view after triggering immediate processing. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Actions Service Process Now Response type: object x-speakeasy-name-override: TaskActionsServiceProcessNowResponse c1.api.task.v1.TaskActionsServiceReassignRequestInput: description: The TaskActionsServiceReassignRequest object lets you reassign a task's current policy step to different users. properties: comment: description: An optional comment attached to the reassignment. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" newStepUserIds: description: The IDs of the users to reassign the current policy step to. Must be from the allowed reassignees list. items: type: string readOnly: false type: - array - "null" policyStepId: description: The ID of the current policy step to reassign. Must match the task's active step. readOnly: false type: - string - "null" title: Task Actions Service Reassign Request type: object x-speakeasy-name-override: TaskActionsServiceReassignRequest c1.api.task.v1.TaskActionsServiceReassignResponse: description: The TaskActionsServiceReassignResponse returns a task view with paths indicating the location of expanded items in the array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task reassign action created by this request. readOnly: true type: - string - "null" title: Task Actions Service Reassign Response type: object x-speakeasy-name-override: TaskActionsServiceReassignResponse c1.api.task.v1.TaskActionsServiceRestartRequestInput: description: The TaskActionsServiceRestartRequest object lets you restart a task. properties: comment: description: The comment attached to the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" policyStepId: description: Deprecated. This field is accepted but does not affect behavior. readOnly: false type: - string - "null" title: Task Actions Service Restart Request type: object x-speakeasy-name-override: TaskActionsServiceRestartRequest c1.api.task.v1.TaskActionsServiceRestartResponse: description: The TaskActionsServiceRestartResponse returns the updated task after restarting. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task restart action created by this request. readOnly: false type: - string - "null" title: Task Actions Service Restart Response type: object x-speakeasy-name-override: TaskActionsServiceRestartResponse c1.api.task.v1.TaskActionsServiceSkipStepRequestInput: description: The TaskActionsServiceSkipStepRequest object lets you skip a policy step in a task. properties: comment: description: The comment attached to the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" policyStepId: description: The ID of the policy step to skip. readOnly: false type: string required: - policyStepId title: Task Actions Service Skip Step Request type: object x-speakeasy-name-override: TaskActionsServiceSkipStepRequest c1.api.task.v1.TaskActionsServiceUpdateGrantDurationRequestInput: description: The TaskActionsServiceUpdateGrantDurationRequest object lets you change the grant duration on a grant task. properties: duration: format: duration readOnly: false type: string expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" required: - duration title: Task Actions Service Update Grant Duration Request type: object x-speakeasy-name-override: TaskActionsServiceUpdateGrantDurationRequest c1.api.task.v1.TaskActionsServiceUpdateRequestDataRequestInput: description: The TaskActionsServiceUpdateRequestDataRequest object lets you submit form data for a task that is in a form policy step. properties: data: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" title: Task Actions Service Update Request Data Request type: object x-speakeasy-name-override: TaskActionsServiceUpdateRequestDataRequest c1.api.task.v1.TaskAuditAccessRequestOutcome: description: The TaskAuditAccessRequestOutcome message. properties: outcome: description: The outcome field. enum: - ACCESS_REQUEST_OUTCOME_UNSPECIFIED - ACCESS_REQUEST_OUTCOME_APPROVED - ACCESS_REQUEST_OUTCOME_DENIED - ACCESS_REQUEST_OUTCOME_ERROR - ACCESS_REQUEST_OUTCOME_CANCELLED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Task Audit Access Request Outcome type: object x-speakeasy-name-override: TaskAuditAccessRequestOutcome c1.api.task.v1.TaskAuditAccountLifecycleActionCreated: description: The TaskAuditAccountLifecycleActionCreated message. properties: batonActionDisplayName: description: The batonActionDisplayName field. readOnly: false type: - string - "null" batonActionInvocationId: description: The batonActionInvocationId field. readOnly: false type: - string - "null" batonActionName: description: The batonActionName field. readOnly: false type: - string - "null" batonAppId: description: The batonAppId field. readOnly: false type: - string - "null" batonConnectorId: description: The batonConnectorId field. readOnly: false type: - string - "null" title: Task Audit Account Lifecycle Action Created type: object x-speakeasy-name-override: TaskAuditAccountLifecycleActionCreated c1.api.task.v1.TaskAuditAccountLifecycleActionFailed: description: The TaskAuditAccountLifecycleActionFailed message. properties: batonActionDisplayName: description: The batonActionDisplayName field. readOnly: false type: - string - "null" batonActionInvocationId: description: The batonActionInvocationId field. readOnly: false type: - string - "null" batonActionName: description: The batonActionName field. readOnly: false type: - string - "null" batonAppId: description: The batonAppId field. readOnly: false type: - string - "null" batonConnectorId: description: The batonConnectorId field. readOnly: false type: - string - "null" error: description: The error field. readOnly: false type: - string - "null" title: Task Audit Account Lifecycle Action Failed type: object x-speakeasy-name-override: TaskAuditAccountLifecycleActionFailed c1.api.task.v1.TaskAuditActionInstanceCreated: description: The TaskAuditActionInstanceCreated message. nullable: true properties: instance: $ref: '#/components/schemas/c1.api.policy.v1.ActionInstance' title: Task Audit Action Instance Created type: object x-speakeasy-name-override: TaskAuditActionInstanceCreated c1.api.task.v1.TaskAuditActionInstanceFailed: description: The TaskAuditActionInstanceFailed message. nullable: true properties: instance: $ref: '#/components/schemas/c1.api.policy.v1.ActionInstance' title: Task Audit Action Instance Failed type: object x-speakeasy-name-override: TaskAuditActionInstanceFailed c1.api.task.v1.TaskAuditActionInstanceSucceeded: description: The TaskAuditActionInstanceSucceeded message. nullable: true properties: instance: $ref: '#/components/schemas/c1.api.policy.v1.ActionInstance' title: Task Audit Action Instance Succeeded type: object x-speakeasy-name-override: TaskAuditActionInstanceSucceeded c1.api.task.v1.TaskAuditActionSubmitted: description: The TaskAuditActionSubmitted message. properties: action: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAction' - type: "null" title: Task Audit Action Submitted type: object x-speakeasy-name-override: TaskAuditActionSubmitted c1.api.task.v1.TaskAuditApprovalAutoAcceptedByPolicy: description: The TaskAuditApprovalAutoAcceptedByPolicy message. title: Task Audit Approval Auto Accepted By Policy type: object x-speakeasy-name-override: TaskAuditApprovalAutoAcceptedByPolicy c1.api.task.v1.TaskAuditApprovalAutoRejectedByPolicy: description: The TaskAuditApprovalAutoRejectedByPolicy message. title: Task Audit Approval Auto Rejected By Policy type: object x-speakeasy-name-override: TaskAuditApprovalAutoRejectedByPolicy c1.api.task.v1.TaskAuditApprovalHappenedAutomatically: description: The TaskAuditApprovalHappenedAutomatically message. title: Task Audit Approval Happened Automatically type: object x-speakeasy-name-override: TaskAuditApprovalHappenedAutomatically c1.api.task.v1.TaskAuditApprovalInstanceChange: description: The TaskAuditApprovalInstanceChange message. properties: instance: oneOf: - $ref: '#/components/schemas/c1.api.policy.v1.ApprovalInstance' - type: "null" title: Task Audit Approval Instance Change type: object x-speakeasy-name-override: TaskAuditApprovalInstanceChange c1.api.task.v1.TaskAuditBulkActionError: description: The TaskAuditBulkActionError message. properties: error: description: The error field. readOnly: false type: - string - "null" title: Task Audit Bulk Action Error type: object x-speakeasy-name-override: TaskAuditBulkActionError c1.api.task.v1.TaskAuditCertifyOutcome: description: The TaskAuditCertifyOutcome message. properties: outcome: description: The outcome field. enum: - CERTIFY_OUTCOME_UNSPECIFIED - CERTIFY_OUTCOME_CERTIFIED - CERTIFY_OUTCOME_DECERTIFIED - CERTIFY_OUTCOME_ERROR - CERTIFY_OUTCOME_CANCELLED - CERTIFY_OUTCOME_WAIT_TIMED_OUT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Task Audit Certify Outcome type: object x-speakeasy-name-override: TaskAuditCertifyOutcome c1.api.task.v1.TaskAuditComment: description: The TaskAuditComment message. properties: comment: description: The comment field. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" updatedBy: description: The updatedBy field. readOnly: false type: - string - "null" title: Task Audit Comment type: object x-speakeasy-name-override: TaskAuditComment c1.api.task.v1.TaskAuditConditionalPolicyExecutionResult: description: The TaskAuditConditionalPolicyExecutionResult message. properties: condition: description: The condition field. readOnly: false type: - string - "null" conditionMatched: description: The conditionMatched field. readOnly: false type: - boolean - "null" defaultCondition: description: The defaultCondition field. readOnly: false type: - boolean - "null" error: description: The error field. readOnly: false type: - string - "null" policyKey: description: The policyKey field. readOnly: false type: - string - "null" title: Task Audit Conditional Policy Execution Result type: object x-speakeasy-name-override: TaskAuditConditionalPolicyExecutionResult c1.api.task.v1.TaskAuditConnectorActionResult: description: | The TaskAuditConnectorActionResult message. This message contains a oneof named result. Only a single field of the following list may be set at a time: - success - error - cancelled - pending properties: appEntitlementId: description: The appEntitlementId field. readOnly: false type: - string - "null" appId: description: The appId field. readOnly: false type: - string - "null" cancelled: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.TaskAuditCancelledResult' - type: "null" connectorActionId: description: The connectorActionId field. readOnly: false type: - string - "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" error: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.TaskAuditErrorResult' - type: "null" pending: $ref: '#/components/schemas/c1.api.app.v1.TaskAuditPendingResult' success: oneOf: - $ref: '#/components/schemas/c1.api.app.v1.TaskAuditSuccessResult' - type: "null" title: Task Audit Connector Action Result type: object x-speakeasy-name-override: TaskAuditConnectorActionResult c1.api.task.v1.TaskAuditCreatedReplacementExtensionGrantTask: description: |- TaskAuditCreatedReplacementExtensionGrantTask is used when a replacement extension grant task is created (e.g. when an extension grant task is cancelled due to app user deletion). nullable: true properties: newTaskId: description: The ID of the newly created replacement task readOnly: false type: string newTaskNumericId: description: The numeric ID of the newly created replacement task (for display) format: int64 readOnly: false type: string title: Task Audit Created Replacement Extension Grant Task type: object x-speakeasy-name-override: TaskAuditCreatedReplacementExtensionGrantTask c1.api.task.v1.TaskAuditEscalateToEmergencyAccess: description: The TaskAuditEscalateToEmergencyAccess message. properties: oldPolicyId: description: The oldPolicyId field. readOnly: false type: - string - "null" oldPolicyStepId: description: The oldPolicyStepId field. readOnly: false type: - string - "null" title: Task Audit Escalate To Emergency Access type: object x-speakeasy-name-override: TaskAuditEscalateToEmergencyAccess c1.api.task.v1.TaskAuditExpressionPolicyStepError: description: The TaskAuditExpressionPolicyStepError message. properties: error: description: The error field. readOnly: false type: - string - "null" title: Task Audit Expression Policy Step Error type: object x-speakeasy-name-override: TaskAuditExpressionPolicyStepError c1.api.task.v1.TaskAuditExternalTicketCreated: description: The TaskAuditExternalTicketCreated message. properties: appId: description: The appId field. readOnly: false type: - string - "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" externalTicketId: description: The externalTicketId field. readOnly: false type: - string - "null" externalTicketProvisionerConfigId: description: The externalTicketProvisionerConfigId field. readOnly: false type: - string - "null" externalTicketProvisionerConfigName: description: The externalTicketProvisionerConfigName field. readOnly: false type: - string - "null" externalTicketUrl: description: The externalTicketUrl field. readOnly: false type: - string - "null" title: Task Audit External Ticket Created type: object x-speakeasy-name-override: TaskAuditExternalTicketCreated c1.api.task.v1.TaskAuditExternalTicketError: description: The TaskAuditExternalTicketError message. properties: errorMessage: description: The errorMessage field. readOnly: false type: - string - "null" title: Task Audit External Ticket Error type: object x-speakeasy-name-override: TaskAuditExternalTicketError c1.api.task.v1.TaskAuditExternalTicketProvisionStepResolved: description: The TaskAuditExternalTicketProvisionStepResolved message. properties: appId: description: The appId field. readOnly: false type: - string - "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" externalTicketId: description: The externalTicketId field. readOnly: false type: - string - "null" externalTicketProvisionerConfigId: description: The externalTicketProvisionerConfigId field. readOnly: false type: - string - "null" externalTicketUrl: description: The externalTicketUrl field. readOnly: false type: - string - "null" title: Task Audit External Ticket Provision Step Resolved type: object x-speakeasy-name-override: TaskAuditExternalTicketProvisionStepResolved c1.api.task.v1.TaskAuditExternalTicketTriggered: description: The TaskAuditExternalTicketTriggered message. properties: appId: description: The appId field. readOnly: false type: - string - "null" connectorId: description: The connectorId field. readOnly: false type: - string - "null" externalTicketId: description: The externalTicketId field. readOnly: false type: - string - "null" externalTicketProvisionerConfigId: description: The externalTicketProvisionerConfigId field. readOnly: false type: - string - "null" externalTicketProvisionerConfigName: description: The externalTicketProvisionerConfigName field. readOnly: false type: - string - "null" title: Task Audit External Ticket Triggered type: object x-speakeasy-name-override: TaskAuditExternalTicketTriggered c1.api.task.v1.TaskAuditFinishedConnectorActions: description: The TaskAuditFinishedConnectorActions message. properties: policyStepId: description: The policyStepId field. readOnly: false type: - string - "null" title: Task Audit Finished Connector Actions type: object x-speakeasy-name-override: TaskAuditFinishedConnectorActions c1.api.task.v1.TaskAuditFormInstanceChange: description: The TaskAuditFormInstanceChange message. properties: isValid: description: The isValid field. readOnly: false type: - boolean - "null" title: Task Audit Form Instance Change type: object x-speakeasy-name-override: TaskAuditFormInstanceChange c1.api.task.v1.TaskAuditGrantDurationUpdated: description: The TaskAuditGrantDurationUpdated message. properties: duration: oneOf: - format: duration readOnly: false type: string - type: "null" title: Task Audit Grant Duration Updated type: object x-speakeasy-name-override: TaskAuditGrantDurationUpdated c1.api.task.v1.TaskAuditGrantOutcome: description: The TaskAuditGrantOutcome message. properties: outcome: description: The outcome field. enum: - GRANT_OUTCOME_UNSPECIFIED - GRANT_OUTCOME_GRANTED - GRANT_OUTCOME_DENIED - GRANT_OUTCOME_ERROR - GRANT_OUTCOME_CANCELLED - GRANT_OUTCOME_WAIT_TIMED_OUT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Task Audit Grant Outcome type: object x-speakeasy-name-override: TaskAuditGrantOutcome c1.api.task.v1.TaskAuditHardReset: description: The TaskAuditHardReset message. properties: oldPolicyStepId: description: The oldPolicyStepId field. readOnly: false type: - string - "null" title: Task Audit Hard Reset type: object x-speakeasy-name-override: TaskAuditHardReset c1.api.task.v1.TaskAuditListRequest: description: The TaskAuditListRequest message. properties: pageSize: description: The maximum number of audit events to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: A pagination token from a previous response to retrieve the next page. readOnly: false type: - string - "null" refs: description: References to specific audit events to retrieve. If provided, only these events are returned. items: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditViewRef' readOnly: false type: - array - "null" taskId: description: The ID of the task to list audit events for. readOnly: false type: - string - "null" title: Task Audit List Request type: object x-speakeasy-name-override: TaskAuditListRequest c1.api.task.v1.TaskAuditListResponse: description: The TaskAuditListResponse message. properties: list: description: The list of audit events for the task. items: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditView' readOnly: false type: - array - "null" nextPageToken: description: A pagination token to retrieve the next page of results. readOnly: false type: - string - "null" title: Task Audit List Response type: object x-speakeasy-name-override: TaskAuditListResponse c1.api.task.v1.TaskAuditMetaData: description: The TaskAuditMetaData message. properties: user: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.User' - type: "null" title: Task Audit Meta Data type: object x-speakeasy-name-override: TaskAuditMetaData c1.api.task.v1.TaskAuditNewTask: description: The TaskAuditNewTask message. title: Task Audit New Task type: object x-speakeasy-name-override: TaskAuditNewTask c1.api.task.v1.TaskAuditNewTaskCreatedFrom: description: |- TaskAuditNewTaskCreatedFrom is used when a task is created from another task (e.g. when a replacement extension grant task is created after the original is cancelled). This is set on the NEW task to indicate its origin. nullable: true properties: originalTaskId: description: The originalTaskId field. readOnly: false type: string originalTaskNumericId: description: The originalTaskNumericId field. format: int64 readOnly: false type: string originalTaskType: description: The task type of the original task (e.g. "grant", "revoke", "certify"). readOnly: false type: string title: Task Audit New Task Created From type: object x-speakeasy-name-override: TaskAuditNewTaskCreatedFrom c1.api.task.v1.TaskAuditPolicyApprovalReassigned: description: The TaskAuditPolicyApprovalReassigned message. properties: newPolicyStepId: description: The newPolicyStepId field. readOnly: false type: - string - "null" newUsers: description: The newUsers field. items: type: string readOnly: false type: - array - "null" oldPolicyStepId: description: The oldPolicyStepId field. readOnly: false type: - string - "null" users: description: The users field. items: $ref: '#/components/schemas/c1.api.user.v1.User' readOnly: false type: - array - "null" title: Task Audit Policy Approval Reassigned type: object x-speakeasy-name-override: TaskAuditPolicyApprovalReassigned c1.api.task.v1.TaskAuditPolicyChanged: description: The TaskAuditPolicyChanged message. properties: newPolicyId: description: The newPolicyId field. readOnly: false type: - string - "null" oldPolicyId: description: The oldPolicyId field. readOnly: false type: - string - "null" title: Task Audit Policy Changed type: object x-speakeasy-name-override: TaskAuditPolicyChanged c1.api.task.v1.TaskAuditPolicyEvaluationStep: description: The TaskAuditPolicyEvaluationStep message. properties: stepComment: description: The stepComment field. readOnly: false type: - string - "null" title: Task Audit Policy Evaluation Step type: object x-speakeasy-name-override: TaskAuditPolicyEvaluationStep c1.api.task.v1.TaskAuditPolicyProvisionCancelled: description: The TaskAuditPolicyProvisionCancelled message. properties: cancelReason: description: The cancelReason field. readOnly: false type: - string - "null" title: Task Audit Policy Provision Cancelled type: object x-speakeasy-name-override: TaskAuditPolicyProvisionCancelled c1.api.task.v1.TaskAuditPolicyProvisionError: description: The TaskAuditPolicyProvisionError message. properties: error: description: The error field. readOnly: false type: - string - "null" title: Task Audit Policy Provision Error type: object x-speakeasy-name-override: TaskAuditPolicyProvisionError c1.api.task.v1.TaskAuditPolicyProvisionReassigned: description: The TaskAuditPolicyProvisionReassigned message. properties: newPolicyStepId: description: The newPolicyStepId field. readOnly: false type: - string - "null" newUsers: description: The newUsers field. items: type: string readOnly: false type: - array - "null" oldPolicyStepId: description: The oldPolicyStepId field. readOnly: false type: - string - "null" users: description: The users field. items: $ref: '#/components/schemas/c1.api.user.v1.User' readOnly: false type: - array - "null" title: Task Audit Policy Provision Reassigned type: object x-speakeasy-name-override: TaskAuditPolicyProvisionReassigned c1.api.task.v1.TaskAuditReassignedToDelegate: description: The TaskAuditReassignedToDelegate message. properties: delegatedAssigneeUser: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.User' - type: "null" delegatedAssigneeUserId: description: The delegatedAssigneeUserId field. readOnly: false type: - string - "null" originalAssigneeUser: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.User' - type: "null" originalAssigneeUserId: description: The originalAssigneeUserId field. readOnly: false type: - string - "null" title: Task Audit Reassigned To Delegate type: object x-speakeasy-name-override: TaskAuditReassignedToDelegate c1.api.task.v1.TaskAuditReassignmentFallbackToAdmin: description: |- TaskAuditReassignmentFallbackToAdmin is used when no eligible reviewers are found from the policy configuration and the task falls back to system administrators without creating a new policy step. This prevents reassignment loops. nullable: true properties: adminUserIds: description: The IDs of the system administrator users that the task is being assigned to items: type: string nullable: true readOnly: false type: array adminUsers: description: The system administrator users (populated for display) items: $ref: '#/components/schemas/c1.api.user.v1.User' nullable: true readOnly: false type: array title: Task Audit Reassignment Fallback To Admin type: object x-speakeasy-name-override: TaskAuditReassignmentFallbackToAdmin c1.api.task.v1.TaskAuditReassignmentListError: description: The TaskAuditReassignmentListError message. properties: errorMessage: description: The errorMessage field. readOnly: false type: - string - "null" title: Task Audit Reassignment List Error type: object x-speakeasy-name-override: TaskAuditReassignmentListError c1.api.task.v1.TaskAuditRestart: description: The TaskAuditRestart message. properties: oldPolicyStepId: description: The oldPolicyStepId field. readOnly: false type: - string - "null" title: Task Audit Restart type: object x-speakeasy-name-override: TaskAuditRestart c1.api.task.v1.TaskAuditRevokeOutcome: description: The TaskAuditRevokeOutcome message. properties: outcome: description: The outcome field. enum: - REVOKE_OUTCOME_UNSPECIFIED - REVOKE_OUTCOME_REVOKED - REVOKE_OUTCOME_DENIED - REVOKE_OUTCOME_ERROR - REVOKE_OUTCOME_CANCELLED - REVOKE_OUTCOME_WAIT_TIMED_OUT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Task Audit Revoke Outcome type: object x-speakeasy-name-override: TaskAuditRevokeOutcome c1.api.task.v1.TaskAuditSLAEscalation: description: The TaskAuditSLAEscalation message. properties: message: description: The message field. readOnly: false type: - string - "null" title: Task Audit Sla Escalation type: object x-speakeasy-name-override: TaskAuditSLAEscalation c1.api.task.v1.TaskAuditStartedConnectorActions: description: The TaskAuditStartedConnectorActions message. properties: policyStepId: description: The policyStepId field. readOnly: false type: - string - "null" title: Task Audit Started Connector Actions type: object x-speakeasy-name-override: TaskAuditStartedConnectorActions c1.api.task.v1.TaskAuditStateChange: description: The TaskAuditStateChange message. properties: previousState: description: The previousState field. enum: - TASK_STATE_UNSPECIFIED - TASK_STATE_OPEN - TASK_STATE_CLOSED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: Task Audit State Change type: object x-speakeasy-name-override: TaskAuditStateChange c1.api.task.v1.TaskAuditStepSkipped: description: The TaskAuditStepSkipped message. properties: skippedBy: description: The skippedBy field. readOnly: false type: - string - "null" title: Task Audit Step Skipped type: object x-speakeasy-name-override: TaskAuditStepSkipped c1.api.task.v1.TaskAuditStepUpApproval: description: The TaskAuditStepUpApproval message. properties: stepUpTransactionId: description: The stepUpTransactionId field. readOnly: false type: - string - "null" title: Task Audit Step Up Approval type: object x-speakeasy-name-override: TaskAuditStepUpApproval c1.api.task.v1.TaskAuditView: description: | The TaskAuditView message. This message contains a oneof named typ. Only a single field of the following list may be set at a time: - comment - stateChange - approvalInstanceChange - connectorActionsStart - connectorActionsEnd - actionResult - taskCreated - certifyOutcome - actionSubmitted - grantOutcome - revokeOutcome - approvalReassigned - taskRestarted - accessRequestOutcome - provisionReassigned - provisionError - approvedAutomatically - reassignedToDelegate - hardReset - taskEscalated - conditionalPolicyExecutionResult - expressionPolicyStepError - approvalAutoAcceptedByPolicy - approvalAutoRejectedByPolicy - bulkActionError - webhookTriggered - webhookAttempt - webhookSuccess - policyEvaluationStep - waitStepSuccess - waitStepWaiting - waitStepTimedOut - webhookApprovalTriggered - webhookApprovalAttempt - webhookApprovalSuccess - webhookApprovalBadResponse - externalTicketTriggered - externalTicketCreated - externalTicketError - waitStepAnalysisSuccess - waitStepAnalysisWaiting - waitStepAnalysisTimedOut - stepUpApproval - externalTicketProvisionStepResolved - stepSkipped - reassignmentListError - slaEscalation - policyChanged - formInstanceChange - grantDurationUpdated - waitStepUntilTime - webhookApprovalFatalError - accountLifecycleActionCreated - accountLifecycleActionFailed - provisionCancelled - actionInstanceCreated - actionInstanceSucceeded - actionInstanceFailed - createdReplacementExtensionGrantTask - taskCreatedFrom - reassignmentFallbackToAdmin properties: accessRequestOutcome: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditAccessRequestOutcome' - type: "null" accountLifecycleActionCreated: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditAccountLifecycleActionCreated' - type: "null" accountLifecycleActionFailed: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditAccountLifecycleActionFailed' - type: "null" actionInstanceCreated: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditActionInstanceCreated' actionInstanceFailed: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditActionInstanceFailed' actionInstanceSucceeded: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditActionInstanceSucceeded' actionResult: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditConnectorActionResult' - type: "null" actionSubmitted: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditActionSubmitted' - type: "null" approvalAutoAcceptedByPolicy: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditApprovalAutoAcceptedByPolicy' - type: "null" approvalAutoRejectedByPolicy: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditApprovalAutoRejectedByPolicy' - type: "null" approvalInstanceChange: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditApprovalInstanceChange' - type: "null" approvalReassigned: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditPolicyApprovalReassigned' - type: "null" approvedAutomatically: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditApprovalHappenedAutomatically' - type: "null" bulkActionError: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditBulkActionError' - type: "null" certifyOutcome: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditCertifyOutcome' - type: "null" comment: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditComment' - type: "null" conditionalPolicyExecutionResult: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditConditionalPolicyExecutionResult' - type: "null" connectorActionsEnd: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditFinishedConnectorActions' - type: "null" connectorActionsStart: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditStartedConnectorActions' - type: "null" created: oneOf: - format: date-time readOnly: false type: string - type: "null" createdReplacementExtensionGrantTask: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditCreatedReplacementExtensionGrantTask' currentState: description: The currentState field. enum: - TASK_STATE_UNSPECIFIED - TASK_STATE_OPEN - TASK_STATE_CLOSED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow eventType: description: The eventType field. enum: - TASK_AUDIT_EVENT_TYPE_UNSPECIFIED - TASK_AUDIT_EVENT_TYPE_NEUTRAL - TASK_AUDIT_EVENT_TYPE_ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow expressionPolicyStepError: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditExpressionPolicyStepError' - type: "null" externalTicketCreated: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditExternalTicketCreated' - type: "null" externalTicketError: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditExternalTicketError' - type: "null" externalTicketProvisionStepResolved: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditExternalTicketProvisionStepResolved' - type: "null" externalTicketTriggered: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditExternalTicketTriggered' - type: "null" formInstanceChange: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditFormInstanceChange' - type: "null" grantDurationUpdated: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditGrantDurationUpdated' - type: "null" grantOutcome: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditGrantOutcome' - type: "null" hardReset: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditHardReset' - type: "null" id: description: The id field. readOnly: false type: - string - "null" metadata: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditMetaData' - type: "null" policyChanged: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditPolicyChanged' - type: "null" policyEvaluationStep: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditPolicyEvaluationStep' - type: "null" provisionCancelled: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditPolicyProvisionCancelled' - type: "null" provisionError: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditPolicyProvisionError' - type: "null" provisionReassigned: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditPolicyProvisionReassigned' - type: "null" reassignedToDelegate: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditReassignedToDelegate' - type: "null" reassignmentFallbackToAdmin: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditReassignmentFallbackToAdmin' reassignmentListError: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditReassignmentListError' - type: "null" revokeOutcome: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditRevokeOutcome' - type: "null" slaEscalation: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditSLAEscalation' - type: "null" source: description: The source field. enum: - SOURCE_UNSPECIFIED - SOURCE_C1 - SOURCE_JIRA - SOURCE_SLACK - SOURCE_COPILOT_AGENTS readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow stateChange: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditStateChange' - type: "null" stepSkipped: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditStepSkipped' - type: "null" stepUpApproval: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditStepUpApproval' - type: "null" taskCreated: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditNewTask' - type: "null" taskCreatedFrom: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditNewTaskCreatedFrom' taskEscalated: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditEscalateToEmergencyAccess' - type: "null" taskRestarted: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditRestart' - type: "null" ticketId: description: The ticketId field. readOnly: false type: - string - "null" userId: description: The userId field. readOnly: false type: - string - "null" waitStepAnalysisSuccess: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitForAnalysisStepSuccess' - type: "null" waitStepAnalysisTimedOut: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitForAnalysisStepTimedOut' - type: "null" waitStepAnalysisWaiting: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitForAnalysisStepWaiting' - type: "null" waitStepSuccess: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitStepSuccess' - type: "null" waitStepTimedOut: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitStepTimedOut' - type: "null" waitStepUntilTime: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitStepUntilTime' - type: "null" waitStepWaiting: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWaitStepWaiting' - type: "null" webhookApprovalAttempt: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookApprovalAttempt' - type: "null" webhookApprovalBadResponse: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookApprovalBadResponse' - type: "null" webhookApprovalFatalError: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookApprovalFatalError' - type: "null" webhookApprovalSuccess: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookApprovalSuccess' - type: "null" webhookApprovalTriggered: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookApprovalTriggered' - type: "null" webhookAttempt: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookAttempt' - type: "null" webhookSuccess: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookSuccess' - type: "null" webhookTriggered: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskAuditWebhookTriggered' - type: "null" workflowStep: description: The workflowStep field. format: int32 readOnly: false type: - integer - "null" title: Task Audit View type: object x-speakeasy-name-override: TaskAuditView c1.api.task.v1.TaskAuditViewRef: description: The TaskAuditViewRef message. properties: id: description: The ID of the audit event. readOnly: false type: - string - "null" title: Task Audit View Ref type: object x-speakeasy-name-override: TaskAuditViewRef c1.api.task.v1.TaskAuditWaitForAnalysisStepSuccess: description: The TaskAuditWaitForAnalysisStepSuccess message. properties: stepId: description: The stepId field. readOnly: false type: - string - "null" succeededAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Audit Wait For Analysis Step Success type: object x-speakeasy-name-override: TaskAuditWaitForAnalysisStepSuccess c1.api.task.v1.TaskAuditWaitForAnalysisStepTimedOut: description: The TaskAuditWaitForAnalysisStepTimedOut message. properties: stepId: description: The stepId field. readOnly: false type: - string - "null" timedOutAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Audit Wait For Analysis Step Timed Out type: object x-speakeasy-name-override: TaskAuditWaitForAnalysisStepTimedOut c1.api.task.v1.TaskAuditWaitForAnalysisStepWaiting: description: The TaskAuditWaitForAnalysisStepWaiting message. properties: stepId: description: The stepId field. readOnly: false type: - string - "null" title: Task Audit Wait For Analysis Step Waiting type: object x-speakeasy-name-override: TaskAuditWaitForAnalysisStepWaiting c1.api.task.v1.TaskAuditWaitStepSuccess: description: The TaskAuditWaitStepSuccess message. properties: condition: description: The condition field. readOnly: false type: - string - "null" stepId: description: The stepId field. readOnly: false type: - string - "null" succeededAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Audit Wait Step Success type: object x-speakeasy-name-override: TaskAuditWaitStepSuccess c1.api.task.v1.TaskAuditWaitStepTimedOut: description: The TaskAuditWaitStepTimedOut message. properties: condition: description: The condition field. readOnly: false type: - string - "null" stepId: description: The stepId field. readOnly: false type: - string - "null" timedOutAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Audit Wait Step Timed Out type: object x-speakeasy-name-override: TaskAuditWaitStepTimedOut c1.api.task.v1.TaskAuditWaitStepUntilTime: description: The TaskAuditWaitStepUntilTime message. properties: stepId: description: The stepId field. readOnly: false type: - string - "null" untilTime: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Audit Wait Step Until Time type: object x-speakeasy-name-override: TaskAuditWaitStepUntilTime c1.api.task.v1.TaskAuditWaitStepWaiting: description: The TaskAuditWaitStepWaiting message. properties: condition: description: The condition field. readOnly: false type: - string - "null" stepId: description: The stepId field. readOnly: false type: - string - "null" title: Task Audit Wait Step Waiting type: object x-speakeasy-name-override: TaskAuditWaitStepWaiting c1.api.task.v1.TaskAuditWebhookApprovalAttempt: description: The TaskAuditWebhookApprovalAttempt message. properties: webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Approval Attempt type: object x-speakeasy-name-override: TaskAuditWebhookApprovalAttempt c1.api.task.v1.TaskAuditWebhookApprovalBadResponse: description: The TaskAuditWebhookApprovalBadResponse message. properties: error: description: The error field. readOnly: false type: - string - "null" webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Approval Bad Response type: object x-speakeasy-name-override: TaskAuditWebhookApprovalBadResponse c1.api.task.v1.TaskAuditWebhookApprovalFatalError: description: The TaskAuditWebhookApprovalFatalError message. properties: error: description: The error field. readOnly: false type: - string - "null" webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Approval Fatal Error type: object x-speakeasy-name-override: TaskAuditWebhookApprovalFatalError c1.api.task.v1.TaskAuditWebhookApprovalSuccess: description: The TaskAuditWebhookApprovalSuccess message. properties: webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Approval Success type: object x-speakeasy-name-override: TaskAuditWebhookApprovalSuccess c1.api.task.v1.TaskAuditWebhookApprovalTriggered: description: The TaskAuditWebhookApprovalTriggered message. properties: webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Approval Triggered type: object x-speakeasy-name-override: TaskAuditWebhookApprovalTriggered c1.api.task.v1.TaskAuditWebhookAttempt: description: The TaskAuditWebhookAttempt message. properties: webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Attempt type: object x-speakeasy-name-override: TaskAuditWebhookAttempt c1.api.task.v1.TaskAuditWebhookSuccess: description: The TaskAuditWebhookSuccess message. properties: webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Success type: object x-speakeasy-name-override: TaskAuditWebhookSuccess c1.api.task.v1.TaskAuditWebhookTriggered: description: The TaskAuditWebhookTriggered message. properties: webhookId: description: The webhookId field. readOnly: false type: - string - "null" webhookInstanceId: description: The webhookInstanceId field. readOnly: false type: - string - "null" webhookName: description: The webhookName field. readOnly: false type: - string - "null" webhookUrl: description: The webhookUrl field. readOnly: false type: - string - "null" title: Task Audit Webhook Triggered type: object x-speakeasy-name-override: TaskAuditWebhookTriggered c1.api.task.v1.TaskExpandMask: description: The task expand mask is an array of strings that specifes the related objects the requester wishes to have returned when making a request where the expand mask is part of the input. Use '*' to view all possible responses. properties: paths: description: A list of paths to expand in the response. May be any combination of "*", "access_review_id", "user_id", "created_by_user_id", "app_id", "app_user_id", "app_entitlement_ids", "step_approver_ids", "approver_ids", "identity_user_id", "insight_ids", "app_user_last_usage", "entitlement_scope_bindings", and "scope_role_resources". items: type: string readOnly: false type: - array - "null" title: Task Expand Mask type: object x-speakeasy-name-override: TaskExpandMask c1.api.task.v1.TaskGrantSource: description: The TaskGrantSource message tracks which external URL was the source of the specificed grant ticket. properties: conversationId: description: The ID of the conversation that created this ticket readOnly: false type: - string - "null" externalUrl: description: The external url source of the grant ticket. readOnly: false type: - string - "null" integrationId: description: The integration id for the source of tickets. readOnly: false type: - string - "null" isExtension: description: Whether the grant task is an extension task. readOnly: false type: boolean requestId: description: the request id for the grant ticket if the source is external readOnly: false type: - string - "null" title: Task Grant Source type: object x-speakeasy-name-override: TaskGrantSource c1.api.task.v1.TaskRef: description: This object references a task by ID. properties: id: description: The ID of the referenced Task readOnly: false type: - string - "null" title: Task Ref type: object x-speakeasy-name-override: TaskRef c1.api.task.v1.TaskRevocationTarget: description: An ancestor entitlement that will be revoked as part of an inheritance revocation. properties: entitlementRef: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementRef' title: Task Revocation Target type: object x-speakeasy-name-override: TaskRevocationTarget c1.api.task.v1.TaskRevokeSource: description: | The TaskRevokeSource message indicates the source of the revoke task is one of expired, nonUsage, request, or review. This message contains a oneof named origin. Only a single field of the following list may be set at a time: - review - request - expired - nonUsage properties: expired: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskRevokeSourceExpired' - type: "null" nonUsage: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskRevokeSourceNonUsage' - type: "null" request: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskRevokeSourceRequest' - type: "null" review: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskRevokeSourceReview' - type: "null" title: Task Revoke Source type: object x-speakeasy-name-override: TaskRevokeSource c1.api.task.v1.TaskRevokeSourceExpired: description: The TaskRevokeSourceExpired message indicates that the source of the revoke task is due to a grant expiring. properties: expiredAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Revoke Source Expired type: object x-speakeasy-name-override: TaskRevokeSourceExpired c1.api.task.v1.TaskRevokeSourceNonUsage: description: The TaskRevokeSourceNonUsage message indicates that the source of the revoke task is due to the grant not being used. properties: expiresAt: oneOf: - format: date-time readOnly: false type: string - type: "null" lastLogin: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Task Revoke Source Non Usage type: object x-speakeasy-name-override: TaskRevokeSourceNonUsage c1.api.task.v1.TaskRevokeSourceRequest: description: The TaskRevokeSourceRequest message indicates that the source of the revoke task was a request. properties: requestUserId: description: The ID of the user who initiated the revoke request. readOnly: false type: - string - "null" title: Task Revoke Source Request type: object x-speakeasy-name-override: TaskRevokeSourceRequest c1.api.task.v1.TaskRevokeSourceReview: description: The TaskRevokeSourceReview message tracks which access review was the source of the specificed revoke ticket. properties: accessReviewId: description: The ID of the access review associated with the revoke task. readOnly: false type: - string - "null" certTicketId: description: The ID of the certify ticket that was denied and created this revoke task. readOnly: false type: - string - "null" title: Task Revoke Source Review type: object x-speakeasy-name-override: TaskRevokeSourceReview c1.api.task.v1.TaskSearchRequest: description: Search for tasks based on a plethora filters. properties: accessReviewIds: description: Search tasks that belong to any of the access reviews included in this list. items: type: string readOnly: false type: - array - "null" accountOwnerIds: description: Search tasks that have any of these account owners. items: type: string readOnly: false type: - array - "null" accountTypes: description: The accountTypes field. items: enum: - APP_USER_TYPE_UNSPECIFIED - APP_USER_TYPE_USER - APP_USER_TYPE_SERVICE_ACCOUNT - APP_USER_TYPE_SYSTEM_ACCOUNT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" actorId: description: Search tasks that have this actor ID. readOnly: false type: - string - "null" appEntitlementIds: description: Search tasks that have any of these app entitlement IDs. items: type: string readOnly: false type: - array - "null" appResourceIds: description: Search tasks that have any of these app resource IDs. items: type: string readOnly: false type: - array - "null" appResourceTypeIds: description: Search tasks that have any of these app resource type IDs. items: type: string readOnly: false type: - array - "null" appUserSubjectIds: description: Search tasks that have any of these app users as subjects. items: type: string readOnly: false type: - array - "null" applicationIds: description: Search tasks that have any of these apps as targets. items: type: string readOnly: false type: - array - "null" assignedOrStepApproverUserId: description: Search tasks that are currently assigned to this user, or that are closed and were previously approved by this user. readOnly: false type: - string - "null" assigneesInIds: description: Search tasks by List of UserIDs which are currently assigned these Tasks items: type: string readOnly: false type: - array - "null" certifyOutcomes: description: Search tasks by certify outcome items: enum: - CERTIFY_OUTCOME_UNSPECIFIED - CERTIFY_OUTCOME_CERTIFIED - CERTIFY_OUTCOME_DECERTIFIED - CERTIFY_OUTCOME_ERROR - CERTIFY_OUTCOME_CANCELLED - CERTIFY_OUTCOME_WAIT_TIMED_OUT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" createdAfter: oneOf: - format: date-time readOnly: false type: string - type: "null" createdBefore: oneOf: - format: date-time readOnly: false type: string - type: "null" currentStep: description: Search tasks that have this type of step as the current step. enum: - TASK_SEARCH_CURRENT_STEP_UNSPECIFIED - TASK_SEARCH_CURRENT_STEP_APPROVAL - TASK_SEARCH_CURRENT_STEP_PROVISION readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow emergencyStatus: description: Search tasks that are or are not emergency access. enum: - UNSPECIFIED - ALL - NON_EMERGENCY - EMERGENCY readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow excludeAppEntitlementIds: description: Search tasks that do not have any of these app entitlement IDs. items: type: string readOnly: false type: - array - "null" excludeAppResourceTypeIds: description: Search tasks that do not have any of these app resource type IDs. items: type: string readOnly: false type: - array - "null" excludeApplicationIds: description: Search tasks that do NOT have any of these apps as targets. items: type: string nullable: true readOnly: false type: array excludeIds: description: Exclude Specific TaskIDs from this serach result. items: type: string readOnly: false type: - array - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" grantOutcomes: description: Search tasks by grant outcome items: enum: - GRANT_OUTCOME_UNSPECIFIED - GRANT_OUTCOME_GRANTED - GRANT_OUTCOME_DENIED - GRANT_OUTCOME_ERROR - GRANT_OUTCOME_CANCELLED - GRANT_OUTCOME_WAIT_TIMED_OUT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" includeActedAfter: oneOf: - format: date-time readOnly: false type: string - type: "null" includeDeleted: description: Whether or not to include deleted tasks. readOnly: false type: - boolean - "null" myWorkUserIds: description: Search tasks where the user would see this task in the My Work section items: type: string readOnly: false type: - array - "null" olderThanDuration: oneOf: - format: duration readOnly: false type: string - type: "null" openerIds: description: Search tasks that were created by any of the users in this array. items: type: string readOnly: false type: - array - "null" openerOrSubjectUserId: description: Search tasks that were opened by this user, or that the user is the subject of. readOnly: false type: - string - "null" outcomeAfter: oneOf: - format: date-time readOnly: false type: string - type: "null" outcomeBefore: oneOf: - format: date-time readOnly: false type: string - type: "null" pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" pendingActionFilter: description: |- Filter tasks by pending action status. Only applies when exactly one access_review_id is specified. Requires the REVIEWS_PENDING_ACTIONS feature flag to be enabled. enum: - PENDING_ACTION_FILTER_UNSPECIFIED - PENDING_ACTION_FILTER_WITH_PENDING - PENDING_ACTION_FILTER_WITHOUT_PENDING readOnly: false type: string x-speakeasy-unknown-values: allow previouslyActedOnIds: description: Search tasks that were acted on by any of these users. items: type: string readOnly: false type: - array - "null" query: description: Fuzzy search tasks by display name, description, or ID. readOnly: false type: - string - "null" refs: description: Query tasks by display name, description, or numeric ID. items: $ref: '#/components/schemas/c1.api.task.v1.TaskRef' readOnly: false type: - array - "null" requireApprovalReason: description: Filter tasks where the current approval step requires an approval reason. readOnly: false type: boolean requireDenialReason: description: Filter tasks where the current approval step requires a denial reason. readOnly: false type: boolean revokeOutcomes: description: Search tasks by revoke outcome items: enum: - REVOKE_OUTCOME_UNSPECIFIED - REVOKE_OUTCOME_REVOKED - REVOKE_OUTCOME_DENIED - REVOKE_OUTCOME_ERROR - REVOKE_OUTCOME_CANCELLED - REVOKE_OUTCOME_WAIT_TIMED_OUT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" sortBy: description: Sort tasks in a specific order. enum: - TASK_SEARCH_SORT_BY_UNSPECIFIED - TASK_SEARCH_SORT_BY_ACCOUNT - TASK_SEARCH_SORT_BY_RESOURCE - TASK_SEARCH_SORT_BY_ACCOUNT_OWNER - TASK_SEARCH_SORT_BY_REVERSE_TICKET_ID - TASK_SEARCH_SORT_BY_TICKET_ID - TASK_SEARCH_SORT_BY_CREATED_AT - TASK_SEARCH_SORT_BY_REVERSE_CREATED_AT - TASK_SEARCH_SORT_BY_APP_RESOURCE_ID_AND_APP_ENTITLEMENT readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow stepApprovalTypes: description: Search tasks that have a current policy step of this type items: enum: - STEP_APPROVAL_TYPE_UNSPECIFIED - STEP_APPROVAL_TYPE_USERS - STEP_APPROVAL_TYPE_MANAGER - STEP_APPROVAL_TYPE_APP_OWNERS - STEP_APPROVAL_TYPE_GROUP - STEP_APPROVAL_TYPE_SELF - STEP_APPROVAL_TYPE_ENTITLEMENT_OWNERS - STEP_APPROVAL_TYPE_EXPRESSION - STEP_APPROVAL_TYPE_WEBHOOK - STEP_APPROVAL_TYPE_RESOURCE_OWNERS - STEP_APPROVAL_TYPE_AGENT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" subjectIds: description: Search tasks where these users are the subject. items: type: string readOnly: false type: - array - "null" taskStates: description: Search tasks with this task state. items: enum: - TASK_STATE_UNSPECIFIED - TASK_STATE_OPEN - TASK_STATE_CLOSED type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" taskTypes: description: Search tasks with this task type. This is a oneOf, and needs an object, which can be empty, to sort. items: $ref: '#/components/schemas/c1.api.task.v1.TaskType' readOnly: false type: - array - "null" userEmploymentStatuses: description: The userEmploymentStatuses field. items: type: string readOnly: false type: - array - "null" title: Task Search Request type: object x-speakeasy-name-override: TaskSearchRequest c1.api.task.v1.TaskSearchResponse: description: The TaskSearchResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: The list of results containing up to X results, where X is the page size defined in the request. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: List of serialized related objects. items: $ref: '#/components/schemas/c1.api.task.v1.TaskView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Task Search Response type: object x-speakeasy-name-override: TaskSearchResponse c1.api.task.v1.TaskServiceActionResponse: description: A generic response for task action endpoints, containing the updated task and the ID of the action that was created. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" ticketActionId: description: The ID of the task action created by this request. readOnly: false type: - string - "null" title: Task Service Action Response type: object x-speakeasy-name-override: TaskServiceActionResponse c1.api.task.v1.TaskServiceCreateGrantRequest: description: Create a grant task. properties: appEntitlementId: description: The ID of the app entitlement to grant access to. readOnly: false type: string appId: description: The ID of the app that is associated with the entitlement. readOnly: false type: string appUserId: description: The ID of the app user to grant access for. This field and identityUserId cannot both be set for a given request. readOnly: false type: - string - "null" description: description: The description of the request. readOnly: false type: - string - "null" emergencyAccess: description: Boolean stating whether or not the task is marked as emergency access. readOnly: false type: - boolean - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" grantDuration: oneOf: - format: duration readOnly: false type: string - type: "null" identityUserId: description: The ID of the user associated with the app user we are granting access for. This field cannot be set if appUserID is also set. readOnly: false type: - string - "null" requestData: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" source: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskGrantSource' - type: "null" required: - appId - appEntitlementId title: Task Service Create Grant Request type: object x-speakeasy-name-override: TaskServiceCreateGrantRequest c1.api.task.v1.TaskServiceCreateGrantResponse: description: The TaskServiceCreateGrantResponse returns a task view which has a task including JSONPATHs to the expanded items in the expanded array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Service Create Grant Response type: object x-speakeasy-name-override: TaskServiceCreateGrantResponse c1.api.task.v1.TaskServiceCreateOffboardingRequest: description: Create an offboarding task. properties: description: description: The description of the offboarding request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" subjectUserId: description: The ID of the user to offboard. readOnly: false type: - string - "null" title: Task Service Create Offboarding Request type: object x-speakeasy-name-override: TaskServiceCreateOffboardingRequest c1.api.task.v1.TaskServiceCreateOffboardingResponse: description: The TaskServiceCreateOffboardingResponse returns the created offboarding task with optional expanded related objects. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Service Create Offboarding Response type: object x-speakeasy-name-override: TaskServiceCreateOffboardingResponse c1.api.task.v1.TaskServiceCreateRevokeRequest: description: Create a revoke task. properties: appEntitlementId: description: The ID of the app entitlement to revoke access to. readOnly: false type: string appId: description: The ID of the app associated with the entitlement. readOnly: false type: string appUserId: description: The ID of the app user to revoke access from. This field and identityUserId cannot both be set for a given request. readOnly: false type: - string - "null" description: description: The description of the request. readOnly: false type: - string - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskExpandMask' - type: "null" identityUserId: description: The ID of the user associated with the app user we are revoking access from. This field cannot be set if appUserID is also set. readOnly: false type: - string - "null" required: - appId - appEntitlementId title: Task Service Create Revoke Request type: object x-speakeasy-name-override: TaskServiceCreateRevokeRequest c1.api.task.v1.TaskServiceCreateRevokeResponse: description: The TaskServiceCreateRevokeResponse returns a task view which has a task including JSONPATHs to the expanded items in the expanded array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Service Create Revoke Response type: object x-speakeasy-name-override: TaskServiceCreateRevokeResponse c1.api.task.v1.TaskServiceGetResponse: description: The TaskServiceGetResponse returns a task view which has a task including JSONPATHs to the expanded items in the expanded array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: true type: object readOnly: true type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Task Service Get Response type: object x-speakeasy-name-override: TaskServiceGetResponse c1.api.task.v1.TaskType: description: | Task Type provides configuration for the type of task: certify, grant, or revoke This message contains a oneof named task_type. Only a single field of the following list may be set at a time: - grant - revoke - certify - offboarding - action - finding properties: action: $ref: '#/components/schemas/c1.api.task.v1.TaskTypeAction' certify: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskTypeCertify' - type: "null" finding: $ref: '#/components/schemas/c1.api.task.v1.TaskTypeFinding' grant: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskTypeGrant' - type: "null" offboarding: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskTypeOffboarding' - type: "null" revoke: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskTypeRevoke' - type: "null" title: Task Type type: object x-speakeasy-name-override: TaskType c1.api.task.v1.TaskTypeAction: description: | The TaskTypeAction message. This message contains a oneof named target_object. Only a single field of the following list may be set at a time: - scopeRole nullable: true properties: actionId: description: |- The ID of the admin-authored action to execute. Empty for synthesized action tickets (e.g. scope-role grants) — those carry dispatch configuration on action_instance and target_object instead. readOnly: true type: string actionInstance: $ref: '#/components/schemas/c1.api.task.v1.ActionInstance' displayName: description: |- Display label captured on the action snapshot at ticket-creation time. Stable under admin renames to a referenced Action row and populated for synthesized tickets that have no Action row at all. UI reads this to render the task title without an Action fetch. readOnly: true type: string formValues: additionalProperties: true readOnly: true type: object outcome: description: The outcome field. enum: - ACTION_OUTCOME_UNSPECIFIED - ACTION_OUTCOME_SUCCESS - ACTION_OUTCOME_DENIED - ACTION_OUTCOME_ERROR - ACTION_OUTCOME_CANCELLED readOnly: true type: string x-speakeasy-unknown-values: allow outcomeTime: format: date-time readOnly: true type: string scopeRole: $ref: '#/components/schemas/c1.api.task.v1.ScopeRole' type: description: |- Flavor of action the ticket represents — mirrors the snapshot's target_ref variant. enum: - TYPE_UNSPECIFIED - TYPE_GRANT - TYPE_WORKFLOW - TYPE_RESOURCE_ACTION readOnly: true type: string x-speakeasy-unknown-values: allow title: Task Type Action type: object x-speakeasy-name-override: TaskTypeAction c1.api.task.v1.TaskTypeCertify: description: The TaskTypeCertify message indicates that a task is a certify task and all related details. properties: accessReviewId: description: The ID of the access review. readOnly: true type: - string - "null" accessReviewSelection: description: The ID of the specific access review object that owns this certify task. This is also set on a revoke task if the revoke task is created from the denied outcome of a certify task. readOnly: true type: - string - "null" appEntitlementId: description: The ID of the app entitlement. readOnly: true type: - string - "null" appId: description: The ID of the app. readOnly: true type: - string - "null" appUserId: description: The ID of the app user. readOnly: true type: - string - "null" identityUserId: description: The ID of the user. readOnly: true type: - string - "null" outcome: description: The outcome of the certification. enum: - CERTIFY_OUTCOME_UNSPECIFIED - CERTIFY_OUTCOME_CERTIFIED - CERTIFY_OUTCOME_DECERTIFIED - CERTIFY_OUTCOME_ERROR - CERTIFY_OUTCOME_CANCELLED - CERTIFY_OUTCOME_WAIT_TIMED_OUT readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow outcomeTime: oneOf: - format: date-time readOnly: true type: string - type: "null" title: Task Type Certify type: object x-speakeasy-name-override: TaskTypeCertify c1.api.task.v1.TaskTypeFinding: description: The TaskTypeFinding message. nullable: true properties: findingId: description: Reference to the source finding. readOnly: true type: string findingType: description: The finding type discriminator. readOnly: true type: string outcome: description: The outcome field. enum: - FINDING_TASK_OUTCOME_UNSPECIFIED - FINDING_TASK_OUTCOME_REMEDIATED - FINDING_TASK_OUTCOME_RISK_ACCEPTED - FINDING_TASK_OUTCOME_CANCELLED readOnly: true type: string x-speakeasy-unknown-values: allow outcomeTime: format: date-time readOnly: true type: string title: Task Type Finding type: object x-speakeasy-name-override: TaskTypeFinding c1.api.task.v1.TaskTypeGrant: description: The TaskTypeGrant message indicates that a task is a grant task and all related details. properties: appEntitlementId: description: The ID of the app entitlement. readOnly: true type: - string - "null" appId: description: The ID of the app. readOnly: true type: - string - "null" appUserId: description: The ID of the app user. readOnly: true type: - string - "null" grantDuration: oneOf: - format: duration readOnly: true type: string - type: "null" identityUserId: description: The ID of the user. readOnly: true type: - string - "null" outcome: description: The outcome of the grant. enum: - GRANT_OUTCOME_UNSPECIFIED - GRANT_OUTCOME_GRANTED - GRANT_OUTCOME_DENIED - GRANT_OUTCOME_ERROR - GRANT_OUTCOME_CANCELLED - GRANT_OUTCOME_WAIT_TIMED_OUT readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow outcomeTime: oneOf: - format: date-time readOnly: true type: string - type: "null" source: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskGrantSource' - type: "null" title: Task Type Grant type: object x-speakeasy-name-override: TaskTypeGrant c1.api.task.v1.TaskTypeOffboarding: description: The TaskTypeOffboarding message. properties: outcome: description: The outcome field. enum: - OFFBOARDING_OUTCOME_UNSPECIFIED - OFFBOARDING_OUTCOME_IN_PROGRESS - OFFBOARDING_OUTCOME_DONE - OFFBOARDING_OUTCOME_ERROR - OFFBOARDING_OUTCOME_CANCELLED readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow outcomeTime: oneOf: - format: date-time readOnly: true type: string - type: "null" subjectUserId: description: The subjectUserId field. readOnly: true type: - string - "null" title: Task Type Offboarding type: object x-speakeasy-name-override: TaskTypeOffboarding c1.api.task.v1.TaskTypeRevoke: description: The TaskTypeRevoke message indicates that a task is a revoke task and all related details. properties: appEntitlementId: description: The ID of the app entitlement. readOnly: true type: - string - "null" appId: description: The ID of the app. readOnly: true type: - string - "null" appUserId: description: The ID of the app user. readOnly: true type: - string - "null" identityUserId: description: The ID of the user. readOnly: true type: - string - "null" outcome: description: The outcome of the revoke. enum: - REVOKE_OUTCOME_UNSPECIFIED - REVOKE_OUTCOME_REVOKED - REVOKE_OUTCOME_DENIED - REVOKE_OUTCOME_ERROR - REVOKE_OUTCOME_CANCELLED - REVOKE_OUTCOME_WAIT_TIMED_OUT readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow outcomeTime: oneOf: - format: date-time readOnly: true type: string - type: "null" source: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskRevokeSource' - type: "null" title: Task Type Revoke type: object x-speakeasy-name-override: TaskTypeRevoke c1.api.task.v1.TaskView: description: Contains a task and JSONPATH expressions that describe where in the expanded array related objects are located. This view can be used to display a fully-detailed dashboard of task information. properties: accessReviewPath: description: JSONPATH expression indicating the location of the AccessReview object in the expanded array readOnly: true type: - string - "null" appPath: description: JSONPATH expression indicating the location of the App object in the expanded array readOnly: true type: - string - "null" appUserLastUsagePath: description: JSONPATH expression indicating the location of the AppUser last usage timestamp in the expanded array readOnly: true type: - string - "null" appUserPath: description: JSONPATH expression indicating the location of the AppUser object in the expanded array readOnly: true type: - string - "null" approversPath: description: JSONPATH expression indicating the location of the ApproverUsers objects in the expanded array. These are the users who have approved or denied this task. readOnly: true type: string createdByUserPath: description: JSONPATH expression indicating the location of the object of the User that created the ticket in the expanded array readOnly: true type: - string - "null" entitlementsPath: description: JSONPATH expression indicating the location of the Entitlements objects in the expanded array readOnly: true type: - string - "null" identityUserPath: description: JSONPATH expression indicating the location of the User object of the User that this task is targeting in the expanded array. This is the user that is the identity when the target of a task is an app user. readOnly: true type: - string - "null" insightsPath: description: JSONPATH expression indicating the location of the Insights objects in the expanded array readOnly: true type: - string - "null" resourceBindingsPath: description: JSONPATH expression indicating the location of the EntitlementScopeBindingList object in the expanded array. readOnly: true type: string roleResourcePath: description: JSONPATH expression indicating the location of the role AppResource for a scope-role action task in the expanded array. readOnly: true type: string scopeResourcePath: description: JSONPATH expression indicating the location of the scope AppResource for a scope-role action task in the expanded array. readOnly: true type: string stepApproversPath: description: JSONPATH expression indicating the location of the StepApproverUsers objects in the expanded array readOnly: true type: - string - "null" task: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.Task' - type: "null" userPath: description: JSONPATH expression indicating the location of the User object in the expanded array. This is the user that is a direct target of the ticket without a specific relationship to a potentially non-existent app user. readOnly: true type: - string - "null" title: Task View type: object x-speakeasy-name-override: TaskView c1.api.user.v1.ExpiringUserDelegationBinding: description: The ExpiringUserDelegationBinding message. properties: createdAt: oneOf: - format: date-time readOnly: false type: string - type: "null" delegatedUserId: description: The delegatedUserId field. readOnly: false type: - string - "null" deletedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" expirationAt: oneOf: - format: date-time readOnly: false type: string - type: "null" startAt: oneOf: - format: date-time readOnly: false type: string - type: "null" updatedAt: oneOf: - format: date-time readOnly: false type: string - type: "null" userId: description: The userId field. readOnly: false type: - string - "null" title: Expiring User Delegation Binding type: object x-speakeasy-name-override: ExpiringUserDelegationBinding c1.api.user.v1.GetUserProfileTypesResponse: description: GetUserProfileTypesResponse is the response containing the profile types for a user. properties: profileTypes: description: The list of profile types associated with the user across their connected apps. items: $ref: '#/components/schemas/c1.api.profiletype.v1.ProfileType' readOnly: false type: - array - "null" title: Get User Profile Types Response type: object x-speakeasy-name-override: GetUserProfileTypesResponse c1.api.user.v1.SearchUsersRequest: description: Search for users based on some filters. properties: delegateStatus: description: Filter for users based on their delegate status. enum: - DELEGATE_STATUS_UNSPECIFIED - DELEGATE_STATUS_HAS_DELEGATE - DELEGATE_STATUS_NO_DELEGATE readOnly: false type: string x-speakeasy-unknown-values: allow delegatedUserIds: description: Filter for users that have any of the delegated user IDs on this list. items: type: string nullable: true readOnly: false type: array departments: description: Search for users that have any of the departments on this list. items: type: string readOnly: false type: - array - "null" email: description: Search for users based on their email (exact match). readOnly: false type: - string - "null" excludeIds: description: An array of users IDs to exclude from the results. items: type: string readOnly: false type: - array - "null" excludeOrigins: description: Filter to exclude users with these origins. items: enum: - USER_ORIGIN_UNSPECIFIED - USER_ORIGIN_DIRECTORY - USER_ORIGIN_LOCAL - USER_ORIGIN_SYSTEM type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array excludeTypes: description: An array of types to exclude from the results. items: enum: - USER_TYPE_UNSPECIFIED - USER_TYPE_SYSTEM - USER_TYPE_HUMAN - USER_TYPE_SERVICE - USER_TYPE_AGENT type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" expandMask: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserExpandMask' - type: "null" ids: description: Deprecated. Use refs array instead. items: type: string readOnly: false type: - array - "null" isDelegate: description: Filter for users who are delegates of at least one other user. readOnly: false type: boolean jobTitles: description: Search for users that have any of the job titles on this list. items: type: string readOnly: false type: - array - "null" managerIds: description: Search for users that have any of the manager IDs on this list. items: type: string readOnly: false type: - array - "null" origins: description: Filter to include only users with these origins. items: enum: - USER_ORIGIN_UNSPECIFIED - USER_ORIGIN_DIRECTORY - USER_ORIGIN_LOCAL - USER_ORIGIN_SYSTEM type: string x-speakeasy-unknown-values: allow nullable: true readOnly: false type: array pageSize: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" pageToken: description: The pageToken field. readOnly: false type: - string - "null" query: description: Query the apps with a fuzzy search on display name and emails. readOnly: false type: - string - "null" refs: description: An array of user refs to restrict the return values to by ID. items: $ref: '#/components/schemas/c1.api.user.v1.UserRef' readOnly: false type: - array - "null" roleIds: description: Search for users that have any of the role IDs on this list. items: type: string readOnly: false type: - array - "null" userStatuses: description: Search for users that have any of the statuses on this list. This can only be ENABLED, DISABLED, and DELETED items: enum: - UNKNOWN - ENABLED - DISABLED - DELETED type: string x-speakeasy-unknown-values: allow readOnly: false type: - array - "null" title: Search Users Request type: object x-speakeasy-name-override: SearchUsersRequest c1.api.user.v1.SearchUsersResponse: description: The SearchUsersResponse message. properties: expanded: description: List of related objects items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request items: $ref: '#/components/schemas/c1.api.user.v1.UserView' readOnly: false type: - array - "null" nextPageToken: description: The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: Search Users Response type: object x-speakeasy-name-override: SearchUsersResponse c1.api.user.v1.SetExpiringUserDelegationBindingByAdminRequestInput: description: SetExpiringUserDelegationBindingByAdminRequest is the request for an admin to set a temporary delegation binding for a user. properties: delegatedUserId: description: The ID of the user who will act as delegate. Empty string removes the delegation. readOnly: false type: - string - "null" delegationExpireAt: oneOf: - format: date-time readOnly: false type: string - type: "null" delegationStartAt: oneOf: - format: date-time readOnly: false type: string - type: "null" title: Set Expiring User Delegation Binding By Admin Request type: object x-speakeasy-name-override: SetExpiringUserDelegationBindingByAdminRequest c1.api.user.v1.SetExpiringUserDelegationBindingByAdminResponse: description: SetExpiringUserDelegationBindingByAdminResponse is the response containing the created or updated delegation binding. properties: item: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.ExpiringUserDelegationBinding' - type: "null" title: Set Expiring User Delegation Binding By Admin Response type: object x-speakeasy-name-override: SetExpiringUserDelegationBindingByAdminResponse c1.api.user.v1.User: description: The User object provides all of the details for an user, as well as some configuration. properties: createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" delegatedUserId: description: The id of the user to whom tasks will be automatically reassigned to. readOnly: false type: - string - "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" department: description: The department which the user belongs to in the organization. readOnly: true type: - string - "null" departmentSources: description: A list of objects mapped based on department attribute mappings configured in the system. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" directoryIds: description: A list of unique ids that represent different directories. items: type: string readOnly: true type: - array - "null" directoryStatus: description: The status of the user in the directory. enum: - UNKNOWN - ENABLED - DISABLED - DELETED readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow directoryStatusSources: description: A list of objects mapped based on directoryStatus attribute mappings configured in the system. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" displayName: description: The display name of the user. readOnly: true type: - string - "null" email: description: This is the user's email. readOnly: true type: - string - "null" emailSources: description: A list of source data for the email attribute. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" emails: description: This is a list of all of the user's emails from app users. items: type: string readOnly: true type: - array - "null" employeeIdSources: description: A list of source data for the employee IDs attribute. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" employeeIds: description: This is a list of all of the user's employee IDs from app users. items: type: string readOnly: true type: - array - "null" employmentStatus: description: The users employment status. readOnly: true type: - string - "null" employmentStatusSources: description: A list of objects mapped based on employmentStatus attribute mappings configured in the system. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" employmentType: description: The employment type of the user. readOnly: true type: - string - "null" employmentTypeSources: description: A list of objects mapped based on employmentType attribute mappings configured in the system. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" id: description: A unique identifier of the user. readOnly: true type: - string - "null" jobTitle: description: The job title of the user. readOnly: true type: - string - "null" jobTitleSources: description: A list of objects mapped based on jobTitle attribute mappings configured in the system. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" managerIds: description: A list of ids of the user's managers. items: type: string readOnly: true type: - array - "null" managerSources: description: A list of objects mapped based on managerId attribute mappings configured in the system. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" origin: description: The origin of the user, describing who owns the user's lifecycle. enum: - USER_ORIGIN_UNSPECIFIED - USER_ORIGIN_DIRECTORY - USER_ORIGIN_LOCAL - USER_ORIGIN_SYSTEM readOnly: true type: string x-speakeasy-unknown-values: allow profile: oneOf: - additionalProperties: true readOnly: true type: object - type: "null" roleIds: description: A list of unique identifiers that maps to ConductorOne's user roles let you assign users permissions tailored to the work they do in the software. items: type: string readOnly: false type: - array - "null" status: description: The status of the user in the system. enum: - UNKNOWN - ENABLED - DISABLED - DELETED readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow type: description: The type of the user. enum: - USER_TYPE_UNSPECIFIED - USER_TYPE_SYSTEM - USER_TYPE_HUMAN - USER_TYPE_SERVICE - USER_TYPE_AGENT readOnly: true type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" username: description: This is the user's primary username. Typically sourced from the primary directory. readOnly: true type: - string - "null" usernameSources: description: A list of source data for the usernames attribute. items: $ref: '#/components/schemas/c1.api.user.v1.UserAttributeMappingSource' readOnly: true type: - array - "null" usernames: description: This is a list of all of the user's usernames from app users. items: type: string readOnly: true type: - array - "null" title: User type: object x-speakeasy-name-override: User c1.api.user.v1.UserAttributeMappingSource: description: The UserAttributeMappingSource message. properties: appId: description: The appId field. readOnly: false type: - string - "null" appUserId: description: The appUserId field. readOnly: false type: - string - "null" appUserProfileAttributeKey: description: The appUserProfileAttributeKey field. readOnly: false type: - string - "null" userAttributeMappingId: description: The userAttributeMappingId field. readOnly: false type: - string - "null" value: description: The value field. readOnly: false type: - string - "null" title: User Attribute Mapping Source type: object x-speakeasy-name-override: UserAttributeMappingSource c1.api.user.v1.UserExpandMask: description: |- The user expand mask is used to indicate which related objects should be expanded in the response. The supported paths are 'role_ids', 'manager_ids', 'delegated_user_id', 'directory_ids', and '*'. properties: paths: description: An array of paths to be expanded in the response. items: type: string readOnly: false type: - array - "null" title: User Expand Mask type: object x-speakeasy-name-override: UserExpandMask c1.api.user.v1.UserRef: description: A reference to a user. properties: id: description: The id of the user. readOnly: false type: - string - "null" title: User Ref type: object x-speakeasy-name-override: UserRef c1.api.user.v1.UserServiceGetResponse: description: The UserServiceGetResponse returns a user view which has a user including JSONPATHs to the expanded items in the expanded array. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" userView: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.UserView' - type: "null" title: User Service Get Response type: object x-speakeasy-name-override: UserServiceGetResponse c1.api.user.v1.UserServiceListResponse: description: The UserServiceListResponse message contains a list of results and a nextPageToken if applicable. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" list: description: The list of results containing up to X results, where X is the page size defined in the request items: $ref: '#/components/schemas/c1.api.user.v1.UserView' readOnly: false type: - array - "null" nextPageToken: description: |- The nextPageToken is shown for the next page if the number of results is larger than the max page size. The server returns one page of results and the nextPageToken until all results are retreived. To retrieve the next page, use the same request and append a pageToken field with the value of nextPageToken shown on the previous page. readOnly: false type: - string - "null" title: User Service List Response type: object x-speakeasy-name-override: UserServiceListResponse c1.api.user.v1.UserView: description: The UserView object provides a user response object, as well as JSONPATHs to related objects provided by expanders. properties: delegatedUserPath: description: JSONPATH expression indicating the location of the user objects of delegates of the current user in the expanded array. readOnly: true type: - string - "null" directoriesPath: description: JSONPATH expression indicating the location of directory objects in the expanded array. readOnly: true type: - string - "null" managersPath: description: JSONPATH expression indicating the location of the user objects that managed the current user in the expanded array. readOnly: true type: - string - "null" rolesPath: description: JSONPATH expression indicating the location of the roles of the current user in the expanded array. readOnly: true type: - string - "null" user: oneOf: - $ref: '#/components/schemas/c1.api.user.v1.User' - type: "null" title: User View type: object x-speakeasy-name-override: UserView c1.api.vault.v1.GroupAuthzVault: description: GroupAuthzVault configures a vault that uses group-based authorization to control access to stored credentials. nullable: true title: Group Authz Vault type: object x-speakeasy-name-override: GroupAuthzVault c1.api.vault.v1.MagicVault: description: MagicVault configures a vault that grants time-limited credential access via magic links. nullable: true properties: allowUnauthedViews: description: Controls whether unauthenticated users can view credentials via a magic link. readOnly: false type: boolean allowedViews: description: The maximum number of times a credential in this vault may be viewed. format: uint32 readOnly: false type: integer title: Magic Vault type: object x-speakeasy-name-override: MagicVault c1.api.vault.v1.Vault: description: | Vault represents an external secret storage integration used to store connector credentials securely. This message contains a oneof named vault. Only a single field of the following list may be set at a time: - groupAuthzVault - magicVault properties: createdAt: format: date-time readOnly: true type: string credentialExpirationDuration: format: duration readOnly: false type: string deletedAt: format: date-time readOnly: true type: string description: description: A free-text description of the vault's purpose or configuration. readOnly: false type: string displayName: description: The human-readable name of the vault. readOnly: false type: string groupAuthzVault: $ref: '#/components/schemas/c1.api.vault.v1.GroupAuthzVault' id: description: The unique identifier of the vault. readOnly: false type: string magicVault: $ref: '#/components/schemas/c1.api.vault.v1.MagicVault' updatedAt: format: date-time readOnly: true type: string title: Vault type: object x-speakeasy-entity: Vault x-speakeasy-name-override: Vault c1.api.vault.v1.VaultServiceCreateRequest: description: | VaultServiceCreateRequest is the request message for creating a new vault. This message contains a oneof named vault. Only a single field of the following list may be set at a time: - groupAuthzVault - magicVault properties: description: description: A free-text description of the vault's purpose or configuration. readOnly: false type: string displayName: description: The human-readable name for the new vault. readOnly: false type: string groupAuthzVault: $ref: '#/components/schemas/c1.api.vault.v1.GroupAuthzVault' magicVault: $ref: '#/components/schemas/c1.api.vault.v1.MagicVault' ownerIds: description: The IDs of users to assign as owners of this vault. items: type: string nullable: true readOnly: false type: array required: - displayName title: Vault Service Create Request type: object x-speakeasy-name-override: VaultServiceCreateRequest c1.api.vault.v1.VaultServiceCreateResponse: description: VaultServiceCreateResponse is the response message for creating a new vault. properties: vault: $ref: '#/components/schemas/c1.api.vault.v1.Vault' title: Vault Service Create Response type: object x-speakeasy-name-override: VaultServiceCreateResponse c1.api.vault.v1.VaultServiceDeleteRequestInput: description: VaultServiceDeleteRequest is the request message for deleting a vault. title: Vault Service Delete Request type: object x-speakeasy-name-override: VaultServiceDeleteRequest c1.api.vault.v1.VaultServiceDeleteResponse: description: Empty response body. Status code indicates success. title: Vault Service Delete Response type: object x-speakeasy-name-override: VaultServiceDeleteResponse c1.api.vault.v1.VaultServiceGetResponse: description: VaultServiceGetResponse is the response message containing the requested vault. properties: vault: $ref: '#/components/schemas/c1.api.vault.v1.Vault' title: Vault Service Get Response type: object x-speakeasy-name-override: VaultServiceGetResponse c1.api.vault.v1.VaultServiceUpdateRequestInput: description: The VaultServiceUpdateRequest message contains the vault object to update and a field mask to indicate which fields to update. properties: updateMask: nullable: true readOnly: false type: string vault: $ref: '#/components/schemas/c1.api.vault.v1.Vault' title: Vault Service Update Request type: object x-speakeasy-name-override: VaultServiceUpdateRequest c1.api.vault.v1.VaultServiceUpdateResponse: description: VaultServiceUpdateResponse is the response message containing the updated vault. properties: vault: $ref: '#/components/schemas/c1.api.vault.v1.Vault' title: Vault Service Update Response type: object x-speakeasy-name-override: VaultServiceUpdateResponse c1.api.webhooks.v1.Webhook: description: The Webhook message. properties: callbackTimeout: format: duration readOnly: false type: string createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" deletedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" description: description: An optional description of the webhook's purpose. readOnly: false type: - string - "null" displayName: description: The human-readable name of the webhook. readOnly: false type: - string - "null" id: description: The unique identifier of the webhook. readOnly: false type: - string - "null" updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" url: description: The destination URL that receives event notification HTTP callbacks. readOnly: false type: - string - "null" title: Webhook type: object x-speakeasy-entity: Webhook x-speakeasy-name-override: WebhookEndpoint c1.api.webhooks.v1.WebhookInstance: description: The WebhookInstance message. properties: attempts: description: The attempts field. format: int32 readOnly: false type: - integer - "null" completedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" createdAt: oneOf: - format: date-time readOnly: true type: string - type: "null" expiresAt: oneOf: - format: date-time readOnly: true type: string - type: "null" id: description: The id field. readOnly: false type: - string - "null" lastAttemptedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" source: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSource' - type: "null" spec: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSpec' - type: "null" state: description: The state field. enum: - WEBHOOK_STATE_UNSPECIFIED - WEBHOOK_STATE_PENDING - WEBHOOK_STATE_RUNNING - WEBHOOK_STATE_ERROR - WEBHOOK_STATE_WAITING_CALLBACK - WEBHOOK_STATE_PROCESS_RESPONSE - WEBHOOK_STATE_SUCCESS - WEBHOOK_STATE_FATAL_ERROR readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow updatedAt: oneOf: - format: date-time readOnly: true type: string - type: "null" webhookId: description: The webhookId field. readOnly: false type: - string - "null" title: Webhook Instance type: object x-speakeasy-name-override: WebhookInstance c1.api.webhooks.v1.WebhookRef: description: The WebhookRef message. properties: id: description: The ID of the referenced webhook. readOnly: false type: - string - "null" title: Webhook Ref type: object x-speakeasy-name-override: WebhookRef c1.api.webhooks.v1.WebhookSource: description: | The WebhookSource message. This message contains a oneof named source. Only a single field of the following list may be set at a time: - test - policyPostAction - approvalStep - provisionStep - workflowStep properties: approvalStep: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSource.WebhookSourceApprovalStep' - type: "null" policyPostAction: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSource.WebhookSourcePolicyPostAction' - type: "null" provisionStep: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSource.WebhookSourceProvisionStep' - type: "null" test: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSource.WebhookSourceTest' - type: "null" workflowStep: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookSource.WebhookSourceWorkflowStep' - type: "null" title: Webhook Source type: object x-speakeasy-name-override: WebhookSource c1.api.webhooks.v1.WebhookSource.WebhookSourceApprovalStep: description: The WebhookSourceApprovalStep message. properties: ticketId: description: The ticketId field. readOnly: false type: - string - "null" title: Webhook Source Approval Step type: object x-speakeasy-name-override: WebhookSourceApprovalStep c1.api.webhooks.v1.WebhookSource.WebhookSourcePolicyPostAction: description: The WebhookSourcePolicyPostAction message. properties: ticketId: description: The ticketId field. readOnly: false type: - string - "null" title: Webhook Source Policy Post Action type: object x-speakeasy-name-override: WebhookSourcePolicyPostAction c1.api.webhooks.v1.WebhookSource.WebhookSourceProvisionStep: description: The WebhookSourceProvisionStep message. properties: ticketId: description: The ticketId field. readOnly: false type: - string - "null" title: Webhook Source Provision Step type: object x-speakeasy-name-override: WebhookSourceProvisionStep c1.api.webhooks.v1.WebhookSource.WebhookSourceTest: description: The WebhookSourceTest message. title: Webhook Source Test type: object x-speakeasy-name-override: WebhookSourceTest c1.api.webhooks.v1.WebhookSource.WebhookSourceWorkflowStep: description: The WebhookSourceWorkflowStep message. properties: workflowExecutionId: description: The workflowExecutionId field. format: int64 readOnly: false type: - string - "null" workflowStepId: description: The workflowStepId field. readOnly: false type: - string - "null" title: Webhook Source Workflow Step type: object x-speakeasy-name-override: WebhookSourceWorkflowStep c1.api.webhooks.v1.WebhookSpec: description: The WebhookSpec message. properties: destination: description: The destination field. readOnly: false type: - string - "null" title: Webhook Spec type: object x-speakeasy-name-override: WebhookSpec c1.api.webhooks.v1.WebhooksSearchRequest: description: The WebhooksSearchRequest message. properties: pageSize: description: The maximum number of webhooks to return per page. format: int32 readOnly: false type: - integer - "null" pageToken: description: The pagination token from a previous search response to fetch the next page. readOnly: false type: - string - "null" query: description: A text query to match against webhook names and descriptions. readOnly: false type: - string - "null" refs: description: Optional set of webhook references to restrict the search to specific webhooks. items: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookRef' readOnly: false type: - array - "null" title: Webhooks Search Request type: object x-speakeasy-name-override: WebhooksSearchRequest c1.api.webhooks.v1.WebhooksSearchResponse: description: The WebhooksSearchResponse message. properties: list: description: The list of webhooks matching the search criteria. items: $ref: '#/components/schemas/c1.api.webhooks.v1.Webhook' readOnly: false type: - array - "null" nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: Webhooks Search Response type: object x-speakeasy-name-override: WebhooksSearchResponse c1.api.webhooks.v1.WebhooksServiceCreateRequest: description: The WebhooksServiceCreateRequest message. properties: callbackTimeout: format: duration readOnly: false type: string description: description: An optional description of the webhook's purpose. readOnly: false type: - string - "null" displayName: description: The human-readable name for the new webhook. readOnly: false type: string url: description: The destination URL that will receive event notification HTTP callbacks. readOnly: false type: string required: - displayName - url title: Webhooks Service Create Request type: object x-speakeasy-name-override: WebhooksServiceCreateRequest c1.api.webhooks.v1.WebhooksServiceCreateResponse: description: The WebhooksServiceCreateResponse message. properties: webhook: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.Webhook' - type: "null" title: Webhooks Service Create Response type: object x-speakeasy-name-override: WebhooksServiceCreateResponse c1.api.webhooks.v1.WebhooksServiceDeleteRequestInput: description: The WebhooksServiceDeleteRequest message. title: Webhooks Service Delete Request type: object x-speakeasy-name-override: WebhooksServiceDeleteRequest c1.api.webhooks.v1.WebhooksServiceDeleteResponse: description: Empty response body. Status code indicates success. title: Webhooks Service Delete Response type: object x-speakeasy-name-override: WebhooksServiceDeleteResponse c1.api.webhooks.v1.WebhooksServiceGetResponse: description: The WebhooksServiceGetResponse message. properties: webhook: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.Webhook' - type: "null" title: Webhooks Service Get Response type: object x-speakeasy-name-override: WebhooksServiceGetResponse c1.api.webhooks.v1.WebhooksServiceListResponse: description: The WebhooksServiceListResponse message. properties: list: description: The list of webhooks for the current page. items: $ref: '#/components/schemas/c1.api.webhooks.v1.Webhook' readOnly: false type: - array - "null" nextPageToken: description: A token to retrieve the next page of results, or empty if there are no more results. readOnly: false type: - string - "null" title: Webhooks Service List Response type: object x-speakeasy-name-override: WebhooksServiceListResponse c1.api.webhooks.v1.WebhooksServiceTestRequestInput: description: The WebhooksServiceTestRequest message. title: Webhooks Service Test Request type: object x-speakeasy-name-override: WebhooksServiceTestRequest c1.api.webhooks.v1.WebhooksServiceTestResponse: description: The WebhooksServiceTestResponse message. properties: webhook: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.WebhookInstance' - type: "null" title: Webhooks Service Test Response type: object x-speakeasy-name-override: WebhooksServiceTestResponse c1.api.webhooks.v1.WebhooksServiceUpdateRequestInput: description: The WebhooksServiceUpdateRequest message contains the webhook object to update and a field mask to indicate which fields to update. It uses URL value for input. properties: updateMask: oneOf: - readOnly: false type: - string - "null" - type: "null" webhook: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.Webhook' - type: "null" title: Webhooks Service Update Request type: object x-speakeasy-name-override: WebhooksServiceUpdateRequest c1.api.webhooks.v1.WebhooksServiceUpdateResponse: description: The WebhooksServiceUpdateResponse message. properties: webhook: oneOf: - $ref: '#/components/schemas/c1.api.webhooks.v1.Webhook' - type: "null" title: Webhooks Service Update Response type: object x-speakeasy-name-override: WebhooksServiceUpdateResponse c1.api.workload_federation.v1.TestTokenStepResult: description: TestTokenStepResult represents the result of a single validation step. properties: actual: description: Actual value from the token. readOnly: false type: string detail: description: Human-readable detail message. readOnly: false type: string expected: description: Expected value (for comparison steps). readOnly: false type: string passed: description: Whether this step passed. readOnly: false type: boolean skipped: description: Whether this step was skipped (e.g., CIDR check when no allowlist configured). readOnly: false type: boolean stepName: description: Step name for display (e.g., "JWT decode", "Issuer match"). readOnly: false type: string title: Test Token Step Result type: object x-speakeasy-name-override: TestTokenStepResult c1.api.workload_federation.v1.WorkloadFederationProvider: description: WorkloadFederationProvider represents a tenant-level OIDC issuer registration. properties: createdAt: format: date-time readOnly: true type: string description: description: A description of what this provider is for. readOnly: false type: string disabled: description: Whether the provider is disabled. Disabled providers reject all token exchanges. readOnly: false type: boolean displayName: description: The display name of the provider. readOnly: false type: string id: description: The unique ID of the provider. readOnly: true type: string issuerUrl: description: The OIDC issuer URL. Immutable after creation. readOnly: true type: string updatedAt: format: date-time readOnly: true type: string wellKnownProvider: description: |- Well-known provider type. Drives UX (wizard presets, docs, icons). Set at creation time, immutable. enum: - WELL_KNOWN_WORKLOAD_PROVIDER_UNSPECIFIED - WELL_KNOWN_WORKLOAD_PROVIDER_CUSTOM - WELL_KNOWN_WORKLOAD_PROVIDER_GITHUB_ACTIONS - WELL_KNOWN_WORKLOAD_PROVIDER_GITLAB_CI - WELL_KNOWN_WORKLOAD_PROVIDER_HCP_TERRAFORM - WELL_KNOWN_WORKLOAD_PROVIDER_AWS_IAM_OUTBOUND readOnly: true type: string x-speakeasy-unknown-values: allow title: Workload Federation Provider type: object x-speakeasy-name-override: WorkloadFederationProvider c1.api.workload_federation.v1.WorkloadFederationServiceCreateProviderRequest: description: The WorkloadFederationServiceCreateProviderRequest message. properties: description: description: A description of what this provider is for. readOnly: false type: string displayName: description: The display name for the new provider. readOnly: false type: string issuerUrl: description: |- The OIDC issuer URL. Will be validated via OIDC discovery. Normalized on write: lowercase host, no trailing slash, HTTPS only. readOnly: false type: string wellKnownProvider: description: |- Well-known provider type. Required -- UNSPECIFIED is rejected. When set to a named source, the backend validates issuer_url consistency. enum: - WELL_KNOWN_WORKLOAD_PROVIDER_UNSPECIFIED - WELL_KNOWN_WORKLOAD_PROVIDER_CUSTOM - WELL_KNOWN_WORKLOAD_PROVIDER_GITHUB_ACTIONS - WELL_KNOWN_WORKLOAD_PROVIDER_GITLAB_CI - WELL_KNOWN_WORKLOAD_PROVIDER_HCP_TERRAFORM - WELL_KNOWN_WORKLOAD_PROVIDER_AWS_IAM_OUTBOUND readOnly: false type: string x-speakeasy-unknown-values: allow title: Workload Federation Service Create Provider Request type: object x-speakeasy-name-override: WorkloadFederationServiceCreateProviderRequest c1.api.workload_federation.v1.WorkloadFederationServiceCreateProviderResponse: description: The WorkloadFederationServiceCreateProviderResponse message. properties: provider: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationProvider' title: Workload Federation Service Create Provider Response type: object x-speakeasy-name-override: WorkloadFederationServiceCreateProviderResponse c1.api.workload_federation.v1.WorkloadFederationServiceCreateTrustRequestInput: description: The WorkloadFederationServiceCreateTrustRequest message. properties: allowSourceCidrs: description: |- IP allowlist for token exchange requests matching this trust. Accepts IPv4 (e.g. 10.0.0.0/24) or IPv6 (e.g. 2001:db8::/32) CIDRs. items: type: string nullable: true readOnly: false type: array conditionExpression: description: |- CEL expression evaluated against JWT claims. Must return bool. Compiled and validated before storage. readOnly: false type: string description: description: A description of what this trust policy matches. readOnly: false type: string displayName: description: The display name for the trust. readOnly: false type: string passthroughClaims: description: JWT claim names from the subject token to copy into the issued C1 token. items: type: string nullable: true readOnly: false type: array providerId: description: The provider this trust references. readOnly: false type: string scopedRoleIds: description: Scoped role IDs. Effective permissions = min(SP roles, trust.scoped_role_ids). items: type: string nullable: true readOnly: false type: array title: Workload Federation Service Create Trust Request type: object x-speakeasy-name-override: WorkloadFederationServiceCreateTrustRequest c1.api.workload_federation.v1.WorkloadFederationServiceCreateTrustResponse: description: The WorkloadFederationServiceCreateTrustResponse message. properties: trust: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationTrust' title: Workload Federation Service Create Trust Response type: object x-speakeasy-name-override: WorkloadFederationServiceCreateTrustResponse c1.api.workload_federation.v1.WorkloadFederationServiceDeleteProviderRequestInput: description: The WorkloadFederationServiceDeleteProviderRequest message. title: Workload Federation Service Delete Provider Request type: object x-speakeasy-name-override: WorkloadFederationServiceDeleteProviderRequest c1.api.workload_federation.v1.WorkloadFederationServiceDeleteProviderResponse: description: The WorkloadFederationServiceDeleteProviderResponse message. title: Workload Federation Service Delete Provider Response type: object x-speakeasy-name-override: WorkloadFederationServiceDeleteProviderResponse c1.api.workload_federation.v1.WorkloadFederationServiceDeleteTrustRequestInput: description: The WorkloadFederationServiceDeleteTrustRequest message. title: Workload Federation Service Delete Trust Request type: object x-speakeasy-name-override: WorkloadFederationServiceDeleteTrustRequest c1.api.workload_federation.v1.WorkloadFederationServiceDeleteTrustResponse: description: The WorkloadFederationServiceDeleteTrustResponse message. title: Workload Federation Service Delete Trust Response type: object x-speakeasy-name-override: WorkloadFederationServiceDeleteTrustResponse c1.api.workload_federation.v1.WorkloadFederationServiceGetProviderResponse: description: The WorkloadFederationServiceGetProviderResponse message. properties: provider: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationProvider' title: Workload Federation Service Get Provider Response type: object x-speakeasy-name-override: WorkloadFederationServiceGetProviderResponse c1.api.workload_federation.v1.WorkloadFederationServiceGetTrustResponse: description: The WorkloadFederationServiceGetTrustResponse message. properties: trust: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationTrust' title: Workload Federation Service Get Trust Response type: object x-speakeasy-name-override: WorkloadFederationServiceGetTrustResponse c1.api.workload_federation.v1.WorkloadFederationServiceListProvidersResponse: description: The WorkloadFederationServiceListProvidersResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationProvider' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Workload Federation Service List Providers Response type: object x-speakeasy-name-override: WorkloadFederationServiceListProvidersResponse c1.api.workload_federation.v1.WorkloadFederationServiceListTrustsResponse: description: The WorkloadFederationServiceListTrustsResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationTrust' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Workload Federation Service List Trusts Response type: object x-speakeasy-name-override: WorkloadFederationServiceListTrustsResponse c1.api.workload_federation.v1.WorkloadFederationServiceSearchTrustsRequest: description: The WorkloadFederationServiceSearchTrustsRequest message. properties: pageSize: description: The pageSize field. format: int32 readOnly: false type: integer pageToken: description: The pageToken field. readOnly: false type: string providerId: description: 'Optional: filter trusts by provider ID.' readOnly: false type: string query: description: 'Optional: full-text search on trust display name and description.' readOnly: false type: string servicePrincipalId: description: 'Optional: filter trusts by service principal ID.' readOnly: false type: string title: Workload Federation Service Search Trusts Request type: object x-speakeasy-name-override: WorkloadFederationServiceSearchTrustsRequest c1.api.workload_federation.v1.WorkloadFederationServiceSearchTrustsResponse: description: The WorkloadFederationServiceSearchTrustsResponse message. properties: list: description: The list field. items: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationTrust' nullable: true readOnly: false type: array nextPageToken: description: The nextPageToken field. readOnly: false type: string title: Workload Federation Service Search Trusts Response type: object x-speakeasy-name-override: WorkloadFederationServiceSearchTrustsResponse c1.api.workload_federation.v1.WorkloadFederationServiceTestCELRequest: description: The WorkloadFederationServiceTestCELRequest message. properties: claimsJson: description: |- The claims to evaluate against, as a JSON string. Parsed into map[string]any for CEL evaluation. readOnly: false type: string expression: description: The CEL expression to evaluate. Must return bool. readOnly: false type: string title: Workload Federation Service Test Cel Request type: object x-speakeasy-name-override: WorkloadFederationServiceTestCELRequest c1.api.workload_federation.v1.WorkloadFederationServiceTestCELResponse: description: The WorkloadFederationServiceTestCELResponse message. properties: error: description: Error message if compilation or evaluation failed. readOnly: false type: string expression: description: The expression that was evaluated (echo back). readOnly: false type: string matched: description: Whether the expression matched (returned true). readOnly: false type: boolean title: Workload Federation Service Test Cel Response type: object x-speakeasy-name-override: WorkloadFederationServiceTestCELResponse c1.api.workload_federation.v1.WorkloadFederationServiceTestTokenRequestInput: description: The WorkloadFederationServiceTestTokenRequest message. properties: sourceIp: description: |- Optional: override source IP for CIDR testing. If empty, uses the request's source IP. Accepts IPv4 (e.g. 10.0.0.5) or IPv6 (e.g. 2001:db8::1) addresses, optionally with a CIDR prefix. readOnly: false type: string subjectToken: description: The raw JWT to validate (the subject_token from a CI job). readOnly: false type: string title: Workload Federation Service Test Token Request type: object x-speakeasy-name-override: WorkloadFederationServiceTestTokenRequest c1.api.workload_federation.v1.WorkloadFederationServiceTestTokenResponse: description: The WorkloadFederationServiceTestTokenResponse message. properties: audienceValidation: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' celEvaluation: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' cidrCheck: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' decodedClaimsJson: description: |- The decoded JWT claims (best-effort, even if signature fails). Returned as JSON string for display. readOnly: false type: string issuerMatch: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' jwtDecode: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' overallResult: description: 'Overall result: true only if ALL steps passed.' readOnly: false type: boolean signatureValidation: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' tokenFreshness: $ref: '#/components/schemas/c1.api.workload_federation.v1.TestTokenStepResult' title: Workload Federation Service Test Token Response type: object x-speakeasy-name-override: WorkloadFederationServiceTestTokenResponse c1.api.workload_federation.v1.WorkloadFederationServiceUpdateProviderRequestInput: description: The WorkloadFederationServiceUpdateProviderRequest message. properties: provider: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationProvider' updateMask: nullable: true readOnly: false type: string title: Workload Federation Service Update Provider Request type: object x-speakeasy-name-override: WorkloadFederationServiceUpdateProviderRequest c1.api.workload_federation.v1.WorkloadFederationServiceUpdateProviderResponse: description: The WorkloadFederationServiceUpdateProviderResponse message. properties: provider: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationProvider' title: Workload Federation Service Update Provider Response type: object x-speakeasy-name-override: WorkloadFederationServiceUpdateProviderResponse c1.api.workload_federation.v1.WorkloadFederationServiceUpdateTrustRequestInput: description: The WorkloadFederationServiceUpdateTrustRequest message. properties: trust: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationTrust' updateMask: nullable: true readOnly: false type: string title: Workload Federation Service Update Trust Request type: object x-speakeasy-name-override: WorkloadFederationServiceUpdateTrustRequest c1.api.workload_federation.v1.WorkloadFederationServiceUpdateTrustResponse: description: The WorkloadFederationServiceUpdateTrustResponse message. properties: trust: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationTrust' title: Workload Federation Service Update Trust Response type: object x-speakeasy-name-override: WorkloadFederationServiceUpdateTrustResponse c1.api.workload_federation.v1.WorkloadFederationTrust: description: |- WorkloadFederationTrust represents a per-SP trust policy that references a tenant-level provider and defines a CEL condition for claim matching. properties: allowSourceCidrs: description: IP allowlist for token exchange requests matching this trust. items: type: string nullable: true readOnly: false type: array clientId: description: |- The full client ID of the trust (e.g., "clever-fox-42195@acme.conductorone.com/wfe"). Used as the client_id parameter in RFC 8693 token exchange requests. readOnly: true type: string conditionExpression: description: |- CEL expression evaluated against JWT claims. Must return bool. Example: claims.sub.startsWith("repo:acme/infra:") && claims.environment == "production" readOnly: false type: string createdAt: format: date-time readOnly: true type: string description: description: A description of what this trust policy matches. readOnly: false type: string disabled: description: Whether the trust is disabled. readOnly: false type: boolean displayName: description: The display name of the trust. readOnly: false type: string passthroughClaims: description: |- JWT claim names from the subject token to copy into the issued C1 token. Values are placed in the "c1wfc" claim as a map[string]string. Only string-valued claims are copied; non-string claims are silently skipped. Example: ["repository", "repository_owner", "job_workflow_ref"] items: type: string nullable: true readOnly: false type: array providerId: description: The provider ID this trust references. Immutable after creation. readOnly: true type: string scopedRoleIds: description: Scoped role IDs. Effective permissions = min(SP roles, trust.scoped_role_ids). items: type: string nullable: true readOnly: false type: array servicePrincipalId: description: The service principal user ID this trust belongs to. readOnly: true type: string updatedAt: format: date-time readOnly: true type: string title: Workload Federation Trust type: object x-speakeasy-name-override: WorkloadFederationTrust c1.mcp.role_mining.v1.AccessProfileMatch: description: The AccessProfileMatch message. properties: catalogDisplayName: description: The catalogDisplayName field. readOnly: false type: string catalogId: description: The catalogId field. readOnly: false type: string matchType: description: The matchType field. enum: - ACCESS_PROFILE_MATCH_TYPE_UNSPECIFIED - ACCESS_PROFILE_MATCH_TYPE_EXACT - ACCESS_PROFILE_MATCH_TYPE_SUPERSET - ACCESS_PROFILE_MATCH_TYPE_PARTIAL readOnly: false type: string x-speakeasy-unknown-values: allow missingEntitlements: description: The missingEntitlements field. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.CohortEntitlement' nullable: true readOnly: false type: array overlapRatio: description: The overlapRatio field. readOnly: false type: number title: Access Profile Match type: object x-speakeasy-name-override: AccessProfileMatch c1.mcp.role_mining.v1.AttributeFacet: description: AttributeFacet represents a filterable user profile attribute with its available values. properties: attribute: description: The attribute field. readOnly: false type: string displayName: description: The displayName field. readOnly: false type: string values: description: The values field. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.AttributeValue' nullable: true readOnly: false type: array title: Attribute Facet type: object x-speakeasy-name-override: AttributeFacet c1.mcp.role_mining.v1.AttributeValue: description: AttributeValue represents a single value within a facet. properties: displayName: description: The displayName field. readOnly: false type: string userCount: description: The userCount field. format: int32 readOnly: false type: integer value: description: The value field. readOnly: false type: string title: Attribute Value type: object x-speakeasy-name-override: RoleMiningAttributeValue c1.mcp.role_mining.v1.CohortEntitlement: description: The CohortEntitlement message. properties: appDisplayName: description: The appDisplayName field. readOnly: false type: string appId: description: The appId field. readOnly: false type: string appResourceDisplayName: description: The appResourceDisplayName field. readOnly: false type: string appResourceTypeDisplayName: description: The appResourceTypeDisplayName field. readOnly: false type: string coverage: description: The coverage field. readOnly: false type: number entitlementDisplayName: description: The entitlementDisplayName field. readOnly: false type: string entitlementId: description: The entitlementId field. readOnly: false type: string grantedCount: description: The grantedCount field. format: int32 readOnly: false type: integer title: Cohort Entitlement type: object x-speakeasy-name-override: CohortEntitlement c1.mcp.role_mining.v1.EntitlementCluster: description: The EntitlementCluster message. properties: avgCoverage: description: The avgCoverage field. readOnly: false type: number avgSimilarity: description: The avgSimilarity field. readOnly: false type: number entitlements: description: The entitlements field. items: $ref: '#/components/schemas/c1.mcp.role_mining.v1.CohortEntitlement' nullable: true readOnly: false type: array userCount: description: The userCount field. format: int32 readOnly: false type: integer title: Entitlement Cluster type: object x-speakeasy-name-override: EntitlementCluster c1.mcp.role_mining.v1.ProfileFilter: description: |- ProfileFilter defines a filter on a user profile attribute. Use GetOrgOverview to discover available attribute keys and their values. properties: attribute: description: The attribute field. readOnly: false type: string values: description: The values field. items: type: string nullable: true readOnly: false type: array title: Profile Filter type: object x-speakeasy-name-override: ProfileFilter c1.webhooks.v1.Body: description: The Body message. properties: callbackUrl: description: |- If your receiver returns HTTP Status Code 202 Accepted, it MUST send its resposne to this URL as a POST message body. If your receiver returns any other status code, it is expected to not use the callback url. This value will match the "Webhook-Callback-Url" header. readOnly: false type: - string - "null" event: description: |- The type of event that triggered this Webhook. This value will match the "Webhook-Event" header. The value will be one of: - "c1.webhooks.v1.PayloadTest" - "c1.webhooks.v1.PayloadPolicyApprovalStep" - "c1.webhooks.v1.PayloadPolicyPostAction" - "c1.webhooks.v1.PayloadProvisionStep" readOnly: false type: - string - "null" payload: oneOf: - additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object - type: "null" version: description: |- version contains the constant value "v1". Future versions of the Webhook body will use a different string. This value will match the "Webhook-Version" header. readOnly: false type: - string - "null" webhookId: description: |- Unique ID for this Webhook. Your receiver should only process this ID once. This value will match the "Webhook-Id" header. readOnly: false type: - string - "null" title: Body type: object x-speakeasy-include: true x-speakeasy-name-override: Body c1.webhooks.v1.PayloadPolicyApprovalStep: description: The PayloadPolicyApprovalStep message. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Payload Policy Approval Step type: object x-speakeasy-include: true x-speakeasy-name-override: PayloadPolicyApprovalStep c1.webhooks.v1.PayloadPolicyPostAction: description: The PayloadPolicyPostAction message. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Payload Policy Post Action type: object x-speakeasy-include: true x-speakeasy-name-override: PayloadPolicyPostAction c1.webhooks.v1.PayloadProvisionStep: description: The PayloadProvisionStep message. properties: expanded: description: List of serialized related objects. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" taskView: oneOf: - $ref: '#/components/schemas/c1.api.task.v1.TaskView' - type: "null" title: Payload Provision Step type: object x-speakeasy-include: true x-speakeasy-name-override: PayloadProvisionStep c1.webhooks.v1.PayloadTest: description: The PayloadTest message. title: Payload Test type: object x-speakeasy-include: true x-speakeasy-name-override: PayloadTest c1.webhooks.v1.PayloadWorkflowStep: description: The PayloadWorkflowStep message. properties: context: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" workflowExecutionId: description: The workflow execution ID format: int64 readOnly: false type: - string - "null" workflowExecutionStepId: description: The workflow execution step ID readOnly: false type: - string - "null" workflowId: description: The workflow template ID readOnly: false type: - string - "null" title: Payload Workflow Step type: object x-speakeasy-include: true x-speakeasy-name-override: PayloadWorkflowStep c1.webhooks.v1.ResponsePolicyApprovalStep: description: | The ResponsePolicyApprovalStep message. This message contains a oneof named action. Only a single field of the following list may be set at a time: - approve - deny - reassign - replacePolicy properties: approve: oneOf: - $ref: '#/components/schemas/c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalStepApprove' - type: "null" deny: oneOf: - $ref: '#/components/schemas/c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalStepDeny' - type: "null" reassign: oneOf: - $ref: '#/components/schemas/c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalStepReassign' - type: "null" replacePolicy: oneOf: - $ref: '#/components/schemas/c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalReplacePolicy' - type: "null" version: description: |- version contains the constant value "v1". Future versions of the Webhook Response will use a different string. readOnly: false type: - string - "null" title: Response Policy Approval Step type: object x-speakeasy-include: true x-speakeasy-name-override: ResponsePolicyApprovalStep c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalReplacePolicy: description: The ResponsePolicyApprovalReplacePolicy message. properties: comment: description: The comment field. readOnly: false type: - string - "null" policySteps: description: The policySteps field. items: $ref: '#/components/schemas/c1.api.policy.v1.PolicyStep' readOnly: false type: - array - "null" title: Response Policy Approval Replace Policy type: object x-speakeasy-name-override: ResponsePolicyApprovalReplacePolicy c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalStepApprove: description: The ResponsePolicyApprovalStepApprove message. properties: comment: description: optional comment readOnly: false type: - string - "null" title: Response Policy Approval Step Approve type: object x-speakeasy-name-override: ResponsePolicyApprovalStepApprove c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalStepDeny: description: The ResponsePolicyApprovalStepDeny message. properties: comment: description: optional comment readOnly: false type: - string - "null" title: Response Policy Approval Step Deny type: object x-speakeasy-name-override: ResponsePolicyApprovalStepDeny c1.webhooks.v1.ResponsePolicyApprovalStep.ResponsePolicyApprovalStepReassign: description: The ResponsePolicyApprovalStepReassign message. properties: comment: description: optional comment readOnly: false type: - string - "null" newStepUserIds: description: The newStepUserIds field. items: type: string readOnly: false type: - array - "null" title: Response Policy Approval Step Reassign type: object x-speakeasy-name-override: ResponsePolicyApprovalStepReassign c1.webhooks.v1.ResponsePolicyPostAction: description: The ResponsePolicyPostAction message. properties: version: description: |- version contains the constant value "v1". Future versions of the Webhook Response will use a different string. readOnly: false type: - string - "null" title: Response Policy Post Action type: object x-speakeasy-include: true x-speakeasy-name-override: ResponsePolicyPostAction c1.webhooks.v1.ResponseProvisionStep: description: | The ResponseProvisionStep message. This message contains a oneof named outcome. Only a single field of the following list may be set at a time: - complete - errored properties: complete: oneOf: - $ref: '#/components/schemas/c1.webhooks.v1.ResponseProvisionStep.ResponseProvisionStepComplete' - type: "null" errored: oneOf: - $ref: '#/components/schemas/c1.webhooks.v1.ResponseProvisionStep.ResponseProvisionStepErrored' - type: "null" version: description: |- version contains the constant value "v1". Future versions of the Webhook Response will use a different string. readOnly: false type: - string - "null" title: Response Provision Step type: object x-speakeasy-include: true x-speakeasy-name-override: ResponseProvisionStep c1.webhooks.v1.ResponseProvisionStep.ResponseProvisionStepComplete: description: The ResponseProvisionStepComplete message. properties: comment: description: optional comment readOnly: false type: - string - "null" title: Response Provision Step Complete type: object x-speakeasy-name-override: ResponseProvisionStepComplete c1.webhooks.v1.ResponseProvisionStep.ResponseProvisionStepErrored: description: The ResponseProvisionStepErrored message. properties: comment: description: optional comment readOnly: false type: - string - "null" title: Response Provision Step Errored type: object x-speakeasy-name-override: ResponseProvisionStepErrored c1.webhooks.v1.ResponseTest: description: The ResponseTest message. properties: version: description: |- version contains the constant value "v1". Future versions of the Webhook Response will use a different string. readOnly: false type: - string - "null" title: Response Test type: object x-speakeasy-include: true x-speakeasy-name-override: ResponseTest c1.webhooks.v1.ResponseWorkflowStep: description: The ResponseWorkflowStep message. properties: context: oneOf: - additionalProperties: true readOnly: false type: object - type: "null" version: description: |- version contains the constant value "v1". Future versions of the Webhook Response will use a different string. readOnly: false type: - string - "null" title: Response Workflow Step type: object x-speakeasy-include: true x-speakeasy-name-override: ResponseWorkflowStep google.rpc.Status: description: |- The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). properties: code: description: The status code, which should be an enum value of [google.rpc.Code][google.rpc.Code]. format: int32 readOnly: false type: - integer - "null" details: description: |- A list of messages that carry the error details. There is a common set of message types for APIs to use. items: additionalProperties: true description: Contains an arbitrary serialized message along with a @type that describes the type of the serialized message. properties: '@type': description: The type of the serialized message. type: string readOnly: false type: object readOnly: false type: - array - "null" message: description: |- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] field, or localized by the client. readOnly: false type: - string - "null" title: Status type: object x-speakeasy-name-override: Status validate.AnyRules: description: |- AnyRules describe constraints applied exclusively to the `google.protobuf.Any` well-known type properties: in: description: |- In specifies that this field's `type_url` must be equal to one of the specified values. items: type: string readOnly: false type: - array - "null" notIn: description: |- NotIn specifies that this field's `type_url` must not be equal to any of the specified values. items: type: string readOnly: false type: - array - "null" required: description: Required specifies that this field must be set readOnly: false type: - boolean - "null" title: Any Rules type: object x-speakeasy-name-override: AnyRules validate.BoolRules: description: BoolRules describes the constraints applied to `bool` values properties: const: description: Const specifies that this field must be exactly the specified value readOnly: false type: - boolean - "null" title: Bool Rules type: object x-speakeasy-name-override: BoolRules validate.BytesRules: description: | BytesRules describe the constraints applied to `bytes` values This message contains a oneof named well_known. Only a single field of the following list may be set at a time: - ip - ipv4 - ipv6 properties: const: description: Const specifies that this field must be exactly the specified value format: base64 readOnly: false type: - string - "null" contains: description: |- Contains specifies that this field must have the specified bytes anywhere in the string. format: base64 readOnly: false type: - string - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: base64 type: string readOnly: false type: - array - "null" ip: description: |- Ip specifies that the field must be a valid IP (v4 or v6) address in byte format This field is part of the `well_known` oneof. See the documentation for `validate.BytesRules` for more details. readOnly: false type: - boolean - "null" ipv4: description: |- Ipv4 specifies that the field must be a valid IPv4 address in byte format This field is part of the `well_known` oneof. See the documentation for `validate.BytesRules` for more details. readOnly: false type: - boolean - "null" ipv6: description: |- Ipv6 specifies that the field must be a valid IPv6 address in byte format This field is part of the `well_known` oneof. See the documentation for `validate.BytesRules` for more details. readOnly: false type: - boolean - "null" len: description: Len specifies that this field must be the specified number of bytes format: uint64 readOnly: false type: - string - "null" maxLen: description: |- MaxLen specifies that this field must be the specified number of bytes at a maximum format: uint64 readOnly: false type: - string - "null" minLen: description: |- MinLen specifies that this field must be the specified number of bytes at a minimum format: uint64 readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: base64 type: string readOnly: false type: - array - "null" pattern: description: |- Pattern specifes that this field must match against the specified regular expression (RE2 syntax). The included expression should elide any delimiters. readOnly: false type: - string - "null" prefix: description: |- Prefix specifies that this field must have the specified bytes at the beginning of the string. format: base64 readOnly: false type: - string - "null" suffix: description: |- Suffix specifies that this field must have the specified bytes at the end of the string. format: base64 readOnly: false type: - string - "null" title: Bytes Rules type: object x-speakeasy-name-override: BytesRules validate.DoubleRules: description: DoubleRules describes the constraints applied to `double` values properties: const: description: Const specifies that this field must be exactly the specified value readOnly: false type: - number - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. readOnly: false type: - number - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. readOnly: false type: - number - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: type: number readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive readOnly: false type: - number - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive readOnly: false type: - number - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: type: number readOnly: false type: - array - "null" title: Double Rules type: object x-speakeasy-name-override: DoubleRules validate.DurationRules: description: |- DurationRules describe the constraints applied exclusively to the `google.protobuf.Duration` well-known type properties: const: oneOf: - format: duration readOnly: false type: string - type: "null" gt: oneOf: - format: duration readOnly: false type: string - type: "null" gte: oneOf: - format: duration readOnly: false type: string - type: "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: duration readOnly: false type: string readOnly: false type: - array - "null" lt: oneOf: - format: duration readOnly: false type: string - type: "null" lte: oneOf: - format: duration readOnly: false type: string - type: "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: duration readOnly: false type: string readOnly: false type: - array - "null" required: description: Required specifies that this field must be set readOnly: false type: - boolean - "null" title: Duration Rules type: object x-speakeasy-name-override: DurationRules validate.EnumRules: description: EnumRules describe the constraints applied to enum values properties: const: description: Const specifies that this field must be exactly the specified value format: int32 readOnly: false type: - integer - "null" definedOnly: description: |- DefinedOnly specifies that this field must be only one of the defined values for this enum, failing on any undefined value. readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" title: Enum Rules type: object x-speakeasy-name-override: EnumRules validate.FieldRules: description: | FieldRules encapsulates the rules for each type of field. Depending on the field, the correct set should be used to ensure proper validations. This message contains a oneof named type. Only a single field of the following list may be set at a time: - float - double - int32 - int64 - uint32 - uint64 - sint32 - sint64 - fixed32 - fixed64 - sfixed32 - sfixed64 - bool - string - bytes - enum - repeated - map - any - duration - timestamp properties: any: oneOf: - $ref: '#/components/schemas/validate.AnyRules' - type: "null" bool: oneOf: - $ref: '#/components/schemas/validate.BoolRules' - type: "null" bytes: oneOf: - $ref: '#/components/schemas/validate.BytesRules' - type: "null" double: oneOf: - $ref: '#/components/schemas/validate.DoubleRules' - type: "null" duration: oneOf: - $ref: '#/components/schemas/validate.DurationRules' - type: "null" enum: oneOf: - $ref: '#/components/schemas/validate.EnumRules' - type: "null" fixed32: oneOf: - $ref: '#/components/schemas/validate.Fixed32Rules' - type: "null" fixed64: oneOf: - $ref: '#/components/schemas/validate.Fixed64Rules' - type: "null" float: oneOf: - $ref: '#/components/schemas/validate.FloatRules' - type: "null" int32: oneOf: - $ref: '#/components/schemas/validate.Int32Rules' - type: "null" int64: oneOf: - $ref: '#/components/schemas/validate.Int64Rules' - type: "null" map: oneOf: - $ref: '#/components/schemas/validate.MapRules' - type: "null" message: oneOf: - $ref: '#/components/schemas/validate.MessageRules' - type: "null" repeated: oneOf: - $ref: '#/components/schemas/validate.RepeatedRules' - type: "null" sfixed32: oneOf: - $ref: '#/components/schemas/validate.SFixed32Rules' - type: "null" sfixed64: oneOf: - $ref: '#/components/schemas/validate.SFixed64Rules' - type: "null" sint32: oneOf: - $ref: '#/components/schemas/validate.SInt32Rules' - type: "null" sint64: oneOf: - $ref: '#/components/schemas/validate.SInt64Rules' - type: "null" string: oneOf: - $ref: '#/components/schemas/validate.StringRules' - type: "null" timestamp: oneOf: - $ref: '#/components/schemas/validate.TimestampRules' - type: "null" uint32: oneOf: - $ref: '#/components/schemas/validate.UInt32Rules' - type: "null" uint64: oneOf: - $ref: '#/components/schemas/validate.UInt64Rules' - type: "null" title: Field Rules type: object x-speakeasy-name-override: FieldRules validate.Fixed32Rules: description: Fixed32Rules describes the constraints applied to `fixed32` values properties: const: description: Const specifies that this field must be exactly the specified value format: uint32 readOnly: false type: - integer - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: uint32 readOnly: false type: - integer - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: uint32 readOnly: false type: - integer - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: uint32 type: integer readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: uint32 readOnly: false type: - integer - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: uint32 readOnly: false type: - integer - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: uint32 type: integer readOnly: false type: - array - "null" title: Fixed 32 Rules type: object x-speakeasy-name-override: Fixed32Rules validate.Fixed64Rules: description: Fixed64Rules describes the constraints applied to `fixed64` values properties: const: description: Const specifies that this field must be exactly the specified value format: uint64 readOnly: false type: - string - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: uint64 readOnly: false type: - string - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: uint64 readOnly: false type: - string - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: uint64 type: string readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: uint64 readOnly: false type: - string - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: uint64 readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: uint64 type: string readOnly: false type: - array - "null" title: Fixed 64 Rules type: object x-speakeasy-name-override: Fixed64Rules validate.FloatRules: description: FloatRules describes the constraints applied to `float` values properties: const: description: Const specifies that this field must be exactly the specified value readOnly: false type: - number - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. readOnly: false type: - number - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. readOnly: false type: - number - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: type: number readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive readOnly: false type: - number - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive readOnly: false type: - number - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: type: number readOnly: false type: - array - "null" title: Float Rules type: object x-speakeasy-name-override: FloatRules validate.Int32Rules: description: Int32Rules describes the constraints applied to `int32` values properties: const: description: Const specifies that this field must be exactly the specified value format: int32 readOnly: false type: - integer - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: int32 readOnly: false type: - integer - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: int32 readOnly: false type: - integer - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: int32 readOnly: false type: - integer - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: int32 readOnly: false type: - integer - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" title: Int 32 Rules type: object x-speakeasy-name-override: Int32Rules validate.Int64Rules: description: Int64Rules describes the constraints applied to `int64` values properties: const: description: Const specifies that this field must be exactly the specified value format: int64 readOnly: false type: - string - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: int64 readOnly: false type: - string - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: int64 readOnly: false type: - string - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int64 type: string readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: int64 readOnly: false type: - string - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: int64 readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int64 type: string readOnly: false type: - array - "null" title: Int 64 Rules type: object x-speakeasy-name-override: Int64Rules validate.MapRules: description: MapRules describe the constraints applied to `map` values properties: ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" keys: oneOf: - $ref: '#/components/schemas/validate.FieldRules' - type: "null" maxPairs: description: |- MaxPairs specifies that this field must have the specified number of KVs at a maximum format: uint64 readOnly: false type: - string - "null" minPairs: description: |- MinPairs specifies that this field must have the specified number of KVs at a minimum format: uint64 readOnly: false type: - string - "null" noSparse: description: |- NoSparse specifies values in this field cannot be unset. This only applies to map's with message value types. readOnly: false type: - boolean - "null" values: oneOf: - $ref: '#/components/schemas/validate.FieldRules' - type: "null" title: Map Rules type: object x-speakeasy-name-override: MapRules validate.MessageRules: description: |- MessageRules describe the constraints applied to embedded message values. For message-type fields, validation is performed recursively. properties: required: description: Required specifies that this field must be set readOnly: false type: - boolean - "null" skip: description: |- Skip specifies that the validation rules of this field should not be evaluated readOnly: false type: - boolean - "null" title: Message Rules type: object x-speakeasy-name-override: MessageRules validate.RepeatedRules: description: RepeatedRules describe the constraints applied to `repeated` values properties: ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" items: oneOf: - $ref: '#/components/schemas/validate.FieldRules' - type: "null" maxItems: description: |- MaxItems specifies that this field must have the specified number of items at a maximum format: uint64 readOnly: false type: - string - "null" minItems: description: |- MinItems specifies that this field must have the specified number of items at a minimum format: uint64 readOnly: false type: - string - "null" unique: description: |- Unique specifies that all elements in this field must be unique. This contraint is only applicable to scalar and enum types (messages are not supported). readOnly: false type: - boolean - "null" title: Repeated Rules type: object x-speakeasy-name-override: RepeatedRules validate.SFixed32Rules: description: SFixed32Rules describes the constraints applied to `sfixed32` values properties: const: description: Const specifies that this field must be exactly the specified value format: int32 readOnly: false type: - integer - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: int32 readOnly: false type: - integer - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: int32 readOnly: false type: - integer - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: int32 readOnly: false type: - integer - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: int32 readOnly: false type: - integer - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" title: S Fixed 32 Rules type: object x-speakeasy-name-override: SFixed32Rules validate.SFixed64Rules: description: SFixed64Rules describes the constraints applied to `sfixed64` values properties: const: description: Const specifies that this field must be exactly the specified value format: int64 readOnly: false type: - string - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: int64 readOnly: false type: - string - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: int64 readOnly: false type: - string - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int64 type: string readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: int64 readOnly: false type: - string - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: int64 readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int64 type: string readOnly: false type: - array - "null" title: S Fixed 64 Rules type: object x-speakeasy-name-override: SFixed64Rules validate.SInt32Rules: description: SInt32Rules describes the constraints applied to `sint32` values properties: const: description: Const specifies that this field must be exactly the specified value format: int32 readOnly: false type: - integer - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: int32 readOnly: false type: - integer - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: int32 readOnly: false type: - integer - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: int32 readOnly: false type: - integer - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: int32 readOnly: false type: - integer - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int32 type: integer readOnly: false type: - array - "null" title: S Int 32 Rules type: object x-speakeasy-name-override: SInt32Rules validate.SInt64Rules: description: SInt64Rules describes the constraints applied to `sint64` values properties: const: description: Const specifies that this field must be exactly the specified value format: int64 readOnly: false type: - string - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: int64 readOnly: false type: - string - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: int64 readOnly: false type: - string - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: int64 type: string readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: int64 readOnly: false type: - string - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: int64 readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: int64 type: string readOnly: false type: - array - "null" title: S Int 64 Rules type: object x-speakeasy-name-override: SInt64Rules validate.StringRules: description: | StringRules describe the constraints applied to `string` values This message contains a oneof named well_known. Only a single field of the following list may be set at a time: - email - hostname - ip - ipv4 - ipv6 - uri - uriRef - address - uuid - wellKnownRegex properties: address: description: |- Address specifies that the field must be either a valid hostname as defined by RFC 1034 (which does not support internationalized domain names or IDNs), or it can be a valid IP (v4 or v6). This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" const: description: Const specifies that this field must be exactly the specified value readOnly: false type: - string - "null" contains: description: |- Contains specifies that this field must have the specified substring anywhere in the string. readOnly: false type: - string - "null" email: description: |- Email specifies that the field must be a valid email address as defined by RFC 5322 This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" hostname: description: |- Hostname specifies that the field must be a valid hostname as defined by RFC 1034. This constraint does not support internationalized domain names (IDNs). This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: type: string readOnly: false type: - array - "null" ip: description: |- Ip specifies that the field must be a valid IP (v4 or v6) address. Valid IPv6 addresses should not include surrounding square brackets. This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" ipv4: description: |- Ipv4 specifies that the field must be a valid IPv4 address. This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" ipv6: description: |- Ipv6 specifies that the field must be a valid IPv6 address. Valid IPv6 addresses should not include surrounding square brackets. This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" len: description: |- Len specifies that this field must be the specified number of characters (Unicode code points). Note that the number of characters may differ from the number of bytes in the string. format: uint64 readOnly: false type: - string - "null" lenBytes: description: |- LenBytes specifies that this field must be the specified number of bytes at a minimum format: uint64 readOnly: false type: - string - "null" maxBytes: description: |- MaxBytes specifies that this field must be the specified number of bytes at a maximum format: uint64 readOnly: false type: - string - "null" maxLen: description: |- MaxLen specifies that this field must be the specified number of characters (Unicode code points) at a maximum. Note that the number of characters may differ from the number of bytes in the string. format: uint64 readOnly: false type: - string - "null" minBytes: description: |- MinBytes specifies that this field must be the specified number of bytes at a minimum format: uint64 readOnly: false type: - string - "null" minLen: description: |- MinLen specifies that this field must be the specified number of characters (Unicode code points) at a minimum. Note that the number of characters may differ from the number of bytes in the string. format: uint64 readOnly: false type: - string - "null" notContains: description: |- NotContains specifies that this field cannot have the specified substring anywhere in the string. readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: type: string readOnly: false type: - array - "null" pattern: description: |- Pattern specifes that this field must match against the specified regular expression (RE2 syntax). The included expression should elide any delimiters. readOnly: false type: - string - "null" prefix: description: |- Prefix specifies that this field must have the specified substring at the beginning of the string. readOnly: false type: - string - "null" strict: description: |- This applies to regexes HTTP_HEADER_NAME and HTTP_HEADER_VALUE to enable strict header validation. By default, this is true, and HTTP header validations are RFC-compliant. Setting to false will enable a looser validations that only disallows \r\n\0 characters, which can be used to bypass header matching rules. readOnly: false type: - boolean - "null" suffix: description: |- Suffix specifies that this field must have the specified substring at the end of the string. readOnly: false type: - string - "null" uri: description: |- Uri specifies that the field must be a valid, absolute URI as defined by RFC 3986 This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" uriRef: description: |- UriRef specifies that the field must be a valid URI as defined by RFC 3986 and may be relative or absolute. This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" uuid: description: |- Uuid specifies that the field must be a valid UUID as defined by RFC 4122 This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. readOnly: false type: - boolean - "null" wellKnownRegex: description: |- WellKnownRegex specifies a common well known pattern defined as a regex. This field is part of the `well_known` oneof. See the documentation for `validate.StringRules` for more details. enum: - UNKNOWN - HTTP_HEADER_NAME - HTTP_HEADER_VALUE readOnly: false type: - string - "null" x-speakeasy-unknown-values: allow title: String Rules type: object x-speakeasy-name-override: StringRules validate.TimestampRules: description: |- TimestampRules describe the constraints applied exclusively to the `google.protobuf.Timestamp` well-known type properties: const: oneOf: - format: date-time readOnly: false type: string - type: "null" gt: oneOf: - format: date-time readOnly: false type: string - type: "null" gtNow: description: |- GtNow specifies that this must be greater than the current time. GtNow can only be used with the Within rule. readOnly: false type: - boolean - "null" gte: oneOf: - format: date-time readOnly: false type: string - type: "null" lt: oneOf: - format: date-time readOnly: false type: string - type: "null" ltNow: description: |- LtNow specifies that this must be less than the current time. LtNow can only be used with the Within rule. readOnly: false type: - boolean - "null" lte: oneOf: - format: date-time readOnly: false type: string - type: "null" required: description: Required specifies that this field must be set readOnly: false type: - boolean - "null" within: oneOf: - format: duration readOnly: false type: string - type: "null" title: Timestamp Rules type: object x-speakeasy-name-override: TimestampRules validate.UInt32Rules: description: UInt32Rules describes the constraints applied to `uint32` values properties: const: description: Const specifies that this field must be exactly the specified value format: uint32 readOnly: false type: - integer - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: uint32 readOnly: false type: - integer - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: uint32 readOnly: false type: - integer - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: uint32 type: integer readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: uint32 readOnly: false type: - integer - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: uint32 readOnly: false type: - integer - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: uint32 type: integer readOnly: false type: - array - "null" title: U Int 32 Rules type: object x-speakeasy-name-override: UInt32Rules validate.UInt64Rules: description: UInt64Rules describes the constraints applied to `uint64` values properties: const: description: Const specifies that this field must be exactly the specified value format: uint64 readOnly: false type: - string - "null" gt: description: |- Gt specifies that this field must be greater than the specified value, exclusive. If the value of Gt is larger than a specified Lt or Lte, the range is reversed. format: uint64 readOnly: false type: - string - "null" gte: description: |- Gte specifies that this field must be greater than or equal to the specified value, inclusive. If the value of Gte is larger than a specified Lt or Lte, the range is reversed. format: uint64 readOnly: false type: - string - "null" ignoreEmpty: description: |- IgnoreEmpty specifies that the validation rules of this field should be evaluated only if the field is not empty readOnly: false type: - boolean - "null" in: description: |- In specifies that this field must be equal to one of the specified values items: format: uint64 type: string readOnly: false type: - array - "null" lt: description: |- Lt specifies that this field must be less than the specified value, exclusive format: uint64 readOnly: false type: - string - "null" lte: description: |- Lte specifies that this field must be less than or equal to the specified value, inclusive format: uint64 readOnly: false type: - string - "null" notIn: description: |- NotIn specifies that this field cannot be equal to one of the specified values items: format: uint64 type: string readOnly: false type: - array - "null" title: U Int 64 Rules type: object x-speakeasy-name-override: UInt64Rules securitySchemes: bearerAuth: scheme: bearer type: http oauth: description: |- This API uses OAuth2 with the Client Credential flow. Client Credentials must be sent in the BODY, not the headers. For an example of how to implement this, refer to the [c1TokenSource.Token()](https://github.com/ConductorOne/conductorone-sdk-go/blob/3375fe7c0126d17e7ec4e711693dee7b791023aa/token_source.go#L101-L187) function. flows: clientCredentials: scopes: {} tokenUrl: /auth/v1/token type: oauth2 info: description: The C1 API is a HTTP API for managing C1 resources. title: C1 API version: 0.1.0-alpha openapi: 3.1.0 paths: /api/v1/a2ui/conversations/{conversation_id}/surfaces: get: description: ListSurfaces returns active surfaces for a conversation. operationId: c1.api.a2ui.v1.A2UIService.ListSurfaces parameters: - in: path name: conversation_id required: true schema: description: The conversationId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIServiceListSurfacesResponse' description: A2UIServiceListSurfacesResponse returns active surfaces. summary: List Surfaces tags: - A 2 UI x-speakeasy-group: A2UI x-speakeasy-name-override: ListSurfaces x-codeSamples: - lang: go label: ListSurfaces source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.A2UI.ListSurfaces(ctx, operations.C1APIA2uiV1A2UIServiceListSurfacesRequest{ ConversationID: "", }) if err != nil { log.Fatal(err) } if res.A2UIServiceListSurfacesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.a2Ui.listSurfaces({ conversationId: "", }); console.log(result); } run(); /api/v1/a2ui/surfaces/{surface_id}/actions: post: description: SubmitAction handles user actions on A2UI surfaces. operationId: c1.api.a2ui.v1.A2UIService.SubmitAction parameters: - in: path name: surface_id required: true schema: description: The surfaceId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIServiceSubmitActionRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIServiceSubmitActionResponse' description: A2UIServiceSubmitActionResponse returns the result of an action. summary: Submit Action tags: - A 2 UI x-speakeasy-group: A2UI x-speakeasy-name-override: SubmitAction x-codeSamples: - lang: go label: SubmitAction source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.A2UI.SubmitAction(ctx, operations.C1APIA2uiV1A2UIServiceSubmitActionRequest{ SurfaceID: "", }) if err != nil { log.Fatal(err) } if res.A2UIServiceSubmitActionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.a2Ui.submitAction({ surfaceId: "", }); console.log(result); } run(); /api/v1/a2ui/surfaces/{surface_id}/feedback: get: description: ListSurfaceFeedback lists feedback for a surface. operationId: c1.api.a2ui.v1.A2UIService.ListSurfaceFeedback parameters: - in: path name: surface_id required: true schema: description: The surfaceId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIServiceListSurfaceFeedbackResponse' description: A2UIServiceListSurfaceFeedbackResponse returns feedback for a surface. summary: List Surface Feedback tags: - A 2 UI x-speakeasy-group: A2UI x-speakeasy-name-override: ListSurfaceFeedback x-codeSamples: - lang: go label: ListSurfaceFeedback source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.A2UI.ListSurfaceFeedback(ctx, operations.C1APIA2uiV1A2UIServiceListSurfaceFeedbackRequest{ SurfaceID: "", }) if err != nil { log.Fatal(err) } if res.A2UIServiceListSurfaceFeedbackResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.a2Ui.listSurfaceFeedback({ surfaceId: "", }); console.log(result); } run(); post: description: CreateSurfaceFeedback submits feedback for a surface with a snapshot. operationId: c1.api.a2ui.v1.A2UIService.CreateSurfaceFeedback parameters: - in: path name: surface_id required: true schema: description: The surfaceId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIServiceCreateSurfaceFeedbackRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.a2ui.v1.A2UIServiceCreateSurfaceFeedbackResponse' description: A2UIServiceCreateSurfaceFeedbackResponse returns the created feedback. summary: Create Surface Feedback tags: - A 2 UI x-speakeasy-group: A2UI x-speakeasy-name-override: CreateSurfaceFeedback x-codeSamples: - lang: go label: CreateSurfaceFeedback source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.A2UI.CreateSurfaceFeedback(ctx, operations.C1APIA2uiV1A2UIServiceCreateSurfaceFeedbackRequest{ SurfaceID: "", }) if err != nil { log.Fatal(err) } if res.A2UIServiceCreateSurfaceFeedbackResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.a2Ui.createSurfaceFeedback({ surfaceId: "", }); console.log(result); } run(); /api/v1/access_review: post: description: Create creates a new access review campaign with the specified name, policy, and owners. operationId: c1.api.accessreview.v1.AccessReviewService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceCreateResponse' description: Successful response summary: Create tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access Review#create x-speakeasy-group: AccessReview x-speakeasy-name-override: Create x-stability-level: draft x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReview.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.AccessReviewServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReview.create(); console.log(result); } run(); /api/v1/access_review/{access_review_id}/scope_and_entitlements: get: description: GetCampaignScopeAndEntitlements retrieves the current scope configuration and selected entitlements for an access review campaign. operationId: c1.api.accessreview.v1.AccessReviewSetupEntitlementService.GetCampaignScopeAndEntitlements parameters: - in: path name: access_review_id required: true schema: description: The ID of the access review campaign to retrieve scope and entitlements for. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlementAndScopeServiceSetResponse' description: Successful response summary: Get Campaign Scope And Entitlements tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access Review Setup#read terraform-resource: Access Review Setup#read x-speakeasy-group: AccessReviewSetupEntitlement x-speakeasy-name-override: GetCampaignScopeAndEntitlements x-stability-level: stable x-codeSamples: - lang: go label: GetCampaignScopeAndEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewSetupEntitlement.GetCampaignScopeAndEntitlements(ctx, operations.C1APIAccessreviewV1AccessReviewSetupEntitlementServiceGetCampaignScopeAndEntitlementsRequest{ AccessReviewID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewSetupEntitlementAndScopeServiceSetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewSetupEntitlement.getCampaignScopeAndEntitlements({ accessReviewId: "", }); console.log(result); } run(); post: description: SetCampaignScopeAndEntitlements replaces the scope configuration and selected entitlements for an access review campaign. operationId: c1.api.accessreview.v1.AccessReviewSetupEntitlementService.SetCampaignScopeAndEntitlements parameters: - in: path name: access_review_id required: true schema: description: The ID of the access review campaign to configure. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlementAndScopeServiceSetRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetupEntitlementAndScopeServiceSetResponse' description: Successful response summary: Set Campaign Scope And Entitlements tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: - Access Review Setup#create - Access Review Setup#update x-speakeasy-group: AccessReviewSetupEntitlement x-speakeasy-name-override: SetCampaignScopeAndEntitlements x-stability-level: stable x-codeSamples: - lang: go label: SetCampaignScopeAndEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewSetupEntitlement.SetCampaignScopeAndEntitlements(ctx, operations.C1APIAccessreviewV1AccessReviewSetupEntitlementServiceSetCampaignScopeAndEntitlementsRequest{ AccessReviewID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewSetupEntitlementAndScopeServiceSetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewSetupEntitlement.setCampaignScopeAndEntitlements({ accessReviewId: "", }); console.log(result); } run(); /api/v1/access_review/{access_review_id}/scope_by_resource_type: post: description: SetCampaignScopeByResourceType sets the campaign scope by selecting specific resource types to include in the review. operationId: c1.api.accessreview.v1.AccessReviewSetupEntitlementService.SetCampaignScopeByResourceType parameters: - in: path name: access_review_id required: true schema: description: The ID of the access review campaign to configure. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetScopeByResourceTypeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewSetScopeByResourceTypeResponse' description: Successful response summary: Set Campaign Scope By Resource Type tags: - Access Review x-speakeasy-group: AccessReviewSetupEntitlement x-speakeasy-name-override: SetCampaignScopeByResourceType x-stability-level: draft x-codeSamples: - lang: go label: SetCampaignScopeByResourceType source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewSetupEntitlement.SetCampaignScopeByResourceType(ctx, operations.C1APIAccessreviewV1AccessReviewSetupEntitlementServiceSetCampaignScopeByResourceTypeRequest{ AccessReviewID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewSetScopeByResourceTypeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewSetupEntitlement.setCampaignScopeByResourceType({ accessReviewId: "", }); console.log(result); } run(); /api/v1/access_review/{id}: delete: description: Delete transitions an access review campaign to the deleted state, along with its dependent objects. operationId: c1.api.accessreview.v1.AccessReviewService.Delete parameters: - in: path name: id required: true schema: description: The ID of the access review campaign to delete. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceDeleteResponse' description: Successful response summary: Delete tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access Review#delete x-speakeasy-group: AccessReview x-speakeasy-name-override: Delete x-stability-level: draft x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReview.Delete(ctx, operations.C1APIAccessreviewV1AccessReviewServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReview.delete({ id: "", }); console.log(result); } run(); get: description: Get retrieves a single access review campaign by ID. operationId: c1.api.accessreview.v1.AccessReviewService.Get parameters: - in: path name: id required: true schema: description: The ID of the access review campaign to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceGetResponse' description: Successful response summary: Get tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access Review#read terraform-resource: Access Review#read x-speakeasy-group: AccessReview x-speakeasy-name-override: Get x-stability-level: draft x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReview.Get(ctx, operations.C1APIAccessreviewV1AccessReviewServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReview.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing access review campaign. Use the update_mask to specify which fields to change. operationId: c1.api.accessreview.v1.AccessReviewService.Update parameters: - in: path name: id required: true schema: description: The unique identifier of this access review campaign. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceUpdateResponse' description: Successful response summary: Update tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access Review#update x-speakeasy-group: AccessReview x-speakeasy-name-override: Update x-stability-level: draft x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReview.Update(ctx, operations.C1APIAccessreviewV1AccessReviewServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReview.update({ id: "", }); console.log(result); } run(); /api/v1/access_review_template: post: description: Create creates a new access review template that defines a reusable configuration for launching campaigns. operationId: c1.api.accessreview.v1.AccessReviewTemplateService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceCreateResponse' description: Successful response summary: Create tags: - Access Review Template x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access Review Template#create x-speakeasy-group: AccessReviewTemplate x-speakeasy-name-override: Create x-stability-level: draft x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplate.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplate.create(); console.log(result); } run(); /api/v1/access_review_template/{access_review_template_id}/scope_and_entitlements: get: description: GetScopeAndEntitlements retrieves the current scope configuration and selected entitlements for an access review template. operationId: c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementService.GetScopeAndEntitlements parameters: - in: path name: access_review_template_id required: true schema: description: The ID of the access review template to retrieve scope and entitlements for. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementServiceSetResponse' description: Successful response summary: Get Scope And Entitlements tags: - Access Review Templates x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access Review Template Setup#read terraform-resource: Access Review Template Setup#read x-speakeasy-group: AccessReviewTemplateSetupEntitlement x-speakeasy-name-override: GetScopeAndEntitlements x-stability-level: stable x-codeSamples: - lang: go label: GetScopeAndEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplateSetupEntitlement.GetScopeAndEntitlements(ctx, operations.C1APIAccessreviewV1AccessReviewTemplateSetupEntitlementServiceGetScopeAndEntitlementsRequest{ AccessReviewTemplateID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateSetupEntitlementServiceSetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplateSetupEntitlement.getScopeAndEntitlements({ accessReviewTemplateId: "", }); console.log(result); } run(); post: description: SetScopeAndEntitlements replaces the scope configuration and selected entitlements for an access review template. operationId: c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementService.SetScopeAndEntitlements parameters: - in: path name: access_review_template_id required: true schema: description: The ID of the access review template to configure. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementServiceSetRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementServiceSetResponse' description: Successful response summary: Set Scope And Entitlements tags: - Access Review Templates x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: - Access Review Template Setup#create - Access Review Template Setup#update x-speakeasy-group: AccessReviewTemplateSetupEntitlement x-speakeasy-name-override: SetScopeAndEntitlements x-stability-level: stable x-codeSamples: - lang: go label: SetScopeAndEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplateSetupEntitlement.SetScopeAndEntitlements(ctx, operations.C1APIAccessreviewV1AccessReviewTemplateSetupEntitlementServiceSetScopeAndEntitlementsRequest{ AccessReviewTemplateID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateSetupEntitlementServiceSetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplateSetupEntitlement.setScopeAndEntitlements({ accessReviewTemplateId: "", }); console.log(result); } run(); /api/v1/access_review_template/{access_review_template_id}/scope_by_resource_type: post: description: SetScopeByResourceType sets the template scope by selecting specific resource types to include in campaigns created from this template. operationId: c1.api.accessreview.v1.AccessReviewTemplateSetupEntitlementService.SetScopeByResourceType parameters: - in: path name: access_review_template_id required: true schema: description: The ID of the access review template to configure. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetScopeByResourceTypeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateSetScopeByResourceTypeResponse' description: Successful response summary: Set Scope By Resource Type tags: - Access Review Templates x-speakeasy-group: AccessReviewTemplateSetupEntitlement x-speakeasy-name-override: SetScopeByResourceType x-stability-level: draft x-codeSamples: - lang: go label: SetScopeByResourceType source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplateSetupEntitlement.SetScopeByResourceType(ctx, operations.C1APIAccessreviewV1AccessReviewTemplateSetupEntitlementServiceSetScopeByResourceTypeRequest{ AccessReviewTemplateID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateSetScopeByResourceTypeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplateSetupEntitlement.setScopeByResourceType({ accessReviewTemplateId: "", }); console.log(result); } run(); /api/v1/access_review_template/{id}: delete: description: Delete an access review template. The template can no longer be used to create campaigns. operationId: c1.api.accessreview.v1.AccessReviewTemplateService.Delete parameters: - in: path name: id required: true schema: description: The ID of the access review template to delete. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceDeleteResponse' description: Successful response summary: Delete tags: - Access Review Template x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access Review Template#delete x-speakeasy-group: AccessReviewTemplate x-speakeasy-name-override: Delete x-stability-level: draft x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplate.Delete(ctx, operations.C1APIAccessreviewV1AccessReviewTemplateServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplate.delete({ id: "", }); console.log(result); } run(); get: description: Get retrieves a single access review template by ID. operationId: c1.api.accessreview.v1.AccessReviewTemplateService.Get parameters: - in: path name: id required: true schema: description: The ID of the access review template to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceGetResponse' description: Successful response summary: Get tags: - Access Review Template x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access Review Template#read terraform-resource: Access Review Template#read x-speakeasy-group: AccessReviewTemplate x-speakeasy-name-override: Get x-stability-level: draft x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplate.Get(ctx, operations.C1APIAccessreviewV1AccessReviewTemplateServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplate.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing access review template. Use the update_mask to specify which fields to change. operationId: c1.api.accessreview.v1.AccessReviewTemplateService.Update parameters: - in: path name: id required: true schema: description: The unique identifier of this template. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewTemplateServiceUpdateResponse' description: Successful response summary: Update tags: - Access Review Template x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access Review Template#update x-speakeasy-group: AccessReviewTemplate x-speakeasy-name-override: Update x-stability-level: draft x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReviewTemplate.Update(ctx, operations.C1APIAccessreviewV1AccessReviewTemplateServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AccessReviewTemplateServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReviewTemplate.update({ id: "", }); console.log(result); } run(); /api/v1/access_reviews: get: description: List returns a paginated list of access review campaigns. operationId: c1.api.accessreview.v1.AccessReviewService.List parameters: - in: query name: page_size schema: description: The maximum number of results to return per page. Maximum 100. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: Pagination token from a previous List response to fetch the next page. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessreview.v1.AccessReviewServiceListResponse' description: Successful response summary: List tags: - Access Review x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access Reviews#read terraform-resource: Access Reviews#read x-speakeasy-group: AccessReview x-speakeasy-name-override: List x-stability-level: draft x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessReview.List(ctx, operations.C1APIAccessreviewV1AccessReviewServiceListRequest{}) if err != nil { log.Fatal(err) } if res.AccessReviewServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessReview.list(); console.log(result); } run(); /api/v1/accessconflict: post: description: Create a new conflict monitor for defining a Separation of Duty rule. Entitlement sets are bound separately via AppEntitlementMonitorBindingService. operationId: c1.api.accessconflict.v1.AccessConflictService.CreateMonitor requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitorCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitor' description: |- A conflict monitor defines a Separation of Duty rule between two entitlement sets. It detects when any user holds entitlements from both set A and set B simultaneously. summary: Create Monitor tags: - Access Conflict x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Conflict#create x-speakeasy-group: AccessConflict x-speakeasy-name-override: CreateMonitor x-codeSamples: - lang: go label: CreateMonitor source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessConflict.CreateMonitor(ctx, nil) if err != nil { log.Fatal(err) } if res.ConflictMonitor != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessConflict.createMonitor(); console.log(result); } run(); /api/v1/accessconflict/{id}: delete: description: Delete a conflict monitor and its associated entitlement set bindings. operationId: c1.api.accessconflict.v1.AccessConflictService.DeleteMonitor parameters: - in: path name: id required: true schema: description: The unique identifier of the conflict monitor to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitorDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitorDeleteResponse' description: The response message for deleting a conflict monitor. summary: Delete Monitor tags: - Access Conflict x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Conflict#delete x-speakeasy-group: AccessConflict x-speakeasy-name-override: DeleteMonitor x-codeSamples: - lang: go label: DeleteMonitor source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessConflict.DeleteMonitor(ctx, operations.C1APIAccessconflictV1AccessConflictServiceDeleteMonitorRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ConflictMonitorDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessConflict.deleteMonitor({ id: "", }); console.log(result); } run(); get: description: Retrieve a single conflict monitor by ID. operationId: c1.api.accessconflict.v1.AccessConflictService.GetMonitor parameters: - in: path name: id required: true schema: description: The unique identifier of the conflict monitor to retrieve. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitor' description: |- A conflict monitor defines a Separation of Duty rule between two entitlement sets. It detects when any user holds entitlements from both set A and set B simultaneously. summary: Get Monitor tags: - Access Conflict x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Access_Conflict#read x-speakeasy-group: AccessConflict x-speakeasy-name-override: GetMonitor x-codeSamples: - lang: go label: GetMonitor source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessConflict.GetMonitor(ctx, operations.C1APIAccessconflictV1AccessConflictServiceGetMonitorRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ConflictMonitor != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessConflict.getMonitor({ id: "", }); console.log(result); } run(); post: description: Update the display name, description, or notification settings of a conflict monitor. operationId: c1.api.accessconflict.v1.AccessConflictService.UpdateMonitor parameters: - in: path name: id required: true schema: description: The unique identifier of the conflict monitor to update. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitorUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.ConflictMonitor' description: |- A conflict monitor defines a Separation of Duty rule between two entitlement sets. It detects when any user holds entitlements from both set A and set B simultaneously. summary: Update Monitor tags: - Access Conflict x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Conflict#update x-speakeasy-group: AccessConflict x-speakeasy-name-override: UpdateMonitor x-codeSamples: - lang: go label: UpdateMonitor source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccessConflict.UpdateMonitor(ctx, operations.C1APIAccessconflictV1AccessConflictServiceUpdateMonitorRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ConflictMonitor != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accessConflict.updateMonitor({ id: "", }); console.log(result); } run(); /api/v1/appentitlementmonitorbinding: delete: description: Remove an app entitlement from a conflict monitor's entitlement set. operationId: c1.api.accessconflict.v1.AppEntitlementMonitorBindingService.DeleteAppEntitlementMonitorBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.DeleteAppEntitlementMonitorBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.DeleteAppEntitlementMonitorBindingResponse' description: The response message for deleting an app entitlement monitor binding. summary: Delete App Entitlement Monitor Binding tags: - App Entitlement Monitor Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Entitlement_Monitor_Binding#delete x-speakeasy-group: AppEntitlementMonitorBinding x-speakeasy-name-override: DeleteAppEntitlementMonitorBinding x-codeSamples: - lang: go label: DeleteAppEntitlementMonitorBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementMonitorBinding.DeleteAppEntitlementMonitorBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.DeleteAppEntitlementMonitorBindingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementMonitorBinding.deleteAppEntitlementMonitorBinding(); console.log(result); } run(); post: description: Bind an app entitlement to one side (A or B) of a conflict monitor. operationId: c1.api.accessconflict.v1.AppEntitlementMonitorBindingService.CreateAppEntitlementMonitorBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.CreateAppEntitlementMonitorBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.AppEntitlementMonitorBinding' description: Represents the association of an app entitlement with one side (A or B) of a conflict monitor. summary: Create App Entitlement Monitor Binding tags: - App Entitlement Monitor Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Entitlement_Monitor_Binding#create x-speakeasy-group: AppEntitlementMonitorBinding x-speakeasy-name-override: CreateAppEntitlementMonitorBinding x-codeSamples: - lang: go label: CreateAppEntitlementMonitorBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementMonitorBinding.CreateAppEntitlementMonitorBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.AppEntitlementMonitorBinding != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementMonitorBinding.createAppEntitlementMonitorBinding(); console.log(result); } run(); /api/v1/appentitlementmonitorbinding/get: post: description: Retrieve a single binding that associates an app entitlement with one side of a conflict monitor. operationId: c1.api.accessconflict.v1.AppEntitlementMonitorBindingService.GetAppEntitlementMonitorBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.GetAppEntitlementMonitorBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.accessconflict.v1.AppEntitlementMonitorBinding' description: Represents the association of an app entitlement with one side (A or B) of a conflict monitor. summary: Get App Entitlement Monitor Binding tags: - App Entitlement Monitor Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App_Entitlement_Monitor_Binding#read terraform-resource: App_Entitlement_Monitor_Binding#read x-speakeasy-group: AppEntitlementMonitorBinding x-speakeasy-name-override: GetAppEntitlementMonitorBinding x-codeSamples: - lang: go label: GetAppEntitlementMonitorBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementMonitorBinding.GetAppEntitlementMonitorBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.AppEntitlementMonitorBinding != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementMonitorBinding.getAppEntitlementMonitorBinding(); console.log(result); } run(); /api/v1/apps: get: description: List all apps. operationId: c1.api.app.v1.Apps.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppsResponse' description: The ListAppsResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - App x-speakeasy-group: Apps x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Apps.List(ctx, operations.C1APIAppV1AppsListRequest{}) if err != nil { log.Fatal(err) } if res.ListAppsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.apps.list(); console.log(result); } run(); post: description: Create a new manual app without a connector. operationId: c1.api.app.v1.Apps.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAppRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAppResponse' description: Returns the new app's values. summary: Create tags: - App x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App#create x-speakeasy-group: Apps x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Apps.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateAppResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.apps.create(); console.log(result); } run(); /api/v1/apps/{app_id}/access_request_defaults: get: description: Retrieve the current access request default settings for an app. operationId: c1.api.app.v1.AppAccessRequestsDefaultsService.GetAppAccessRequestsDefaults parameters: - in: path name: app_id required: true schema: description: The ID of the app to retrieve access request defaults for. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppAccessRequestDefaults' description: Successful response summary: Get App Access Requests Defaults tags: - AppAccessRequestDefaults x-speakeasy-group: AppAccessRequestsDefaults x-speakeasy-name-override: GetAppAccessRequestsDefaults x-codeSamples: - lang: go label: GetAppAccessRequestsDefaults source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppAccessRequestsDefaults.GetAppAccessRequestsDefaults(ctx, operations.C1APIAppV1AppAccessRequestsDefaultsServiceGetAppAccessRequestsDefaultsRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppAccessRequestDefaults != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appAccessRequestsDefaults.getAppAccessRequestsDefaults({ appId: "", }); console.log(result); } run(); post: description: Create or replace the access request default settings for an app. operationId: c1.api.app.v1.AppAccessRequestsDefaultsService.CreateAppAccessRequestsDefaults parameters: - in: path name: app_id required: true schema: description: The app id for the app access request rule readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppAccessRequestDefaultsInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppAccessRequestDefaults' description: Successful response summary: Create App Access Requests Defaults tags: - AppAccessRequestDefaults x-speakeasy-group: AppAccessRequestsDefaults x-speakeasy-name-override: CreateAppAccessRequestsDefaults x-codeSamples: - lang: go label: CreateAppAccessRequestsDefaults source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppAccessRequestsDefaults.CreateAppAccessRequestsDefaults(ctx, operations.C1APIAppV1AppAccessRequestsDefaultsServiceCreateAppAccessRequestsDefaultsRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppAccessRequestDefaults != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appAccessRequestsDefaults.createAppAccessRequestsDefaults({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/access_request_defaults/cancel: post: description: Cancel an in-progress apply operation for the app's access request defaults. operationId: c1.api.app.v1.AppAccessRequestsDefaultsService.CancelAppAccessRequestsDefaults parameters: - in: path name: app_id required: true schema: description: The ID of the app whose access request defaults apply operation should be cancelled. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CancelAccessRequestDefaultsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppAccessRequestDefaults' description: Successful response summary: Cancel App Access Requests Defaults tags: - AppAccessRequestDefaults x-speakeasy-group: AppAccessRequestsDefaults x-speakeasy-name-override: CancelAppAccessRequestsDefaults x-codeSamples: - lang: go label: CancelAppAccessRequestsDefaults source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppAccessRequestsDefaults.CancelAppAccessRequestsDefaults(ctx, operations.C1APIAppV1AppAccessRequestsDefaultsServiceCancelAppAccessRequestsDefaultsRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppAccessRequestDefaults != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appAccessRequestsDefaults.cancelAppAccessRequestsDefaults({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/app_users: get: description: List app user accounts within a specific app, with pagination support. operationId: c1.api.app.v1.AppUserService.List parameters: - in: path name: app_id required: true schema: description: The ID of the app to list users for. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The token for fetching the next page of results. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUserServiceListResponse' description: The response message for listing app users. summary: List tags: - AppUsers x-speakeasy-group: AppUser x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUser.List(ctx, operations.C1APIAppV1AppUserServiceListRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppUserServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUser.list({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/app_users/{app_user_id}/credentials: get: description: List credentials associated with a specific app user account. operationId: c1.api.app.v1.AppUserService.ListAppUserCredentials parameters: - in: path name: app_id required: true schema: description: The ID of the app that the user belongs to. readOnly: false type: - string - "null" - in: path name: app_user_id required: true schema: description: The ID of the app user whose credentials to list. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The token for fetching the next page of results. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUserServiceListCredentialsResponse' description: The response message for listing credentials of an app user. summary: List App User Credentials tags: - AppUsers x-speakeasy-group: AppUser x-speakeasy-name-override: ListAppUserCredentials x-codeSamples: - lang: go label: ListAppUserCredentials source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUser.ListAppUserCredentials(ctx, operations.C1APIAppV1AppUserServiceListAppUserCredentialsRequest{ AppID: "", AppUserID: "", }) if err != nil { log.Fatal(err) } if res.AppUserServiceListCredentialsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUser.listAppUserCredentials({ appId: null, appUserId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors: get: description: List connectors for an app. operationId: c1.api.app.v1.ConnectorService.List parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceListResponse' description: The ConnectorServiceListResponse message contains a list of results and a nextPageToken if applicable summary: List tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.List(ctx, operations.C1APIAppV1ConnectorServiceListRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.list({ appId: "", }); console.log(result); } run(); post: description: Create a connector that is pending a connector config. operationId: c1.api.app.v1.ConnectorService.CreateDelegated parameters: - in: path name: app_id required: true schema: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceCreateDelegatedRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceCreateResponse' description: The ConnectorServiceCreateResponse is the response returned from creating a connector. summary: Create Delegated tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: CreateDelegated x-codeSamples: - lang: go label: CreateDelegated source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.CreateDelegated(ctx, operations.C1APIAppV1ConnectorServiceCreateDelegatedRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.createDelegated({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/confirm_sync_valid/{sync_lifecycle_id}: post: description: Confirm that a sync which errored due to a data drop is valid, overriding the error and triggering a new sync. Only applicable when the sync status is ERRORED_NO_DATA. operationId: c1.api.app.v1.ConnectorService.ConfirmSyncValid parameters: - in: path name: app_id required: true schema: description: The AppID of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The ConnectorID of the connector that we are confirming the sync for. readOnly: false type: - string - "null" - in: path name: sync_lifecycle_id required: true schema: description: The completed lifecycle id of the most recent sync we want to validate readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConfirmSyncValidRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConfirmSyncValidResponse' description: Empty response body. Status code indicates success. summary: Confirm Sync Valid tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: ConfirmSyncValid x-codeSamples: - lang: go label: ConfirmSyncValid source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.ConfirmSyncValid(ctx, operations.C1APIAppV1ConnectorServiceConfirmSyncValidRequest{ AppID: "", ConnectorID: "", SyncLifecycleID: "", }) if err != nil { log.Fatal(err) } if res.ConfirmSyncValidResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.confirmSyncValid({ appId: "", connectorId: null, syncLifecycleId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/credentials/{id}: get: description: Get credentials for a connector. operationId: c1.api.app.v1.ConnectorService.GetCredentials parameters: - in: path name: app_id required: true schema: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The connectorId of the connector that we are getting the credentials for. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id of the ConnectorCredential. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceGetCredentialsResponse' description: ConnectorServiceGetCredentialsResponse is the response returned by the get method. summary: Get Credentials tags: - Connector x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: ConnectorCredential#read terraform-resource: ConnectorCredential#read x-speakeasy-group: Connector x-speakeasy-name-override: GetCredentials x-codeSamples: - lang: go label: GetCredentials source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.GetCredentials(ctx, operations.C1APIAppV1ConnectorServiceGetCredentialsRequest{ AppID: "", ConnectorID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceGetCredentialsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.getCredentials({ appId: "", connectorId: "", id: "", }); console.log(result); } run(); post: description: Revoke credentials for a connector. operationId: c1.api.app.v1.ConnectorService.RevokeCredential parameters: - in: path name: app_id required: true schema: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The connectorId of the connector that we are revoking the credentials for. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id of the ConnectorCredential. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceRevokeCredentialRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceRevokeCredentialResponse' description: Empty response body. Status code indicates success. summary: Revoke Credential tags: - Connector x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: ConnectorCredential#delete x-speakeasy-group: Connector x-speakeasy-name-override: RevokeCredential x-codeSamples: - lang: go label: RevokeCredential source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.RevokeCredential(ctx, operations.C1APIAppV1ConnectorServiceRevokeCredentialRequest{ AppID: "", ConnectorID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceRevokeCredentialResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.revokeCredential({ appId: "", connectorId: "", id: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/force_sync: post: description: Trigger an immediate sync for a connector. The sync is queued and may not start instantly. operationId: c1.api.app.v1.ConnectorService.ForceSync parameters: - in: path name: app_id required: true schema: description: The AppID of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The ConnectorID of the connector that we are forcing to sync. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ForceSyncRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ForceSyncResponse' description: Empty response body. Status code indicates success. summary: Force Sync tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: ForceSync x-codeSamples: - lang: go label: ForceSync source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.ForceSync(ctx, operations.C1APIAppV1ConnectorServiceForceSyncRequest{ AppID: "", ConnectorID: "", }) if err != nil { log.Fatal(err) } if res.ForceSyncResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.forceSync({ appId: "", connectorId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/pause: post: description: Pause syncing and provisioning for a connector. No new syncs or grant/revoke operations will run until the connector is resumed. operationId: c1.api.app.v1.ConnectorService.PauseSync parameters: - in: path name: app_id required: true schema: description: The AppID of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The ConnectorID of the connector that we are pausing the sync for. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.PauseSyncRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.PauseSyncResponse' description: Empty response body. Status code indicates success. summary: Pause Sync tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: PauseSync x-codeSamples: - lang: go label: PauseSync source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.PauseSync(ctx, operations.C1APIAppV1ConnectorServicePauseSyncRequest{ AppID: "", ConnectorID: "", }) if err != nil { log.Fatal(err) } if res.PauseSyncResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.pauseSync({ appId: "", connectorId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/resume: post: description: Resume syncing and provisioning for a connector that was previously paused. Clears the paused state and triggers a new sync. operationId: c1.api.app.v1.ConnectorService.ResumeSync parameters: - in: path name: app_id required: true schema: description: The AppID of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The ConnectorID of the connector that we are resuming the sync for. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ResumeSyncRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ResumeSyncResponse' description: Empty response body. Status code indicates success. summary: Resume Sync tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: ResumeSync x-codeSamples: - lang: go label: ResumeSync source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.ResumeSync(ctx, operations.C1APIAppV1ConnectorServiceResumeSyncRequest{ AppID: "", ConnectorID: "", }) if err != nil { log.Fatal(err) } if res.ResumeSyncResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.resumeSync({ appId: "", connectorId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/schedule: post: description: Update the sync schedule for a connector. operationId: c1.api.app.v1.ConnectorService.UpdateConnectorSchedule parameters: - in: path name: app_id required: true schema: description: The appId of the app the connector is attached to. readOnly: false type: string - in: path name: connector_id required: true schema: description: The connectorId of the connector whose schedule is being updated. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateConnectorScheduleRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateConnectorScheduleResponse' description: Empty response body. Status code indicates success. summary: Update Connector Schedule tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: UpdateConnectorSchedule x-stability-level: alpha x-codeSamples: - lang: go label: UpdateConnectorSchedule source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.UpdateConnectorSchedule(ctx, operations.C1APIAppV1ConnectorServiceUpdateConnectorScheduleRequest{ AppID: "", ConnectorID: "", }) if err != nil { log.Fatal(err) } if res.UpdateConnectorScheduleResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.updateConnectorSchedule({ appId: "", connectorId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{connector_id}/syncs/{sync_id}/download_url: get: description: GetConnectorSyncDownloadURL generates a short-lived download URL for a completed connector sync artifact. operationId: c1.api.app.v1.ConnectorService.GetConnectorSyncDownloadURL parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: connector_id required: true schema: description: The connectorId field. readOnly: false type: string - in: path name: sync_id required: true schema: description: The syncId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.GetConnectorSyncDownloadURLResponse' description: Successful response summary: Get Connector Sync Download Url tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: GetConnectorSyncDownloadURL x-codeSamples: - lang: go label: GetConnectorSyncDownloadURL source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.GetConnectorSyncDownloadURL(ctx, operations.C1APIAppV1ConnectorServiceGetConnectorSyncDownloadURLRequest{ AppID: "", ConnectorID: "", SyncID: "", }) if err != nil { log.Fatal(err) } if res.GetConnectorSyncDownloadURLResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.getConnectorSyncDownloadURL({ appId: "", connectorId: "", syncId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/{id}: delete: description: Delete a connector. operationId: c1.api.app.v1.ConnectorService.Delete parameters: - in: path name: app_id required: true schema: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id of the connector. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceDeleteResponse' description: Empty response body. Status code indicates success. summary: Delete tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.Delete(ctx, operations.C1APIAppV1ConnectorServiceDeleteRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.delete({ appId: "", id: "", }); console.log(result); } run(); get: description: Get a connector. operationId: c1.api.app.v1.ConnectorService.Get parameters: - in: path name: app_id required: true schema: description: The appId of the app the connector is attached to. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id of the connector. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceGetResponse' description: The ConnectorServiceGetResponse message contains the connectorView, and an expand mask. summary: Get tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.Get(ctx, operations.C1APIAppV1ConnectorServiceGetRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.get({ appId: "", id: "", }); console.log(result); } run(); post: description: Update a connector. operationId: c1.api.app.v1.ConnectorService.Update parameters: - in: path name: app_id required: true schema: description: The id of the app the connector is associated with. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id of the connector. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceUpdateResponse' description: ConnectorServiceUpdateResponse is the response returned by the update method. summary: Update tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.Update(ctx, operations.C1APIAppV1ConnectorServiceUpdateRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.update({ appId: "", id: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/connectors/create: post: description: Create a configured connector. operationId: c1.api.app.v1.ConnectorService.Create parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceCreateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceCreateResponse' description: The ConnectorServiceCreateResponse is the response returned from creating a connector. summary: Create tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.Create(ctx, operations.C1APIAppV1ConnectorServiceCreateRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.create({ appId: null, }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements: get: description: List app entitlements associated with an app. operationId: c1.api.app.v1.AppEntitlements.List parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementsResponse' description: The ListAppEntitlementsResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - App Entitlement x-speakeasy-group: AppEntitlements x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.List(ctx, operations.C1APIAppV1AppEntitlementsListRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.ListAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.list({ appId: null, }); console.log(result); } run(); post: description: Create a new app entitlement for an app. This is used to define a custom permission, group, or role within the app. operationId: c1.api.app.v1.AppEntitlements.Create parameters: - in: path name: app_id required: true schema: description: The ID of the app to create the entitlement in. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAppEntitlementRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAppEntitlementResponse' description: Successful response summary: Create tags: - App Entitlement x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Custom App Entitlement#create x-speakeasy-group: AppEntitlements x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.Create(ctx, operations.C1APIAppV1AppEntitlementsCreateRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.CreateAppEntitlementResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.create({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/add-manual-user: post: description: Add users as manually managed members of an app entitlement. These memberships are tracked directly by ConductorOne rather than synced from the app. operationId: c1.api.app.v1.AppEntitlements.AddManuallyManagedMembers parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement to add manually managed members to. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddManuallyManagedUsersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ManuallyManagedUsersResponse' description: Successful response summary: Add Manually Managed Members tags: - App Entitlement x-speakeasy-group: AppEntitlements x-speakeasy-name-override: AddManuallyManagedMembers x-codeSamples: - lang: go label: AddManuallyManagedMembers source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.AddManuallyManagedMembers(ctx, operations.C1APIAppV1AppEntitlementsAddManuallyManagedMembersRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.ManuallyManagedUsersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.addManuallyManagedMembers({ appId: "", appEntitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/automation: delete: description: Delete the automation rule for an app entitlement. operationId: c1.api.app.v1.AppEntitlements.DeleteAutomation parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement whose automation to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAutomationResponse' description: Successful response summary: Delete Automation tags: - App Entitlement Automation x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Entitlement Automation#delete x-speakeasy-group: AppEntitlements x-speakeasy-name-override: DeleteAutomation x-codeSamples: - lang: go label: DeleteAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.DeleteAutomation(ctx, operations.C1APIAppV1AppEntitlementsDeleteAutomationRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.deleteAutomation({ appId: "", appEntitlementId: "", }); console.log(result); } run(); get: description: Get the automation rule for an app entitlement. operationId: c1.api.app.v1.AppEntitlements.GetAutomation parameters: - in: path name: app_id required: true schema: description: The ID of the app that is associated with the app entitlement. readOnly: true type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The unique ID for the App Entitlement. readOnly: true type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementServiceGetAutomationResponse' description: Successful response summary: Get Automation tags: - App Entitlement Automation x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App Entitlement Automation#read terraform-resource: App Entitlement Automation#read x-speakeasy-group: AppEntitlements x-speakeasy-name-override: GetAutomation x-codeSamples: - lang: go label: GetAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.GetAutomation(ctx, operations.C1APIAppV1AppEntitlementsGetAutomationRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.AppEntitlementServiceGetAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.getAutomation({ appId: null, appEntitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/automation/create: post: description: Create an automation rule for an app entitlement. Automations automatically provision or revoke access based on defined conditions. operationId: c1.api.app.v1.AppEntitlements.CreateAutomation parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement to create an automation for. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAutomationResponse' description: Successful response summary: Create Automation tags: - App Entitlement Automation x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Entitlement Automation#create x-speakeasy-group: AppEntitlements x-speakeasy-name-override: CreateAutomation x-codeSamples: - lang: go label: CreateAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.CreateAutomation(ctx, operations.C1APIAppV1AppEntitlementsCreateAutomationRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.CreateAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.createAutomation({ appId: "", appEntitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/automation/exclusions: delete: description: Remove users from the automation exclusion list for an app entitlement. operationId: c1.api.app.v1.AppEntitlements.RemoveAutomationExclusion parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement whose automation exclusion list to update. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAutomationExclusionRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAutomationExclusionResponse' description: Empty response with a status code indicating success. summary: Remove Automation Exclusion tags: - App Entitlement Automation Exclusion x-speakeasy-group: AppEntitlements x-speakeasy-name-override: RemoveAutomationExclusion x-codeSamples: - lang: go label: RemoveAutomationExclusion source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.RemoveAutomationExclusion(ctx, operations.C1APIAppV1AppEntitlementsRemoveAutomationExclusionRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.RemoveAutomationExclusionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.removeAutomationExclusion({ appId: "", appEntitlementId: "", }); console.log(result); } run(); get: description: List users who are excluded from the automation rule for an app entitlement. operationId: c1.api.app.v1.AppEntitlements.ListAutomationExclusions parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement to list exclusions for. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAutomationExclusionsResponse' description: Successful response summary: List Automation Exclusions tags: - App Entitlement Automation Exclusion x-speakeasy-group: AppEntitlements x-speakeasy-name-override: ListAutomationExclusions x-codeSamples: - lang: go label: ListAutomationExclusions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.ListAutomationExclusions(ctx, operations.C1APIAppV1AppEntitlementsListAutomationExclusionsRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.ListAutomationExclusionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.listAutomationExclusions({ appId: null, appEntitlementId: "", }); console.log(result); } run(); post: description: Add users to the automation exclusion list for an app entitlement. Excluded users are not affected by the automation rule. operationId: c1.api.app.v1.AppEntitlements.AddAutomationExclusion parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement whose automation exclusion list to update. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAutomationExclusionRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAutomationExclusionResponse' description: Empty response with a status code indicating success. summary: Add Automation Exclusion tags: - App Entitlement Automation Exclusion x-speakeasy-group: AppEntitlements x-speakeasy-name-override: AddAutomationExclusion x-codeSamples: - lang: go label: AddAutomationExclusion source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.AddAutomationExclusion(ctx, operations.C1APIAppV1AppEntitlementsAddAutomationExclusionRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.AddAutomationExclusionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.addAutomationExclusion({ appId: "", appEntitlementId: null, }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/automation/update: post: description: Update the automation rule for an app entitlement, including its display name, description, and conditions. operationId: c1.api.app.v1.AppEntitlements.UpdateAutomation parameters: - in: path name: app_id required: true schema: description: The ID of the app that is associated with the app entitlement. readOnly: true type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The unique ID for the App Entitlement. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementServiceUpdateAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementServiceUpdateAutomationResponse' description: Successful response summary: Update Automation tags: - App Entitlement Automation x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Entitlement Automation#update x-speakeasy-group: AppEntitlements x-speakeasy-name-override: UpdateAutomation x-codeSamples: - lang: go label: UpdateAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.UpdateAutomation(ctx, operations.C1APIAppV1AppEntitlementsUpdateAutomationRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.AppEntitlementServiceUpdateAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.updateAutomation({ appId: "", appEntitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/grants: get: description: Search app entitlements, include app users, users, expires, discovered. operationId: c1.api.app.v1.AppEntitlementSearchService.SearchAppEntitlementsWithExpired parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The appEntitlementId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppEntitlementsWithExpiredResponse' description: The SearchAppEntitlementsWithExpiredResponse message contains a list of results and a nextPageToken if applicable. summary: Search App Entitlements With Expired tags: - App Entitlement x-speakeasy-group: AppEntitlementSearch x-speakeasy-name-override: SearchAppEntitlementsWithExpired x-codeSamples: - lang: go label: SearchAppEntitlementsWithExpired source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementSearch.SearchAppEntitlementsWithExpired(ctx, operations.C1APIAppV1AppEntitlementSearchServiceSearchAppEntitlementsWithExpiredRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.SearchAppEntitlementsWithExpiredResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementSearch.searchAppEntitlementsWithExpired({ appId: "", appEntitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/remove-membership: delete: description: Remove a user from a ConductorOne-managed entitlement (catalog, group, or profile type). For access profiles, this creates a revoke task to deprovision access. operationId: c1.api.app.v1.AppEntitlements.RemoveEntitlementMembership parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the app entitlement to remove the membership from. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveEntitlementMembershipRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveEntitlementMembershipResponse' description: Successful response summary: Remove Entitlement Membership tags: - App Entitlement x-speakeasy-group: AppEntitlements x-speakeasy-name-override: RemoveEntitlementMembership x-codeSamples: - lang: go label: RemoveEntitlementMembership source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.RemoveEntitlementMembership(ctx, operations.C1APIAppV1AppEntitlementsRemoveEntitlementMembershipRequest{ AppEntitlementID: "", AppID: "", }) if err != nil { log.Fatal(err) } if res.RemoveEntitlementMembershipResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.removeEntitlementMembership({ appId: "", appEntitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/users: get: deprecated: true description: List the users, as AppEntitlementUsers objects, of an app entitlement. operationId: c1.api.app.v1.AppEntitlements.ListUsers parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The appEntitlementId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementUsersResponse' description: The ListAppEntitlementUsersResponse message contains a list of results and a nextPageToken if applicable. summary: List Users tags: - App Entitlement x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: AppEntitlementUsers#read terraform-resource: null x-speakeasy-group: AppEntitlements x-speakeasy-name-override: ListUsers /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/users/{app_user_id}/remove-grant-duration: post: description: Remove the expiration time from a grant, converting it to an indefinite (standing) grant. operationId: c1.api.app.v1.AppEntitlementUserBindingService.RemoveGrantDuration parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the entitlement whose grant duration is being removed. readOnly: false type: - string - "null" - in: path name: app_user_id required: true schema: description: The ID of the app user whose grant expiration is being removed. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveGrantDurationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveGrantDurationResponse' description: The response message for removing the expiration time from a grant. summary: Remove Grant Duration tags: - App Entitlement User Binding x-speakeasy-group: AppEntitlementUserBinding x-speakeasy-name-override: RemoveGrantDuration x-codeSamples: - lang: go label: RemoveGrantDuration source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementUserBinding.RemoveGrantDuration(ctx, operations.C1APIAppV1AppEntitlementUserBindingServiceRemoveGrantDurationRequest{ AppEntitlementID: "", AppID: "", AppUserID: "", }) if err != nil { log.Fatal(err) } if res.RemoveGrantDurationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementUserBinding.removeGrantDuration({ appId: "", appEntitlementId: "", appUserId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/users/{app_user_id}/update-grant-duration: post: description: Update the expiration time of an existing grant, changing when automatic revocation will occur. operationId: c1.api.app.v1.AppEntitlementUserBindingService.UpdateGrantDuration parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the entitlement. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The ID of the entitlement whose grant duration is being updated. readOnly: false type: - string - "null" - in: path name: app_user_id required: true schema: description: The ID of the app user whose grant is being updated. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateGrantDurationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateGrantDurationResponse' description: The response message for updating the duration of a grant. summary: Update Grant Duration tags: - App Entitlement User Binding x-speakeasy-group: AppEntitlementUserBinding x-speakeasy-name-override: UpdateGrantDuration x-codeSamples: - lang: go label: UpdateGrantDuration source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementUserBinding.UpdateGrantDuration(ctx, operations.C1APIAppV1AppEntitlementUserBindingServiceUpdateGrantDurationRequest{ AppEntitlementID: "", AppID: "", AppUserID: "", }) if err != nil { log.Fatal(err) } if res.UpdateGrantDurationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementUserBinding.updateGrantDuration({ appId: "", appEntitlementId: null, appUserId: null, }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{app_entitlement_id}/users/{identity_user_id}/grants: get: description: Returns a list of app users for the identity in the app. If that app user also has a grant to the entitlement from the request, data about the grant is also returned. It will always return ALL app users for this identity, but only SOME may have grant data. operationId: c1.api.app.v1.AppEntitlementUserBindingService.ListAppUsersForIdentityWithGrant parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: app_entitlement_id required: true schema: description: The appEntitlementId field. readOnly: false type: - string - "null" - in: path name: identity_user_id required: true schema: description: The identityUserId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppUsersForIdentityWithGrantResponse' description: Successful response summary: List App Users For Identity With Grant tags: - App Entitlement User Binding x-speakeasy-group: AppEntitlementUserBinding x-speakeasy-name-override: ListAppUsersForIdentityWithGrant x-codeSamples: - lang: go label: ListAppUsersForIdentityWithGrant source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementUserBinding.ListAppUsersForIdentityWithGrant(ctx, operations.C1APIAppV1AppEntitlementUserBindingServiceListAppUsersForIdentityWithGrantRequest{ AppEntitlementID: "", AppID: "", IdentityUserID: "", }) if err != nil { log.Fatal(err) } if res.ListAppUsersForIdentityWithGrantResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementUserBinding.listAppUsersForIdentityWithGrant({ appId: null, appEntitlementId: "", identityUserId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{entitlement_id}/ownerids: get: description: ListUserIDs lists owner IDs for a given app entitlement. operationId: c1.api.app.v1.AppEntitlementOwners.ListOwnerIDs parameters: - in: path name: app_id required: true schema: description: The app_id field for the app entitlement to list owners of. readOnly: false type: - string - "null" - in: path name: entitlement_id required: true schema: description: The entitlement_id field for the app entitlement to list owners of. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementOwnerIDsResponse' description: The response message for listing app entitlement owners IDs. summary: List Owner I Ds tags: - App Entitlement Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App_Entitlement_Owner#read x-speakeasy-group: AppEntitlementOwners x-speakeasy-name-override: ListOwnerIDs x-codeSamples: - lang: go label: ListOwnerIDs source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwners.ListOwnerIDs(ctx, operations.C1APIAppV1AppEntitlementOwnersListOwnerIDsRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.ListAppEntitlementOwnerIDsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwners.listOwnerIDs({ appId: "", entitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{entitlement_id}/owners: delete: description: Delete deletes the owners from a given app entitlement. operationId: c1.api.app.v1.AppEntitlementOwners.Delete parameters: - in: path name: app_id required: true schema: description: The app_id field for the app entitlement to remove the owner of. readOnly: false type: - string - "null" - in: path name: entitlement_id required: true schema: description: The entitlement_id field for the app entitlement to remove the owner of. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppEntitlementOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppEntitlementOwnersResponse' description: the empty response message for deleting app entitlement owners. summary: Delete tags: - App Entitlement Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Entitlement_Owner#delete x-speakeasy-group: AppEntitlementOwners x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwners.Delete(ctx, operations.C1APIAppV1AppEntitlementOwnersDeleteRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAppEntitlementOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwners.delete({ appId: "", entitlementId: "", }); console.log(result); } run(); get: description: List owners for a given app entitlement. operationId: c1.api.app.v1.AppEntitlementOwners.List parameters: - in: path name: app_id required: true schema: description: The app_id field for the app entitlement to list owners of. readOnly: false type: - string - "null" - in: path name: entitlement_id required: true schema: description: The entitlement_id field for the app entitlement to list owners of. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The page_size field for pagination. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The page_token field for pagination. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementOwnersResponse' description: The response message for listing app entitlement owners. summary: List tags: - App Entitlement Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: AppEntitlementOwners#read terraform-resource: null x-speakeasy-group: AppEntitlementOwners x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwners.List(ctx, operations.C1APIAppV1AppEntitlementOwnersListRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.ListAppEntitlementOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwners.list({ appId: "", entitlementId: "", }); console.log(result); } run(); post: description: Add an owner to a given app entitlement. operationId: c1.api.app.v1.AppEntitlementOwners.Add parameters: - in: path name: app_id required: true schema: description: The app_id field for the app entitlement to add the owner to. readOnly: false type: - string - "null" - in: path name: entitlement_id required: true schema: description: The entitlement_id field for the app entitlement to add the owner to. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAppEntitlementOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAppEntitlementOwnerResponse' description: The empty response message for adding an app entitlement owner. summary: Add tags: - App Entitlement Owner x-speakeasy-group: AppEntitlementOwners x-speakeasy-name-override: Add x-codeSamples: - lang: go label: Add source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwners.Add(ctx, operations.C1APIAppV1AppEntitlementOwnersAddRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.AddAppEntitlementOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwners.add({ appId: null, entitlementId: "", }); console.log(result); } run(); put: description: Sets the owners for a given app entitlement to the specified list of users. operationId: c1.api.app.v1.AppEntitlementOwners.Set parameters: - in: path name: app_id required: true schema: description: The app_id field for the app entitlement to set the owners of. readOnly: false type: - string - "null" - in: path name: entitlement_id required: true schema: description: The entitlement_id field for the app entitlement to set the owners of. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SetAppEntitlementOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SetAppEntitlementOwnersResponse' description: The empty response message for setting the app entitlement owners. summary: Set tags: - App Entitlement Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Entitlement_Owner#create x-speakeasy-group: AppEntitlementOwners x-speakeasy-name-override: Set x-codeSamples: - lang: go label: Set source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwners.Set(ctx, operations.C1APIAppV1AppEntitlementOwnersSetRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.SetAppEntitlementOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwners.set({ appId: "", entitlementId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{entitlement_id}/owners/{user_id}: delete: description: Remove an owner from a given app entitlement. operationId: c1.api.app.v1.AppEntitlementOwners.Remove parameters: - in: path name: app_id required: true schema: description: The app_id field for the app entitlement to remove the owner of. readOnly: false type: - string - "null" - in: path name: entitlement_id required: true schema: description: The entitlement_id field for the app entitlement to remove the owner of. readOnly: false type: - string - "null" - in: path name: user_id required: true schema: description: The user_id field for the user to remove as an owner of the app entitlement. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAppEntitlementOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAppEntitlementOwnerResponse' description: The empty response message for removing an app entitlement owner. summary: Remove tags: - App Entitlement Owner x-speakeasy-group: AppEntitlementOwners x-speakeasy-name-override: Remove x-codeSamples: - lang: go label: Remove source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwners.Remove(ctx, operations.C1APIAppV1AppEntitlementOwnersRemoveRequest{ AppID: "", EntitlementID: "", UserID: "", }) if err != nil { log.Fatal(err) } if res.RemoveAppEntitlementOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwners.remove({ appId: "", entitlementId: "", userId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/{id}: delete: description: Delete an app entitlement by ID. operationId: c1.api.app.v1.AppEntitlements.Delete parameters: - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The ID of the app entitlement to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppEntitlementRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppEntitlementResponse' description: Successful response summary: Delete tags: - App Entitlement x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Custom App Entitlement#delete x-speakeasy-group: AppEntitlements x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.Delete(ctx, operations.C1APIAppV1AppEntitlementsDeleteRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAppEntitlementResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.delete({ appId: null, id: "", }); console.log(result); } run(); get: description: Get an app entitlement by ID. operationId: c1.api.app.v1.AppEntitlements.Get parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.GetAppEntitlementResponse' description: The get app entitlement response returns an entitlement view containing paths in the expanded array for the objects expanded as indicated by the expand mask in the request. summary: Get tags: - App Entitlement x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Custom App Entitlement#read x-speakeasy-group: AppEntitlements x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.Get(ctx, operations.C1APIAppV1AppEntitlementsGetRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.GetAppEntitlementResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.get({ appId: "", id: "", }); console.log(result); } run(); post: description: Update an app entitlement by ID. operationId: c1.api.app.v1.AppEntitlements.Update parameters: - in: path name: app_id required: true schema: description: The ID of the app that is associated with the app entitlement. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The unique ID for the App Entitlement. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateAppEntitlementRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateAppEntitlementResponse' description: Successful response summary: Update tags: - App Entitlement x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Custom App Entitlement#update x-speakeasy-group: AppEntitlements x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.Update(ctx, operations.C1APIAppV1AppEntitlementsUpdateRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateAppEntitlementResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.update({ appId: "", id: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/resource_types/{app_resource_type_id}/resources/{app_resource_id}: get: description: List app entitlements associated with an app resource. operationId: c1.api.app.v1.AppEntitlements.ListForAppResource parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: app_resource_type_id required: true schema: description: The appResourceTypeId field. readOnly: false type: - string - "null" - in: path name: app_resource_id required: true schema: description: The appResourceId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementsResponse' description: The ListAppEntitlementsResponse message contains a list of results and a nextPageToken if applicable. summary: List For App Resource tags: - App Entitlement x-speakeasy-group: AppEntitlements x-speakeasy-name-override: ListForAppResource x-codeSamples: - lang: go label: ListForAppResource source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.ListForAppResource(ctx, operations.C1APIAppV1AppEntitlementsListForAppResourceRequest{ AppID: "", AppResourceID: "", AppResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.ListAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.listForAppResource({ appId: "", appResourceTypeId: "", appResourceId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/entitlements/users/{app_user_id}: get: description: List app entitlements associated with an app user. operationId: c1.api.app.v1.AppEntitlements.ListForAppUser parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: app_user_id required: true schema: description: The appUserId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementsResponse' description: The ListAppEntitlementsResponse message contains a list of results and a nextPageToken if applicable. summary: List For App User tags: - App Entitlement x-speakeasy-group: AppEntitlements x-speakeasy-name-override: ListForAppUser x-codeSamples: - lang: go label: ListForAppUser source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlements.ListForAppUser(ctx, operations.C1APIAppV1AppEntitlementsListForAppUserRequest{ AppID: "", AppUserID: "", }) if err != nil { log.Fatal(err) } if res.ListAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlements.listForAppUser({ appId: null, appUserId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/ownerids: get: description: ListOwnerIDs lists owner IDs for a given app. operationId: c1.api.app.v1.AppOwners.ListOwnerIDs parameters: - in: path name: app_id required: true schema: description: The app_id field for the app to list owners of. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppOwnerIDsResponse' description: The response message for listing app owners IDs. summary: List Owner I Ds tags: - App Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App_Owner#read x-speakeasy-group: AppOwners x-speakeasy-name-override: ListOwnerIDs x-codeSamples: - lang: go label: ListOwnerIDs source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwners.ListOwnerIDs(ctx, operations.C1APIAppV1AppOwnersListOwnerIDsRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.ListAppOwnerIDsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwners.listOwnerIDs({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/owners: delete: description: Delete deletes the owners from a given app. operationId: c1.api.app.v1.AppOwners.Delete parameters: - in: path name: app_id required: true schema: description: The app_id field for the app to remove the owner of. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppOwnersResponse' description: the empty response message for deleting app owners. summary: Delete tags: - App Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Owner#delete x-speakeasy-group: AppOwners x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwners.Delete(ctx, operations.C1APIAppV1AppOwnersDeleteRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAppOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwners.delete({ appId: "", }); console.log(result); } run(); get: description: List owners of an app. operationId: c1.api.app.v1.AppOwners.List parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppOwnersResponse' description: Successful response summary: List tags: - App Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: AppOwners#read terraform-resource: null x-speakeasy-group: AppOwners x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwners.List(ctx, operations.C1APIAppV1AppOwnersListRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.ListAppOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwners.list({ appId: null, }); console.log(result); } run(); put: description: Sets the owners for a given app to the specified list of users. operationId: c1.api.app.v1.AppOwners.Set parameters: - in: path name: app_id required: true schema: description: The app_id field for the app to set the owners of. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SetAppOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SetAppOwnersResponse' description: The empty response message for setting the app owners. summary: Set tags: - App Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Owner#create x-speakeasy-group: AppOwners x-speakeasy-name-override: Set x-codeSamples: - lang: go label: Set source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwners.Set(ctx, operations.C1APIAppV1AppOwnersSetRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.SetAppOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwners.set({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/owners/{user_id}: delete: description: Removes an owner from an app. operationId: c1.api.app.v1.AppOwners.Remove parameters: - in: path name: app_id required: true schema: description: App ID of the app to remove the owner from. readOnly: false type: - string - "null" - in: path name: user_id required: true schema: description: User ID of the user to remove as an owner. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAppOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAppOwnerResponse' description: Empty response with a status code indicating success. summary: Remove tags: - App Owner x-speakeasy-group: AppOwners x-speakeasy-name-override: Remove x-codeSamples: - lang: go label: Remove source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwners.Remove(ctx, operations.C1APIAppV1AppOwnersRemoveRequest{ AppID: "", UserID: "", }) if err != nil { log.Fatal(err) } if res.RemoveAppOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwners.remove({ appId: "", userId: "", }); console.log(result); } run(); post: description: Adds an owner to an app. operationId: c1.api.app.v1.AppOwners.Add parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: user_id required: true schema: description: The userId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAppOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAppOwnerResponse' description: Empty response with a status code indicating success summary: Add tags: - App Owner x-speakeasy-group: AppOwners x-speakeasy-name-override: Add x-codeSamples: - lang: go label: Add source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwners.Add(ctx, operations.C1APIAppV1AppOwnersAddRequest{ AppID: "", UserID: "", }) if err != nil { log.Fatal(err) } if res.AddAppOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwners.add({ appId: "", userId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/report: get: description: Get a list of reports for the given app. operationId: c1.api.app.v1.AppReportService.List parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppReportServiceListResponse' description: The AppReportServiceListResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - App Reports x-speakeasy-group: AppReport x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppReport.List(ctx, operations.C1APIAppV1AppReportServiceListRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppReportServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appReport.list({ appId: "", }); console.log(result); } run(); post: description: Generate a report for the given app. operationId: c1.api.app.v1.AppReportActionService.GenerateReport parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppActionsServiceGenerateReportRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppActionsServiceGenerateReportResponse' description: Empty response body. Status code indicates success. summary: Generate Report tags: - App Reports x-speakeasy-group: AppReportAction x-speakeasy-name-override: GenerateReport x-codeSamples: - lang: go label: GenerateReport source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppReportAction.GenerateReport(ctx, operations.C1APIAppV1AppReportActionServiceGenerateReportRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppActionsServiceGenerateReportResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appReportAction.generateReport({ appId: null, }); console.log(result); } run(); /api/v1/apps/{app_id}/resource_types: get: description: List app resource types. operationId: c1.api.app.v1.AppResourceTypeService.List parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppResourceTypeServiceListResponse' description: The AppResourceTypeServiceListResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - App Resource Type x-speakeasy-group: AppResourceType x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceType.List(ctx, operations.C1APIAppV1AppResourceTypeServiceListRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.AppResourceTypeServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceType.list({ appId: "", }); console.log(result); } run(); post: description: Create a manually managed resource type that classifies resources within an app. operationId: c1.api.app.v1.AppResourceTypeService.CreateManuallyManagedResourceType parameters: - in: path name: app_id required: true schema: description: The ID of the app to create the resource type under. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateManuallyManagedResourceTypeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateManuallyManagedResourceTypeResponse' description: The response message for creating a manually managed resource type. summary: Create Manually Managed Resource Type tags: - App Resource Type x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Resource Type#create x-speakeasy-group: AppResourceType x-speakeasy-name-override: CreateManuallyManagedResourceType x-codeSamples: - lang: go label: CreateManuallyManagedResourceType source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceType.CreateManuallyManagedResourceType(ctx, operations.C1APIAppV1AppResourceTypeServiceCreateManuallyManagedResourceTypeRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.CreateManuallyManagedResourceTypeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceType.createManuallyManagedResourceType({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/resource_types/{app_resource_type_id}/resources: get: description: List app resources for a given app and optionally filter by resource type. operationId: c1.api.app.v1.AppResourceService.List parameters: - in: path name: app_id required: true schema: description: The ID of the app to list resources for. readOnly: false type: - string - "null" - in: path name: app_resource_type_id required: true schema: description: Optional resource type ID to filter results by. If empty, resources of all types are returned. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The token for fetching the next page of results. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppResourceServiceListResponse' description: The AppResourceServiceListResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - App Resource x-speakeasy-group: AppResource x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResource.List(ctx, operations.C1APIAppV1AppResourceServiceListRequest{ AppID: "", AppResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.AppResourceServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResource.list({ appId: null, appResourceTypeId: "", }); console.log(result); } run(); post: description: Create a manually managed app resource tracked directly by ConductorOne under an existing resource type. operationId: c1.api.app.v1.AppResourceService.CreateManuallyManagedAppResource parameters: - in: path name: app_id required: true schema: description: The ID of the app to create the resource under. readOnly: false type: string - in: path name: app_resource_type_id required: true schema: description: The resource type ID that classifies this resource. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateManuallyManagedAppResourceRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateManuallyManagedAppResourceResponse' description: The response message for creating a manually managed app resource. summary: Create Manually Managed App Resource tags: - App Resource x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Resource#create x-speakeasy-group: AppResource x-speakeasy-name-override: CreateManuallyManagedAppResource x-codeSamples: - lang: go label: CreateManuallyManagedAppResource source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResource.CreateManuallyManagedAppResource(ctx, operations.C1APIAppV1AppResourceServiceCreateManuallyManagedAppResourceRequest{ AppID: "", AppResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.CreateManuallyManagedAppResourceResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResource.createManuallyManagedAppResource({ appId: "", appResourceTypeId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/resource_types/{app_resource_type_id}/resources/{id}: delete: description: Delete a manually managed app resource and its associated entitlements from an app. operationId: c1.api.app.v1.AppResourceService.DeleteManuallyManagedAppResource parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the resource. readOnly: false type: - string - "null" - in: path name: app_resource_type_id required: true schema: description: The ID of the resource type that classifies the resource. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The ID of the app resource to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteManuallyManagedAppResourceRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteManuallyManagedAppResourceResponse' description: The empty response message for deleting a manually managed app resource. summary: Delete Manually Managed App Resource tags: - App Resource x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Resource#delete x-speakeasy-group: AppResource x-speakeasy-name-override: DeleteManuallyManagedAppResource x-codeSamples: - lang: go label: DeleteManuallyManagedAppResource source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResource.DeleteManuallyManagedAppResource(ctx, operations.C1APIAppV1AppResourceServiceDeleteManuallyManagedAppResourceRequest{ AppID: "", AppResourceTypeID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteManuallyManagedAppResourceResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResource.deleteManuallyManagedAppResource({ appId: "", appResourceTypeId: "", id: "", }); console.log(result); } run(); get: description: Retrieve a single app resource by its app, resource type, and resource ID. operationId: c1.api.app.v1.AppResourceService.Get parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the resource. readOnly: false type: - string - "null" - in: path name: app_resource_type_id required: true schema: description: The ID of the resource type that classifies this resource. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The unique ID of the app resource to retrieve. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppResourceServiceGetResponse' description: The app resource service get response contains the app resource view and array of expanded items indicated by the request's expand mask. summary: Get tags: - App Resource x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App Resource#read terraform-resource: App Resource#read x-speakeasy-group: AppResource x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResource.Get(ctx, operations.C1APIAppV1AppResourceServiceGetRequest{ AppID: "", AppResourceTypeID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.AppResourceServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResource.get({ appId: "", appResourceTypeId: "", id: "", }); console.log(result); } run(); post: description: Update an app resource's fields. Only the fields specified in the update mask are modified. operationId: c1.api.app.v1.AppResourceService.Update parameters: - in: path name: app_id required: true schema: description: The app that this resource belongs to. readOnly: false type: - string - "null" - in: path name: app_resource_type_id required: true schema: description: The resource type that this resource is. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id of the resource. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppResourceServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppResourceServiceUpdateResponse' description: The response message for updating an app resource. summary: Update tags: - App Resource x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Resource#update x-speakeasy-group: AppResource x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResource.Update(ctx, operations.C1APIAppV1AppResourceServiceUpdateRequest{ AppID: "", AppResourceTypeID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.AppResourceServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResource.update({ appId: "", appResourceTypeId: "", id: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/resource_types/{id}: delete: description: Delete a manually managed resource type and all its associated resources from an app. operationId: c1.api.app.v1.AppResourceTypeService.DeleteManuallyManagedResourceType parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the resource type. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The ID of the resource type to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteManuallyManagedResourceTypeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteManuallyManagedResourceTypeResponse' description: The empty response message for deleting a manually managed resource type. summary: Delete Manually Managed Resource Type tags: - App Resource Type x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Resource Type#delete x-speakeasy-group: AppResourceType x-speakeasy-name-override: DeleteManuallyManagedResourceType x-codeSamples: - lang: go label: DeleteManuallyManagedResourceType source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceType.DeleteManuallyManagedResourceType(ctx, operations.C1APIAppV1AppResourceTypeServiceDeleteManuallyManagedResourceTypeRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteManuallyManagedResourceTypeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceType.deleteManuallyManagedResourceType({ appId: null, id: "", }); console.log(result); } run(); get: description: Get an app resource type. operationId: c1.api.app.v1.AppResourceTypeService.Get parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppResourceTypeServiceGetResponse' description: |- The AppResourceTypeServiceGetResponse contains an expanded array containing the expanded values indicated by the expand mask in the request and an app resource type view containing the resource type and JSONPATHs indicating which objects are where in the expand mask. summary: Get tags: - App Resource Type x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App Resource Type#read x-speakeasy-group: AppResourceType x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceType.Get(ctx, operations.C1APIAppV1AppResourceTypeServiceGetRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.AppResourceTypeServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceType.get({ appId: "", id: "", }); console.log(result); } run(); post: description: Update a manually managed resource type's fields. Only the fields specified in the update mask are modified. operationId: c1.api.app.v1.AppResourceTypeService.UpdateManuallyManagedResourceType parameters: - in: path name: app_id required: true schema: description: The ID of the app that is associated with the app resource type readOnly: true type: - string - "null" - in: path name: id required: true schema: description: The unique ID for the app resource type. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateManuallyManagedResourceTypeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateManuallyManagedResourceTypeResponse' description: The response message for updating a manually managed resource type. summary: Update Manually Managed Resource Type tags: - App Resource Type x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Resource Type#update x-speakeasy-group: AppResourceType x-speakeasy-name-override: UpdateManuallyManagedResourceType x-codeSamples: - lang: go label: UpdateManuallyManagedResourceType source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceType.UpdateManuallyManagedResourceType(ctx, operations.C1APIAppV1AppResourceTypeServiceUpdateManuallyManagedResourceTypeRequest{ AppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateManuallyManagedResourceTypeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceType.updateManuallyManagedResourceType({ appId: "", id: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/resource_types/{resource_type_id}/resource/{resource_id}/ownerids: delete: description: Delete deletes the owners from a given app resource. operationId: c1.api.app.v1.AppResourceOwners.Delete parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: resource_type_id required: true schema: description: The resourceTypeId field. readOnly: false type: - string - "null" - in: path name: resource_id required: true schema: description: The resourceId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppResourceOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppResourceOwnersResponse' description: the empty response message for deleting app resource owners. summary: Delete tags: - App Resource Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Resource_Owner#delete x-speakeasy-group: AppResourceOwners x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceOwners.Delete(ctx, operations.C1APIAppV1AppResourceOwnersDeleteRequest{ AppID: "", ResourceID: "", ResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAppResourceOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceOwners.delete({ appId: "", resourceTypeId: "", resourceId: "", }); console.log(result); } run(); get: description: ListOwnerIDs lists owner IDs for a given app resource. operationId: c1.api.app.v1.AppResourceOwners.ListOwnerIDs parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: resource_type_id required: true schema: description: The resourceTypeId field. readOnly: false type: - string - "null" - in: path name: resource_id required: true schema: description: The resourceId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppResourceOwnerIDsResponse' description: The response message for listing app resource owners IDs. summary: List Owner I Ds tags: - App Resource Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App_Resource_Owner#read x-speakeasy-group: AppResourceOwners x-speakeasy-name-override: ListOwnerIDs x-codeSamples: - lang: go label: ListOwnerIDs source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceOwners.ListOwnerIDs(ctx, operations.C1APIAppV1AppResourceOwnersListOwnerIDsRequest{ AppID: "", ResourceID: "", ResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.ListAppResourceOwnerIDsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceOwners.listOwnerIDs({ appId: "", resourceTypeId: "", resourceId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/resource_types/{resource_type_id}/resource/{resource_id}/owners: delete: description: Remove a user from the owners of an app resource. operationId: c1.api.app.v1.AppResourceOwners.Remove parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the resource. readOnly: false type: - string - "null" - in: path name: resource_type_id required: true schema: description: The ID of the resource type that classifies the resource. readOnly: false type: - string - "null" - in: path name: resource_id required: true schema: description: The ID of the app resource to remove an owner from. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAppResourceOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.RemoveAppResourceOwnerResponse' description: The empty response message for removing an owner from an app resource. summary: Remove tags: - App Resource Owner x-speakeasy-group: AppResourceOwners x-speakeasy-name-override: Remove x-codeSamples: - lang: go label: Remove source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceOwners.Remove(ctx, operations.C1APIAppV1AppResourceOwnersRemoveRequest{ AppID: "", ResourceID: "", ResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.RemoveAppResourceOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceOwners.remove({ appId: null, resourceTypeId: "", resourceId: "", }); console.log(result); } run(); get: description: List all owners of an app resource. operationId: c1.api.app.v1.AppResourceOwners.List parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: resource_type_id required: true schema: description: The resourceTypeId field. readOnly: false type: - string - "null" - in: path name: resource_id required: true schema: description: The resourceId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppResourceOwnersResponse' description: The ListAppResourceOwnersResponse message contains a list of results and a nextPageToken if applicable summary: List tags: - App Resource Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: AppResourceOwners#read terraform-resource: null x-speakeasy-group: AppResourceOwners x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceOwners.List(ctx, operations.C1APIAppV1AppResourceOwnersListRequest{ AppID: "", ResourceID: "", ResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.ListAppResourceOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceOwners.list({ appId: "", resourceTypeId: "", resourceId: "", }); console.log(result); } run(); post: description: Add a user as an owner of an app resource. operationId: c1.api.app.v1.AppResourceOwners.Add parameters: - in: path name: app_id required: true schema: description: The ID of the app that owns the resource. readOnly: false type: - string - "null" - in: path name: resource_type_id required: true schema: description: The ID of the resource type that classifies the resource. readOnly: false type: - string - "null" - in: path name: resource_id required: true schema: description: The ID of the app resource to add an owner to. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAppResourceOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AddAppResourceOwnerResponse' description: The empty response message for adding an owner to an app resource. summary: Add tags: - App Resource Owner x-speakeasy-group: AppResourceOwners x-speakeasy-name-override: Add x-codeSamples: - lang: go label: Add source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceOwners.Add(ctx, operations.C1APIAppV1AppResourceOwnersAddRequest{ AppID: "", ResourceID: "", ResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.AddAppResourceOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceOwners.add({ appId: "", resourceTypeId: "", resourceId: "", }); console.log(result); } run(); put: description: Sets the owners for a given app resource to the specified list of users. operationId: c1.api.app.v1.AppResourceOwners.Set parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" - in: path name: resource_type_id required: true schema: description: The resourceTypeId field. readOnly: false type: - string - "null" - in: path name: resource_id required: true schema: description: The resourceId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SetAppResourceOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SetAppResourceOwnersResponse' description: The empty response message for setting the app resource owners. summary: Set tags: - App Resource Owner x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Resource_Owner#create x-speakeasy-group: AppResourceOwners x-speakeasy-name-override: Set x-codeSamples: - lang: go label: Set source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceOwners.Set(ctx, operations.C1APIAppV1AppResourceOwnersSetRequest{ AppID: "", ResourceID: "", ResourceTypeID: "", }) if err != nil { log.Fatal(err) } if res.SetAppResourceOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceOwners.set({ appId: null, resourceTypeId: "", resourceId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/usage_controls: get: description: Get usage controls, as an AppUsageControls object which describes some peripheral configuration, for an app. operationId: c1.api.app.v1.AppUsageControlsService.Get parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.GetAppUsageControlsResponse' description: The GetAppUsageControlsResponse message contains the retrieved AppUsageControls object. summary: Get tags: - App Usage Controls x-speakeasy-group: AppUsageControls x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUsageControls.Get(ctx, operations.C1APIAppV1AppUsageControlsServiceGetRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.GetAppUsageControlsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUsageControls.get({ appId: "", }); console.log(result); } run(); post: description: Update usage controls for an app. operationId: c1.api.app.v1.AppUsageControlsService.Update parameters: - in: path name: app_id required: true schema: description: The app that this object belongs to. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateAppUsageControlsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateAppUsageControlsResponse' description: The UpdateAppUsageControlsResponse message contains the updated AppUsageControls object. summary: Update tags: - App Usage Controls x-speakeasy-group: AppUsageControls x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUsageControls.Update(ctx, operations.C1APIAppV1AppUsageControlsServiceUpdateRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.UpdateAppUsageControlsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUsageControls.update({ appId: "", }); console.log(result); } run(); /api/v1/apps/{app_id}/users/{user_id}/app_users: get: description: List app user accounts within a specific app that are correlated to a given C1 user. operationId: c1.api.app.v1.AppUserService.ListAppUsersForUser parameters: - in: path name: app_id required: true schema: description: The ID of the app to list users for. readOnly: false type: - string - "null" - in: path name: user_id required: true schema: description: The C1 user ID to filter app users by identity correlation. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The token for fetching the next page of results. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUsersForUserServiceListResponse' description: The response message for listing app users correlated to a specific C1 user. summary: List App Users For User tags: - AppUsers x-speakeasy-group: AppUser x-speakeasy-name-override: ListAppUsersForUser x-codeSamples: - lang: go label: ListAppUsersForUser source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUser.ListAppUsersForUser(ctx, operations.C1APIAppV1AppUserServiceListAppUsersForUserRequest{ AppID: "", UserID: "", }) if err != nil { log.Fatal(err) } if res.AppUsersForUserServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUser.listAppUsersForUser({ appId: "", userId: "", }); console.log(result); } run(); /api/v1/apps/{app_user_app_id}/app_users/{app_user_id}: post: description: |- Update an app user by ID. Only the fields specified in the update mask are updated. Currently, only the appUserType, and identityUserId fields can be updated. operationId: c1.api.app.v1.AppUserService.Update parameters: - in: path name: app_user_app_id required: true schema: description: The ID of the application. readOnly: true type: - string - "null" - in: path name: app_user_id required: true schema: description: A unique idenditfier of the application user. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUserServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUserServiceUpdateResponse' description: Successful response summary: Update tags: - AppUsers x-speakeasy-group: AppUser x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUser.Update(ctx, operations.C1APIAppV1AppUserServiceUpdateRequest{ AppUserAppID: "", AppUserID: "", }) if err != nil { log.Fatal(err) } if res.AppUserServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUser.update({ appUserAppId: "", appUserId: null, }); console.log(result); } run(); /api/v1/apps/{connector_app_id}/connectors/{connector_id}/delegated: post: description: Update a delegated connector. operationId: c1.api.app.v1.ConnectorService.UpdateDelegated parameters: - in: path name: connector_app_id required: true schema: description: The id of the app the connector is associated with. readOnly: false type: - string - "null" - in: path name: connector_id required: true schema: description: The id of the connector. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceUpdateDelegatedRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceUpdateResponse' description: ConnectorServiceUpdateResponse is the response returned by the update method. summary: Update Delegated tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: UpdateDelegated x-codeSamples: - lang: go label: UpdateDelegated source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.UpdateDelegated(ctx, operations.C1APIAppV1ConnectorServiceUpdateDelegatedRequest{ ConnectorAppID: "", ConnectorID: "", }) if err != nil { log.Fatal(err) } if res.ConnectorServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.updateDelegated({ connectorAppId: "", connectorId: "", }); console.log(result); } run(); /api/v1/apps/{id}: delete: description: Delete an app. operationId: c1.api.app.v1.Apps.Delete parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppResponse' description: Empty response body. Status code indicates success. summary: Delete tags: - App x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App#delete x-speakeasy-group: Apps x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Apps.Delete(ctx, operations.C1APIAppV1AppsDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAppResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.apps.delete({ id: "", }); console.log(result); } run(); get: description: Get an app by ID. operationId: c1.api.app.v1.Apps.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.GetAppResponse' description: The GetAppResponse message contains the details of the requested app in the app field. summary: Get tags: - App x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App#read x-speakeasy-group: Apps x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Apps.Get(ctx, operations.C1APIAppV1AppsGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetAppResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.apps.get({ id: "", }); console.log(result); } run(); post: description: Update an existing app. operationId: c1.api.app.v1.Apps.Update parameters: - in: path name: id required: true schema: description: The ID of the app. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateAppRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.UpdateAppResponse' description: Returns the updated app's new values. summary: Update tags: - App x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App#update x-speakeasy-group: Apps x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Apps.Update(ctx, operations.C1APIAppV1AppsUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateAppResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.apps.update({ id: "", }); console.log(result); } run(); /api/v1/apps/{src_app_id}/{src_app_entitlement_id}/bindings/{dst_app_id}/{dst_app_entitlement_id}: delete: description: Delete a proxy binding between a source and destination entitlement. operationId: c1.api.app.v1.AppEntitlementsProxy.Delete parameters: - in: path name: src_app_id required: true schema: description: The ID of the app that owns the source entitlement. readOnly: false type: - string - "null" - in: path name: src_app_entitlement_id required: true schema: description: The ID of the source (parent) entitlement. readOnly: false type: - string - "null" - in: path name: dst_app_id required: true schema: description: The ID of the app that owns the destination entitlement. readOnly: false type: - string - "null" - in: path name: dst_app_entitlement_id required: true schema: description: The ID of the destination (child) entitlement. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppEntitlementProxyRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.DeleteAppEntitlementProxyResponse' description: The empty response message for deleting an entitlement proxy binding. summary: Delete tags: - App Entitlement Proxy Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Entitlement Proxy Binding#delete x-speakeasy-group: AppEntitlementsProxy x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementsProxy.Delete(ctx, operations.C1APIAppV1AppEntitlementsProxyDeleteRequest{ DstAppEntitlementID: "", DstAppID: "", SrcAppEntitlementID: "", SrcAppID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAppEntitlementProxyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementsProxy.delete({ srcAppId: null, srcAppEntitlementId: "", dstAppId: "", dstAppEntitlementId: "", }); console.log(result); } run(); get: description: Retrieve a specific proxy binding between a source and destination entitlement. operationId: c1.api.app.v1.AppEntitlementsProxy.Get parameters: - in: path name: src_app_id required: true schema: description: The ID of the app that owns the source entitlement. readOnly: false type: - string - "null" - in: path name: src_app_entitlement_id required: true schema: description: The ID of the source (parent) entitlement. readOnly: false type: - string - "null" - in: path name: dst_app_id required: true schema: description: The ID of the app that owns the destination entitlement. readOnly: false type: - string - "null" - in: path name: dst_app_entitlement_id required: true schema: description: The ID of the destination (child) entitlement. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.GetAppEntitlementProxyResponse' description: The response message for getting a specific entitlement proxy binding. summary: Get tags: - App Entitlement Proxy Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App Entitlement Proxy Binding#read terraform-resource: App Entitlement Proxy Binding#read x-speakeasy-group: AppEntitlementsProxy x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementsProxy.Get(ctx, operations.C1APIAppV1AppEntitlementsProxyGetRequest{ DstAppEntitlementID: "", DstAppID: "", SrcAppEntitlementID: "", SrcAppID: "", }) if err != nil { log.Fatal(err) } if res.GetAppEntitlementProxyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementsProxy.get({ srcAppId: "", srcAppEntitlementId: null, dstAppId: "", dstAppEntitlementId: "", }); console.log(result); } run(); post: description: Create a proxy binding between a source and destination entitlement, establishing a hierarchical relationship. operationId: c1.api.app.v1.AppEntitlementsProxy.Create parameters: - in: path name: src_app_id required: true schema: description: The ID of the app that owns the source entitlement. readOnly: false type: - string - "null" - in: path name: src_app_entitlement_id required: true schema: description: The ID of the source (parent) entitlement. readOnly: false type: - string - "null" - in: path name: dst_app_id required: true schema: description: The ID of the app that owns the destination entitlement. readOnly: false type: - string - "null" - in: path name: dst_app_entitlement_id required: true schema: description: The ID of the destination (child) entitlement. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAppEntitlementProxyRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.CreateAppEntitlementProxyResponse' description: The response message for creating an entitlement proxy binding. summary: Create tags: - App Entitlement Proxy Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App Entitlement Proxy Binding#create x-speakeasy-group: AppEntitlementsProxy x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementsProxy.Create(ctx, operations.C1APIAppV1AppEntitlementsProxyCreateRequest{ DstAppEntitlementID: "", DstAppID: "", SrcAppEntitlementID: "", SrcAppID: "", }) if err != nil { log.Fatal(err) } if res.CreateAppEntitlementProxyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementsProxy.create({ srcAppId: "", srcAppEntitlementId: "", dstAppId: "", dstAppEntitlementId: null, }); console.log(result); } run(); /api/v1/apps/connectors/credentials: post: description: Rotate credentials for a connector. operationId: c1.api.app.v1.ConnectorService.RotateCredential requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceRotateCredentialRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ConnectorServiceRotateCredentialResponse' description: ConnectorServiceRotateCredentialResponse is the response returned by the rotate method. summary: Rotate Credential tags: - Connector x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: ConnectorCredential#create x-speakeasy-group: Connector x-speakeasy-name-override: RotateCredential x-codeSamples: - lang: go label: RotateCredential source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.RotateCredential(ctx, nil) if err != nil { log.Fatal(err) } if res.ConnectorServiceRotateCredentialResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.rotateCredential(); console.log(result); } run(); /api/v1/apps/connectors/validate_config/http: post: description: Validate an HTTP connector configuration and return any diagnostics or errors found. operationId: c1.api.app.v1.ConnectorService.ValidateHTTPConnectorConfig requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.EditorValidateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.EditorValidateResponse' description: The EditorValidateResponse message contains validation results. summary: Validate Http Connector Config tags: - Connector x-speakeasy-group: Connector x-speakeasy-name-override: ValidateHTTPConnectorConfig x-codeSamples: - lang: go label: ValidateHTTPConnectorConfig source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Connector.ValidateHTTPConnectorConfig(ctx, nil) if err != nil { log.Fatal(err) } if res.EditorValidateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connector.validateHTTPConnectorConfig(); console.log(result); } run(); /api/v1/attribute/{id}: delete: description: Delete an attribute value by id. operationId: c1.api.attribute.v1.Attributes.DeleteAttributeValue parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.DeleteAttributeValueRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.DeleteAttributeValueResponse' description: DeleteAttributeValueResponse is the empty response for deleting an attribute value. summary: Delete Attribute Value tags: - Attribute x-speakeasy-group: Attributes x-speakeasy-name-override: DeleteAttributeValue x-codeSamples: - lang: go label: DeleteAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.DeleteAttributeValue(ctx, operations.C1APIAttributeV1AttributesDeleteAttributeValueRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.deleteAttributeValue({ id: "", }); console.log(result); } run(); /api/v1/attributes: post: description: Create a new attribute value. operationId: c1.api.attribute.v1.Attributes.CreateAttributeValue requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.CreateAttributeValueRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.CreateAttributeValueResponse' description: CreateAttributeValueResponse is the response for creating an attribute value. summary: Create Attribute Value tags: - Attribute x-speakeasy-group: Attributes x-speakeasy-name-override: CreateAttributeValue x-codeSamples: - lang: go label: CreateAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.CreateAttributeValue(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.createAttributeValue(); console.log(result); } run(); /api/v1/attributes/{id}: get: description: Get an attribute value by id. operationId: c1.api.attribute.v1.Attributes.GetAttributeValue parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.GetAttributeValueResponse' description: GetAttributeValueResponse is the response for getting an attribute value by id. summary: Get Attribute Value tags: - Attribute x-speakeasy-group: Attributes x-speakeasy-name-override: GetAttributeValue x-codeSamples: - lang: go label: GetAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.GetAttributeValue(ctx, operations.C1APIAttributeV1AttributesGetAttributeValueRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.getAttributeValue({ id: "", }); console.log(result); } run(); /api/v1/attributes/compliance_frameworks: get: description: List all compliance framework attribute values (e.g., SOC 2, HIPAA) with pagination. operationId: c1.api.attribute.v1.Attributes.ListComplianceFrameworks parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.ListComplianceFrameworksResponse' description: ListComplianceFrameworksResponse is the response for listing compliance framework attribute values. summary: List Compliance Frameworks tags: - Compliance Framework x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Compliance Frameworks#read terraform-resource: null x-speakeasy-group: Attributes x-speakeasy-name-override: ListComplianceFrameworks x-codeSamples: - lang: go label: ListComplianceFrameworks source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.ListComplianceFrameworks(ctx, operations.C1APIAttributeV1AttributesListComplianceFrameworksRequest{}) if err != nil { log.Fatal(err) } if res.ListComplianceFrameworksResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.listComplianceFrameworks(); console.log(result); } run(); post: description: Create a compliance framework value. operationId: c1.api.attribute.v1.Attributes.CreateComplianceFrameworkAttributeValue requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.CreateComplianceFrameworkAttributeValueRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.CreateComplianceFrameworkAttributeValueResponse' description: Successful response summary: Create Compliance Framework Attribute Value tags: - Compliance Framework x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Compliance Framework#create x-speakeasy-group: Attributes x-speakeasy-name-override: CreateComplianceFrameworkAttributeValue x-codeSamples: - lang: go label: CreateComplianceFrameworkAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.CreateComplianceFrameworkAttributeValue(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateComplianceFrameworkAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.createComplianceFrameworkAttributeValue(); console.log(result); } run(); /api/v1/attributes/compliance_frameworks/{id}: delete: description: Delete an attribute value by id. operationId: c1.api.attribute.v1.Attributes.DeleteComplianceFrameworkAttributeValue parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.DeleteComplianceFrameworkAttributeValueRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.DeleteComplianceFrameworkAttributeValueResponse' description: Successful response summary: Delete Compliance Framework Attribute Value tags: - Compliance Framework x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Compliance Framework#delete x-speakeasy-group: Attributes x-speakeasy-name-override: DeleteComplianceFrameworkAttributeValue x-codeSamples: - lang: go label: DeleteComplianceFrameworkAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.DeleteComplianceFrameworkAttributeValue(ctx, operations.C1APIAttributeV1AttributesDeleteComplianceFrameworkAttributeValueRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteComplianceFrameworkAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.deleteComplianceFrameworkAttributeValue({ id: "", }); console.log(result); } run(); get: description: Get an attribute value by id. operationId: c1.api.attribute.v1.Attributes.GetComplianceFrameworkAttributeValue parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.GetComplianceFrameworkAttributeValueResponse' description: Successful response summary: Get Compliance Framework Attribute Value tags: - Compliance Framework x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Compliance Framework#read terraform-resource: Compliance Framework#read x-speakeasy-group: Attributes x-speakeasy-name-override: GetComplianceFrameworkAttributeValue x-codeSamples: - lang: go label: GetComplianceFrameworkAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.GetComplianceFrameworkAttributeValue(ctx, operations.C1APIAttributeV1AttributesGetComplianceFrameworkAttributeValueRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetComplianceFrameworkAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.getComplianceFrameworkAttributeValue({ id: "", }); console.log(result); } run(); /api/v1/attributes/risk_levels: get: description: List all risk level attribute values with pagination. operationId: c1.api.attribute.v1.Attributes.ListRiskLevels parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.ListRiskLevelsResponse' description: ListRiskLevelsResponse is the response for listing risk level attribute values. summary: List Risk Levels tags: - Risk Level x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Risk Levels#read terraform-resource: null x-speakeasy-group: Attributes x-speakeasy-name-override: ListRiskLevels x-codeSamples: - lang: go label: ListRiskLevels source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.ListRiskLevels(ctx, operations.C1APIAttributeV1AttributesListRiskLevelsRequest{}) if err != nil { log.Fatal(err) } if res.ListRiskLevelsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.listRiskLevels(); console.log(result); } run(); post: description: Create a risk level attribute. operationId: c1.api.attribute.v1.Attributes.CreateRiskLevelAttributeValue requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.CreateRiskLevelAttributeValueRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.CreateRiskLevelAttributeValueResponse' description: Successful response summary: Create Risk Level Attribute Value tags: - Risk Level x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Risk Level#create x-speakeasy-group: Attributes x-speakeasy-name-override: CreateRiskLevelAttributeValue x-codeSamples: - lang: go label: CreateRiskLevelAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.CreateRiskLevelAttributeValue(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateRiskLevelAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.createRiskLevelAttributeValue(); console.log(result); } run(); /api/v1/attributes/risk_levels/{id}: delete: description: Delete a risk level attribute value by id. operationId: c1.api.attribute.v1.Attributes.DeleteRiskLevelAttributeValue parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.DeleteRiskLevelAttributeValueRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.DeleteRiskLevelAttributeValueResponse' description: Successful response summary: Delete Risk Level Attribute Value tags: - Risk Level x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Risk Level#delete x-speakeasy-group: Attributes x-speakeasy-name-override: DeleteRiskLevelAttributeValue x-codeSamples: - lang: go label: DeleteRiskLevelAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.DeleteRiskLevelAttributeValue(ctx, operations.C1APIAttributeV1AttributesDeleteRiskLevelAttributeValueRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteRiskLevelAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.deleteRiskLevelAttributeValue({ id: "", }); console.log(result); } run(); get: description: Get a risk level attribute value by id. operationId: c1.api.attribute.v1.Attributes.GetRiskLevelAttributeValue parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.GetRiskLevelAttributeValueResponse' description: Successful response summary: Get Risk Level Attribute Value tags: - Risk Level x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Risk Level#read terraform-resource: Risk Level#read x-speakeasy-group: Attributes x-speakeasy-name-override: GetRiskLevelAttributeValue x-codeSamples: - lang: go label: GetRiskLevelAttributeValue source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.GetRiskLevelAttributeValue(ctx, operations.C1APIAttributeV1AttributesGetRiskLevelAttributeValueRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetRiskLevelAttributeValueResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.getRiskLevelAttributeValue({ id: "", }); console.log(result); } run(); /api/v1/attributes/types: get: description: List all attribute types. operationId: c1.api.attribute.v1.Attributes.ListAttributeTypes parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.ListAttributeTypesResponse' description: ListAttributeTypesResponse is the response for listing attribute types. summary: List Attribute Types tags: - Attribute x-speakeasy-group: Attributes x-speakeasy-name-override: ListAttributeTypes x-codeSamples: - lang: go label: ListAttributeTypes source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.ListAttributeTypes(ctx, operations.C1APIAttributeV1AttributesListAttributeTypesRequest{}) if err != nil { log.Fatal(err) } if res.ListAttributeTypesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.listAttributeTypes(); console.log(result); } run(); /api/v1/attributes/types/{attribute_type_id}/values: get: description: List all attribute values for a given attribute type. operationId: c1.api.attribute.v1.Attributes.ListAttributeValues parameters: - in: path name: attribute_type_id required: true schema: description: The attributeTypeId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.ListAttributeValuesResponse' description: ListAttributeValuesResponse is the response for listing attribute values for a given AttributeType. summary: List Attribute Values tags: - Attribute x-speakeasy-group: Attributes x-speakeasy-name-override: ListAttributeValues x-codeSamples: - lang: go label: ListAttributeValues source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Attributes.ListAttributeValues(ctx, operations.C1APIAttributeV1AttributesListAttributeValuesRequest{ AttributeTypeID: "", }) if err != nil { log.Fatal(err) } if res.ListAttributeValuesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributes.listAttributeValues({ attributeTypeId: "", }); console.log(result); } run(); /api/v1/auth-configs: get: description: List returns all authentication provider configurations for the tenant. operationId: c1.api.auth_config.v1.TenantAuthConfigService.List parameters: - in: query name: page_size schema: description: The maximum number of results to return per page. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: A pagination token returned from a previous List call. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceListResponse' description: Successful response summary: List tags: - Auth Config x-speakeasy-group: TenantAuthConfig x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantAuthConfig.List(ctx, operations.C1APIAuthConfigV1TenantAuthConfigServiceListRequest{}) if err != nil { log.Fatal(err) } if res.TenantAuthConfigServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantAuthConfig.list(); console.log(result); } run(); post: description: Create registers a new authentication provider configuration for the tenant. operationId: c1.api.auth_config.v1.TenantAuthConfigService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceCreateResponse' description: Successful response summary: Create tags: - Auth Config x-speakeasy-group: TenantAuthConfig x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantAuthConfig.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.TenantAuthConfigServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantAuthConfig.create(); console.log(result); } run(); /api/v1/auth-configs/{id}: delete: description: Delete removes an authentication provider configuration from the tenant. operationId: c1.api.auth_config.v1.TenantAuthConfigService.Delete parameters: - in: path name: id required: true schema: description: The unique identifier of the authentication provider configuration to delete. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceDeleteResponse' description: Successful response summary: Delete tags: - Auth Config x-speakeasy-group: TenantAuthConfig x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantAuthConfig.Delete(ctx, operations.C1APIAuthConfigV1TenantAuthConfigServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.TenantAuthConfigServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantAuthConfig.delete({ id: "", }); console.log(result); } run(); get: description: Get retrieves a single authentication provider configuration by its ID. operationId: c1.api.auth_config.v1.TenantAuthConfigService.Get parameters: - in: path name: id required: true schema: description: The unique identifier of the authentication provider configuration to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceGetResponse' description: Successful response summary: Get tags: - Auth Config x-speakeasy-group: TenantAuthConfig x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantAuthConfig.Get(ctx, operations.C1APIAuthConfigV1TenantAuthConfigServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.TenantAuthConfigServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantAuthConfig.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing authentication provider configuration. Use the update mask to specify which fields to change. operationId: c1.api.auth_config.v1.TenantAuthConfigService.Update parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.auth_config.v1.TenantAuthConfigServiceUpdateResponse' description: Successful response summary: Update tags: - Auth Config x-speakeasy-group: TenantAuthConfig x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantAuthConfig.Update(ctx, operations.C1APIAuthConfigV1TenantAuthConfigServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.TenantAuthConfigServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantAuthConfig.update({ id: "", }); console.log(result); } run(); /api/v1/auth/introspect: get: description: Introspect returns the current user's principle_id, user_id and a list of roles, permissions, and enabled features. operationId: c1.api.auth.v1.Auth.Introspect responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.auth.v1.IntrospectResponse' description: IntrospectResponse contains information about the current user who is authenticated. summary: Introspect tags: - Auth x-speakeasy-group: Auth x-speakeasy-name-override: Introspect x-codeSamples: - lang: go label: Introspect source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Auth.Introspect(ctx) if err != nil { log.Fatal(err) } if res.IntrospectResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.auth.introspect(); console.log(result); } run(); /api/v1/automation_executions: get: description: List all automation executions in the tenant with pagination support. operationId: c1.api.automations.v1.AutomationExecutionService.ListAutomationExecutions responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ListAutomationExecutionsResponse' description: Successful response summary: List Automation Executions tags: - Automations x-speakeasy-group: AutomationExecution x-speakeasy-name-override: ListAutomationExecutions x-codeSamples: - lang: go label: ListAutomationExecutions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationExecution.ListAutomationExecutions(ctx) if err != nil { log.Fatal(err) } if res.ListAutomationExecutionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationExecution.listAutomationExecutions(); console.log(result); } run(); /api/v1/automation_executions/{id}: get: description: Retrieve a single automation execution by its unique identifier, with optional expanded related objects. operationId: c1.api.automations.v1.AutomationExecutionService.GetAutomationExecution parameters: - in: path name: id required: true schema: description: The unique identifier of the automation execution to retrieve. format: int64 readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.GetAutomationExecutionResponse' description: Successful response summary: Get Automation Execution tags: - Automations x-speakeasy-group: AutomationExecution x-speakeasy-name-override: GetAutomationExecution x-codeSamples: - lang: go label: GetAutomationExecution source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationExecution.GetAutomationExecution(ctx, operations.C1APIAutomationsV1AutomationExecutionServiceGetAutomationExecutionRequest{ ID: 728203, }) if err != nil { log.Fatal(err) } if res.GetAutomationExecutionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationExecution.getAutomationExecution({ id: 61036, }); console.log(result); } run(); /api/v1/automation_executions/{id}/actions/terminate: post: description: Terminate a running automation execution asynchronously, stopping it and marking it as terminated. operationId: c1.api.automations.v1.AutomationExecutionActionsService.TerminateAutomation parameters: - in: path name: id required: true schema: description: The unique identifier of the automation execution to terminate. format: int64 readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.TerminateAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.TerminateAutomationResponse' description: Successful response summary: Terminate Automation tags: - Automations x-speakeasy-group: AutomationExecutionActions x-speakeasy-name-override: TerminateAutomation x-codeSamples: - lang: go label: TerminateAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationExecutionActions.TerminateAutomation(ctx, operations.C1APIAutomationsV1AutomationExecutionActionsServiceTerminateAutomationRequest{ ID: 839265, }) if err != nil { log.Fatal(err) } if res.TerminateAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationExecutionActions.terminateAutomation({ id: 840304, }); console.log(result); } run(); /api/v1/automations: get: description: List all automations in the tenant with pagination support. operationId: c1.api.automations.v1.AutomationService.ListAutomations responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ListAutomationsResponse' description: Successful response summary: List Automations tags: - Automations x-speakeasy-group: Automation x-speakeasy-name-override: ListAutomations x-codeSamples: - lang: go label: ListAutomations source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.ListAutomations(ctx) if err != nil { log.Fatal(err) } if res.ListAutomationsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.listAutomations(); console.log(result); } run(); post: description: Create a new automation with the specified steps, triggers, and configuration. operationId: c1.api.automations.v1.AutomationService.CreateAutomation requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.CreateAutomationRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.CreateAutomationResponse' description: Successful response summary: Create Automation tags: - Automations x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Automation#create x-speakeasy-group: Automation x-speakeasy-name-override: CreateAutomation x-codeSamples: - lang: go label: CreateAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.CreateAutomation(ctx, nil) if err != nil { log.Fatal(err) } if res.AutomationsCreateAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.createAutomation(); console.log(result); } run(); /api/v1/automations/{id}: delete: description: Delete an automation by its unique identifier, removing it and its associated triggers. operationId: c1.api.automations.v1.AutomationService.DeleteAutomation parameters: - in: path name: id required: true schema: description: The unique identifier of the automation to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.DeleteAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.DeleteAutomationResponse' description: Successful response summary: Delete Automation tags: - Automations x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Automation#delete x-speakeasy-group: Automation x-speakeasy-name-override: DeleteAutomation x-codeSamples: - lang: go label: DeleteAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.DeleteAutomation(ctx, operations.C1APIAutomationsV1AutomationServiceDeleteAutomationRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.AutomationsDeleteAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.deleteAutomation({ id: "", }); console.log(result); } run(); get: description: Retrieve a single automation by its unique identifier. operationId: c1.api.automations.v1.AutomationService.GetAutomation parameters: - in: path name: id required: true schema: description: The unique identifier of the automation to retrieve. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.GetAutomationResponse' description: Successful response summary: Get Automation tags: - Automations x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Automation#read x-speakeasy-group: Automation x-speakeasy-name-override: GetAutomation x-codeSamples: - lang: go label: GetAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.GetAutomation(ctx, operations.C1APIAutomationsV1AutomationServiceGetAutomationRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.getAutomation({ id: "", }); console.log(result); } run(); post: description: Update an existing automation's properties, steps, or triggers using a field mask. operationId: c1.api.automations.v1.AutomationService.UpdateAutomation parameters: - in: path name: id required: true schema: description: The id field. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.UpdateAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.UpdateAutomationResponse' description: Successful response summary: Update Automation tags: - Automations x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Automation#update x-speakeasy-group: Automation x-speakeasy-name-override: UpdateAutomation x-codeSamples: - lang: go label: UpdateAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.UpdateAutomation(ctx, operations.C1APIAutomationsV1AutomationServiceUpdateAutomationRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.updateAutomation({ id: "", }); console.log(result); } run(); /api/v1/automations/{id}/circuit_breaker/clear: post: description: |- Clear the circuit breaker on an automation that was auto-disabled by the rate cap. Future events flow normally; existing paused executions are not affected (use ResolvePausedAutomationExecutions to run or cancel them). operationId: c1.api.automations.v1.AutomationService.ClearAutomationCircuitBreaker parameters: - in: path name: id required: true schema: description: |- The unique identifier of the automation whose circuit breaker should be cleared. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ClearAutomationCircuitBreakerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ClearAutomationCircuitBreakerResponse' description: Successful response summary: Clear Automation Circuit Breaker tags: - Automations x-speakeasy-group: Automation x-speakeasy-name-override: ClearAutomationCircuitBreaker x-codeSamples: - lang: go label: ClearAutomationCircuitBreaker source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.ClearAutomationCircuitBreaker(ctx, operations.C1APIAutomationsV1AutomationServiceClearAutomationCircuitBreakerRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ClearAutomationCircuitBreakerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.clearAutomationCircuitBreaker({ id: "", }); console.log(result); } run(); /api/v1/automations/{id}/circuit_breaker/resolve_paused: post: description: |- Decide what to do with the executions that were paused while the automation's circuit breaker was tripped. Idempotent. operationId: c1.api.automations.v1.AutomationService.ResolvePausedAutomationExecutions parameters: - in: path name: id required: true schema: description: |- The unique identifier of the automation whose paused executions should be resolved. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ResolvePausedAutomationExecutionsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ResolvePausedAutomationExecutionsResponse' description: Successful response summary: Resolve Paused Automation Executions tags: - Automations x-speakeasy-group: Automation x-speakeasy-name-override: ResolvePausedAutomationExecutions x-codeSamples: - lang: go label: ResolvePausedAutomationExecutions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.ResolvePausedAutomationExecutions(ctx, operations.C1APIAutomationsV1AutomationServiceResolvePausedAutomationExecutionsRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ResolvePausedAutomationExecutionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.resolvePausedAutomationExecutions({ id: "", }); console.log(result); } run(); /api/v1/automations/{id}/execute: post: description: Trigger an on-demand execution of an automation, returning the new execution's identifier. operationId: c1.api.automations.v1.AutomationService.ExecuteAutomation parameters: - in: path name: id required: true schema: description: The unique identifier of the automation to execute. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ExecuteAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.ExecuteAutomationResponse' description: Successful response summary: Execute Automation tags: - Automations x-speakeasy-group: Automation x-speakeasy-name-override: ExecuteAutomation x-codeSamples: - lang: go label: ExecuteAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Automation.ExecuteAutomation(ctx, operations.C1APIAutomationsV1AutomationServiceExecuteAutomationRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ExecuteAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automation.executeAutomation({ id: "", }); console.log(result); } run(); /api/v1/catalogs: get: description: Get a list of request catalogs. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.List parameters: - in: query name: page_size schema: description: The pageSize where 0 <= pageSize <= 100. Values < 10 will be set to 10. A value of 0 returns the default page size (currently 25) format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The page_token field for pagination. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceListResponse' description: Successful response summary: List tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Request Catalogs#read terraform-resource: null x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.List(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceListRequest{}) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.list(); console.log(result); } run(); post: description: Creates a new request catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceGetResponse' description: The request catalog management service get response returns a request catalog view with the expanded items in the expanded array indicated by the expand mask in the request. summary: Create tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile#create x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.create(); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/requestable_entitlementIDs: get: description: List all requestable entitlement IDs in a catalog without pagination. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.ListAllEntitlementIdsPerApp parameters: - in: path name: catalog_id required: true schema: description: The unique identifier of the access profile. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceListAllEntitlementIdsPerCatalogResponse' description: The response message containing all requestable entitlement references in the catalog. summary: List All Entitlement Ids Per App tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Access_Profile_Requestable_Entries#read x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: ListAllEntitlementIdsPerApp x-codeSamples: - lang: go label: ListAllEntitlementIdsPerApp source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.ListAllEntitlementIdsPerApp(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceListAllEntitlementIdsPerAppRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceListAllEntitlementIdsPerCatalogResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.listAllEntitlementIdsPerApp({ catalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/requestable_entitlements: get: description: List entitlements in a catalog that are requestable. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.ListEntitlementsPerCatalog parameters: - in: path name: catalog_id required: true schema: description: The catalogId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceListEntitlementsPerCatalogResponse' description: The RequestCatalogManagementServiceListEntitlementsPerCatalogResponse message contains a list of results and a nextPageToken if applicable. summary: List Entitlements Per Catalog tags: - Request Catalog x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: ListEntitlementsPerCatalog x-codeSamples: - lang: go label: ListEntitlementsPerCatalog source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.ListEntitlementsPerCatalog(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceListEntitlementsPerCatalogRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceListEntitlementsPerCatalogResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.listEntitlementsPerCatalog({ catalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/requestable_entitlements/update: post: description: Replace the full set of requestable entitlements in a catalog with the provided list. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.UpdateAppEntitlements parameters: - in: path name: catalog_id required: true schema: description: The Id of the request catalog to get app entitlement to. This is a URL value. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceUpdateAppEntitlementsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceUpdateAppEntitlementsResponse' description: The RequestCatalogManagementServiceUpdateAppEntitlementsResponse object is is the response from UpdateAppEntitlements endpoint. summary: Update App Entitlements tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Requestable_Entries#update x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: UpdateAppEntitlements x-codeSamples: - lang: go label: UpdateAppEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.UpdateAppEntitlements(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceUpdateAppEntitlementsRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceUpdateAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.updateAppEntitlements({ catalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/requestable_entries: delete: description: Remove requestable entitlements from a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.RemoveAppEntitlements parameters: - in: path name: catalog_id required: true schema: description: The catalogId for the catalog to remove entitlements from. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAppEntitlementsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAppEntitlementsResponse' description: Empty response with a status code indicating success summary: Remove App Entitlements tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Requestable_Entries#delete x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: RemoveAppEntitlements x-codeSamples: - lang: go label: RemoveAppEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.RemoveAppEntitlements(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceRemoveAppEntitlementsRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceRemoveAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.removeAppEntitlements({ catalogId: "", }); console.log(result); } run(); post: description: Add requestable entitlements to a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.AddAppEntitlements parameters: - in: path name: catalog_id required: true schema: description: The Id of the request catalog to add app entitlements to. This is a URL value. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAppEntitlementsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAppEntitlementsResponse' description: Empty response with a status code indicating success. summary: Add App Entitlements tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Requestable_Entries#create x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: AddAppEntitlements x-codeSamples: - lang: go label: AddAppEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.AddAppEntitlements(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceAddAppEntitlementsRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceAddAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.addAppEntitlements({ catalogId: null, }); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/requestable_entries/{app_id}/{entitlement_id}: delete: description: Delete a single requestable entry operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.DeleteRequestableEntry parameters: - in: path name: catalog_id required: true schema: description: The ID of the access profile (catalog) readOnly: false type: string - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement readOnly: false type: string - in: path name: entitlement_id required: true schema: description: The ID of the entitlement readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteRequestableEntryRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteRequestableEntryResponse' description: Empty response for delete operation summary: Delete Requestable Entry tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Requestable_Entry#delete x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: DeleteRequestableEntry x-codeSamples: - lang: go label: DeleteRequestableEntry source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.DeleteRequestableEntry(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceDeleteRequestableEntryRequest{ AppID: "", CatalogID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceDeleteRequestableEntryResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.deleteRequestableEntry({ catalogId: "", appId: "", entitlementId: "", }); console.log(result); } run(); get: description: Get a single requestable entry operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.GetRequestableEntry parameters: - in: path name: catalog_id required: true schema: description: The ID of the access profile (catalog) readOnly: false type: string - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement readOnly: false type: string - in: path name: entitlement_id required: true schema: description: The ID of the entitlement readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceGetRequestableEntryResponse' description: Response containing the requested entry summary: Get Requestable Entry tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access_Profile_Requestable_Entry#read terraform-resource: null x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: GetRequestableEntry x-codeSamples: - lang: go label: GetRequestableEntry source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.GetRequestableEntry(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceGetRequestableEntryRequest{ AppID: "", CatalogID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceGetRequestableEntryResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.getRequestableEntry({ catalogId: "", appId: "", entitlementId: "", }); console.log(result); } run(); put: description: Create a single requestable entry operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.CreateRequestableEntry parameters: - in: path name: catalog_id required: true schema: description: The ID of the access profile (catalog) to add the entitlement to readOnly: false type: string - in: path name: app_id required: true schema: description: The ID of the app that contains the entitlement readOnly: false type: string - in: path name: entitlement_id required: true schema: description: The ID of the entitlement to add to the request catalog readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceCreateRequestableEntryRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceCreateRequestableEntryResponse' description: Response containing the created requestable entry summary: Create Requestable Entry tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Requestable_Entry#create x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: CreateRequestableEntry x-codeSamples: - lang: go label: CreateRequestableEntry source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.CreateRequestableEntry(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceCreateRequestableEntryRequest{ AppID: "", CatalogID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceCreateRequestableEntryResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.createRequestableEntry({ catalogId: "", appId: "", entitlementId: "", }); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/visibility_bindings: delete: description: Remove visibility bindings (access entitlements) from a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.RemoveAccessEntitlements parameters: - in: path name: catalog_id required: true schema: description: The catalogId for the catalog to remove access entitlements from. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAccessEntitlementsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceRemoveAccessEntitlementsResponse' description: Empty response with a status code indicating success. summary: Remove Access Entitlements tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Visibility_Bindings#delete x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: RemoveAccessEntitlements x-codeSamples: - lang: go label: RemoveAccessEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.RemoveAccessEntitlements(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceRemoveAccessEntitlementsRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceRemoveAccessEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.removeAccessEntitlements({ catalogId: "", }); console.log(result); } run(); post: description: Add visibility bindings (access entitlements) to a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.AddAccessEntitlements parameters: - in: path name: catalog_id required: true schema: description: The Id of the request catalog to add access entitlements to. This is a URL value. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAccessEntitlementsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceAddAccessEntitlementsResponse' description: Empty response with a status code indicating success. summary: Add Access Entitlements tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile_Visibility_Bindings#create x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: AddAccessEntitlements x-codeSamples: - lang: go label: AddAccessEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.AddAccessEntitlements(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceAddAccessEntitlementsRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceAddAccessEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.addAccessEntitlements({ catalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{catalog_id}/visibility_entitlements: get: description: List visibility bindings (access entitlements) for a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.ListEntitlementsForAccess parameters: - in: path name: catalog_id required: true schema: description: The catalogId field. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceListEntitlementsForAccessResponse' description: The RequestCatalogManagementServiceListEntitlementsForAccessResponse message contains a list of results and a nextPageToken if applicable. summary: List Entitlements For Access tags: - Request Catalog x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: ListEntitlementsForAccess x-codeSamples: - lang: go label: ListEntitlementsForAccess source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.ListEntitlementsForAccess(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceListEntitlementsForAccessRequest{ CatalogID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceListEntitlementsForAccessResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.listEntitlementsForAccess({ catalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{id}: delete: description: Delete a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.Delete parameters: - in: path name: id required: true schema: description: The Id of the RequestCatalog to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceDeleteResponse' description: Empty response with a status code indicating success. summary: Delete tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile#delete x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.Delete(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.delete({ id: "", }); console.log(result); } run(); get: description: Get a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceGetResponse' description: The request catalog management service get response returns a request catalog view with the expanded items in the expanded array indicated by the expand mask in the request. summary: Get tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Access_Profile#read terraform-resource: Access_Profile#read x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.Get(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.get({ id: "", }); console.log(result); } run(); post: description: Update a catalog. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.Update parameters: - in: path name: id required: true schema: description: The id of the request catalog. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogManagementServiceGetResponse' description: The request catalog management service get response returns a request catalog view with the expanded items in the expanded array indicated by the expand mask in the request. summary: Update tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Access_Profile#update x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.Update(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.RequestCatalogManagementServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.update({ id: null, }); console.log(result); } run(); /api/v1/catalogs/{request_catalog_id}/bundle_automation: delete: description: Delete the bundle automation rule for a catalog, stopping automatic membership syncing. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.DeleteBundleAutomation parameters: - in: path name: request_catalog_id required: true schema: description: The unique identifier of the access profile whose automation should be deleted. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.DeleteBundleAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.DeleteBundleAutomationResponse' description: The response message for deleting a bundle automation. summary: Delete Bundle Automation tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: BundleAutomation#delete x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: DeleteBundleAutomation x-codeSamples: - lang: go label: DeleteBundleAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.DeleteBundleAutomation(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceDeleteBundleAutomationRequest{ RequestCatalogID: "", }) if err != nil { log.Fatal(err) } if res.DeleteBundleAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.deleteBundleAutomation({ requestCatalogId: "", }); console.log(result); } run(); get: description: Get bundle automation operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.GetBundleAutomation parameters: - in: path name: request_catalog_id required: true schema: description: The requestCatalogId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomation' description: Successful response summary: Get Bundle Automation tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: BundleAutomation#read terraform-resource: BundleAutomation#read x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: GetBundleAutomation x-codeSamples: - lang: go label: GetBundleAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.GetBundleAutomation(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceGetBundleAutomationRequest{ RequestCatalogID: "", }) if err != nil { log.Fatal(err) } if res.BundleAutomation != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.getBundleAutomation({ requestCatalogId: "", }); console.log(result); } run(); post: description: Create or update the bundle automation rule for a catalog that automatically syncs catalog membership. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.SetBundleAutomation parameters: - in: path name: request_catalog_id required: true schema: description: The unique identifier of the access profile to set the automation on. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.SetBundleAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomation' description: Successful response summary: Set Bundle Automation tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: BundleAutomation#update x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: SetBundleAutomation x-codeSamples: - lang: go label: SetBundleAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.SetBundleAutomation(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceSetBundleAutomationRequest{ RequestCatalogID: "", }) if err != nil { log.Fatal(err) } if res.BundleAutomation != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.setBundleAutomation({ requestCatalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{request_catalog_id}/bundle_automation/create: post: description: Create a new bundle automation rule for a catalog that automatically syncs catalog membership from a query. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.CreateBundleAutomation parameters: - in: path name: request_catalog_id required: true schema: description: The unique identifier of the access profile to create the automation for. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.CreateBundleAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.BundleAutomation' description: Successful response summary: Create Bundle Automation tags: - Request Catalog x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: BundleAutomation#create x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: CreateBundleAutomation x-codeSamples: - lang: go label: CreateBundleAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.CreateBundleAutomation(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceCreateBundleAutomationRequest{ RequestCatalogID: "", }) if err != nil { log.Fatal(err) } if res.BundleAutomation != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.createBundleAutomation({ requestCatalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{request_catalog_id}/bundle_automation/resume: post: description: Resume a bundle automation that was paused by the circuit breaker after detecting excessive membership changes. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.ResumePausedBundleAutomation parameters: - in: path name: request_catalog_id required: true schema: description: The unique identifier of the access profile whose automation should be resumed. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.ResumePausedBundleAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.ResumePausedBundleAutomationResponse' description: The response message for resuming a paused bundle automation. summary: Resume Paused Bundle Automation tags: - Request Catalog x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: ResumePausedBundleAutomation x-codeSamples: - lang: go label: ResumePausedBundleAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.ResumePausedBundleAutomation(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceResumePausedBundleAutomationRequest{ RequestCatalogID: "", }) if err != nil { log.Fatal(err) } if res.ResumePausedBundleAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.resumePausedBundleAutomation({ requestCatalogId: "", }); console.log(result); } run(); /api/v1/catalogs/{request_catalog_id}/bundle_automation/run: post: description: Trigger an immediate execution of a catalog's bundle automation, bypassing the normal schedule. operationId: c1.api.requestcatalog.v1.RequestCatalogManagementService.ForceRunBundleAutomation parameters: - in: path name: request_catalog_id required: true schema: description: The unique identifier of the access profile whose automation should be run. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.ForceRunBundleAutomationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.ForceRunBundleAutomationResponse' description: The response message for triggering a bundle automation run. summary: Force Run Bundle Automation tags: - Request Catalog x-speakeasy-group: RequestCatalogManagement x-speakeasy-name-override: ForceRunBundleAutomation x-codeSamples: - lang: go label: ForceRunBundleAutomation source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogManagement.ForceRunBundleAutomation(ctx, operations.C1APIRequestcatalogV1RequestCatalogManagementServiceForceRunBundleAutomationRequest{ RequestCatalogID: "", }) if err != nil { log.Fatal(err) } if res.ForceRunBundleAutomationResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogManagement.forceRunBundleAutomation({ requestCatalogId: "", }); console.log(result); } run(); /api/v1/connectorcatalog: post: description: Return the configuration schema describing the fields required to set up a connector of the specified type. operationId: c1.api.integration.connector.v1.ConnectorCatalogService.ConfigurationSchema requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.integration.connector.v1.ConnectorCatalogServiceConfigurationSchemaRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.integration.connector.v1.ConnectorCatalogServiceConfigurationSchemaResponse' description: ConnectorCatalogServiceConfigurationSchemaResponse is the response containing the connector's configuration schema. summary: Configuration Schema tags: - Connector Catalog x-speakeasy-group: ConnectorCatalog x-speakeasy-name-override: ConfigurationSchema x-codeSamples: - lang: go label: ConfigurationSchema source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.ConnectorCatalog.ConfigurationSchema(ctx, nil) if err != nil { log.Fatal(err) } if res.ConnectorCatalogServiceConfigurationSchemaResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connectorCatalog.configurationSchema(); console.log(result); } run(); /api/v1/directories: get: description: List directories. operationId: c1.api.directory.v1.DirectoryService.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceListResponse' description: The DirectoryServiceListResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - Directory x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - Directory#read - Directories#read terraform-resource: null x-speakeasy-group: Directory x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Directory.List(ctx, operations.C1APIDirectoryV1DirectoryServiceListRequest{}) if err != nil { log.Fatal(err) } if res.DirectoryServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.directory.list(); console.log(result); } run(); post: description: Create a directory. operationId: c1.api.directory.v1.DirectoryService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceCreateResponse' description: The DirectoryServiceCreateResponse message. summary: Create tags: - Directory x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Directory#create x-speakeasy-group: Directory x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Directory.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.DirectoryServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.directory.create(); console.log(result); } run(); /api/v1/directories/{app_id}: delete: description: Delete a directory by app_id. operationId: c1.api.directory.v1.DirectoryService.Delete parameters: - in: path name: app_id required: true schema: description: The app_id of the directory to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceDeleteResponse' description: Empty response with a status code indicating success. summary: Delete tags: - Directory x-speakeasy-group: Directory x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Directory.Delete(ctx, operations.C1APIDirectoryV1DirectoryServiceDeleteRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.DirectoryServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.directory.delete({ appId: "", }); console.log(result); } run(); get: description: Get a directory by app_id. operationId: c1.api.directory.v1.DirectoryService.Get parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceGetResponse' description: |- The Directory Service Get Response returns a directory view with a directory and JSONPATHs indicating the location in the expanded array that items are expanded as indicated by the expand mask in the request. summary: Get tags: - Directory x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Directory#read x-speakeasy-group: Directory x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Directory.Get(ctx, operations.C1APIDirectoryV1DirectoryServiceGetRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.DirectoryServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.directory.get({ appId: "", }); console.log(result); } run(); put: description: Update a directory by app_id. operationId: c1.api.directory.v1.DirectoryService.Update parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.directory.v1.DirectoryServiceUpdateResponse' description: Successful response summary: Update tags: - Directory x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Directory#update x-speakeasy-group: Directory x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Directory.Update(ctx, operations.C1APIDirectoryV1DirectoryServiceUpdateRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.DirectoryServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.directory.update({ appId: "", }); console.log(result); } run(); /api/v1/findings/{finding_id}/state: post: description: Update finding workflow state (snooze, accept risk, suppress, reopen, resolve). operationId: c1.api.finding.v1.FindingService.UpdateFindingState parameters: - in: path name: finding_id required: true schema: description: The ID of the finding whose state to update. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.UpdateFindingStateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.UpdateFindingStateResponse' description: Successful response summary: Update Finding State tags: - Findings x-speakeasy-group: Finding x-speakeasy-name-override: UpdateFindingState x-codeSamples: - lang: go label: UpdateFindingState source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Finding.UpdateFindingState(ctx, operations.C1APIFindingV1FindingServiceUpdateFindingStateRequest{ FindingID: "", }) if err != nil { log.Fatal(err) } if res.UpdateFindingStateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.finding.updateFindingState({ findingId: "", }); console.log(result); } run(); /api/v1/findings/{finding_id}/task: post: description: Create a task for a finding. operationId: c1.api.finding.v1.FindingService.CreateFindingTask parameters: - in: path name: finding_id required: true schema: description: The ID of the finding to create a remediation task for. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.CreateFindingTaskRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.CreateFindingTaskResponse' description: Successful response summary: Create Finding Task tags: - Findings x-speakeasy-group: Finding x-speakeasy-name-override: CreateFindingTask x-codeSamples: - lang: go label: CreateFindingTask source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Finding.CreateFindingTask(ctx, operations.C1APIFindingV1FindingServiceCreateFindingTaskRequest{ FindingID: "", }) if err != nil { log.Fatal(err) } if res.CreateFindingTaskResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.finding.createFindingTask({ findingId: "", }); console.log(result); } run(); /api/v1/findings/{id}: get: description: Get a single finding by ID. operationId: c1.api.finding.v1.FindingService.GetFinding parameters: - in: path name: id required: true schema: description: The ID of the finding to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.GetFindingResponse' description: Successful response summary: Get Finding tags: - Findings x-speakeasy-group: Finding x-speakeasy-name-override: GetFinding x-codeSamples: - lang: go label: GetFinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Finding.GetFinding(ctx, operations.C1APIFindingV1FindingServiceGetFindingRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetFindingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.finding.getFinding({ id: "", }); console.log(result); } run(); /api/v1/findings/bulk/state: post: description: Bulk update finding states. operationId: c1.api.finding.v1.FindingService.BulkUpdateFindingState requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.BulkUpdateFindingStateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.BulkUpdateFindingStateResponse' description: Successful response summary: Bulk Update Finding State tags: - Findings x-speakeasy-group: Finding x-speakeasy-name-override: BulkUpdateFindingState x-codeSamples: - lang: go label: BulkUpdateFindingState source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Finding.BulkUpdateFindingState(ctx, nil) if err != nil { log.Fatal(err) } if res.BulkUpdateFindingStateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.finding.bulkUpdateFindingState(); console.log(result); } run(); /api/v1/findings/bulk/tasks: post: description: Bulk create tasks for findings. operationId: c1.api.finding.v1.FindingService.BulkCreateFindingTasks requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.BulkCreateFindingTasksRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.BulkCreateFindingTasksResponse' description: Successful response summary: Bulk Create Finding Tasks tags: - Findings x-speakeasy-group: Finding x-speakeasy-name-override: BulkCreateFindingTasks x-codeSamples: - lang: go label: BulkCreateFindingTasks source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Finding.BulkCreateFindingTasks(ctx, nil) if err != nil { log.Fatal(err) } if res.BulkCreateFindingTasksResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.finding.bulkCreateFindingTasks(); console.log(result); } run(); /api/v1/findings/routing-rules: get: description: List finding routing rules, optionally filtered to a specific app. operationId: c1.api.finding.v1.FindingRoutingRuleService.ListFindingRoutingRules responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.ListFindingRoutingRulesResponse' description: Successful response summary: List Finding Routing Rules tags: - Finding Routing Rules x-speakeasy-group: FindingRoutingRule x-speakeasy-name-override: ListFindingRoutingRules x-codeSamples: - lang: go label: ListFindingRoutingRules source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FindingRoutingRule.ListFindingRoutingRules(ctx) if err != nil { log.Fatal(err) } if res.ListFindingRoutingRulesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.findingRoutingRule.listFindingRoutingRules(); console.log(result); } run(); post: description: Create a new finding routing rule that defines which policy to use for auto-routing matching findings. operationId: c1.api.finding.v1.FindingRoutingRuleService.CreateFindingRoutingRule requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.CreateFindingRoutingRuleRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.CreateFindingRoutingRuleResponse' description: Successful response summary: Create Finding Routing Rule tags: - Finding Routing Rules x-speakeasy-group: FindingRoutingRule x-speakeasy-name-override: CreateFindingRoutingRule x-codeSamples: - lang: go label: CreateFindingRoutingRule source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FindingRoutingRule.CreateFindingRoutingRule(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateFindingRoutingRuleResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.findingRoutingRule.createFindingRoutingRule(); console.log(result); } run(); /api/v1/findings/routing-rules/{id}: delete: description: Delete a finding routing rule. Findings already routed by this rule are not affected. operationId: c1.api.finding.v1.FindingRoutingRuleService.DeleteFindingRoutingRule parameters: - in: path name: id required: true schema: description: The ID of the finding routing rule to delete. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.DeleteFindingRoutingRuleRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.DeleteFindingRoutingRuleResponse' description: Successful response summary: Delete Finding Routing Rule tags: - Finding Routing Rules x-speakeasy-group: FindingRoutingRule x-speakeasy-name-override: DeleteFindingRoutingRule x-codeSamples: - lang: go label: DeleteFindingRoutingRule source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FindingRoutingRule.DeleteFindingRoutingRule(ctx, operations.C1APIFindingV1FindingRoutingRuleServiceDeleteFindingRoutingRuleRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteFindingRoutingRuleResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.findingRoutingRule.deleteFindingRoutingRule({ id: "", }); console.log(result); } run(); get: description: Retrieve a single finding routing rule by ID. operationId: c1.api.finding.v1.FindingRoutingRuleService.GetFindingRoutingRule parameters: - in: path name: id required: true schema: description: The ID of the finding routing rule to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.GetFindingRoutingRuleResponse' description: Successful response summary: Get Finding Routing Rule tags: - Finding Routing Rules x-speakeasy-group: FindingRoutingRule x-speakeasy-name-override: GetFindingRoutingRule x-codeSamples: - lang: go label: GetFindingRoutingRule source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FindingRoutingRule.GetFindingRoutingRule(ctx, operations.C1APIFindingV1FindingRoutingRuleServiceGetFindingRoutingRuleRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetFindingRoutingRuleResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.findingRoutingRule.getFindingRoutingRule({ id: "", }); console.log(result); } run(); /api/v1/findings/routing-rules/{routing_rule_id}/update: post: description: Update an existing finding routing rule's match criteria or target policy. operationId: c1.api.finding.v1.FindingRoutingRuleService.UpdateFindingRoutingRule parameters: - in: path name: routing_rule_id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.UpdateFindingRoutingRuleRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.UpdateFindingRoutingRuleResponse' description: Successful response summary: Update Finding Routing Rule tags: - Finding Routing Rules x-speakeasy-group: FindingRoutingRule x-speakeasy-name-override: UpdateFindingRoutingRule x-codeSamples: - lang: go label: UpdateFindingRoutingRule source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FindingRoutingRule.UpdateFindingRoutingRule(ctx, operations.C1APIFindingV1FindingRoutingRuleServiceUpdateFindingRoutingRuleRequest{ RoutingRuleID: "", }) if err != nil { log.Fatal(err) } if res.UpdateFindingRoutingRuleResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.findingRoutingRule.updateFindingRoutingRule({ routingRuleId: "", }); console.log(result); } run(); /api/v1/findings/search: post: description: Search findings using full-text query and filters for severity, state, type, and app. operationId: c1.api.finding.v1.FindingSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.FindingSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.finding.v1.FindingSearchResponse' description: Successful response summary: Search tags: - Findings x-speakeasy-group: FindingSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FindingSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.FindingSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.findingSearch.search(); console.log(result); } run(); /api/v1/functions: get: description: List retrieves all functions with pagination operationId: c1.api.functions.v1.FunctionsService.ListFunctions responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceListFunctionsResponse' description: Successful response summary: List Functions tags: - Function x-speakeasy-group: Functions x-speakeasy-name-override: ListFunctions x-stability-level: draft x-codeSamples: - lang: go label: ListFunctions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.ListFunctions(ctx) if err != nil { log.Fatal(err) } if res.FunctionsServiceListFunctionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.listFunctions(); console.log(result); } run(); post: description: CreateFunction registers a new serverless function and creates its initial code commit. operationId: c1.api.functions.v1.FunctionsService.CreateFunction requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateFunctionRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateFunctionResponse' description: Successful response summary: Create Function tags: - Function x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Function#create x-speakeasy-group: Functions x-speakeasy-name-override: CreateFunction x-codeSamples: - lang: go label: CreateFunction source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.CreateFunction(ctx, nil) if err != nil { log.Fatal(err) } if res.FunctionsServiceCreateFunctionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.createFunction(); console.log(result); } run(); /api/v1/functions/{function_id}/commits: get: description: ListCommits retrieves the commit history operationId: c1.api.functions.v1.FunctionsService.ListCommits parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceListCommitsResponse' description: Successful response summary: List Commits tags: - Function Commit x-speakeasy-group: Functions x-speakeasy-name-override: ListCommits x-stability-level: draft x-codeSamples: - lang: go label: ListCommits source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.ListCommits(ctx, operations.C1APIFunctionsV1FunctionsServiceListCommitsRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceListCommitsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.listCommits({ functionId: "", }); console.log(result); } run(); post: description: CreateInitialCommit starts a new commit and returns upload URLs for files operationId: c1.api.functions.v1.FunctionsService.CreateInitialCommit parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateInitialCommitRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateInitialCommitResponse' description: Successful response summary: Create Initial Commit tags: - Function Commit x-speakeasy-group: Functions x-speakeasy-name-override: CreateInitialCommit x-stability-level: draft x-codeSamples: - lang: go label: CreateInitialCommit source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.CreateInitialCommit(ctx, operations.C1APIFunctionsV1FunctionsServiceCreateInitialCommitRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceCreateInitialCommitResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.createInitialCommit({ functionId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/commits/{commit_id}/finalize: post: description: CreateFinalCommit completes a commit after files are uploaded operationId: c1.api.functions.v1.FunctionsService.CreateFinalCommit parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: string - in: path name: commit_id required: true schema: description: The commitId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateFinalCommitRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateFinalCommitResponse' description: Successful response summary: Create Final Commit tags: - Function Commit x-speakeasy-group: Functions x-speakeasy-name-override: CreateFinalCommit x-stability-level: draft x-codeSamples: - lang: go label: CreateFinalCommit source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.CreateFinalCommit(ctx, operations.C1APIFunctionsV1FunctionsServiceCreateFinalCommitRequest{ CommitID: "", FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceCreateFinalCommitResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.createFinalCommit({ functionId: "", commitId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/commits/{commit_id}/lockfile: get: description: GetLockFile retrieves the deno lock file for a specific commit, if it exists. operationId: c1.api.functions.v1.FunctionsService.GetLockFile parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: string - in: path name: commit_id required: true schema: description: The commitId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceGetLockFileResponse' description: FunctionsServiceGetLockFileResponse returns the deno lock file content for a commit. summary: Get Lock File tags: - Function Commit x-speakeasy-group: Functions x-speakeasy-name-override: GetLockFile x-stability-level: draft x-codeSamples: - lang: go label: GetLockFile source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.GetLockFile(ctx, operations.C1APIFunctionsV1FunctionsServiceGetLockFileRequest{ CommitID: "", FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceGetLockFileResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.getLockFile({ functionId: "", commitId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/commits/{id}: get: description: |- GetCommitContent retrieves a commit and all its file contents in a single unary response. This is a non-streaming alternative to GetCommit for REST API consumers. operationId: c1.api.functions.v1.FunctionsService.GetCommitContent parameters: - in: path name: function_id required: true schema: description: The function ID (KSUID). readOnly: false type: - string - "null" - in: path name: id required: true schema: description: The commit reference to retrieve. Accepts a KSUID, "HEAD", or a tag reference like "refs/tags/v1.0". readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceGetCommitContentResponse' description: FunctionsServiceGetCommitContentResponse contains a commit and all its file contents. summary: Get Commit Content tags: - Function Commit x-speakeasy-group: Functions x-speakeasy-name-override: GetCommitContent x-stability-level: draft x-codeSamples: - lang: go label: GetCommitContent source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.GetCommitContent(ctx, operations.C1APIFunctionsV1FunctionsServiceGetCommitContentRequest{ FunctionID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceGetCommitContentResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.getCommitContent({ functionId: "", id: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/invocations: get: description: List retrieves the invocation history for a function operationId: c1.api.functions.v1.FunctionsInvocationService.List parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsInvocationServiceListResponse' description: Successful response summary: List tags: - Function Invocation x-speakeasy-group: FunctionsInvocation x-speakeasy-name-override: List x-stability-level: draft x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FunctionsInvocation.List(ctx, operations.C1APIFunctionsV1FunctionsInvocationServiceListRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsInvocationServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functionsInvocation.list({ functionId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/invocations/{id}: get: description: Get retrieves a specific invocation by ID operationId: c1.api.functions.v1.FunctionsInvocationService.Get parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: string - in: path name: id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsInvocationServiceGetResponse' description: Successful response summary: Get tags: - Function Invocation x-speakeasy-group: FunctionsInvocation x-speakeasy-name-override: Get x-stability-level: draft x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FunctionsInvocation.Get(ctx, operations.C1APIFunctionsV1FunctionsInvocationServiceGetRequest{ FunctionID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsInvocationServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functionsInvocation.get({ functionId: "", id: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/invocations/search: post: description: Search searches for function invocations with filtering and ordering support operationId: c1.api.functions.v1.FunctionsInvocationSearchService.Search parameters: - in: path name: function_id required: true schema: description: The function ID to search invocations for. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsInvocationSearchRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsInvocationSearchResponse' description: FunctionsInvocationSearchResponse is the response for searching function invocations. summary: Search tags: - Function Invocation x-speakeasy-group: FunctionsInvocationSearch x-speakeasy-name-override: Search x-stability-level: draft x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FunctionsInvocationSearch.Search(ctx, operations.C1APIFunctionsV1FunctionsInvocationSearchServiceSearchRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsInvocationSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functionsInvocationSearch.search({ functionId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/invoke: post: description: Invoke executes a function at a specific commit with the provided input data. operationId: c1.api.functions.v1.FunctionsService.Invoke parameters: - in: path name: function_id required: true schema: description: The ID of the function to invoke. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceInvokeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceInvokeResponse' description: Successful response summary: Invoke tags: - Function x-speakeasy-group: Functions x-speakeasy-name-override: Invoke x-stability-level: draft x-codeSamples: - lang: go label: Invoke source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.Invoke(ctx, operations.C1APIFunctionsV1FunctionsServiceInvokeRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceInvokeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.invoke({ functionId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/tags: get: description: ListTags lists all tags for a function operationId: c1.api.functions.v1.FunctionsService.ListTags parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceListTagsResponse' description: Successful response summary: List Tags tags: - Function Tag x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Function_Tag#read terraform-resource: Function_Tag#read x-speakeasy-group: Functions x-speakeasy-name-override: ListTags x-stability-level: draft x-codeSamples: - lang: go label: ListTags source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.ListTags(ctx, operations.C1APIFunctionsV1FunctionsServiceListTagsRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceListTagsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.listTags({ functionId: "", }); console.log(result); } run(); post: description: CreateTag creates a named reference to a specific commit operationId: c1.api.functions.v1.FunctionsService.CreateTag parameters: - in: path name: function_id required: true schema: description: The functionId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateTagRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceCreateTagResponse' description: Successful response summary: Create Tag tags: - Function Tag x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Function_Tag#create x-speakeasy-group: Functions x-speakeasy-name-override: CreateTag x-stability-level: draft x-codeSamples: - lang: go label: CreateTag source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.CreateTag(ctx, operations.C1APIFunctionsV1FunctionsServiceCreateTagRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceCreateTagResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.createTag({ functionId: "", }); console.log(result); } run(); /api/v1/functions/{function_id}/test: post: description: Test runs a function's test suite in a sandboxed environment and returns the results. operationId: c1.api.functions.v1.FunctionsService.Test parameters: - in: path name: function_id required: true schema: description: The function ID to test. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceTestRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceTestResponse' description: FunctionsServiceTestResponse contains test execution results. summary: Test tags: - Function x-speakeasy-group: Functions x-speakeasy-name-override: Test x-stability-level: draft x-codeSamples: - lang: go label: Test source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.Test(ctx, operations.C1APIFunctionsV1FunctionsServiceTestRequest{ FunctionID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceTestResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.test({ functionId: "", }); console.log(result); } run(); /api/v1/functions/{id}: delete: description: Delete removes a function operationId: c1.api.functions.v1.FunctionsService.DeleteFunction parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceDeleteFunctionRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceDeleteFunctionResponse' description: Successful response summary: Delete Function tags: - Function x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Function#delete x-speakeasy-group: Functions x-speakeasy-name-override: DeleteFunction x-stability-level: draft x-codeSamples: - lang: go label: DeleteFunction source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.DeleteFunction(ctx, operations.C1APIFunctionsV1FunctionsServiceDeleteFunctionRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceDeleteFunctionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.deleteFunction({ id: "", }); console.log(result); } run(); get: description: Get retrieves a specific function by ID operationId: c1.api.functions.v1.FunctionsService.GetFunction parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceGetFunctionResponse' description: Successful response summary: Get Function tags: - Function x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Function#read x-speakeasy-group: Functions x-speakeasy-name-override: GetFunction x-stability-level: draft x-codeSamples: - lang: go label: GetFunction source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.GetFunction(ctx, operations.C1APIFunctionsV1FunctionsServiceGetFunctionRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.FunctionsServiceGetFunctionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.getFunction({ id: "", }); console.log(result); } run(); /api/v1/functions/update: post: description: Update updates an existing function's metadata operationId: c1.api.functions.v1.FunctionsService.UpdateFunction requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceUpdateFunctionRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsServiceUpdateFunctionResponse' description: Successful response summary: Update Function tags: - Function x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Function#update x-speakeasy-group: Functions x-speakeasy-name-override: UpdateFunction x-stability-level: draft x-codeSamples: - lang: go label: UpdateFunction source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Functions.UpdateFunction(ctx, nil) if err != nil { log.Fatal(err) } if res.FunctionsServiceUpdateFunctionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functions.updateFunction(); console.log(result); } run(); /api/v1/grants/feed: post: description: Search a chronological feed of grant and revoke events, filtered by app user, entitlement, or time range. operationId: c1.api.app.v1.AppEntitlementUserBindingService.SearchGrantFeed requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchGrantFeedRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchGrantFeedResponse' description: The SearchGrantFeedResponse message contains a list of grant event results and a nextPageToken if applicable. summary: Search Grant Feed tags: - App Entitlement User Binding Feed x-speakeasy-group: AppEntitlementUserBinding x-speakeasy-name-override: SearchGrantFeed x-codeSamples: - lang: go label: SearchGrantFeed source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementUserBinding.SearchGrantFeed(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchGrantFeedResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementUserBinding.searchGrantFeed(); console.log(result); } run(); /api/v1/hooks: get: description: Invokes the c1.api.hooks.v1.HooksService.List method. operationId: c1.api.hooks.v1.HooksService.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: The pageToken field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceListResponse' description: Successful response summary: List tags: - Hook x-speakeasy-group: Hooks x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Hooks.List(ctx, operations.C1APIHooksV1HooksServiceListRequest{}) if err != nil { log.Fatal(err) } if res.HooksServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.hooks.list(); console.log(result); } run(); post: description: Invokes the c1.api.hooks.v1.HooksService.Create method. operationId: c1.api.hooks.v1.HooksService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceCreateResponse' description: Successful response summary: Create tags: - Hook x-speakeasy-group: Hooks x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Hooks.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.HooksServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.hooks.create(); console.log(result); } run(); /api/v1/hooks/{id}: delete: description: Invokes the c1.api.hooks.v1.HooksService.Delete method. operationId: c1.api.hooks.v1.HooksService.Delete parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceDeleteResponse' description: Successful response summary: Delete tags: - Hook x-speakeasy-group: Hooks x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Hooks.Delete(ctx, operations.C1APIHooksV1HooksServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.HooksServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.hooks.delete({ id: "", }); console.log(result); } run(); get: description: Invokes the c1.api.hooks.v1.HooksService.Get method. operationId: c1.api.hooks.v1.HooksService.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceGetResponse' description: Successful response summary: Get tags: - Hook x-speakeasy-group: Hooks x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Hooks.Get(ctx, operations.C1APIHooksV1HooksServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.HooksServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.hooks.get({ id: "", }); console.log(result); } run(); post: description: Invokes the c1.api.hooks.v1.HooksService.Update method. operationId: c1.api.hooks.v1.HooksService.Update parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksServiceUpdateResponse' description: Successful response summary: Update tags: - Hook x-speakeasy-group: Hooks x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Hooks.Update(ctx, operations.C1APIHooksV1HooksServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.HooksServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.hooks.update({ id: "", }); console.log(result); } run(); /api/v1/iam/personal_clients: get: description: List returns all personal client credentials owned by the calling user. operationId: c1.api.iam.v1.PersonalClientService.List responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceListResponse' description: Successful response summary: 'NOTE: Only shows personal clients for the current user.' tags: - Personal Client x-speakeasy-group: PersonalClient x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PersonalClient.List(ctx) if err != nil { log.Fatal(err) } if res.PersonalClientServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.personalClient.list(); console.log(result); } run(); post: description: Create creates a new PersonalClient object for the current User. operationId: c1.api.iam.v1.PersonalClientService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceCreateResponse' description: The PersonalClientServiceCreateResponse message contains the created personal client and client secret. summary: Create tags: - Personal Client x-speakeasy-group: PersonalClient x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PersonalClient.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.PersonalClientServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.personalClient.create(); console.log(result); } run(); /api/v1/iam/personal_clients/{id}: delete: description: Delete a personal client credential, revoking it and preventing further API access. operationId: c1.api.iam.v1.PersonalClientService.Delete parameters: - in: path name: id required: true schema: description: The human-readable name of the personal client credential to delete (e.g., blue-whale-12345). readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceDeleteResponse' description: Successful response summary: Delete tags: - Personal Client x-speakeasy-group: PersonalClient x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PersonalClient.Delete(ctx, operations.C1APIIamV1PersonalClientServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.PersonalClientServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.personalClient.delete({ id: "", }); console.log(result); } run(); get: description: Get retrieves a single personal client credential by its ID. operationId: c1.api.iam.v1.PersonalClientService.Get parameters: - in: path name: id required: true schema: description: The human-readable name of the personal client credential to retrieve (e.g., blue-whale-12345). readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceGetResponse' description: Successful response summary: Get tags: - Personal Client x-speakeasy-group: PersonalClient x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PersonalClient.Get(ctx, operations.C1APIIamV1PersonalClientServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.PersonalClientServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.personalClient.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing personal client credential. Use the update mask to specify which fields to change. operationId: c1.api.iam.v1.PersonalClientService.Update parameters: - in: path name: id required: true schema: description: The unique ID of the personal client credential. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientServiceUpdateResponse' description: Successful response summary: Update tags: - Personal Client x-speakeasy-group: PersonalClient x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PersonalClient.Update(ctx, operations.C1APIIamV1PersonalClientServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.PersonalClientServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.personalClient.update({ id: "", }); console.log(result); } run(); /api/v1/iam/roles: get: description: List all roles for the current user. operationId: c1.api.iam.v1.Roles.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.ListRolesResponse' description: The ListRolesResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - Role x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - Role#read - Roles#read terraform-resource: null x-speakeasy-group: Roles x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Roles.List(ctx, operations.C1APIIamV1RolesListRequest{}) if err != nil { log.Fatal(err) } if res.ListRolesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roles.list(); console.log(result); } run(); /api/v1/iam/roles/{role_id}: get: description: Get a role by id. operationId: c1.api.iam.v1.Roles.Get parameters: - in: path name: role_id required: true schema: description: The roleId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.GetRolesResponse' description: The GetRolesResponse message contains the retrieved role. summary: Get tags: - Role x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Role#read x-speakeasy-group: Roles x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Roles.Get(ctx, operations.C1APIIamV1RolesGetRequest{ RoleID: "", }) if err != nil { log.Fatal(err) } if res.GetRolesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roles.get({ roleId: "", }); console.log(result); } run(); post: description: Update a role by passing a Role object. operationId: c1.api.iam.v1.Roles.Update parameters: - in: path name: role_id required: true schema: description: The id of the role. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.UpdateRoleRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.UpdateRolesResponse' description: UpdateRolesResponse is the response message containing the updated role. summary: Update tags: - Role x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Role#update x-speakeasy-group: Roles x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Roles.Update(ctx, operations.C1APIIamV1RolesUpdateRequest{ RoleID: "", }) if err != nil { log.Fatal(err) } if res.UpdateRolesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roles.update({ roleId: "", }); console.log(result); } run(); /api/v1/local-directory-configs: get: description: List local directory configs for the tenant. operationId: c1.api.local_directory.v1.LocalDirectoryConfigService.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: The pageToken field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceListResponse' description: Successful response summary: List tags: - Local Directory x-speakeasy-group: LocalDirectoryConfig x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalDirectoryConfig.List(ctx, operations.C1APILocalDirectoryV1LocalDirectoryConfigServiceListRequest{}) if err != nil { log.Fatal(err) } if res.LocalDirectoryConfigServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localDirectoryConfig.list(); console.log(result); } run(); post: description: Create a new local directory config backed by an existing App. operationId: c1.api.local_directory.v1.LocalDirectoryConfigService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceCreateResponse' description: Successful response summary: Create tags: - Local Directory x-speakeasy-group: LocalDirectoryConfig x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalDirectoryConfig.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.LocalDirectoryConfigServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localDirectoryConfig.create(); console.log(result); } run(); /api/v1/local-directory-configs/{app_id}: delete: description: Delete a local directory config. Does not delete the underlying App. operationId: c1.api.local_directory.v1.LocalDirectoryConfigService.Delete parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceDeleteResponse' description: Successful response summary: Delete tags: - Local Directory x-speakeasy-group: LocalDirectoryConfig x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalDirectoryConfig.Delete(ctx, operations.C1APILocalDirectoryV1LocalDirectoryConfigServiceDeleteRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.LocalDirectoryConfigServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localDirectoryConfig.delete({ appId: "", }); console.log(result); } run(); get: description: Get a local directory config by app_id. operationId: c1.api.local_directory.v1.LocalDirectoryConfigService.Get parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceGetResponse' description: Successful response summary: Get tags: - Local Directory x-speakeasy-group: LocalDirectoryConfig x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalDirectoryConfig.Get(ctx, operations.C1APILocalDirectoryV1LocalDirectoryConfigServiceGetRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.LocalDirectoryConfigServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localDirectoryConfig.get({ appId: "", }); console.log(result); } run(); post: description: Update a local directory config. operationId: c1.api.local_directory.v1.LocalDirectoryConfigService.Update parameters: - in: path name: app_id required: true schema: description: app_id is the identifier for this config and its linked App. Read-only after creation. readOnly: true type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalDirectoryConfigServiceUpdateResponse' description: Successful response summary: Update tags: - Local Directory x-speakeasy-group: LocalDirectoryConfig x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalDirectoryConfig.Update(ctx, operations.C1APILocalDirectoryV1LocalDirectoryConfigServiceUpdateRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.LocalDirectoryConfigServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localDirectoryConfig.update({ appId: "", }); console.log(result); } run(); /api/v1/local-directory-configs/{directory_app_id}/invitations: post: description: Create (send) a new invitation to a user. operationId: c1.api.local_directory.v1.LocalUserInvitationService.Create parameters: - in: path name: directory_app_id required: true schema: description: FK to the LocalDirectoryConfig (app_id) this invitation belongs to. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceCreateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceCreateResponse' description: Successful response summary: Create tags: - Local Directory x-speakeasy-group: LocalUserInvitation x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalUserInvitation.Create(ctx, operations.C1APILocalDirectoryV1LocalUserInvitationServiceCreateRequest{ DirectoryAppID: "", }) if err != nil { log.Fatal(err) } if res.LocalUserInvitationServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localUserInvitation.create({ directoryAppId: "", }); console.log(result); } run(); /api/v1/local-directory-configs/{directory_app_id}/invitations/{id}: get: description: Get a specific invitation by id. operationId: c1.api.local_directory.v1.LocalUserInvitationService.Get parameters: - in: path name: directory_app_id required: true schema: description: The directoryAppId field. readOnly: false type: string - in: path name: id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceGetResponse' description: Successful response summary: Get tags: - Local Directory x-speakeasy-group: LocalUserInvitation x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalUserInvitation.Get(ctx, operations.C1APILocalDirectoryV1LocalUserInvitationServiceGetRequest{ DirectoryAppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.LocalUserInvitationServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localUserInvitation.get({ directoryAppId: "", id: "", }); console.log(result); } run(); /api/v1/local-directory-configs/{directory_app_id}/invitations/{id}/revoke: post: description: Revoke a pending invitation. operationId: c1.api.local_directory.v1.LocalUserInvitationService.Revoke parameters: - in: path name: directory_app_id required: true schema: description: The directoryAppId field. readOnly: false type: string - in: path name: id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceRevokeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceRevokeResponse' description: Successful response summary: Revoke tags: - Local Directory x-speakeasy-group: LocalUserInvitation x-speakeasy-name-override: Revoke x-codeSamples: - lang: go label: Revoke source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalUserInvitation.Revoke(ctx, operations.C1APILocalDirectoryV1LocalUserInvitationServiceRevokeRequest{ DirectoryAppID: "", ID: "", }) if err != nil { log.Fatal(err) } if res.LocalUserInvitationServiceRevokeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localUserInvitation.revoke({ directoryAppId: "", id: "", }); console.log(result); } run(); /api/v1/policies: get: description: List policies. operationId: c1.api.policy.v1.Policies.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.ListPolicyResponse' description: Successful response summary: List tags: - Policy x-speakeasy-group: Policies x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Policies.List(ctx, operations.C1APIPolicyV1PoliciesListRequest{}) if err != nil { log.Fatal(err) } if res.ListPolicyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policies.list(); console.log(result); } run(); post: description: Create a policy. operationId: c1.api.policy.v1.Policies.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.CreatePolicyRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.CreatePolicyResponse' description: The CreatePolicyResponse message contains the created policy object. summary: Create tags: - Policy x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Policy#create x-speakeasy-group: Policies x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Policies.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.CreatePolicyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policies.create(); console.log(result); } run(); /api/v1/policies/{id}: delete: description: Delete a policy by ID. operationId: c1.api.policy.v1.Policies.Delete parameters: - in: path name: id required: true schema: description: The Id of the policy to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.DeletePolicyRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.DeletePolicyResponse' description: Empty response with a status code indicating success. summary: Delete tags: - Policy x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Policy#delete x-speakeasy-group: Policies x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Policies.Delete(ctx, operations.C1APIPolicyV1PoliciesDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeletePolicyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policies.delete({ id: "", }); console.log(result); } run(); get: description: Get a policy by ID. operationId: c1.api.policy.v1.Policies.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.GetPolicyResponse' description: The GetPolicyResponse message contains the policy object. summary: Get tags: - Policy x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Policy#read x-speakeasy-group: Policies x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Policies.Get(ctx, operations.C1APIPolicyV1PoliciesGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetPolicyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policies.get({ id: "", }); console.log(result); } run(); post: description: Update a policy by providing a policy object and an update mask. operationId: c1.api.policy.v1.Policies.Update parameters: - in: path name: id required: true schema: description: The ID of the Policy. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.UpdatePolicyRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.UpdatePolicyResponse' description: The UpdatePolicyResponse message contains the updated policy object. summary: Update tags: - Policy x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Policy#update x-speakeasy-group: Policies x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Policies.Update(ctx, operations.C1APIPolicyV1PoliciesUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UpdatePolicyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policies.update({ id: null, }); console.log(result); } run(); /api/v1/policies/test-account-provision-policy: post: description: Test an account provision policy by evaluating a CEL expression and returning the computed result. operationId: c1.api.policy.v1.AccountProvisionPolicyTest.Test requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.TestAccountProvisionPolicyRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.TestAccountProvisionPolicyResponse' description: TestAccountProvisionPolicyResponse is the response for testing an account provision policy. summary: Test tags: - Policy x-speakeasy-group: AccountProvisionPolicyTest x-speakeasy-name-override: Test x-codeSamples: - lang: go label: Test source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AccountProvisionPolicyTest.Test(ctx, nil) if err != nil { log.Fatal(err) } if res.TestAccountProvisionPolicyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.accountProvisionPolicyTest.test(); console.log(result); } run(); /api/v1/policies/validate/cel: post: description: Validate policies operationId: c1.api.policy.v1.PolicyValidate.ValidateCEL requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.EditorValidateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.EditorValidateResponse' description: Successful response summary: Validate Cel tags: - Policy x-speakeasy-group: PolicyValidate x-speakeasy-name-override: ValidateCEL x-codeSamples: - lang: go label: ValidateCEL source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PolicyValidate.ValidateCEL(ctx, nil) if err != nil { log.Fatal(err) } if res.PolicyEditorValidateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policyValidate.validateCEL(); console.log(result); } run(); /api/v1/request_schema_entitlement_binding: delete: description: Remove the link between a request schema and a single app entitlement. operationId: c1.api.request_schema.v1.RequestSchemaService.RemoveEntitlementBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceRemoveEntitlementBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceRemoveEntitlementBindingResponse' description: The response message for removing a single entitlement binding. summary: Remove Entitlement Binding tags: - Request Schema Entitlement Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Request Schema Entitlement Binding#delete x-speakeasy-group: RequestSchema x-speakeasy-name-override: RemoveEntitlementBinding x-codeSamples: - lang: go label: RemoveEntitlementBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.RemoveEntitlementBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceRemoveEntitlementBindingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.removeEntitlementBinding(); console.log(result); } run(); post: description: Link a request schema to a single app entitlement so the form is shown when requesting that entitlement. operationId: c1.api.request_schema.v1.RequestSchemaService.CreateEntitlementBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceCreateEntitlementBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceCreateEntitlementBindingResponse' description: The response message for creating a single entitlement binding. summary: Create Entitlement Binding tags: - Request Schema Entitlement Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Request Schema Entitlement Binding#create x-speakeasy-group: RequestSchema x-speakeasy-name-override: CreateEntitlementBinding x-codeSamples: - lang: go label: CreateEntitlementBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.CreateEntitlementBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceCreateEntitlementBindingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.createEntitlementBinding(); console.log(result); } run(); put: description: Look up which request schema is bound to a given app entitlement. operationId: c1.api.request_schema.v1.RequestSchemaService.FindBindingForAppEntitlement requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceFindBindingForAppEntitlementRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceFindBindingForAppEntitlementResponse' description: The response message containing the binding for the specified app entitlement. summary: Find Binding For App Entitlement tags: - Request Schema Entitlement Binding x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Request Schema Entitlement Binding#read terraform-resource: Request Schema Entitlement Binding#read x-speakeasy-group: RequestSchema x-speakeasy-name-override: FindBindingForAppEntitlement x-codeSamples: - lang: go label: FindBindingForAppEntitlement source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.FindBindingForAppEntitlement(ctx, nil) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceFindBindingForAppEntitlementResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.findBindingForAppEntitlement(); console.log(result); } run(); /api/v1/request_schemas: post: description: Create a new request schema that defines a form template for access requests. operationId: c1.api.request_schema.v1.RequestSchemaService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceCreateResponse' description: The response message for creating a request schema. summary: Create tags: - Request Schema x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Request_Schema#create x-speakeasy-group: RequestSchema x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.create(); console.log(result); } run(); /api/v1/request_schemas/{request_schema_id}: delete: description: Delete a request schema by ID. Associated entitlement bindings are also deleted. operationId: c1.api.request_schema.v1.RequestSchemaService.Delete parameters: - in: path name: request_schema_id required: true schema: description: The unique identifier of the request schema to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceDeleteResponse' description: The response message for deleting a request schema. summary: Delete tags: - Request Schema x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Request_Schema#delete x-speakeasy-group: RequestSchema x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.Delete(ctx, operations.C1APIRequestSchemaV1RequestSchemaServiceDeleteRequest{ RequestSchemaID: "", }) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.delete({ requestSchemaId: "", }); console.log(result); } run(); get: description: Retrieve a single request schema by ID. operationId: c1.api.request_schema.v1.RequestSchemaService.Get parameters: - in: path name: request_schema_id required: true schema: description: The unique identifier of the request schema to retrieve. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceGetResponse' description: The response message for retrieving a request schema. summary: Get tags: - Request Schema x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Request_Schema#read terraform-resource: Request_Schema#read x-speakeasy-group: RequestSchema x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.Get(ctx, operations.C1APIRequestSchemaV1RequestSchemaServiceGetRequest{ RequestSchemaID: "", }) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.get({ requestSchemaId: "", }); console.log(result); } run(); post: description: Update an existing request schema's form definition or settings. operationId: c1.api.request_schema.v1.RequestSchemaService.Update parameters: - in: path name: request_schema_id required: true schema: description: The unique identifier of this request schema. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.request_schema.v1.RequestSchemaServiceUpdateResponse' description: The response message for updating a request schema. summary: Update tags: - Request Schema x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Request_Schema#update x-speakeasy-group: RequestSchema x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestSchema.Update(ctx, operations.C1APIRequestSchemaV1RequestSchemaServiceUpdateRequest{ RequestSchemaID: "", }) if err != nil { log.Fatal(err) } if res.RequestSchemaServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestSchema.update({ requestSchemaId: "", }); console.log(result); } run(); /api/v1/role-mining/access-profiles: post: description: |- CreateAccessProfileFromCohort creates an access profile from a cohort definition, adds the specified entitlements, and sets up dynamic membership automation using a CEL expression derived from the profile filters. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.CreateAccessProfileFromCohort requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.CreateAccessProfileFromCohortRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.CreateAccessProfileFromCohortResponse' description: Successful response summary: Create Access Profile From Cohort tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: CreateAccessProfileFromCohort x-codeSamples: - lang: go label: CreateAccessProfileFromCohort source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.CreateAccessProfileFromCohort(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateAccessProfileFromCohortResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.createAccessProfileFromCohort(); console.log(result); } run(); /api/v1/role-mining/config: get: description: Retrieve the current role mining configuration, including cohort hints and threshold settings. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.GetRoleMiningConfig responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.GetRoleMiningConfigResponse' description: Successful response summary: Get Role Mining Config tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: GetRoleMiningConfig x-codeSamples: - lang: go label: GetRoleMiningConfig source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.GetRoleMiningConfig(ctx) if err != nil { log.Fatal(err) } if res.GetRoleMiningConfigResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.getRoleMiningConfig(); console.log(result); } run(); post: description: Update the role mining configuration, such as cohort hints, max suggestions, and minimum cohort size. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.UpdateRoleMiningConfig requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.UpdateRoleMiningConfigRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.UpdateRoleMiningConfigResponse' description: Successful response summary: Update Role Mining Config tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: UpdateRoleMiningConfig x-codeSamples: - lang: go label: UpdateRoleMiningConfig source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.UpdateRoleMiningConfig(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateRoleMiningConfigResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.updateRoleMiningConfig(); console.log(result); } run(); /api/v1/role-mining/custom-analysis/{id}: get: description: Invokes the c1.api.role_mining_management.v1.RoleMiningManagementService.GetCustomAnalysisResult method. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.GetCustomAnalysisResult parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.GetCustomAnalysisResultResponse' description: Successful response summary: Get Custom Analysis Result tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: GetCustomAnalysisResult x-codeSamples: - lang: go label: GetCustomAnalysisResult source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.GetCustomAnalysisResult(ctx, operations.C1APIRoleMiningManagementV1RoleMiningManagementServiceGetCustomAnalysisResultRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetCustomAnalysisResultResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.getCustomAnalysisResult({ id: "", }); console.log(result); } run(); /api/v1/role-mining/custom-analysis/trigger: post: description: Invokes the c1.api.role_mining_management.v1.RoleMiningManagementService.TriggerCustomAnalysis method. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.TriggerCustomAnalysis requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.TriggerCustomAnalysisRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.TriggerCustomAnalysisResponse' description: Successful response summary: Trigger Custom Analysis tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: TriggerCustomAnalysis x-codeSamples: - lang: go label: TriggerCustomAnalysis source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.TriggerCustomAnalysis(ctx, nil) if err != nil { log.Fatal(err) } if res.TriggerCustomAnalysisResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.triggerCustomAnalysis(); console.log(result); } run(); /api/v1/role-mining/runs: get: description: List role mining analysis runs in reverse chronological order. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.ListRuns responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.ListRunsResponse' description: Successful response summary: List Runs tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: ListRuns x-codeSamples: - lang: go label: ListRuns source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.ListRuns(ctx) if err != nil { log.Fatal(err) } if res.ListRunsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.listRuns(); console.log(result); } run(); /api/v1/role-mining/runs/latest: get: description: Retrieve the most recent role mining analysis run, including its status and results summary. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.GetLatestRun responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.GetLatestRunResponse' description: Successful response summary: Get Latest Run tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: GetLatestRun x-codeSamples: - lang: go label: GetLatestRun source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.GetLatestRun(ctx) if err != nil { log.Fatal(err) } if res.GetLatestRunResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.getLatestRun(); console.log(result); } run(); /api/v1/role-mining/suggestions: get: description: List role suggestions generated by analysis runs, optionally filtered by state. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.ListSuggestions responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.ListSuggestionsResponse' description: Successful response summary: List Suggestions tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: ListSuggestions x-codeSamples: - lang: go label: ListSuggestions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.ListSuggestions(ctx) if err != nil { log.Fatal(err) } if res.ListSuggestionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.listSuggestions(); console.log(result); } run(); /api/v1/role-mining/suggestions/{id}: get: description: Retrieve a single role suggestion by ID, including its cohort filters, entitlements, and confidence score. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.GetSuggestion parameters: - in: path name: id required: true schema: description: The ID of the role mining suggestion to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.GetSuggestionResponse' description: Successful response summary: Get Suggestion tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: GetSuggestion x-codeSamples: - lang: go label: GetSuggestion source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.GetSuggestion(ctx, operations.C1APIRoleMiningManagementV1RoleMiningManagementServiceGetSuggestionRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetSuggestionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.getSuggestion({ id: "", }); console.log(result); } run(); /api/v1/role-mining/suggestions/{id}/state: post: description: Transition a role suggestion to a new state, such as accepted, rejected, or dismissed. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.UpdateSuggestionState parameters: - in: path name: id required: true schema: description: The ID of the role mining suggestion to update. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.UpdateSuggestionStateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.UpdateSuggestionStateResponse' description: Successful response summary: Update Suggestion State tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: UpdateSuggestionState x-codeSamples: - lang: go label: UpdateSuggestionState source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.UpdateSuggestionState(ctx, operations.C1APIRoleMiningManagementV1RoleMiningManagementServiceUpdateSuggestionStateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateSuggestionStateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.updateSuggestionState({ id: "", }); console.log(result); } run(); /api/v1/role-mining/suggestions/{suggestion_id}/users: post: description: Search for users that belong to a suggestion's cohort, with optional additional profile filters. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.SearchCohortUsers parameters: - in: path name: suggestion_id required: true schema: description: The ID of the suggestion whose cohort to search within. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.SearchCohortUsersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.SearchCohortUsersResponse' description: Successful response summary: Search Cohort Users tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: SearchCohortUsers x-codeSamples: - lang: go label: SearchCohortUsers source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.SearchCohortUsers(ctx, operations.C1APIRoleMiningManagementV1RoleMiningManagementServiceSearchCohortUsersRequest{ SuggestionID: "", }) if err != nil { log.Fatal(err) } if res.SearchCohortUsersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.searchCohortUsers({ suggestionId: "", }); console.log(result); } run(); /api/v1/role-mining/trigger: post: description: Start a new role mining analysis job that scans existing access patterns to generate role suggestions. operationId: c1.api.role_mining_management.v1.RoleMiningManagementService.TriggerAnalysis requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.TriggerAnalysisRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.TriggerAnalysisResponse' description: Successful response summary: Trigger Analysis tags: - Role Mining x-speakeasy-group: RoleMiningManagement x-speakeasy-name-override: TriggerAnalysis x-codeSamples: - lang: go label: TriggerAnalysis source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagement.TriggerAnalysis(ctx, nil) if err != nil { log.Fatal(err) } if res.TriggerAnalysisResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagement.triggerAnalysis(); console.log(result); } run(); /api/v1/search/all_automation_executions: post: description: Search across all automation executions in the tenant, with filters for state, template, app, and subject user. operationId: c1.api.automations.v1.AutomationExecutionSearchService.SearchAllAutomationExecutions requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAllAutomationExecutionsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAllAutomationExecutionsResponse' description: Successful response summary: Search All Automation Executions tags: - Automations x-speakeasy-group: AutomationExecutionSearch x-speakeasy-name-override: SearchAllAutomationExecutions x-codeSamples: - lang: go label: SearchAllAutomationExecutions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationExecutionSearch.SearchAllAutomationExecutions(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAllAutomationExecutionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationExecutionSearch.searchAllAutomationExecutions(); console.log(result); } run(); /api/v1/search/app_resource_types: post: description: Search app resources based on filters specified in the request body. operationId: c1.api.app.v1.AppResourceSearch.SearchAppResourceTypes requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppResourceTypesRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppResourceTypesResponse' description: The SearchAppResourceTypesResponse message contains a list of results and a nextPageToken if applicable. summary: Search App Resource Types tags: - App Resource x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - App Resource Type#read - App Resource Types#read terraform-resource: null x-speakeasy-group: AppResourceSearch x-speakeasy-name-override: SearchAppResourceTypes x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: SearchAppResourceTypes source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceSearch.SearchAppResourceTypes(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAppResourceTypesResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceSearch.searchAppResourceTypes(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/app_resources: post: description: Search app resources based on filters specified in the request body. operationId: c1.api.app.v1.AppResourceSearch.SearchAppResources requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppResourcesRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppResourcesResponse' description: The SearchAppResourcesResponse message contains a list of results and a nextPageToken if applicable. summary: Search App Resources tags: - App Resource x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App Resources#read terraform-resource: null x-speakeasy-group: AppResourceSearch x-speakeasy-name-override: SearchAppResources x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: SearchAppResources source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppResourceSearch.SearchAppResources(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAppResourcesResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appResourceSearch.searchAppResources(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/app_users: post: description: Search app users based on filters specified in the request body. operationId: c1.api.app.v1.AppUserService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUserServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppUserServiceSearchResponse' description: Successful response summary: Search tags: - AppUsers x-speakeasy-group: AppUser x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppUser.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.AppUserServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appUser.search(); console.log(result); } run(); /api/v1/search/apps: post: description: Search apps based on filters specified in the request body. operationId: c1.api.app.v1.AppSearch.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchAppsResponse' description: The SearchAppsResponse message contains a list of results and a nextPageToken if applicable. summary: Search tags: - App x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - App#read - Apps#read terraform-resource: null x-speakeasy-group: AppSearch x-speakeasy-name-override: Search x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAppsResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appSearch.search(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/apps/{app_id}/entitlements/users/{app_user_id}: get: description: Search for app entitlements associated with a specific app user, with optional resource type trait filtering. operationId: c1.api.app.v1.AppEntitlementSearchService.SearchAppEntitlementsForAppUser parameters: - in: path name: app_id required: true schema: description: The ID of the app to search entitlements within. readOnly: false type: - string - "null" - in: path name: app_user_id required: true schema: description: The ID of the app user to search entitlements for. readOnly: false type: - string - "null" - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.ListAppEntitlementsResponse' description: The ListAppEntitlementsResponse message contains a list of results and a nextPageToken if applicable. summary: Search App Entitlements For App User tags: - App Entitlement x-speakeasy-group: AppEntitlementSearch x-speakeasy-name-override: SearchAppEntitlementsForAppUser x-codeSamples: - lang: go label: SearchAppEntitlementsForAppUser source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementSearch.SearchAppEntitlementsForAppUser(ctx, operations.C1APIAppV1AppEntitlementSearchServiceSearchAppEntitlementsForAppUserRequest{ AppID: "", AppUserID: "", }) if err != nil { log.Fatal(err) } if res.ListAppEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementSearch.searchAppEntitlementsForAppUser({ appId: "", appUserId: "", }); console.log(result); } run(); /api/v1/search/attributes: post: description: Search attributes based on filters specified in the request body. operationId: c1.api.attribute.v1.AttributeSearch.SearchAttributeValues requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.SearchAttributeValuesRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.attribute.v1.SearchAttributeValuesResponse' description: SearchAttributeValuesResponse is the response for searching AttributeValues. summary: Search Attribute Values tags: - Attribute x-speakeasy-group: AttributeSearch x-speakeasy-name-override: SearchAttributeValues x-codeSamples: - lang: go label: SearchAttributeValues source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AttributeSearch.SearchAttributeValues(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAttributeValuesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.attributeSearch.searchAttributeValues(); console.log(result); } run(); /api/v1/search/automation_executions: post: description: Search for automation executions with optional filters for automation_template_id, state, and query. operationId: c1.api.automations.v1.AutomationExecutionSearchService.SearchAutomationExecutions requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAutomationExecutionsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAutomationExecutionsResponse' description: Successful response summary: Search Automation Executions tags: - Automations x-speakeasy-group: AutomationExecutionSearch x-speakeasy-name-override: SearchAutomationExecutions x-codeSamples: - lang: go label: SearchAutomationExecutions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationExecutionSearch.SearchAutomationExecutions(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAutomationExecutionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationExecutionSearch.searchAutomationExecutions(); console.log(result); } run(); /api/v1/search/automation_versions: post: description: Search for versioned snapshots of an automation template's steps and triggers. operationId: c1.api.automations.v1.AutomationSearchService.SearchAutomationTemplateVersions requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAutomationTemplateVersionsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAutomationTemplateVersionsResponse' description: Successful response summary: Search Automation Template Versions tags: - Automations x-speakeasy-group: AutomationSearch x-speakeasy-name-override: SearchAutomationTemplateVersions x-codeSamples: - lang: go label: SearchAutomationTemplateVersions source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationSearch.SearchAutomationTemplateVersions(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAutomationTemplateVersionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationSearch.searchAutomationTemplateVersions(); console.log(result); } run(); /api/v1/search/automations: post: description: Search for automations matching the provided filters, including query text, template refs, app, and trigger types. operationId: c1.api.automations.v1.AutomationSearchService.SearchAutomations requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAutomationsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.automations.v1.SearchAutomationsResponse' description: Successful response summary: Search Automations tags: - Automations x-speakeasy-group: AutomationSearch x-speakeasy-name-override: SearchAutomations x-codeSamples: - lang: go label: SearchAutomations source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AutomationSearch.SearchAutomations(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchAutomationsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.automationSearch.searchAutomations(); console.log(result); } run(); /api/v1/search/entitlements: post: description: Search app entitlements based on filters specified in the request body. operationId: c1.api.app.v1.AppEntitlementSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementSearchServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementSearchServiceSearchResponse' description: Successful response summary: Search tags: - App Entitlement x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - App Entitlement#read - App Entitlements#read terraform-resource: null x-speakeasy-group: AppEntitlementSearch x-speakeasy-name-override: Search x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.AppEntitlementSearchServiceSearchResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementSearch.search(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/functions: post: description: Search searches for functions based on criteria operationId: c1.api.functions.v1.FunctionsSearch.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.functions.v1.FunctionsSearchResponse' description: Successful response summary: Search tags: - Function x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: Function#read terraform-resource: null x-speakeasy-group: FunctionsSearch x-speakeasy-name-override: Search x-stability-level: draft x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.FunctionsSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.FunctionsSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.functionsSearch.search(); console.log(result); } run(); /api/v1/search/grants: post: description: Search grants (user-to-entitlement bindings) across apps, with filters for app, user, resource type, and entitlement. operationId: c1.api.app.v1.AppEntitlementSearchService.SearchGrants requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementSearchServiceSearchGrantsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.AppEntitlementSearchServiceSearchGrantsResponse' description: Successful response summary: Search Grants tags: - App Entitlement x-speakeasy-group: AppEntitlementSearch x-speakeasy-name-override: SearchGrants x-codeSamples: - lang: go label: SearchGrants source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementSearch.SearchGrants(ctx, nil) if err != nil { log.Fatal(err) } if res.AppEntitlementSearchServiceSearchGrantsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementSearch.searchGrants(); console.log(result); } run(); /api/v1/search/hooks: post: description: Invokes the c1.api.hooks.v1.HooksSearch.Search method. operationId: c1.api.hooks.v1.HooksSearch.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.hooks.v1.HooksSearchResponse' description: Successful response summary: Search tags: - Hook x-speakeasy-group: HooksSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.HooksSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.HooksSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.hooksSearch.search(); console.log(result); } run(); /api/v1/search/iam/external_clients: post: description: Search returns external client grants for all users in the tenant. operationId: c1.api.iam.v1.ExternalClientSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.ExternalClientSearchServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.ExternalClientSearchServiceSearchResponse' description: Successful response summary: 'NOTE: Searches external client grants for all users' tags: - External Client x-speakeasy-group: ExternalClientSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.ExternalClientSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.ExternalClientSearchServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.externalClientSearch.search(); console.log(result); } run(); /api/v1/search/iam/personal_clients: post: description: Search finds personal client credentials across all users, with optional filtering by query text or user. operationId: c1.api.iam.v1.PersonalClientSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientSearchServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.iam.v1.PersonalClientSearchServiceSearchResponse' description: Successful response summary: 'NOTE: Searches personal clients for all users' tags: - Personal Client x-speakeasy-group: PersonalClientSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PersonalClientSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.PersonalClientSearchServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.personalClientSearch.search(); console.log(result); } run(); /api/v1/search/local-directory-invitations: post: description: |- List invitations for a directory, with optional status filter. Search invitations with filters (directory, status). operationId: c1.api.local_directory.v1.LocalUserInvitationService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.local_directory.v1.LocalUserInvitationServiceSearchResponse' description: Successful response summary: Search tags: - Local Directory x-speakeasy-group: LocalUserInvitation x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.LocalUserInvitation.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.LocalUserInvitationServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.localUserInvitation.search(); console.log(result); } run(); /api/v1/search/past-grants: post: description: Search historical grants that have been revoked, filtered by app user or entitlement. operationId: c1.api.app.v1.AppEntitlementUserBindingService.SearchPastGrants requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchPastGrantsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchPastGrantsResponse' description: The SearchPastGrantsResponse message contains a list of past grants and a nextPageToken if applicable. summary: Search Past Grants tags: - App Entitlement User Binding History x-speakeasy-group: AppEntitlementUserBinding x-speakeasy-name-override: SearchPastGrants x-codeSamples: - lang: go label: SearchPastGrants source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementUserBinding.SearchPastGrants(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchPastGrantsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementUserBinding.searchPastGrants(); console.log(result); } run(); /api/v1/search/policies: post: description: Search policies based on filters specified in the request body. operationId: c1.api.policy.v1.PolicySearch.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.SearchPoliciesRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.policy.v1.SearchPoliciesResponse' description: Successful response summary: Search tags: - Policy x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - Policy#read - Policies#read terraform-resource: null x-speakeasy-group: PolicySearch x-speakeasy-name-override: Search x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PolicySearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchPoliciesResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.policySearch.search(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/request_catalog/entitlements: post: description: Search request catalogs based on filters specified in the request body. operationId: c1.api.requestcatalog.v1.RequestCatalogSearchService.SearchEntitlements requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogSearchServiceSearchEntitlementsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.requestcatalog.v1.RequestCatalogSearchServiceSearchEntitlementsResponse' description: The RequestCatalogSearchServiceSearchEntitlementsResponse message contains a list of results and a nextPageToken if applicable. summary: Search Entitlements tags: - Request Catalog x-speakeasy-group: RequestCatalogSearch x-speakeasy-name-override: SearchEntitlements x-codeSamples: - lang: go label: SearchEntitlements source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RequestCatalogSearch.SearchEntitlements(ctx, nil) if err != nil { log.Fatal(err) } if res.RequestCatalogSearchServiceSearchEntitlementsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.requestCatalogSearch.searchEntitlements(); console.log(result); } run(); /api/v1/search/role-mining/suggestions: post: description: Search role mining suggestions by name, description, or cohort filter values with optional state and type filters. operationId: c1.api.role_mining_management.v1.RoleMiningManagementSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningSearchSuggestionsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.role_mining_management.v1.RoleMiningSearchSuggestionsResponse' description: Successful response summary: Search tags: - Role Mining x-speakeasy-group: RoleMiningManagementSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.RoleMiningManagementSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.RoleMiningSearchSuggestionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.roleMiningManagementSearch.search(); console.log(result); } run(); /api/v1/search/secrets-admin: post: description: |- Search returns secrets across the tenant. Can filter by creator, sharing mode, status, time range, etc. operationId: c1.api.secrets.v1.PaperSecretAdminService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceSearchResponse' description: Successful response summary: Search tags: - Secrets Admin x-speakeasy-group: PaperSecretAdmin x-speakeasy-name-override: Search x-stability-level: beta x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecretAdmin.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.PaperSecretAdminServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecretAdmin.search(); console.log(result); } run(); /api/v1/search/secrets-admin/audit_events: post: description: |- SearchAuditEvents returns audit events for paper secrets. Can filter by vault_id, actor (user ID or email), client IP. operationId: c1.api.secrets.v1.PaperSecretAdminService.SearchAuditEvents requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceSearchAuditEventsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceSearchAuditEventsResponse' description: Successful response summary: Search Audit Events tags: - Secrets Admin x-speakeasy-group: PaperSecretAdmin x-speakeasy-name-override: SearchAuditEvents x-stability-level: beta x-codeSamples: - lang: go label: SearchAuditEvents source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecretAdmin.SearchAuditEvents(ctx, nil) if err != nil { log.Fatal(err) } if res.PaperSecretAdminServiceSearchAuditEventsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecretAdmin.searchAuditEvents(); console.log(result); } run(); /api/v1/search/secrets/audit_events: post: description: |- SearchAuditEvents returns audit events for a secret owned by the calling user. Returns sanitized OCSF events (IP addresses stripped for non-admin consumption). operationId: c1.api.secrets.v1.PaperSecretService.SearchAuditEvents requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceSearchAuditEventsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceSearchAuditEventsResponse' description: |- PaperSecretServiceSearchAuditEventsResponse contains a page of audit events for the requested secret. summary: Search Audit Events tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: SearchAuditEvents x-stability-level: beta x-codeSamples: - lang: go label: SearchAuditEvents source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.SearchAuditEvents(ctx, nil) if err != nil { log.Fatal(err) } if res.PaperSecretServiceSearchAuditEventsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.searchAuditEvents(); console.log(result); } run(); /api/v1/search/secrets/mine: post: description: |- SearchMySecrets returns secrets created by the current user. Automatically scoped to current user - no user_id filter parameter. operationId: c1.api.secrets.v1.PaperSecretService.SearchMySecrets requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceSearchMySecretsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceSearchResponse' description: Search response for user's own secrets summary: Search My Secrets tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: SearchMySecrets x-stability-level: beta x-codeSamples: - lang: go label: SearchMySecrets source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.SearchMySecrets(ctx, nil) if err != nil { log.Fatal(err) } if res.PaperSecretServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.searchMySecrets(); console.log(result); } run(); /api/v1/search/ssf-receiver-events: post: description: Search performs a full-text search across received SSF events with optional filters for stream, event type, outcome, and matched user. operationId: c1.api.ssf_receiver.v1.SSFReceiverEventSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchResponse' description: SSFReceiverEventSearchServiceSearchResponse contains the matching events and a pagination token. summary: Search tags: - SSF Receiver x-speakeasy-group: SSFReceiverEventSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverEventSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.SSFReceiverEventSearchServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverEventSearch.search(); console.log(result); } run(); /api/v1/search/step-up/providers: post: description: Search allows searching for step-up providers with various filters operationId: c1.api.stepup.v1.StepUpProviderService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.SearchStepUpProvidersRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.SearchStepUpProvidersResponse' description: Response message for searching step-up providers summary: Search tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchStepUpProvidersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.search(); console.log(result); } run(); /api/v1/search/step-up/transactions: post: description: Search allows searching for step-up transactions with various filters operationId: c1.api.stepup.v1.StepUpTransactionService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.SearchStepUpTransactionsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.SearchStepUpTransactionsResponse' description: Response message for searching step-up transactions summary: Search tags: - Step Up Authentication Transactions x-speakeasy-group: StepUpTransaction x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpTransaction.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchStepUpTransactionsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpTransaction.search(); console.log(result); } run(); /api/v1/search/systemlog/exports: post: description: Search for system log exports matching the specified filters. operationId: c1.api.systemlog.v1.ExportsSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportsSearchServiceSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportsSearchServiceSearchResponse' description: ExportsSearchServiceSearchResponse is the response for searching system log exports. summary: Search tags: - System Log Exporter x-speakeasy-group: ExportsSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.ExportsSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.ExportsSearchServiceSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.exportsSearch.search(); console.log(result); } run(); /api/v1/search/tasks: post: description: Search tasks based on filters specified in the request body. operationId: c1.api.task.v1.TaskSearchService.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskSearchResponse' description: The TaskSearchResponse message contains a list of results and a nextPageToken if applicable. summary: Search tags: - Task x-speakeasy-group: TaskSearch x-speakeasy-name-override: Search x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.TaskSearchResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskSearch.search(); console.log(result); } run(); /api/v1/search/user-ownership: post: description: Search all ownership assignments for a given user across apps, resources, and entitlements. operationId: c1.api.app.v1.AppSearch.SearchUserOwnership requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchUserOwnershipRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v1.SearchUserOwnershipResponse' description: The SearchUserOwnershipResponse message contains a paginated list of ownership entries. summary: Search User Ownership tags: - App x-speakeasy-group: AppSearch x-speakeasy-name-override: SearchUserOwnership x-codeSamples: - lang: go label: SearchUserOwnership source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppSearch.SearchUserOwnership(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchUserOwnershipResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appSearch.searchUserOwnership(); console.log(result); } run(); /api/v1/search/users: post: description: Search users based on filters specified in the request body. operationId: c1.api.user.v1.UserSearch.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.SearchUsersRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.SearchUsersResponse' description: Successful response summary: Search tags: - User x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - User#read - Users#read terraform-resource: null x-speakeasy-group: UserSearch x-speakeasy-name-override: Search x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.UserSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchUsersResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.userSearch.search(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/webhooks: post: description: Search for webhook subscriptions by query string or specific webhook references. operationId: c1.api.webhooks.v1.WebhooksSearch.Search requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksSearchRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksSearchResponse' description: Successful response summary: Search tags: - Webhook x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: - Webhook#read - Webhooks#read terraform-resource: null x-speakeasy-group: WebhooksSearch x-speakeasy-name-override: Search x-speakeasy-pagination: inputs: - in: requestBody name: pageToken type: cursor outputs: nextCursor: $.nextPageToken type: cursor x-codeSamples: - lang: go label: Search source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WebhooksSearch.Search(ctx, nil) if err != nil { log.Fatal(err) } if res.WebhooksSearchResponse != nil { for { // handle items res, err = res.Next() if err != nil { // handle error } if res == nil { break } } } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooksSearch.search(); for await (const page of result) { console.log(page); } } run(); /api/v1/search/workload_federation_trusts: post: description: |- SearchTrusts searches trusts across all service principals with optional filters. Used by the admin providers page to list trusts referencing a provider. operationId: c1.api.workload_federation.v1.WorkloadFederationService.SearchTrusts requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceSearchTrustsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceSearchTrustsResponse' description: Successful response summary: Search Trusts tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: SearchTrusts x-codeSamples: - lang: go label: SearchTrusts source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.SearchTrusts(ctx, nil) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceSearchTrustsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.searchTrusts(); console.log(result); } run(); /api/v1/secrets-admin/{vault_id}: delete: description: Revoke allows admin to revoke any secret (not just their own). operationId: c1.api.secrets.v1.PaperSecretAdminService.Revoke parameters: - in: path name: vault_id required: true schema: description: The vaultId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceRevokeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceRevokeResponse' description: Successful response summary: Revoke tags: - Secrets Admin x-speakeasy-group: PaperSecretAdmin x-speakeasy-name-override: Revoke x-stability-level: beta x-codeSamples: - lang: go label: Revoke source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecretAdmin.Revoke(ctx, operations.C1APISecretsV1PaperSecretAdminServiceRevokeRequest{ VaultID: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretAdminServiceRevokeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecretAdmin.revoke({ vaultId: "", }); console.log(result); } run(); get: description: Get retrieves any secret's metadata by vault ID (admin override). operationId: c1.api.secrets.v1.PaperSecretAdminService.Get parameters: - in: path name: vault_id required: true schema: description: The vaultId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretAdminServiceGetResponse' description: Successful response summary: Get tags: - Secrets Admin x-speakeasy-group: PaperSecretAdmin x-speakeasy-name-override: Get x-stability-level: beta x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecretAdmin.Get(ctx, operations.C1APISecretsV1PaperSecretAdminServiceGetRequest{ VaultID: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretAdminServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecretAdmin.get({ vaultId: "", }); console.log(result); } run(); /api/v1/secrets/{vault_id}: delete: description: Revoke soft-deletes a secret (sets Vault.deleted_at, deletes content). operationId: c1.api.secrets.v1.PaperSecretService.Revoke parameters: - in: path name: vault_id required: true schema: description: The vaultId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceRevokeRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceRevokeResponse' description: Successful response summary: Revoke tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: Revoke x-stability-level: beta x-codeSamples: - lang: go label: Revoke source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.Revoke(ctx, operations.C1APISecretsV1PaperSecretServiceRevokeRequest{ VaultID: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretServiceRevokeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.revoke({ vaultId: "", }); console.log(result); } run(); get: description: |- Get retrieves a secret's metadata by vault ID. Creator can always get their own secrets. Admins can get any secret. operationId: c1.api.secrets.v1.PaperSecretService.Get parameters: - in: path name: vault_id required: true schema: description: The vaultId field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceGetResponse' description: Successful response summary: Get tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: Get x-stability-level: beta x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.Get(ctx, operations.C1APISecretsV1PaperSecretServiceGetRequest{ VaultID: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.get({ vaultId: "", }); console.log(result); } run(); /api/v1/secrets/{vault_id}/content: post: description: |- SetTextContent sets the encrypted content for a text secret. Client encrypts content using age_recipient from CreateResponse. operationId: c1.api.secrets.v1.PaperSecretService.SetTextContent parameters: - in: path name: vault_id required: true schema: description: The vaultId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceSetTextContentRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceSetTextContentResponse' description: Successful response summary: Set Text Content tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: SetTextContent x-stability-level: beta x-codeSamples: - lang: go label: SetTextContent source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.SetTextContent(ctx, operations.C1APISecretsV1PaperSecretServiceSetTextContentRequest{ VaultID: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretServiceSetTextContentResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.setTextContent({ vaultId: "", }); console.log(result); } run(); /api/v1/secrets/{vault_id}/view: post: description: |- GetContent retrieves the encrypted secret content for an authorized recipient. Caller must be in the secret's allowed_user_ids list (for INTERNAL secrets). Returns content re-encrypted to caller's ephemeral public key. operationId: c1.api.secrets.v1.PaperSecretService.GetContent parameters: - in: path name: vault_id required: true schema: description: The vaultId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceGetContentRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceGetContentResponse' description: Successful response summary: Get Content tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: GetContent x-stability-level: draft x-codeSamples: - lang: go label: GetContent source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.GetContent(ctx, operations.C1APISecretsV1PaperSecretServiceGetContentRequest{ VaultID: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretServiceGetContentResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.getContent({ vaultId: "", }); console.log(result); } run(); /api/v1/secrets/code/{share_code}: get: description: |- GetByShareCode retrieves a secret by its human-friendly share code. Share codes are in XXXX-XXXX-XXXX format and are used in share URLs. operationId: c1.api.secrets.v1.PaperSecretService.GetByShareCode parameters: - in: path name: share_code required: true schema: description: 'Human-friendly share code (format: XXXX-XXXX-XXXX, case-insensitive)' readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceGetResponse' description: Successful response summary: Get By Share Code tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: GetByShareCode x-stability-level: beta x-codeSamples: - lang: go label: GetByShareCode source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.GetByShareCode(ctx, operations.C1APISecretsV1PaperSecretServiceGetByShareCodeRequest{ ShareCode: "", }) if err != nil { log.Fatal(err) } if res.PaperSecretServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.getByShareCode({ shareCode: "", }); console.log(result); } run(); /api/v1/secrets/external: post: description: CreateExternal creates a secret vault for external email recipients. operationId: c1.api.secrets.v1.PaperSecretService.CreateExternal requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceCreateExternalRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceCreateResponse' description: Successful response summary: Create External tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: CreateExternal x-stability-level: beta x-codeSamples: - lang: go label: CreateExternal source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.CreateExternal(ctx, nil) if err != nil { log.Fatal(err) } if res.PaperSecretServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.createExternal(); console.log(result); } run(); /api/v1/secrets/internal: post: description: CreateInternal creates a secret vault for internal C1 users. operationId: c1.api.secrets.v1.PaperSecretService.CreateInternal requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceCreateInternalRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.secrets.v1.PaperSecretServiceCreateResponse' description: Successful response summary: Create Internal tags: - Secrets x-speakeasy-group: PaperSecret x-speakeasy-name-override: CreateInternal x-stability-level: beta x-codeSamples: - lang: go label: CreateInternal source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.PaperSecret.CreateInternal(ctx, nil) if err != nil { log.Fatal(err) } if res.PaperSecretServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.paperSecret.createInternal(); console.log(result); } run(); /api/v1/service_principals: get: description: List lists service principals for the tenant. operationId: c1.api.service_principal.v1.ServicePrincipalService.List responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceListResponse' description: Successful response summary: List tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.List(ctx) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.list(); console.log(result); } run(); post: description: Create creates a new service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceCreateResponse' description: Successful response summary: Create tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.create(); console.log(result); } run(); /api/v1/service_principals/{id}: delete: description: Delete deletes a service principal and all its credentials. operationId: c1.api.service_principal.v1.ServicePrincipalService.Delete parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceDeleteResponse' description: Successful response summary: Delete tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.Delete(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.delete({ id: "", }); console.log(result); } run(); get: description: Get returns a service principal by ID. operationId: c1.api.service_principal.v1.ServicePrincipalService.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceGetResponse' description: Successful response summary: Get tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.Get(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.get({ id: "", }); console.log(result); } run(); patch: description: Update updates a service principal's display name. operationId: c1.api.service_principal.v1.ServicePrincipalService.Update parameters: - in: path name: id required: true schema: description: The unique user ID of the service principal. readOnly: true type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceUpdateResponse' description: Successful response summary: Update tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.Update(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.update({ id: "", }); console.log(result); } run(); /api/v1/service_principals/{service_principal_id}/credentials: get: description: ListCredentials lists client credentials for a service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.ListCredentials parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID to list credentials for. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceListCredentialsResponse' description: Successful response summary: List Credentials tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: ListCredentials x-codeSamples: - lang: go label: ListCredentials source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.ListCredentials(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceListCredentialsRequest{ ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceListCredentialsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.listCredentials({ servicePrincipalId: "", }); console.log(result); } run(); post: description: CreateCredential creates a new client credential for a service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.CreateCredential parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID to create the credential for. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceCreateCredentialRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceCreateCredentialResponse' description: Successful response summary: Create Credential tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: CreateCredential x-codeSamples: - lang: go label: CreateCredential source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.CreateCredential(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceCreateCredentialRequest{ ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceCreateCredentialResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.createCredential({ servicePrincipalId: "", }); console.log(result); } run(); /api/v1/service_principals/{service_principal_id}/credentials/{id}: delete: description: RevokeCredential revokes (deletes) a client credential for a service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.RevokeCredential parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID. readOnly: false type: string - in: path name: id required: true schema: description: The credential ID to revoke. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceRevokeCredentialRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceRevokeCredentialResponse' description: Successful response summary: Revoke Credential tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: RevokeCredential x-codeSamples: - lang: go label: RevokeCredential source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.RevokeCredential(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceRevokeCredentialRequest{ ID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceRevokeCredentialResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.revokeCredential({ servicePrincipalId: "", id: "", }); console.log(result); } run(); get: description: GetCredential returns a single client credential for a service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.GetCredential parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID. readOnly: false type: string - in: path name: id required: true schema: description: The credential ID to get. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceGetCredentialResponse' description: Successful response summary: Get Credential tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: GetCredential x-codeSamples: - lang: go label: GetCredential source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.GetCredential(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceGetCredentialRequest{ ID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceGetCredentialResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.getCredential({ servicePrincipalId: "", id: "", }); console.log(result); } run(); patch: description: UpdateCredential updates a client credential for a service principal. operationId: c1.api.service_principal.v1.ServicePrincipalService.UpdateCredential parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID. readOnly: false type: string - in: path name: id required: true schema: description: The unique ID of the credential (cutename format). readOnly: true type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceUpdateCredentialRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceUpdateCredentialResponse' description: Successful response summary: Update Credential tags: - Service Principal x-speakeasy-group: Principal x-speakeasy-name-override: UpdateCredential x-codeSamples: - lang: go label: UpdateCredential source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.UpdateCredential(ctx, operations.C1APIServicePrincipalV1ServicePrincipalServiceUpdateCredentialRequest{ ID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceUpdateCredentialResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.updateCredential({ servicePrincipalId: "", id: "", }); console.log(result); } run(); /api/v1/service_principals/{service_principal_id}/trusts: get: description: ListTrusts lists trusts for a service principal. operationId: c1.api.workload_federation.v1.WorkloadFederationService.ListTrusts parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID to list trusts for (from URL path). readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceListTrustsResponse' description: Successful response summary: List Trusts tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: ListTrusts x-codeSamples: - lang: go label: ListTrusts source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.ListTrusts(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceListTrustsRequest{ ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceListTrustsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.listTrusts({ servicePrincipalId: "", }); console.log(result); } run(); post: description: |- CreateTrust creates a trust policy for a service principal. Validates the CEL condition_expression at creation time. operationId: c1.api.workload_federation.v1.WorkloadFederationService.CreateTrust parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID to create the trust for (from URL path). readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceCreateTrustRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceCreateTrustResponse' description: Successful response summary: Create Trust tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: CreateTrust x-codeSamples: - lang: go label: CreateTrust source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.CreateTrust(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceCreateTrustRequest{ ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceCreateTrustResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.createTrust({ servicePrincipalId: "", }); console.log(result); } run(); /api/v1/service_principals/{service_principal_id}/trusts/{client_id}: delete: description: DeleteTrust deletes a trust for a service principal. operationId: c1.api.workload_federation.v1.WorkloadFederationService.DeleteTrust parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID (from URL path). readOnly: false type: string - in: path name: client_id required: true schema: description: |- The trust client ID. Accepts the cutename (e.g. "clever-fox-42195") or the full client ID (e.g. "clever-fox-42195@acme.conductorone.com/wfe"). The server normalizes to the cutename portion before lookup. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceDeleteTrustRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceDeleteTrustResponse' description: Successful response summary: Delete Trust tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: DeleteTrust x-codeSamples: - lang: go label: DeleteTrust source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.DeleteTrust(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceDeleteTrustRequest{ ClientID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceDeleteTrustResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.deleteTrust({ servicePrincipalId: "", clientId: "", }); console.log(result); } run(); get: description: GetTrust returns a trust by ID for a service principal. operationId: c1.api.workload_federation.v1.WorkloadFederationService.GetTrust parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID (from URL path). readOnly: false type: string - in: path name: client_id required: true schema: description: |- The trust client ID. Accepts the cutename (e.g. "clever-fox-42195") or the full client ID (e.g. "clever-fox-42195@acme.conductorone.com/wfe"). The server normalizes to the cutename portion before lookup. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceGetTrustResponse' description: Successful response summary: Get Trust tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: GetTrust x-codeSamples: - lang: go label: GetTrust source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.GetTrust(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceGetTrustRequest{ ClientID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceGetTrustResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.getTrust({ servicePrincipalId: "", clientId: "", }); console.log(result); } run(); patch: description: UpdateTrust updates a trust's mutable fields. The provider_id is immutable. operationId: c1.api.workload_federation.v1.WorkloadFederationService.UpdateTrust parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID (from URL path). readOnly: false type: string - in: path name: client_id required: true schema: description: |- The full client ID of the trust (e.g., "clever-fox-42195@acme.conductorone.com/wfe"). Used as the client_id parameter in RFC 8693 token exchange requests. readOnly: true type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceUpdateTrustRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceUpdateTrustResponse' description: Successful response summary: Update Trust tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: UpdateTrust x-codeSamples: - lang: go label: UpdateTrust source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.UpdateTrust(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceUpdateTrustRequest{ ClientID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceUpdateTrustResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.updateTrust({ servicePrincipalId: "", clientId: "", }); console.log(result); } run(); /api/v1/service_principals/{service_principal_id}/trusts/{client_id}/test: post: description: |- TestToken validates a JWT against a specific trust's configuration without issuing an access token. Returns per-step validation results for debugging. operationId: c1.api.workload_federation.v1.WorkloadFederationService.TestToken parameters: - in: path name: service_principal_id required: true schema: description: The service principal ID (from URL path). readOnly: false type: string - in: path name: client_id required: true schema: description: |- The trust client ID. Accepts the cutename (e.g. "clever-fox-42195") or the full client ID (e.g. "clever-fox-42195@acme.conductorone.com/wfe"). The server normalizes to the cutename portion before lookup. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceTestTokenRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceTestTokenResponse' description: Successful response summary: Test Token tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: TestToken x-codeSamples: - lang: go label: TestToken source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.TestToken(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceTestTokenRequest{ ClientID: "", ServicePrincipalID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceTestTokenResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.testToken({ servicePrincipalId: "", clientId: "", }); console.log(result); } run(); /api/v1/service_principals/bindings: post: description: |- AddBinding links a tenant-scoped subject (a function today; future kinds tomorrow) to a service principal. Outbound c1-api calls made on the subject's behalf can then be minted as user: via an RFC 8693 token-exchange (act-as) flow. Many-aware: a subject may hold multiple bindings at the storage layer. Idempotent on (subject, service_principal_id) — adds the row if missing, resurrects it if soft-deleted, no-op if already active. Consumers that need 0-or-1 cardinality (Functions today) enforce it client-side via ListBindings + DeleteBinding. Requires the SERVICE_PRINCIPALS feature flag. operationId: c1.api.service_principal.v1.ServicePrincipalService.AddBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceAddBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceAddBindingResponse' description: Successful response summary: Add Binding tags: - Service Principal Binding x-speakeasy-group: Principal x-speakeasy-name-override: AddBinding x-stability-level: draft x-codeSamples: - lang: go label: AddBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.AddBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceAddBindingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.addBinding(); console.log(result); } run(); /api/v1/service_principals/bindings/delete: post: description: |- DeleteBinding removes a single (subject, service_principal_id) binding row. At-most-one delete — does not touch other bindings the subject may hold against different service principals. Idempotent — succeeds even if no matching row exists. operationId: c1.api.service_principal.v1.ServicePrincipalService.DeleteBinding requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceDeleteBindingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceDeleteBindingResponse' description: Successful response summary: Delete Binding tags: - Service Principal Binding x-speakeasy-group: Principal x-speakeasy-name-override: DeleteBinding x-stability-level: draft x-codeSamples: - lang: go label: DeleteBinding source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.DeleteBinding(ctx, nil) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceDeleteBindingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.deleteBinding(); console.log(result); } run(); /api/v1/service_principals/bindings/list: post: description: |- ListBindings returns every active binding held by a subject. Empty list when the subject is unbound. The response is unordered. operationId: c1.api.service_principal.v1.ServicePrincipalService.ListBindings requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceListBindingsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.service_principal.v1.ServicePrincipalServiceListBindingsResponse' description: Successful response summary: List Bindings tags: - Service Principal Binding x-speakeasy-group: Principal x-speakeasy-name-override: ListBindings x-stability-level: draft x-codeSamples: - lang: go label: ListBindings source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Principal.ListBindings(ctx, nil) if err != nil { log.Fatal(err) } if res.ServicePrincipalServiceListBindingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.principal.listBindings(); console.log(result); } run(); /api/v1/settings/aws-external-id: get: description: Get retrieves the AWS external ID for the tenant, used in IAM role trust policies for AWS connectors. operationId: c1.api.settings.v1.AWSExternalIDSettings.Get responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetAWSExternalIDResponse' description: Successful response summary: Get tags: - AWS External ID Settings x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: AWS_EXTERNAL_ID#read terraform-resource: AWS_EXTERNAL_ID#read x-speakeasy-group: AWSExternalIDSettings x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AWSExternalIDSettings.Get(ctx) if err != nil { log.Fatal(err) } if res.GetAWSExternalIDResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.awsExternalIDSettings.get(); console.log(result); } run(); /api/v1/settings/contacts: get: description: Invokes the c1.api.settings.v1.ContactsService.GetContacts method. operationId: c1.api.settings.v1.ContactsService.GetContacts responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetContactsResponse' description: Successful response summary: Get Contacts tags: - Contacts x-speakeasy-group: Contacts x-speakeasy-name-override: GetContacts x-codeSamples: - lang: go label: GetContacts source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Contacts.GetContacts(ctx) if err != nil { log.Fatal(err) } if res.GetContactsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.contacts.getContacts(); console.log(result); } run(); post: description: Invokes the c1.api.settings.v1.ContactsService.UpdateContacts method. operationId: c1.api.settings.v1.ContactsService.UpdateContacts requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateContactsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateContactsResponse' description: Successful response summary: Update Contacts tags: - Contacts x-speakeasy-group: Contacts x-speakeasy-name-override: UpdateContacts x-codeSamples: - lang: go label: UpdateContacts source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Contacts.UpdateContacts(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateContactsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.contacts.updateContacts(); console.log(result); } run(); /api/v1/settings/domains: get: description: List returns all verified domains configured for the tenant. operationId: c1.api.settings.v1.OrgDomainService.List parameters: - in: query name: page_size schema: description: The maximum number of results to return per page. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: A pagination token returned from a previous List call. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.ListOrgDomainsResponse' description: Successful response summary: List tags: - Org Domain x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: OrgDomains#read terraform-resource: null x-speakeasy-group: OrgDomain x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.OrgDomain.List(ctx, operations.C1APISettingsV1OrgDomainServiceListRequest{}) if err != nil { log.Fatal(err) } if res.ListOrgDomainsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.orgDomain.list(); console.log(result); } run(); put: description: Update replaces the tenant's set of verified domains with the provided list. operationId: c1.api.settings.v1.OrgDomainService.Update requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateOrgDomainRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateOrgDomainResponse' description: Successful response summary: Update tags: - Org Domain x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: OrgDomains#update x-speakeasy-group: OrgDomain x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.OrgDomain.Update(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateOrgDomainResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.orgDomain.update(); console.log(result); } run(); /api/v1/settings/email-capabilities: get: description: |- GetEmailCapabilities returns a lightweight summary of email capabilities for the current tenant. Intended for non-admin users (automation builders, secret sharers) to check if external email is available without exposing provider configuration details. operationId: c1.api.settings.v1.TenantEmailProviderService.GetEmailCapabilities responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetEmailCapabilitiesResponse' description: Successful response summary: Get Email Capabilities tags: - Tenant Email Provider x-speakeasy-group: TenantEmailProvider x-speakeasy-name-override: GetEmailCapabilities x-codeSamples: - lang: go label: GetEmailCapabilities source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantEmailProvider.GetEmailCapabilities(ctx) if err != nil { log.Fatal(err) } if res.GetEmailCapabilitiesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantEmailProvider.getEmailCapabilities(); console.log(result); } run(); /api/v1/settings/email-provider: get: description: Get retrieves the current tenant email provider configuration. operationId: c1.api.settings.v1.TenantEmailProviderService.Get responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetTenantEmailProviderResponse' description: Successful response summary: Get tags: - Tenant Email Provider x-speakeasy-group: TenantEmailProvider x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantEmailProvider.Get(ctx) if err != nil { log.Fatal(err) } if res.GetTenantEmailProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantEmailProvider.get(); console.log(result); } run(); post: description: Update creates or updates the tenant email provider configuration. operationId: c1.api.settings.v1.TenantEmailProviderService.Update requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateTenantEmailProviderRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateTenantEmailProviderResponse' description: Successful response summary: Update tags: - Tenant Email Provider x-speakeasy-group: TenantEmailProvider x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantEmailProvider.Update(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateTenantEmailProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantEmailProvider.update(); console.log(result); } run(); /api/v1/settings/email-provider/audit-events: post: description: SearchAuditEvents returns email audit events for the tenant. operationId: c1.api.settings.v1.TenantEmailProviderService.SearchAuditEvents requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.SearchEmailAuditEventsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.SearchEmailAuditEventsResponse' description: Successful response summary: Search Audit Events tags: - Tenant Email Provider x-speakeasy-group: TenantEmailProvider x-speakeasy-name-override: SearchAuditEvents x-codeSamples: - lang: go label: SearchAuditEvents source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantEmailProvider.SearchAuditEvents(ctx, nil) if err != nil { log.Fatal(err) } if res.SearchEmailAuditEventsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantEmailProvider.searchAuditEvents(); console.log(result); } run(); /api/v1/settings/email-provider/test: post: description: Test sends a test email to verify the provider configuration works end-to-end. operationId: c1.api.settings.v1.TenantEmailProviderService.Test requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.TestTenantEmailProviderRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.TestTenantEmailProviderResponse' description: Successful response summary: Test tags: - Tenant Email Provider x-speakeasy-group: TenantEmailProvider x-speakeasy-name-override: Test x-codeSamples: - lang: go label: Test source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TenantEmailProvider.Test(ctx, nil) if err != nil { log.Fatal(err) } if res.TestTenantEmailProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.tenantEmailProvider.test(); console.log(result); } run(); /api/v1/settings/notifications/org: get: description: Get retrieves the organization-level notification settings, including per-channel preferences and admin-locked defaults. operationId: c1.api.settings.v1.OrgNotificationSettingsService.Get responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetOrgNotificationSettingsResponse' description: Successful response summary: Get tags: - Org Notification Settings x-speakeasy-group: OrgNotificationSettings x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.OrgNotificationSettings.Get(ctx) if err != nil { log.Fatal(err) } if res.GetOrgNotificationSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.orgNotificationSettings.get(); console.log(result); } run(); post: description: Update modifies the organization-level notification settings, such as enabling channels and locking preferences for users. operationId: c1.api.settings.v1.OrgNotificationSettingsService.Update requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateOrgNotificationSettingsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateOrgNotificationSettingsResponse' description: Successful response summary: Update tags: - Org Notification Settings x-speakeasy-group: OrgNotificationSettings x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.OrgNotificationSettings.Update(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateOrgNotificationSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.orgNotificationSettings.update(); console.log(result); } run(); /api/v1/settings/notifications/user: get: description: Get retrieves the calling user's notification preferences, merged with organization-level defaults. operationId: c1.api.settings.v1.UserNotificationSettingsService.Get responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetUserNotificationSettingsResponse' description: Successful response summary: Get tags: - User Notification Settings x-speakeasy-group: UserNotificationSettings x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.UserNotificationSettings.Get(ctx) if err != nil { log.Fatal(err) } if res.GetUserNotificationSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.userNotificationSettings.get(); console.log(result); } run(); post: description: Update modifies the calling user's personal notification preferences for each channel. operationId: c1.api.settings.v1.UserNotificationSettingsService.Update requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateUserNotificationSettingsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateUserNotificationSettingsResponse' description: Successful response summary: Update tags: - User Notification Settings x-speakeasy-group: UserNotificationSettings x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.UserNotificationSettings.Update(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateUserNotificationSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.userNotificationSettings.update(); console.log(result); } run(); /api/v1/settings/onboarding: get: description: Get retrieves the current onboarding progress for the tenant. operationId: c1.api.settings.v1.OnboardingSettingsService.Get responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetOnboardingSettingsResponse' description: Successful response summary: Get tags: - Onboarding Settings x-speakeasy-group: OnboardingSettings x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.OnboardingSettings.Get(ctx) if err != nil { log.Fatal(err) } if res.GetOnboardingSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.onboardingSettings.get(); console.log(result); } run(); post: description: Update modifies the onboarding progress, such as marking steps complete or dismissing the wizard. operationId: c1.api.settings.v1.OnboardingSettingsService.Update requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateOnboardingSettingsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateOnboardingSettingsResponse' description: Successful response summary: Update tags: - Onboarding Settings x-speakeasy-group: OnboardingSettings x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.OnboardingSettings.Update(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateOnboardingSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.onboardingSettings.update(); console.log(result); } run(); /api/v1/settings/session: get: description: Get retrieves the current session security settings for the tenant. operationId: c1.api.settings.v1.SessionSettingsService.Get responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.GetSessionSettingsResponse' description: Successful response summary: Get tags: - Session Settings x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: SessionSettings#read x-speakeasy-group: SessionSettings x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SessionSettings.Get(ctx) if err != nil { log.Fatal(err) } if res.GetSessionSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.sessionSettings.get(); console.log(result); } run(); post: description: Update modifies the session security settings for the tenant, such as session length and IP allowlists. operationId: c1.api.settings.v1.SessionSettingsService.Update requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateSessionSettingsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.UpdateSessionSettingsResponse' description: Successful response summary: Update tags: - Session Settings x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: SessionSettings#update x-speakeasy-group: SessionSettings x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SessionSettings.Update(ctx, nil) if err != nil { log.Fatal(err) } if res.UpdateSessionSettingsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.sessionSettings.update(); console.log(result); } run(); /api/v1/settings/session/test-source-ip: post: description: TestSourceIP checks whether a given IP address would be allowed by the specified CIDR allowlist rules. operationId: c1.api.settings.v1.SessionSettingsService.TestSourceIP requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.TestSourceIPRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.settings.v1.TestSourceIPResponse' description: Successful response summary: Test Source Ip tags: - Session Settings x-speakeasy-group: SessionSettings x-speakeasy-name-override: TestSourceIP x-codeSamples: - lang: go label: TestSourceIP source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SessionSettings.TestSourceIP(ctx, nil) if err != nil { log.Fatal(err) } if res.TestSourceIPResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.sessionSettings.testSourceIP(); console.log(result); } run(); /api/v1/ssf-receiver-streams: get: description: List returns a paginated list of all SSF receiver streams configured for the tenant. operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.List parameters: - in: query name: page_size schema: description: Maximum number of streams to return per page. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: Token from a previous ListResponse to fetch the next page of results. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceListResponse' description: SSFReceiverStreamServiceListResponse contains a page of SSF receiver streams. summary: List tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.List(ctx, operations.C1APISSFReceiverV1SSFReceiverStreamServiceListRequest{}) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.list(); console.log(result); } run(); post: description: Create registers a new SSF receiver stream with the specified configuration and returns the created stream along with the push auth token (if push delivery). operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceCreateResponse' description: SSFReceiverStreamServiceCreateResponse returns the created stream and the push auth token in plaintext. summary: Create tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.create(); console.log(result); } run(); /api/v1/ssf-receiver-streams/{id}: delete: description: Delete removes an SSF receiver stream and stops receiving events from the associated transmitter. operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.Delete parameters: - in: path name: id required: true schema: description: The ID of the SSF receiver stream to delete. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceDeleteResponse' description: SSFReceiverStreamServiceDeleteResponse is empty on success. summary: Delete tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.Delete(ctx, operations.C1APISSFReceiverV1SSFReceiverStreamServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.delete({ id: "", }); console.log(result); } run(); get: description: Get retrieves a single SSF receiver stream by its ID. operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.Get parameters: - in: path name: id required: true schema: description: The ID of the SSF receiver stream to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceGetResponse' description: SSFReceiverStreamServiceGetResponse contains the requested SSF receiver stream. summary: Get tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.Get(ctx, operations.C1APISSFReceiverV1SSFReceiverStreamServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing SSF receiver stream's configuration. Only fields specified in the update mask are changed. operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.Update parameters: - in: path name: id required: true schema: description: The unique identifier of this SSF receiver stream. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceUpdateResponse' description: SSFReceiverStreamServiceUpdateResponse contains the updated SSF receiver stream. summary: Update tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.Update(ctx, operations.C1APISSFReceiverV1SSFReceiverStreamServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.update({ id: "", }); console.log(result); } run(); /api/v1/ssf-receiver-streams/{id}/test: post: description: Test validates an SSF receiver stream's configuration by checking JWKS reachability, identity resolution, and action preview without processing real events. operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.Test parameters: - in: path name: id required: true schema: description: The ID of the SSF receiver stream to test. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceTestRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceTestResponse' description: SSFReceiverStreamServiceTestResponse reports the results of the stream configuration test across JWKS, identity, and action readiness checks. summary: Test tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: Test x-codeSamples: - lang: go label: Test source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.Test(ctx, operations.C1APISSFReceiverV1SSFReceiverStreamServiceTestRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceTestResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.test({ id: "", }); console.log(result); } run(); /api/v1/ssf-receiver-streams/{stream_id}/events: get: description: List returns a paginated list of events received on a specific SSF receiver stream, ordered by receipt time. operationId: c1.api.ssf_receiver.v1.SSFReceiverEventService.List parameters: - in: path name: stream_id required: true schema: description: The ID of the SSF receiver stream to list events for. readOnly: false type: string - in: query name: page_size schema: description: Maximum number of events to return per page. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: Token from a previous ListResponse to fetch the next page of results. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEventServiceListResponse' description: SSFReceiverEventServiceListResponse contains a page of received SSF events. summary: List tags: - SSF Receiver x-speakeasy-group: SSFReceiverEvent x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverEvent.List(ctx, operations.C1APISSFReceiverV1SSFReceiverEventServiceListRequest{ StreamID: "", }) if err != nil { log.Fatal(err) } if res.SSFReceiverEventServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverEvent.list({ streamId: "", }); console.log(result); } run(); /api/v1/ssf-receiver-streams/{stream_id}/stats: get: description: GetStats retrieves event processing statistics for a specific SSF receiver stream, including counts of received, acted-on, and failed events. operationId: c1.api.ssf_receiver.v1.SSFReceiverStreamService.GetStats parameters: - in: path name: stream_id required: true schema: description: The ID of the SSF receiver stream to get stats for. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverStreamServiceGetStatsResponse' description: SSFReceiverStreamServiceGetStatsResponse contains the event processing statistics for the stream. summary: Get Stats tags: - SSF Receiver x-speakeasy-group: SSFReceiverStream x-speakeasy-name-override: GetStats x-codeSamples: - lang: go label: GetStats source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SSFReceiverStream.GetStats(ctx, operations.C1APISSFReceiverV1SSFReceiverStreamServiceGetStatsRequest{ StreamID: "", }) if err != nil { log.Fatal(err) } if res.SSFReceiverStreamServiceGetStatsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverStream.getStats({ streamId: "", }); console.log(result); } run(); /api/v1/step-up/providers: get: description: List returns all step-up authentication providers configured for the tenant. operationId: c1.api.stepup.v1.StepUpProviderService.List responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.ListStepUpProvidersResponse' description: Successful response summary: List tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.List(ctx) if err != nil { log.Fatal(err) } if res.ListStepUpProvidersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.list(); console.log(result); } run(); post: description: Create registers a new step-up authentication provider for the tenant. operationId: c1.api.stepup.v1.StepUpProviderService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.CreateStepUpProviderRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.CreateStepUpProviderResponse' description: Successful response summary: Create tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.CreateStepUpProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.create(); console.log(result); } run(); /api/v1/step-up/providers/{id}: delete: description: Delete removes a step-up authentication provider from the tenant. operationId: c1.api.stepup.v1.StepUpProviderService.Delete parameters: - in: path name: id required: true schema: description: The unique identifier of the step-up provider to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.DeleteStepUpProviderRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.DeleteStepUpProviderResponse' description: Successful response summary: Delete tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.Delete(ctx, operations.C1APIStepupV1StepUpProviderServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.DeleteStepUpProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.delete({ id: null, }); console.log(result); } run(); get: description: Get retrieves a single step-up authentication provider by its ID. operationId: c1.api.stepup.v1.StepUpProviderService.Get parameters: - in: path name: id required: true schema: description: The unique identifier of the step-up provider to retrieve. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.GetStepUpProviderResponse' description: Successful response summary: Get tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.Get(ctx, operations.C1APIStepupV1StepUpProviderServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetStepUpProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing step-up authentication provider's configuration. Use the update mask to specify which fields to change. operationId: c1.api.stepup.v1.StepUpProviderService.Update parameters: - in: path name: id required: true schema: description: The unique identifier of the step-up provider. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.UpdateStepUpProviderRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.UpdateStepUpProviderResponse' description: Successful response summary: Update tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.Update(ctx, operations.C1APIStepupV1StepUpProviderServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateStepUpProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.update({ id: "", }); console.log(result); } run(); /api/v1/step-up/providers/{id}/secret: post: description: UpdateSecret rotates the client secret for a step-up authentication provider without modifying other settings. operationId: c1.api.stepup.v1.StepUpProviderService.UpdateSecret parameters: - in: path name: id required: true schema: description: The unique identifier of the step-up provider whose secret is being rotated. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.UpdateStepUpProviderSecretRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.UpdateStepUpProviderSecretResponse' description: Successful response summary: Update Secret tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: UpdateSecret x-codeSamples: - lang: go label: UpdateSecret source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.UpdateSecret(ctx, operations.C1APIStepupV1StepUpProviderServiceUpdateSecretRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UpdateStepUpProviderSecretResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.updateSecret({ id: "", }); console.log(result); } run(); /api/v1/step-up/providers/{id}/test: post: description: Test initiates a test authentication flow against a step-up provider and returns a redirect URL for the caller to complete verification. operationId: c1.api.stepup.v1.StepUpProviderService.Test parameters: - in: path name: id required: true schema: description: The unique identifier of the step-up provider to test. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.TestStepUpProviderRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.TestStepUpProviderResponse' description: Successful response summary: Test tags: - Step Up Authentication Providers x-speakeasy-group: StepUpProvider x-speakeasy-name-override: Test x-codeSamples: - lang: go label: Test source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpProvider.Test(ctx, operations.C1APIStepupV1StepUpProviderServiceTestRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.TestStepUpProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpProvider.test({ id: "", }); console.log(result); } run(); /api/v1/step-up/transactions/{id}: get: description: Get retrieves a specific step-up transaction by ID operationId: c1.api.stepup.v1.StepUpTransactionService.Get parameters: - in: path name: id required: true schema: description: ID of the transaction to retrieve readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.stepup.v1.GetStepUpTransactionResponse' description: Response message containing the requested step-up transaction summary: Get tags: - Step Up Authentication Transactions x-speakeasy-group: StepUpTransaction x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.StepUpTransaction.Get(ctx, operations.C1APIStepupV1StepUpTransactionServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.GetStepUpTransactionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.stepUpTransaction.get({ id: "", }); console.log(result); } run(); /api/v1/systemlog/events: post: description: |- ListEvents pulls Events from the ConductorOne system. This endpoint should be used to synchronize the system log events to external systems. operationId: c1.api.systemlog.v1.SystemLogService.ListEvents requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.SystemLogServiceListEventsRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.SystemLogServiceListEventsResponse' description: Successful response summary: List Events tags: - System Log x-speakeasy-group: SystemLog x-speakeasy-name-override: ListEvents x-codeSamples: - lang: go label: ListEvents source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.SystemLog.ListEvents(ctx, nil) if err != nil { log.Fatal(err) } if res.SystemLogServiceListEventsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.systemLog.listEvents(); console.log(result); } run(); /api/v1/systemlog/exports: get: description: List Exports. operationId: c1.api.systemlog.v1.ExportService.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceListResponse' description: Successful response summary: List tags: - System Log Exporter x-speakeasy-group: Export x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Export.List(ctx, operations.C1APISystemlogV1ExportServiceListRequest{}) if err != nil { log.Fatal(err) } if res.ExportServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.export.list(); console.log(result); } run(); post: description: Create a system log export. operationId: c1.api.systemlog.v1.ExportService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceCreateResponse' description: Successful response summary: Create tags: - System Log Exporter x-speakeasy-group: Export x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Export.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.ExportServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.export.create(); console.log(result); } run(); /api/v1/systemlog/exports/{export_id}: delete: description: Delete a system log export by ID. operationId: c1.api.systemlog.v1.ExportService.Delete parameters: - in: path name: export_id required: true schema: description: The exportId field. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceDeleteResponse' description: Successful response summary: Delete tags: - System Log Exporter x-speakeasy-group: Export x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Export.Delete(ctx, operations.C1APISystemlogV1ExportServiceDeleteRequest{ ExportID: "", }) if err != nil { log.Fatal(err) } if res.ExportServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.export.delete({ exportId: "", }); console.log(result); } run(); get: description: Get a system log export by ID operationId: c1.api.systemlog.v1.ExportService.Get parameters: - in: path name: export_id required: true schema: description: The exportId field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceGetResponse' description: The ExportServiceGetResponse message contains the system log exporter object. summary: Get tags: - System Log Exporter x-speakeasy-group: Export x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Export.Get(ctx, operations.C1APISystemlogV1ExportServiceGetRequest{ ExportID: "", }) if err != nil { log.Fatal(err) } if res.ExportServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.export.get({ exportId: "", }); console.log(result); } run(); post: description: Update a system log export by providing an export object and an update mask. operationId: c1.api.systemlog.v1.ExportService.Update parameters: - in: path name: export_id required: true schema: description: The exportId field. readOnly: true type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceUpdateResponse' description: Successful response summary: Update tags: - System Log Exporter x-speakeasy-group: Export x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Export.Update(ctx, operations.C1APISystemlogV1ExportServiceUpdateRequest{ ExportID: "", }) if err != nil { log.Fatal(err) } if res.ExportServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.export.update({ exportId: "", }); console.log(result); } run(); /api/v1/systemlog/exports/{export_id}/events: post: description: List audit events belonging to a specific system log export. operationId: c1.api.systemlog.v1.ExportService.ListEvents parameters: - in: path name: export_id required: true schema: description: The ID of the system log export whose events are being listed. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceListEventsRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.systemlog.v1.ExportServiceListEventsResponse' description: ExportServiceListEventsResponse is the response containing audit events for an export. summary: List Events tags: - System Log Exporter x-speakeasy-group: Export x-speakeasy-name-override: ListEvents x-codeSamples: - lang: go label: ListEvents source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Export.ListEvents(ctx, operations.C1APISystemlogV1ExportServiceListEventsRequest{ ExportID: "", }) if err != nil { log.Fatal(err) } if res.ExportServiceListEventsResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.export.listEvents({ exportId: "", }); console.log(result); } run(); /api/v1/task/audits: post: description: List audit trail events for a task. operationId: c1.api.task.v1.TaskAudit.List requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditListRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskAuditListResponse' description: Successful response summary: List tags: - Task x-speakeasy-group: TaskAudit x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskAudit.List(ctx, nil) if err != nil { log.Fatal(err) } if res.TaskAuditListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskAudit.list(); console.log(result); } run(); /api/v1/task/grant: post: description: Create a grant task operationId: c1.api.task.v1.TaskService.CreateGrantTask requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceCreateGrantRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceCreateGrantResponse' description: The TaskServiceCreateGrantResponse returns a task view which has a task including JSONPATHs to the expanded items in the expanded array. summary: Create Grant Task tags: - Task x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: TaskGrant#create x-speakeasy-group: Task x-speakeasy-name-override: CreateGrantTask x-codeSamples: - lang: go label: CreateGrantTask source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Task.CreateGrantTask(ctx, nil) if err != nil { log.Fatal(err) } if res.TaskServiceCreateGrantResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.task.createGrantTask(); console.log(result); } run(); /api/v1/task/offboarding: post: description: Create an offboarding task to remove a user's access across applications. operationId: c1.api.task.v1.TaskService.CreateOffboardingTask requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceCreateOffboardingRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceCreateOffboardingResponse' description: The TaskServiceCreateOffboardingResponse returns the created offboarding task with optional expanded related objects. summary: Create Offboarding Task tags: - Task x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: TaskOffboarding#create x-speakeasy-group: Task x-speakeasy-name-override: CreateOffboardingTask x-codeSamples: - lang: go label: CreateOffboardingTask source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Task.CreateOffboardingTask(ctx, nil) if err != nil { log.Fatal(err) } if res.TaskServiceCreateOffboardingResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.task.createOffboardingTask(); console.log(result); } run(); /api/v1/task/revoke: post: description: Create a revoke task operationId: c1.api.task.v1.TaskService.CreateRevokeTask requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceCreateRevokeRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceCreateRevokeResponse' description: The TaskServiceCreateRevokeResponse returns a task view which has a task including JSONPATHs to the expanded items in the expanded array. summary: Create Revoke Task tags: - Task x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: TaskRevoke#create x-speakeasy-group: Task x-speakeasy-name-override: CreateRevokeTask x-codeSamples: - lang: go label: CreateRevokeTask source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Task.CreateRevokeTask(ctx, nil) if err != nil { log.Fatal(err) } if res.TaskServiceCreateRevokeResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.task.createRevokeTask(); console.log(result); } run(); /api/v1/tasks/{id}: get: description: Get a task by ID operationId: c1.api.task.v1.TaskService.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceGetResponse' description: The TaskServiceGetResponse returns a task view which has a task including JSONPATHs to the expanded items in the expanded array. summary: Get tags: - Task x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Task#read x-speakeasy-group: Task x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Task.Get(ctx, operations.C1APITaskV1TaskServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.TaskServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.task.get({ id: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/approve: post: description: Approve the specified policy step on a task. operationId: c1.api.task.v1.TaskActionsService.Approve parameters: - in: path name: task_id required: true schema: description: The ID of the task to approve. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceApproveRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceApproveResponse' description: The TaskActionsServiceApproveResponse returns a task view with paths indicating the location of expanded items in the array. summary: Approve tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: Approve x-codeSamples: - lang: go label: Approve source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.Approve(ctx, operations.C1APITaskV1TaskActionsServiceApproveRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceApproveResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.approve({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/approve-with-step-up: post: description: Approve a task that requires step-up authentication. If a verified step-up transaction ID is provided, the approval is processed immediately. Otherwise, a redirect URL is returned for the caller to complete authentication first. operationId: c1.api.task.v1.TaskActionsService.ApproveWithStepUp parameters: - in: path name: task_id required: true schema: description: The ID of the task to approve with step-up. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceApproveWithStepUpRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceApproveWithStepUpResponse' description: TaskActionsServiceApproveWithStepUpResponse is the response for approving a task with step-up authentication summary: Approve With Step Up tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: ApproveWithStepUp x-codeSamples: - lang: go label: ApproveWithStepUp source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.ApproveWithStepUp(ctx, operations.C1APITaskV1TaskActionsServiceApproveWithStepUpRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceApproveWithStepUpResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.approveWithStepUp({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/close: post: description: Close a task, ending its workflow. operationId: c1.api.task.v1.TaskActionsService.Close parameters: - in: path name: task_id required: true schema: description: The ID of the task to close. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceCloseRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceCloseResponse' description: The TaskActionsServiceCloseResponse returns a task view with paths indicating the location of expanded items in the array. summary: Close tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: Close x-codeSamples: - lang: go label: Close source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.Close(ctx, operations.C1APITaskV1TaskActionsServiceCloseRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceCloseResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.close({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/comment: post: description: Post a comment on a task without changing its state. operationId: c1.api.task.v1.TaskActionsService.Comment parameters: - in: path name: task_id required: true schema: description: The ID of the task to be commented on readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceCommentRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceCommentResponse' description: Task actions service comment response returns the task view inluding the expanded array of items that are indicated by the expand mask on the request. summary: Comment tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: Comment x-codeSamples: - lang: go label: Comment source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.Comment(ctx, operations.C1APITaskV1TaskActionsServiceCommentRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceCommentResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.comment({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/deny: post: description: Deny the specified policy step on a task. In multi-step policies, this may route to fallback steps rather than finalizing the task outcome. operationId: c1.api.task.v1.TaskActionsService.Deny parameters: - in: path name: task_id required: true schema: description: The ID of the task to be denied. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceDenyRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceDenyResponse' description: The TaskActionsServiceDenyResponse returns a task view with paths indicating the location of expanded items in the array. summary: Deny tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: Deny x-codeSamples: - lang: go label: Deny source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.Deny(ctx, operations.C1APITaskV1TaskActionsServiceDenyRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceDenyResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.deny({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/escalate: post: description: Escalate a grant task to use the emergency access policy, bypassing the normal approval flow. Only valid for grant tasks. operationId: c1.api.task.v1.TaskActionsService.EscalateToEmergencyAccess parameters: - in: path name: task_id required: true schema: description: The ID of the task to escalate. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceEscalateToEmergencyAccessRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceActionResponse' description: A generic response for task action endpoints, containing the updated task and the ID of the action that was created. summary: Escalate To Emergency Access tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: EscalateToEmergencyAccess x-codeSamples: - lang: go label: EscalateToEmergencyAccess source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.EscalateToEmergencyAccess(ctx, operations.C1APITaskV1TaskActionsServiceEscalateToEmergencyAccessRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskServiceActionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.escalateToEmergencyAccess({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/process: post: description: Trigger immediate processing of a task, bypassing any scheduled wait. For tasks linked to an external system, this also attempts to sync the external state. operationId: c1.api.task.v1.TaskActionsService.ProcessNow parameters: - in: path name: task_id required: true schema: description: The ID of the task to process now. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceProcessNowRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceProcessNowResponse' description: The TaskActionsServiceProcessNowResponse returns the task view after triggering immediate processing. summary: Process Now tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: ProcessNow x-codeSamples: - lang: go label: ProcessNow source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.ProcessNow(ctx, operations.C1APITaskV1TaskActionsServiceProcessNowRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceProcessNowResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.processNow({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/reassign: post: description: Reassign a task's current policy step to a different set of users. The target step must be an approval, provision, or form step. operationId: c1.api.task.v1.TaskActionsService.Reassign parameters: - in: path name: task_id required: true schema: description: The ID of the task to reassign. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceReassignRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceReassignResponse' description: The TaskActionsServiceReassignResponse returns a task view with paths indicating the location of expanded items in the array. summary: Reassign tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: Reassign x-codeSamples: - lang: go label: Reassign source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.Reassign(ctx, operations.C1APITaskV1TaskActionsServiceReassignRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceReassignResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.reassign({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/reset: post: description: Reset a task and recalculate its policy from scratch. Unlike Restart, this re-evaluates which policy applies to the task. operationId: c1.api.task.v1.TaskActionsService.HardReset parameters: - in: path name: task_id required: true schema: description: The ID of the task to reset. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceHardResetRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceHardResetResponse' description: The TaskActionsServiceHardResetResponse returns the updated task after a hard reset. summary: Hard Reset tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: HardReset x-codeSamples: - lang: go label: HardReset source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.HardReset(ctx, operations.C1APITaskV1TaskActionsServiceHardResetRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceHardResetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.hardReset({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/restart: post: description: Restart a task, returning it to the beginning of its current policy workflow. operationId: c1.api.task.v1.TaskActionsService.Restart parameters: - in: path name: task_id required: true schema: description: The ID of the task to restart. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceRestartRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceRestartResponse' description: The TaskActionsServiceRestartResponse returns the updated task after restarting. summary: Restart tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: Restart x-codeSamples: - lang: go label: Restart source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.Restart(ctx, operations.C1APITaskV1TaskActionsServiceRestartRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskActionsServiceRestartResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.restart({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/skip-step: post: description: Skip a specific policy step in a task, advancing the task to the next step in the workflow. operationId: c1.api.task.v1.TaskActionsService.SkipStep parameters: - in: path name: task_id required: true schema: description: The ID of the task containing the step to skip. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceSkipStepRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceActionResponse' description: A generic response for task action endpoints, containing the updated task and the ID of the action that was created. summary: Skip Step tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: SkipStep x-codeSamples: - lang: go label: SkipStep source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.SkipStep(ctx, operations.C1APITaskV1TaskActionsServiceSkipStepRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskServiceActionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.skipStep({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/update-grant-duration: post: description: Update the grant duration for a task. Only applies to grant tasks with a single entitlement that are not in a provision step. The new duration must not exceed the entitlement's maximum allowed provision time. operationId: c1.api.task.v1.TaskActionsService.UpdateGrantDuration parameters: - in: path name: task_id required: true schema: description: The ID of the task to update the grant duration for. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceUpdateGrantDurationRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceActionResponse' description: A generic response for task action endpoints, containing the updated task and the ID of the action that was created. summary: Update Grant Duration tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: UpdateGrantDuration x-codeSamples: - lang: go label: UpdateGrantDuration source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.UpdateGrantDuration(ctx, operations.C1APITaskV1TaskActionsServiceUpdateGrantDurationRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskServiceActionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.updateGrantDuration({ taskId: "", }); console.log(result); } run(); /api/v1/tasks/{task_id}/action/update-request-data: post: description: Update the request data on a task that is currently in a form step. The submitted data is validated against the form schema before being applied. operationId: c1.api.task.v1.TaskActionsService.UpdateRequestData parameters: - in: path name: task_id required: true schema: description: The ID of the task containing the request data to update. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskActionsServiceUpdateRequestDataRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.task.v1.TaskServiceActionResponse' description: A generic response for task action endpoints, containing the updated task and the ID of the action that was created. summary: Update Request Data tags: - Task x-speakeasy-group: TaskActions x-speakeasy-name-override: UpdateRequestData x-codeSamples: - lang: go label: UpdateRequestData source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.TaskActions.UpdateRequestData(ctx, operations.C1APITaskV1TaskActionsServiceUpdateRequestDataRequest{ TaskID: "", }) if err != nil { log.Fatal(err) } if res.TaskServiceActionResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.taskActions.updateRequestData({ taskId: "", }); console.log(result); } run(); /api/v1/users: get: description: List users. operationId: c1.api.user.v1.UserService.List parameters: - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pageToken field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.UserServiceListResponse' description: The UserServiceListResponse message contains a list of results and a nextPageToken if applicable. summary: List tags: - User x-speakeasy-group: User x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.User.List(ctx, operations.C1APIUserV1UserServiceListRequest{}) if err != nil { log.Fatal(err) } if res.UserServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.user.list(); console.log(result); } run(); /api/v1/users/{id}: get: description: Get a user by ID. operationId: c1.api.user.v1.UserService.Get parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.UserServiceGetResponse' description: The UserServiceGetResponse returns a user view which has a user including JSONPATHs to the expanded items in the expanded array. summary: Get tags: - User x-speakeasy-group: User x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.User.Get(ctx, operations.C1APIUserV1UserServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.UserServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.user.get({ id: "", }); console.log(result); } run(); /api/v1/users/{user_id}/profile-types: get: description: Retrieve the profile types associated with a user across their connected apps. operationId: c1.api.user.v1.UserService.GetUserProfileTypes parameters: - in: path name: user_id required: true schema: description: The ID of the user whose profile types are being retrieved. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.GetUserProfileTypesResponse' description: GetUserProfileTypesResponse is the response containing the profile types for a user. summary: Get User Profile Types tags: - User x-speakeasy-group: User x-speakeasy-name-override: GetUserProfileTypes x-codeSamples: - lang: go label: GetUserProfileTypes source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.User.GetUserProfileTypes(ctx, operations.C1APIUserV1UserServiceGetUserProfileTypesRequest{ UserID: "", }) if err != nil { log.Fatal(err) } if res.GetUserProfileTypesResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.user.getUserProfileTypes({ userId: "", }); console.log(result); } run(); /api/v1/users/{user_id}/set-delegation-by-admin: post: description: Set or update an expiring delegation binding for a user, allowing an admin to designate a temporary delegate. operationId: c1.api.user.v1.UserService.SetExpiringUserDelegationBindingByAdmin parameters: - in: path name: user_id required: true schema: description: The ID of the user whose tasks will be delegated. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.SetExpiringUserDelegationBindingByAdminRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.user.v1.SetExpiringUserDelegationBindingByAdminResponse' description: SetExpiringUserDelegationBindingByAdminResponse is the response containing the created or updated delegation binding. summary: Set Expiring User Delegation Binding By Admin tags: - User x-speakeasy-group: User x-speakeasy-name-override: SetExpiringUserDelegationBindingByAdmin x-codeSamples: - lang: go label: SetExpiringUserDelegationBindingByAdmin source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.User.SetExpiringUserDelegationBindingByAdmin(ctx, operations.C1APIUserV1UserServiceSetExpiringUserDelegationBindingByAdminRequest{ UserID: "", }) if err != nil { log.Fatal(err) } if res.SetExpiringUserDelegationBindingByAdminResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.user.setExpiringUserDelegationBindingByAdmin({ userId: "", }); console.log(result); } run(); /api/v1/vaults: post: description: Create provisions a new external secret storage vault and returns it. operationId: c1.api.vault.v1.VaultService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceCreateResponse' description: VaultServiceCreateResponse is the response message for creating a new vault. summary: Create tags: - Vault x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Vault#create x-speakeasy-group: Vault x-speakeasy-name-override: Create x-stability-level: draft x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Vault.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.VaultServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.vault.create(); console.log(result); } run(); /api/v1/vaults/{id}: delete: description: Delete a vault by its ID. Active connectors using this vault will no longer be able to access their stored credentials. operationId: c1.api.vault.v1.VaultService.Delete parameters: - in: path name: id required: true schema: description: The unique identifier of the vault to delete. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceDeleteResponse' description: Empty response body. Status code indicates success. summary: Delete tags: - Vault x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Vault#delete x-speakeasy-group: Vault x-speakeasy-name-override: Delete x-stability-level: draft x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Vault.Delete(ctx, operations.C1APIVaultV1VaultServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.VaultServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.vault.delete({ id: "", }); console.log(result); } run(); get: description: Get returns a single vault by its ID. operationId: c1.api.vault.v1.VaultService.Get parameters: - in: path name: id required: true schema: description: The unique identifier of the vault to retrieve. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceGetResponse' description: VaultServiceGetResponse is the response message containing the requested vault. summary: Get tags: - Vault x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Vault#read x-speakeasy-group: Vault x-speakeasy-name-override: Get x-stability-level: draft x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Vault.Get(ctx, operations.C1APIVaultV1VaultServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.VaultServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.vault.get({ id: "", }); console.log(result); } run(); post: description: Update modifies an existing vault's properties using a field mask. operationId: c1.api.vault.v1.VaultService.Update parameters: - in: path name: id required: true schema: description: The unique identifier of the vault. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.vault.v1.VaultServiceUpdateResponse' description: VaultServiceUpdateResponse is the response message containing the updated vault. summary: Update tags: - Vault x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Vault#update x-speakeasy-group: Vault x-speakeasy-name-override: Update x-stability-level: draft x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Vault.Update(ctx, operations.C1APIVaultV1VaultServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.VaultServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.vault.update({ id: "", }); console.log(result); } run(); /api/v1/webhooks: get: description: List all webhook subscriptions in the tenant, with pagination. operationId: c1.api.webhooks.v1.WebhooksService.List parameters: - in: query name: page_size schema: description: The maximum number of webhooks to return per page. format: int32 readOnly: false type: - integer - "null" - in: query name: page_token schema: description: The pagination token from a previous list response to fetch the next page. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceListResponse' description: Successful response summary: List tags: - Webhook x-speakeasy-group: Webhooks x-speakeasy-name-override: List x-codeSamples: - lang: go label: List source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Webhooks.List(ctx, operations.C1APIWebhooksV1WebhooksServiceListRequest{}) if err != nil { log.Fatal(err) } if res.WebhooksServiceListResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooks.list(); console.log(result); } run(); post: description: Create a new webhook subscription to receive event notifications at the specified URL. operationId: c1.api.webhooks.v1.WebhooksService.Create requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceCreateRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceCreateResponse' description: Successful response summary: Create tags: - Webhook x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Webhook#create x-speakeasy-group: Webhooks x-speakeasy-name-override: Create x-codeSamples: - lang: go label: Create source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Webhooks.Create(ctx, nil) if err != nil { log.Fatal(err) } if res.WebhooksServiceCreateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooks.create(); console.log(result); } run(); /api/v1/webhooks/{id}: delete: description: Delete a webhook subscription, stopping all future event deliveries to its URL. operationId: c1.api.webhooks.v1.WebhooksService.Delete parameters: - in: path name: id required: true schema: description: The ID of the webhook to delete. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceDeleteRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceDeleteResponse' description: Empty response body. Status code indicates success. summary: Delete tags: - Webhook x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Webhook#delete x-speakeasy-group: Webhooks x-speakeasy-name-override: Delete x-codeSamples: - lang: go label: Delete source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Webhooks.Delete(ctx, operations.C1APIWebhooksV1WebhooksServiceDeleteRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WebhooksServiceDeleteResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooks.delete({ id: "", }); console.log(result); } run(); get: description: Retrieve a single webhook by its ID. operationId: c1.api.webhooks.v1.WebhooksService.Get parameters: - in: path name: id required: true schema: description: The ID of the webhook to retrieve. readOnly: false type: - string - "null" responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceGetResponse' description: Successful response summary: Get tags: - Webhook x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: Webhook#read x-speakeasy-group: Webhooks x-speakeasy-name-override: Get x-codeSamples: - lang: go label: Get source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Webhooks.Get(ctx, operations.C1APIWebhooksV1WebhooksServiceGetRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WebhooksServiceGetResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooks.get({ id: "", }); console.log(result); } run(); post: description: Update an existing webhook subscription's properties, such as its URL or display name. operationId: c1.api.webhooks.v1.WebhooksService.Update parameters: - in: path name: id required: true schema: description: The unique identifier of the webhook. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceUpdateRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceUpdateResponse' description: Successful response summary: Update tags: - Webhook x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: Webhook#update x-speakeasy-group: Webhooks x-speakeasy-name-override: Update x-codeSamples: - lang: go label: Update source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Webhooks.Update(ctx, operations.C1APIWebhooksV1WebhooksServiceUpdateRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WebhooksServiceUpdateResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooks.update({ id: "", }); console.log(result); } run(); /api/v1/webhooks/{id}/test: post: description: Send a sample event to the webhook URL to verify that the endpoint is reachable and responding correctly. operationId: c1.api.webhooks.v1.WebhooksService.Test parameters: - in: path name: id required: true schema: description: The ID of the webhook to send a test event to. readOnly: false type: - string - "null" requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceTestRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.webhooks.v1.WebhooksServiceTestResponse' description: Successful response summary: Test tags: - Webhook x-speakeasy-group: Webhooks x-speakeasy-name-override: Test x-codeSamples: - lang: go label: Test source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.Webhooks.Test(ctx, operations.C1APIWebhooksV1WebhooksServiceTestRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WebhooksServiceTestResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.webhooks.test({ id: "", }); console.log(result); } run(); /api/v1/workload_federation/providers: get: description: ListProviders lists all providers for the tenant. operationId: c1.api.workload_federation.v1.WorkloadFederationService.ListProviders responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceListProvidersResponse' description: Successful response summary: List Providers tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: ListProviders x-codeSamples: - lang: go label: ListProviders source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.ListProviders(ctx) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceListProvidersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.listProviders(); console.log(result); } run(); post: description: |- CreateProvider registers a new external OIDC issuer for the tenant. Validates the issuer URL via OIDC discovery synchronously. operationId: c1.api.workload_federation.v1.WorkloadFederationService.CreateProvider requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceCreateProviderRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceCreateProviderResponse' description: Successful response summary: Create Provider tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: CreateProvider x-codeSamples: - lang: go label: CreateProvider source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.CreateProvider(ctx, nil) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceCreateProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.createProvider(); console.log(result); } run(); /api/v1/workload_federation/providers/{id}: delete: description: DeleteProvider deletes a provider. Fails if active trusts reference it. operationId: c1.api.workload_federation.v1.WorkloadFederationService.DeleteProvider parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceDeleteProviderRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceDeleteProviderResponse' description: Successful response summary: Delete Provider tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: DeleteProvider x-codeSamples: - lang: go label: DeleteProvider source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.DeleteProvider(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceDeleteProviderRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceDeleteProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.deleteProvider({ id: "", }); console.log(result); } run(); get: description: GetProvider returns a provider by ID. operationId: c1.api.workload_federation.v1.WorkloadFederationService.GetProvider parameters: - in: path name: id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceGetProviderResponse' description: Successful response summary: Get Provider tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: GetProvider x-codeSamples: - lang: go label: GetProvider source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.GetProvider(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceGetProviderRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceGetProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.getProvider({ id: "", }); console.log(result); } run(); patch: description: |- UpdateProvider updates a provider's mutable fields (display_name, description, disabled). The issuer_url is immutable after creation. operationId: c1.api.workload_federation.v1.WorkloadFederationService.UpdateProvider parameters: - in: path name: id required: true schema: description: The unique ID of the provider. readOnly: true type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceUpdateProviderRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceUpdateProviderResponse' description: Successful response summary: Update Provider tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: UpdateProvider x-codeSamples: - lang: go label: UpdateProvider source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.UpdateProvider(ctx, operations.C1APIWorkloadFederationV1WorkloadFederationServiceUpdateProviderRequest{ ID: "", }) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceUpdateProviderResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.updateProvider({ id: "", }); console.log(result); } run(); /api/v1/workload_federation/test-cel: post: description: |- TestCEL evaluates a CEL expression against provided claims without requiring a JWT, provider, or trust. Used for expression authoring. operationId: c1.api.workload_federation.v1.WorkloadFederationService.TestCEL requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceTestCELRequest' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.workload_federation.v1.WorkloadFederationServiceTestCELResponse' description: Successful response summary: Test Cel tags: - Workload Federation x-speakeasy-group: WorkloadFederation x-speakeasy-name-override: TestCEL x-codeSamples: - lang: go label: TestCEL source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.WorkloadFederation.TestCEL(ctx, nil) if err != nil { log.Fatal(err) } if res.WorkloadFederationServiceTestCELResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.workloadFederation.testCEL(); console.log(result); } run(); /api/v2/apps/{app_id}/connectors/{connector_id}/owners: put: description: Set replaces all owners for a given connector and role. operationId: c1.api.app.v2.ConnectorOwners.Set parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: connector_id required: true schema: description: The connectorId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SetConnectorOwnersV2RequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SetConnectorOwnersV2Response' description: SetConnectorOwnersV2Response is the empty response for setting connector owners. summary: Set tags: - Connector Owner V2 x-speakeasy-group: ConnectorOwnersV2 x-speakeasy-name-override: Set x-stability-level: draft x-codeSamples: - lang: go label: Set source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.ConnectorOwnersV2.Set(ctx, operations.C1APIAppV2ConnectorOwnersSetRequest{ AppID: "", ConnectorID: "", }) if err != nil { log.Fatal(err) } if res.SetConnectorOwnersV2Response != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.connectorOwnersV2.set({ appId: "", connectorId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/entitlements/{entitlement_id}/owners: put: description: Set replaces all owners for a given app entitlement and role. operationId: c1.api.app.v2.AppEntitlementOwners.Set parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: entitlement_id required: true schema: description: The entitlementId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SetAppEntitlementOwnersV2RequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SetAppEntitlementOwnersV2Response' description: SetAppEntitlementOwnersV2Response is the empty response for setting app entitlement owners. summary: Set tags: - App Entitlement Owner V2 x-speakeasy-group: AppEntitlementOwnersV2 x-speakeasy-name-override: Set x-stability-level: draft x-codeSamples: - lang: go label: Set source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwnersV2.Set(ctx, operations.C1APIAppV2AppEntitlementOwnersSetRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.SetAppEntitlementOwnersV2Response != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwnersV2.set({ appId: "", entitlementId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/entitlements/{entitlement_id}/owners/entitlements: get: description: SearchEntitlementOwners searches for the entitlement ownership for an app entitlement. operationId: c1.api.app.v2.AppEntitlementOwners.SearchEntitlementOwners parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: entitlement_id required: true schema: description: The entitlementId field. readOnly: false type: string - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: The pageToken field. readOnly: false type: string - in: query name: role_slug schema: description: Empty means "any role" (no filter). readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SearchAppEntitlementEntitlementOwnersResponse' description: SearchAppEntitlementEntitlementOwnersResponse is the response for searching entitlement ownership sources on an entitlement. summary: Search Entitlement Owners tags: - App Entitlement Owner V2 x-speakeasy-group: AppEntitlementOwnersV2 x-speakeasy-name-override: SearchEntitlementOwners x-stability-level: draft x-codeSamples: - lang: go label: SearchEntitlementOwners source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwnersV2.SearchEntitlementOwners(ctx, operations.C1APIAppV2AppEntitlementOwnersSearchEntitlementOwnersRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.SearchAppEntitlementEntitlementOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwnersV2.searchEntitlementOwners({ appId: "", entitlementId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/entitlements/{entitlement_id}/owners/users: get: description: SearchUserOwners searches for users who are owners of this app entitlement. operationId: c1.api.app.v2.AppEntitlementOwners.SearchUserOwners parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: entitlement_id required: true schema: description: The entitlementId field. readOnly: false type: string - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: The pageToken field. readOnly: false type: string - in: query name: role_slug schema: description: Empty means "any role" (no filter). readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SearchAppEntitlementUserOwnersResponse' description: SearchAppEntitlementUserOwnersResponse is the response for searching user ownership sources on an entitlement. summary: Search User Owners tags: - App Entitlement Owner V2 x-speakeasy-group: AppEntitlementOwnersV2 x-speakeasy-name-override: SearchUserOwners x-stability-level: draft x-codeSamples: - lang: go label: SearchUserOwners source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppEntitlementOwnersV2.SearchUserOwners(ctx, operations.C1APIAppV2AppEntitlementOwnersSearchUserOwnersRequest{ AppID: "", EntitlementID: "", }) if err != nil { log.Fatal(err) } if res.SearchAppEntitlementUserOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appEntitlementOwnersV2.searchUserOwners({ appId: "", entitlementId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/owners: put: description: Set replaces all user owners for a given app and role. operationId: c1.api.app.v2.AppOwners.Set parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SetAppOwnersRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SetAppOwnersResponse' description: SetAppOwnersResponse is the empty response for setting app owners. summary: Set tags: - App Owner V2 x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: Set x-stability-level: draft x-codeSamples: - lang: go label: Set source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.Set(ctx, operations.C1APIAppV2AppOwnersSetRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.SetAppOwnersResponseV2 != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.set({ appId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/owners/entitlements: get: description: SearchEntitlementOwners searches for entitlement ownership sources for an app. operationId: c1.api.app.v2.AppOwners.SearchEntitlementOwners parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: The pageToken field. readOnly: false type: string - in: query name: role_slug schema: description: The roleSlug field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SearchEntitlementOwnersResponse' description: SearchEntitlementOwnersResponse is the response for searching entitlement ownership sources. summary: Search Entitlement Owners tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App_Owner_Entitlement#read terraform-resource: null x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: SearchEntitlementOwners x-stability-level: draft x-codeSamples: - lang: go label: SearchEntitlementOwners source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.SearchEntitlementOwners(ctx, operations.C1APIAppV2AppOwnersSearchEntitlementOwnersRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.SearchEntitlementOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.searchEntitlementOwners({ appId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/owners/entitlements/{role_slug}/{app_entitlement_ref_app_id}/{app_entitlement_ref_id}: delete: description: DeleteEntitlementOwner deletes an entitlement ownership source for an app. operationId: c1.api.app.v2.AppOwners.DeleteEntitlementOwner parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: role_slug required: true schema: description: The roleSlug field. readOnly: false type: string - in: path name: app_entitlement_ref_app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: app_entitlement_ref_id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.DeleteEntitlementOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.DeleteEntitlementOwnerResponse' description: DeleteEntitlementOwnerResponse is the empty response for deleting an entitlement ownership source. summary: Delete Entitlement Owner tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Owner_Entitlement#delete x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: DeleteEntitlementOwner x-stability-level: draft x-codeSamples: - lang: go label: DeleteEntitlementOwner source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.DeleteEntitlementOwner(ctx, operations.C1APIAppV2AppOwnersDeleteEntitlementOwnerRequest{ AppEntitlementRefAppID: "", AppEntitlementRefID: "", AppID: "", RoleSlug: "", }) if err != nil { log.Fatal(err) } if res.DeleteEntitlementOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.deleteEntitlementOwner({ appId: "", roleSlug: "", appEntitlementRefAppId: "", appEntitlementRefId: "", }); console.log(result); } run(); get: description: GetEntitlementOwner gets an entitlement ownership source for an app. operationId: c1.api.app.v2.AppOwners.GetEntitlementOwner parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: role_slug required: true schema: description: The roleSlug field. readOnly: false type: string - in: path name: app_entitlement_ref_app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: app_entitlement_ref_id required: true schema: description: The id field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.GetEntitlementOwnerResponse' description: GetEntitlementOwnerResponse is the response for getting an entitlement ownership source. summary: Get Entitlement Owner tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App_Owner_Entitlement#read x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: GetEntitlementOwner x-stability-level: draft x-codeSamples: - lang: go label: GetEntitlementOwner source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.GetEntitlementOwner(ctx, operations.C1APIAppV2AppOwnersGetEntitlementOwnerRequest{ AppEntitlementRefAppID: "", AppEntitlementRefID: "", AppID: "", RoleSlug: "", }) if err != nil { log.Fatal(err) } if res.GetEntitlementOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.getEntitlementOwner({ appId: "", roleSlug: "", appEntitlementRefAppId: "", appEntitlementRefId: "", }); console.log(result); } run(); post: description: CreateEntitlementOwner creates an entitlement ownership source for an app. operationId: c1.api.app.v2.AppOwners.CreateEntitlementOwner parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: role_slug required: true schema: description: The roleSlug field. readOnly: false type: string - in: path name: app_entitlement_ref_app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: app_entitlement_ref_id required: true schema: description: The id field. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.CreateEntitlementOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.CreateEntitlementOwnerResponse' description: CreateEntitlementOwnerResponse is the response for creating an entitlement ownership source. summary: Create Entitlement Owner tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Owner_Entitlement#create x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: CreateEntitlementOwner x-stability-level: draft x-codeSamples: - lang: go label: CreateEntitlementOwner source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.CreateEntitlementOwner(ctx, operations.C1APIAppV2AppOwnersCreateEntitlementOwnerRequest{ AppEntitlementRefAppID: "", AppEntitlementRefID: "", AppID: "", RoleSlug: "", }) if err != nil { log.Fatal(err) } if res.CreateEntitlementOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.createEntitlementOwner({ appId: "", roleSlug: "", appEntitlementRefAppId: "", appEntitlementRefId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/owners/users: get: description: SearchUserOwners searches for user ownership sources for an app. operationId: c1.api.app.v2.AppOwners.SearchUserOwners parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: query name: page_size schema: description: The pageSize field. format: int32 readOnly: false type: integer - in: query name: page_token schema: description: The pageToken field. readOnly: false type: string - in: query name: role_slug schema: description: The roleSlug field. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.SearchUserOwnersResponse' description: SearchUserOwnersResponse is the response for searching user ownership sources. summary: Search User Owners tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: App_Owner_User#read terraform-resource: null x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: SearchUserOwners x-stability-level: draft x-codeSamples: - lang: go label: SearchUserOwners source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.SearchUserOwners(ctx, operations.C1APIAppV2AppOwnersSearchUserOwnersRequest{ AppID: "", }) if err != nil { log.Fatal(err) } if res.SearchUserOwnersResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.searchUserOwners({ appId: "", }); console.log(result); } run(); /api/v2/apps/{app_id}/owners/users/{role_slug}/{user_ref_id}: delete: description: DeleteUserOwner deletes a user ownership source for an app. operationId: c1.api.app.v2.AppOwners.DeleteUserOwner parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: role_slug required: true schema: description: The roleSlug field. readOnly: false type: string - in: path name: user_ref_id required: true schema: description: The id of the user. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.DeleteUserOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.DeleteUserOwnerResponse' description: DeleteUserOwnerResponse is the empty response for deleting a user ownership source. summary: Delete User Owner tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Owner_User#delete x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: DeleteUserOwner x-stability-level: draft x-codeSamples: - lang: go label: DeleteUserOwner source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.DeleteUserOwner(ctx, operations.C1APIAppV2AppOwnersDeleteUserOwnerRequest{ AppID: "", RoleSlug: "", UserRefID: "", }) if err != nil { log.Fatal(err) } if res.DeleteUserOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.deleteUserOwner({ appId: "", roleSlug: "", userRefId: "", }); console.log(result); } run(); get: description: GetUserOwner gets a user ownership source for an app. operationId: c1.api.app.v2.AppOwners.GetUserOwner parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: role_slug required: true schema: description: The roleSlug field. readOnly: false type: string - in: path name: user_ref_id required: true schema: description: The id of the user. readOnly: false type: string responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.GetUserOwnerResponse' description: GetUserOwnerResponse is the response for getting a user ownership source. summary: Get User Owner tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-datasource: null terraform-resource: App_Owner_User#read x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: GetUserOwner x-stability-level: draft x-codeSamples: - lang: go label: GetUserOwner source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.GetUserOwner(ctx, operations.C1APIAppV2AppOwnersGetUserOwnerRequest{ AppID: "", RoleSlug: "", UserRefID: "", }) if err != nil { log.Fatal(err) } if res.GetUserOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.getUserOwner({ appId: "", roleSlug: "", userRefId: "", }); console.log(result); } run(); post: description: CreateUserOwner creates a user ownership source for an app. operationId: c1.api.app.v2.AppOwners.CreateUserOwner parameters: - in: path name: app_id required: true schema: description: The appId field. readOnly: false type: string - in: path name: role_slug required: true schema: description: The roleSlug field. readOnly: false type: string - in: path name: user_ref_id required: true schema: description: The id of the user. readOnly: false type: string requestBody: content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.CreateUserOwnerRequestInput' responses: "200": content: application/json: schema: $ref: '#/components/schemas/c1.api.app.v2.CreateUserOwnerResponse' description: CreateUserOwnerResponse is the response for creating a user ownership source. summary: Create User Owner tags: - App Owner V2 x-speakeasy-entity-missing-codes: - 404 x-speakeasy-entity-operation: terraform-resource: App_Owner_User#create x-speakeasy-group: AppOwnersV2 x-speakeasy-name-override: CreateUserOwner x-stability-level: draft x-codeSamples: - lang: go label: CreateUserOwner source: |- package main import( "context" "github.com/conductorone/conductorone-sdk-go/pkg/models/shared" conductoronesdkgo "github.com/conductorone/conductorone-sdk-go" "github.com/conductorone/conductorone-sdk-go/pkg/models/operations" "log" ) func main() { ctx := context.Background() s := conductoronesdkgo.New( conductoronesdkgo.WithSecurity(shared.Security{ BearerAuth: "", Oauth: "", }), ) res, err := s.AppOwnersV2.CreateUserOwner(ctx, operations.C1APIAppV2AppOwnersCreateUserOwnerRequest{ AppID: "", RoleSlug: "", UserRefID: "", }) if err != nil { log.Fatal(err) } if res.CreateUserOwnerResponse != nil { // handle response } } - lang: typescript label: Typescript (SDK) source: |- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.appOwnersV2.createUserOwner({ appId: "", roleSlug: "", userRefId: "", }); console.log(result); } run(); security: - bearerAuth: [] oauth: [] servers: - description: The C1 API server for the current tenant. url: https://{tenantDomain}.conductor.one variables: tenantDomain: default: example description: The domain of the tenant to use for this request.