Workspace Permissions

Control and manage your users detailed permissions upon Workspaces and Engines.

Endpoints

https://api.eu.cloud.talend.com
URL for the AWS Europe region
https://api.ap.cloud.talend.com
URL for the AWS Asia Pacific region
https://api.us.cloud.talend.com
URL for the AWS United States East region
https://api.au.cloud.talend.com
URL for the AWS Australia region
https://api.us-west.cloud.talend.com
URL for the Azure United States West region

Global security

These security schemes apply to the entire API

Public

Security scheme

This scheme can be referenced across the API

Public

This Bearer authentication can be set in the Authorization header of your requests. Authentication tokens and Personal Access Tokens are supported. Personal Access Tokens can be generated in the Profile Preferences page of the Talend Cloud Portal.

Custom / API key
Name	Description

Headers
Name	Description	Type	Attributes and examples
Authorization		string Optional

Unitary management

Read a service account workspace permission

GET /security/workspaces/{workspaceId}/service-accounts/{serviceAccountId}/permissions

Read a permission of a service account on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
serviceAccountId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Response

200Status 200

Body

Permission

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permission

Body

ErrorResponse

404Status 404

Permission not found

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Create a service account workspace permission

POST /security/workspaces/{workspaceId}/service-accounts/{serviceAccountId}/permissions

Create a permission of a service account on a workspace.

Use cases

Assigning workspace permissions to a service account

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
serviceAccountId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Body

Rights to add on the permission. Example: [“AUTHOR”,“EXECUTE”]

array of string

Datatype details
Type	Description	Attributes and examples
array	Rights to add on the permission. Example: [“AUTHOR”,“EXECUTE”]
string		Enum AUTHOR EXECUTE VIEW MANAGE PUBLISH

Response

201Status 201

Permission successfully created

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to update the permission

Body

ErrorResponse

404Status 404

The workspace or the user does not exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Update a service account workspace permission

PUT /security/workspaces/{workspaceId}/service-accounts/{serviceAccountId}/permissions

Update a permission of a service account on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
serviceAccountId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Body

Rights to update on the permission. Example: [“AUTHOR”,“EXECUTE”]

array of string

Datatype details
Type	Description	Attributes and examples
array	Rights to update on the permission. Example: [“AUTHOR”,“EXECUTE”]
string		Enum AUTHOR EXECUTE VIEW MANAGE PUBLISH

Response

204Status 204

No Content

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to update the permission

Body

ErrorResponse

404Status 404

The permission to update doesn’t exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Delete a service account workspace permission

DELETE /security/workspaces/{workspaceId}/service-accounts/{serviceAccountId}/permissions

Delete a permission of a service account on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
serviceAccountId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Response

204Status 204

No Content

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to delete permission

Body

ErrorResponse

404Status 404

The permission to delete doesn’t exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Read a workspace permission

GET /security/workspaces/{workspaceId}/users/{userId}/permissions

Read a permission of a user on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
userId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Response

200Status 200

Body

Permission

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permission

Body

ErrorResponse

404Status 404

Permission not found

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Update a workspace permission

PUT /security/workspaces/{workspaceId}/users/{userId}/permissions

Update a permission of a user on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
userId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Body

Rights to update on the permission. Example: [“AUTHOR”,“EXECUTE”]

array of string

Datatype details
Type	Description	Attributes and examples
array	Rights to update on the permission. Example: [“AUTHOR”,“EXECUTE”]
string		Enum AUTHOR EXECUTE VIEW MANAGE PUBLISH

Response

204Status 204

No Content

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to update the permission

Body

ErrorResponse

404Status 404

The permission to update doesn’t exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Create a workspace permission

POST /security/workspaces/{workspaceId}/users/{userId}/permissions

Create a permission of a user on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
userId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Body

Rights to add on the permission. Example: [“AUTHOR”,“EXECUTE”]

array of string

Datatype details
Type	Description	Attributes and examples
array	Rights to add on the permission. Example: [“AUTHOR”,“EXECUTE”]
string		Enum AUTHOR EXECUTE VIEW MANAGE PUBLISH

Response

201Status 201

Permission successfully created

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to update the permission

Body

ErrorResponse

404Status 404

The workspace or the user does not exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Delete a workspace permission

DELETE /security/workspaces/{workspaceId}/users/{userId}/permissions

Delete a permission of a user on a workspace.

Security

Public

Request

Path variables
Name	Description	Type	Attributes and examples
workspaceId	The workspace where rights will be applied. Example Value: 6089228181ef4423736e47a9	string Required
userId	The user for which rights will be applied. Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Required

Response

204Status 204

No Content

400Status 400

Parameters not valid

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to delete permission

Body

ErrorResponse

404Status 404

The permission to delete doesn’t exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Provisioning and Mass management

Create sets of workspace permissions for a service account

POST /security/service-accounts/permissions/batch

Create sets of workspace permissions on the current system. Allows to upload list of workspace permissions to be created.Creation actions will be applied in the same order as defined in the list

Security

Public

Request

Body

The collection of permissions to create.

array of Permission

Datatype details
Type	Description	Attributes and examples
array	The collection of permissions to create.
Permission

Response

204Status 204

All changes on Permissions were successful

207Status 207

Execution result detailed status on elementary changes rejected.

Body

array of PermissionResult

Datatype details
Type	Description	Attributes and examples
array
PermissionResult

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permissions

Body

ErrorResponse

404Status 404

The workspace id or the user does not exist

Body

ErrorResponse

Update sets of workspace permissions for a service account

PUT /security/service-accounts/permissions/batch

Update sets of workspace permissions on the current system. Allows to upload list of workspace permissions to be updated.Update actions will be applied in the same order as defined in the list

Security

Public

Request

Body

The collection of permissions to update.

array of Permission

Datatype details
Type	Description	Attributes and examples
array	The collection of permissions to update.
Permission

Response

204Status 204

All changes on Permissions were successful

207Status 207

Execution result detailed status on elementary changes rejected.

Body

array of PermissionResult

Datatype details
Type	Description	Attributes and examples
array
PermissionResult

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permissions

Body

ErrorResponse

404Status 404

The workspace id or the user does not exist

Body

ErrorResponse

Delete workspace permissions for a service account

DELETE /security/service-accounts/permissions/batch

Remove all permissions where service account id is one from specified ones with request AND workspace is one from specified ones with request. Special case: empty collection for users means that permissions for all service accounts and specified workspaces will be deleted (and vise versa).

Security

Public

Request

Query parameters

serviceAccountIds

array of string Optional

Datatype details
Type	Description	Attributes and examples
array	Service account ids list used to compute permission intersections with specified workspaces.
string

workspaceIds

array of string Optional

Datatype details
Type	Description	Attributes and examples
array	Workspace ids list used to compute permission intersections with specified users.
string

Response

204Status 204

All changes on Permissions were successful

207Status 207

Execution result detailed status on elementary changes rejected.

Body

array of PermissionDeleteResult

Datatype details
Type	Description	Attributes and examples
array
PermissionDeleteResult

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permissions

Body

ErrorResponse

404Status 404

The workspace id or the user does not exist

Body

ErrorResponse

Retrieve all workspace permissions for a service account according to search criteria

GET /security/service-accounts/permissions

It retrieves all workspace permissions according to several criteria:

environment : One environment of the account workspace : One workspace of one environment of the account serviceAccount : One service account of the account

Security

Public

Request

Query parameters
Name	Description	Type
serviceAccountId	The service account id (Optional) Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Optional
workspaceId	The workspace id (Optional) Example Value: 6089228181ef4423736e47a9	string Optional
environmentId	The environment id (Optional) Example Value: 6089228181ef4423736e47a8	string Optional

Response

200Status 200

Body

array of Permission

Datatype details
Type	Description	Attributes and examples
array
Permission

400Status 400

Invalid parameters

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Forbidden

Body

ErrorResponse

404Status 404

The environment id or the workspace id or the user id does not exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Update sets of workspace permissions

PUT /security/permissions/batch

Update sets of workspace permissions on the current system. Allows to upload list of workspace permissions to be updated.Update actions will be applied in the same order as defined in the list

Security

Public

Request

Body

The collection of permissions to update.

array of Permission

Datatype details
Type	Description	Attributes and examples
array	The collection of permissions to update.
Permission

Response

204Status 204

All changes on Permissions were successful

207Status 207

Execution result detailed status on elementary changes rejected.

Body

array of PermissionResult

Datatype details
Type	Description	Attributes and examples
array
PermissionResult

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permissions

Body

ErrorResponse

404Status 404

The workspace id or the user does not exist

Body

ErrorResponse

Create sets of workspace permissions

POST /security/permissions/batch

Create sets of workspace permissions on the current system. Allows to upload list of workspace permissions to be created.Creation actions will be applied in the same order as defined in the list

Use cases

Updating a user's email

Security

Public

Request

Body

The collection of permissions to create.

array of Permission

Datatype details
Type	Description	Attributes and examples
array	The collection of permissions to create.
Permission

Response

204Status 204

All changes on Permissions were successful

207Status 207

Execution result detailed status on elementary changes rejected.

Body

array of PermissionResult

Datatype details
Type	Description	Attributes and examples
array
PermissionResult

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permissions

Body

ErrorResponse

404Status 404

The workspace id or the user does not exist

Body

ErrorResponse

Delete workspace permissions

DELETE /security/permissions/batch

Remove all permissions where user id is one from specified ones with request AND workspace is one from specified ones with request. Special case: empty collection for users means that permissions for all users and specified workspaces will be deleted (and vise versa).

Security

Public

Request

Query parameters

userIds

array of string Optional

Datatype details
Type	Description	Attributes and examples
array	User ids list used to compute permission intersections with specified workspaces.
string

workspaceIds

array of string Optional

Datatype details
Type	Description	Attributes and examples
array	Workspace ids list used to compute permission intersections with specified users.
string

Response

204Status 204

All changes on Permissions were successful

207Status 207

Execution result detailed status on elementary changes rejected.

Body

array of PermissionDeleteResult

Datatype details
Type	Description	Attributes and examples
array
PermissionDeleteResult

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Not authorized to change permissions

Body

ErrorResponse

404Status 404

The workspace id or the user does not exist

Body

ErrorResponse

Retrieve all workspace permissions according to search criteria

GET /security/permissions

It retrieves all workspace permissions according to several criteria:

environment : One environment of the account workspace : One workspace of one environment of the account user : One user of the account

Use cases

Updating a user's email

Security

Public

Request

Query parameters
Name	Description	Type
workspaceId	The workspace id (Optional) Example Value: 6089228181ef4423736e47a9	string Optional
userId	The user id (Optional) Example Value: b9e10a3f-9d68-44bb-862f-b2aa56dc7191	string Optional
environmentId	The environment id (Optional) Example Value: 6089228181ef4423736e47a8	string Optional

Response

200Status 200

Body

array of Permission

Datatype details
Type	Description	Attributes and examples
array
Permission

400Status 400

Invalid parameters

Body

ErrorResponse

401Status 401

Unauthorized

Body

ErrorResponse

403Status 403

Forbidden

Body

ErrorResponse

404Status 404

The environment id or the workspace id or the user id does not exist

Body

ErrorResponse

500Status 500

Internal server error

Body

ErrorResponse

Commons

Object

Name	Description	Type	Attributes and examples
id	Environment identifier	string Required	Example 57f64991e4b0b689a64feed3
name	Environment name	string Required	Example Development
description	Environment description (not returned when querying a list of objects)	string Optional	Example environment detail description
default	Default environment flag	boolean Optional

Error response object

Object

Name	Description	Type	Attributes and examples
status	Status code	integer Required	FormatINT32
message	Error message (multilanguage). Info about error for user.	string Required	Example something went wrong
details	Developer message (not translated). Info about error for developer.	string Optional	Example more descriptive info about something went wrong
code	Internal error code	string Optional	Example TIPASS-SCHED-123
url	URL provided detailed info about error	string Optional	Example https://error.talend.com/details/tic?code=SCHED-123
requestId	The unique identification of the request involved with this error	string Optional	Example 16fefb53-035a-4249-af9d-f80a3b47b132

Object

workspaceId

The workspace id

string Required

Example

57f64991e4b0b689a64feed2

userId

The user id

string Required

Example

b9e10a3f-9d68-44bb-862f-b2aa56dc7191

permissions

array of string Required

Datatype details
Type	Description	Attributes and examples
array	The list of permission types
string		Enum AUTHOR EXECUTE VIEW MANAGE PUBLISH

Object

Name	Type	Attributes and examples
status	integer Optional	FormatINT32
message	string Optional
permissionId	PermissionId Optional

Object

Name	Description	Type	Attributes and examples
workspaceId	The workspace id	string Required	Example 57f64991e4b0b689a64feed2
userId	The user id	string Required	Example 9f1634e7-d791-4be4-9aed-2970f8d804dd

Object

Name	Type	Attributes and examples
status	integer Optional	FormatINT32
message	string Optional
permission	Permission Optional

Object

Name	Description	Type	Attributes and examples
id	Workspace identifier	string Required	Example 57f64991e4b0b689a64feed2
name	Workspace name	string Required	Example Personal
description	Workspace description	string Optional	Example workspace detail description
owner	Workspace owner	string Optional	Example admin
type	Workspace type	string Required	Enum shared personal custom Example custom
environment		Environmentinfo Optional

↑