When enabled, Org Managers or Space Managers can remove access roles by username. In order for this feature to be enabled the CF operator must: 1) Enable the `/ids/users/` endpoint for UAA 2) Create a UAA `cloud_controller_username_lookup` client with the `scim.userids` authority
GET /v2/config/feature_flags/unset_roles_by_username
Authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidWFhLWlkLTM0MSIsImVtYWlsIjoiZW1haWwtMjM2QHNvbWVkb21haW4uY29tIiwic2NvcGUiOlsiY2xvdWRfY29udHJvbGxlci5hZG1pbiJdLCJhdWQiOlsiY2xvdWRfY29udHJvbGxlciJdLCJleHAiOjE0NjYwMDg5MDB9.ny2xHizgDFwqQGr3-RIaCCgDd3TaEfu4MY0V7AiZOms Host: example.org Cookie:
curl "https://api.[your-domain.com]/v2/config/feature_flags/unset_roles_by_username" -X GET \ -H "Authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidWFhLWlkLTM0MSIsImVtYWlsIjoiZW1haWwtMjM2QHNvbWVkb21haW4uY29tIiwic2NvcGUiOlsiY2xvdWRfY29udHJvbGxlci5hZG1pbiJdLCJhdWQiOlsiY2xvdWRfY29udHJvbGxlciJdLCJleHAiOjE0NjYwMDg5MDB9.ny2xHizgDFwqQGr3-RIaCCgDd3TaEfu4MY0V7AiZOms" \ -H "Host: example.org" \ -H "Cookie: "
200 OK
{ "name": "unset_roles_by_username", "enabled": true, "error_message": null, "url": "/v2/config/feature_flags/unset_roles_by_username" }
Content-Type: application/json;charset=utf-8 X-VCAP-Request-ID: 4d0b1012-2f30-41eb-8c26-39923a40e19b Content-Length: 144 X-Content-Type-Options: nosniff