Apps API

Retrieving permissions on an App

GET /v2/apps/:guid/permissions

A cloud_controller.user scope is required to access this endpoint. The user has access to sensitive data and insensitive data about the app if they are a SpaceDeveloper. Access is denied (Forbidden: 403) for organization BillingManager and Auditor. For all other organization and space roles with cloud_controller.user scope, access to insensitive data about the app is allowed.

Request

Route

GET /v2/apps/6fd65993-fbd8-447c-8c04-6e4fe3ac561c/permissions

Headers

Authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidWFhLWlkLTE0OCIsImVtYWlsIjoiZW1haWwtMTAzQHNvbWVkb21haW4uY29tIiwic2NvcGUiOlsiY2xvdWRfY29udHJvbGxlci5hZG1pbiJdLCJhdWQiOlsiY2xvdWRfY29udHJvbGxlciJdLCJleHAiOjE0NjYwMDg4ODl9.URRvloESF3jwW6xuXi2IQ4dPFpfn8lDUK5mU33a9oBI
Host: example.org
Cookie: 

cURL

curl "https://api.[your-domain.com]/v2/apps/6fd65993-fbd8-447c-8c04-6e4fe3ac561c/permissions" -X GET \
	-H "Authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidWFhLWlkLTE0OCIsImVtYWlsIjoiZW1haWwtMTAzQHNvbWVkb21haW4uY29tIiwic2NvcGUiOlsiY2xvdWRfY29udHJvbGxlci5hZG1pbiJdLCJhdWQiOlsiY2xvdWRfY29udHJvbGxlciJdLCJleHAiOjE0NjYwMDg4ODl9.URRvloESF3jwW6xuXi2IQ4dPFpfn8lDUK5mU33a9oBI" \
	-H "Host: example.org" \
	-H "Cookie: "

Response

Status

200 OK

Body

{
  "read_sensitive_data": true,
  "read_basic_data": true
}

Headers

Content-Type: application/json;charset=utf-8
X-VCAP-Request-ID: c0b3f70f-5f87-4157-98d5-62b6ffcd5c69
Content-Length: 15
X-Content-Type-Options: nosniff