This endpoint is in preview and may be modified or removed at any time.
To use this endpoint, add preview=true to the request query parameters.
Returns disallowed, implied, and required markings for the given set of marking IDs.
Third-party applications using this endpoint via OAuth2 must request the following operation scope: api:admin-read.
list<MarkingId>The marking IDs for which to get restrictions.
booleanEnables the use of preview functionality.
objectlist<MarkingId>Markings that cannot appear in conjunction with the provided markings. This includes all such markings, not just those present in the provided set.
list<MarkingId>Markings that are automatically granted when a user has membership in any of the provided markings.
list<array>Markings that must appear in conjunction with the provided markings. Each list contains the requirements for one of the provided markings, and at least one marking from each must be included in the provided markingIds to constitute a valid classification.
booleanTrue if the current user satisfies the provided markings. The user must be a member of all conjunctive markings. The provided disjunctive markings are grouped by category, and the user must be a member of at least one marking in each group.
booleanTrue if the provided markings constitute a valid classification, containing no disallowed markings and satisfying all required marking constraints.
1
2
3
curl \
\t-H "Authorization: Bearer $TOKEN" \
"https://$HOSTNAME/api/v2/admin/cbacMarkingRestrictions?preview=true"1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
{
"disallowedMarkings": [
"18212f9a-0e63-4b79-96a0-aae04df23336"
],
"requiredMarkings": [
[
"18212f9a-0e63-4b79-96a0-aae04df23336"
]
],
"userSatisfiesMarkings": true,
"isValid": true,
"impliedMarkings": [
"18212f9a-0e63-4b79-96a0-aae04df23336"
]
}| Error Name | ||
|---|---|---|
Get | Error Code | PERMISSION_DENIED |
| Status Code | 403 | |
| Description | The provided token does not have permission to get the CBAC marking restrictions for the markings. | |
| Parameters | markingIds | |
Cbac | Error Code | INVALID_ARGUMENT |
| Status Code | 400 | |
| Description | CBAC is not available. | |
| Parameters | | |
Cbac | Error Code | NOT_FOUND |
| Status Code | 404 | |
| Description | The given CbacMarkingRestrictions could not be found. | |
| Parameters | | |
See Errors for a general overview of errors in the platform.