Create Permanent - Infisical

Overview

Endpoints

Identities
Token Auth
Universal Auth
GCP Auth
AWS Auth
Azure Auth
Kubernetes Auth
OIDC Auth
JWT Auth
Groups
Organizations
Projects
Project Users
Project Groups
Project Identities
Project Roles
Project Templates
Environments
Folders
Secret Tags
Secrets
Dynamic Secrets
Secret Imports
Identity Specific Privilege
- POST
  Create Permanent
- POST
  Create Temporary
- PATCH
  Update
- DEL
  Delete
- GET
  Find By Privilege Slug
- GET
  List
App Connections
Secret Syncs
Integrations
Service Tokens
Audit Logs

Infisical PKI

Certificate Authorities
Certificates
Certificate Templates
Certificate Collections
PKI Alerting

Infisical SSH

Certificates
Certificate Authorities
Certificate Templates

Infisical KMS

Keys

POST

api

additional-privilege

identity

permanent

curl --request POST \
  --url https://us.infisical.com/api/v1/additional-privilege/identity/permanent \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "identityId": "<string>",
  "projectSlug": "<string>",
  "slug": "<string>",
  "permissions": [
    {
      "action": "read",
      "subject": "role",
      "conditions": {
        "environment": "<string>",
        "secretPath": {
          "$glob": "<string>"
        }
      }
    }
  ],
  "privilegePermission": {
    "actions": [
      "read"
    ],
    "subject": "secrets",
    "conditions": {
      "environment": "<string>",
      "secretPath": {
        "$glob": "<string>"
      }
    }
  }
}'

{
  "privilege": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "slug": "<string>",
    "projectMembershipId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "isTemporary": false,
    "temporaryMode": "<string>",
    "temporaryRange": "<string>",
    "temporaryAccessStartTime": "2023-11-07T05:31:56Z",
    "temporaryAccessEndTime": "2023-11-07T05:31:56Z",
    "permissions": [
      {
        "subject": "<string>",
        "action": "<string>",
        "conditions": "<any>",
        "inverted": true
      }
    ],
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z"
  }
}

Authorizations

Authorization

string

header

required

An access token in Infisical

Body

application/json

identityId

string

required

The ID of the identity to create.

Minimum length: 1

projectSlug

string

required

The slug of the project of the identity in.

Minimum length: 1

slug

string

The slug of the privilege to create.

Required string length: 1 - 60

permissions

object[]

@deprecated - use privilegePermission The permission object for the privilege.

Read secrets

{ "permissions": [{"action": "read", "subject": "secrets"]}

Read and Write secrets

{ "permissions": [{"action": "read", "subject": "secrets"], {"action": "write", "subject": "secrets"]}

Read secrets scoped to an environment and secret path

- { "permissions": [{"action": "read", "subject": "secrets", "conditions": { "environment": "dev", "secretPath": { "$glob": "/" } }}] }

privilegePermission

object

The permission object for the privilege.

Response

200

application/json

Default Response

privilege

object

required

Was this page helpful?

Suggest edits Raise issue

Delete Create Temporary

curl --request POST \
  --url https://us.infisical.com/api/v1/additional-privilege/identity/permanent \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "identityId": "<string>",
  "projectSlug": "<string>",
  "slug": "<string>",
  "permissions": [
    {
      "action": "read",
      "subject": "role",
      "conditions": {
        "environment": "<string>",
        "secretPath": {
          "$glob": "<string>"
        }
      }
    }
  ],
  "privilegePermission": {
    "actions": [
      "read"
    ],
    "subject": "secrets",
    "conditions": {
      "environment": "<string>",
      "secretPath": {
        "$glob": "<string>"
      }
    }
  }
}'

{
  "privilege": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "slug": "<string>",
    "projectMembershipId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "isTemporary": false,
    "temporaryMode": "<string>",
    "temporaryRange": "<string>",
    "temporaryAccessStartTime": "2023-11-07T05:31:56Z",
    "temporaryAccessEndTime": "2023-11-07T05:31:56Z",
    "permissions": [
      {
        "subject": "<string>",
        "action": "<string>",
        "conditions": "<any>",
        "inverted": true
      }
    ],
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z"
  }
}