Vcenter Authorization PrivilegeChecks FilterSpec

The Vcenter Authorization PrivilegeChecks FilterSpec schema contains properties based on which privilege checks can be filtered. Any privilege check matching at least one of the conditions is returned.

This schema was added in vSphere API 8.0.0.0.

JSON Example

{
    "objects": [
        {
            "type": "string",
            "id": "string"
        }
    ],
    "sessions": [
        "string"
    ],
    "principals": [
        {
            "name": "string",
            "domain": "string"
        }
    ],
    "privileges": [
        "string"
    ],
    "op_ids": [
        "string"
    ]
}

array of Vapi Std DynamicID

objects

Optional

IDs of the objects on which the privilege check was performed.

This property was added in vSphere API 8.0.0.0.

If missing or null all objects match.

array of string

sessions

Optional

Sessions for which the check was performed.

This property was added in vSphere API 8.0.0.0.

If missing or null all sessions match.

array of Vcenter Authorization PrivilegeChecks Principal

principals

Optional

Principles for which the privilege check was performed. The missing or null Vcenter Authorization PrivilegeChecks Principal value matches privilege checks for anonymous sessions.

This property was added in vSphere API 8.0.0.0.

If missing or null all principles match.

array of string

privileges

Optional

Privileges that were checked.

This property was added in vSphere API 8.0.0.0.

If missing or null all privileges match.

When clients pass a value of this schema as a parameter, the property must contain identifiers for the resource type: com.vmware.cis.authz.Privilege. When operations return a value of this schema as a response, the property will contain identifiers for the resource type: com.vmware.cis.authz.Privilege.

array of string

op_ids

Optional

OpIDs of the requests for which the check was performed.

This property was added in vSphere API 8.0.0.0.

If missing or null all opIDs match.