Create

cURL

curl --request POST \
  --url https://us.infisical.com/api/v1/projects/{projectId}/roles \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "slug": "<string>",
  "name": "<string>",
  "permissions": [
    {
      "subject": "secrets",
      "action": "read",
      "inverted": true,
      "conditions": {
        "environment": "<string>",
        "secretPath": "<string>",
        "secretName": "<string>",
        "secretTags": {
          "$in": [
            "<string>"
          ]
        },
        "eventType": "<string>"
      }
    }
  ],
  "description": "<string>"
}
'

{
  "role": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "name": "<string>",
    "slug": "<string>",
    "permissions": [
      {
        "action": "<string>",
        "subject": "<string>",
        "conditions": "<unknown>",
        "inverted": true
      }
    ],
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z",
    "projectId": "<string>",
    "description": "<string>"
  }
}

POST

api

projects

{projectId}

roles

cURL

curl --request POST \
  --url https://us.infisical.com/api/v1/projects/{projectId}/roles \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "slug": "<string>",
  "name": "<string>",
  "permissions": [
    {
      "subject": "secrets",
      "action": "read",
      "inverted": true,
      "conditions": {
        "environment": "<string>",
        "secretPath": "<string>",
        "secretName": "<string>",
        "secretTags": {
          "$in": [
            "<string>"
          ]
        },
        "eventType": "<string>"
      }
    }
  ],
  "description": "<string>"
}
'

{
  "role": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "name": "<string>",
    "slug": "<string>",
    "permissions": [
      {
        "action": "<string>",
        "subject": "<string>",
        "conditions": "<unknown>",
        "inverted": true
      }
    ],
    "createdAt": "2023-11-07T05:31:56Z",
    "updatedAt": "2023-11-07T05:31:56Z",
    "projectId": "<string>",
    "description": "<string>"
  }
}

You can read more about the permissions field in the permissions documentation.

Authorizations

Authorization

string

header

required

An access token in Infisical

Path Parameters

projectId

string

required

Id of the project to create the role for.

Body

application/json

slug

string

required

The slug of the role.

Required string length: 1 - 64

name

string

required

The name of the role.

Minimum string length: 1

permissions

object[]

required

The permissions assigned to the role.

Show child attributes

description

string | null

The description for the role.

Response

Default Response

role

object

required

Show child attributes

List Update

Overview

Organization

Project

Shared

Identity Auth

Secrets Management

Certificate Management

Secret Scanning

Infisical SSH

Infisical KMS

Other

Authorizations

Path Parameters

Body

Response