Automated commit by github action: 5018327052

static/api-specs/idn/sailpoint-api.v3.yaml

@@ -854,6 +854,8 @@ paths:
     $ref: './v3/paths/password-dictionary.yaml'
   /password-org-config:
     $ref: './v3/paths/password-org-config.yaml'
+  /sod-config/public-keys/target:
+    $ref: "./v3/paths/sod-public-key-target.yaml"
   /sod-exceptions:
     $ref: "./v3/paths/sod-exceptions.yaml"
   /sod-exceptions/{id}:
@@ -864,6 +866,8 @@ paths:
     $ref: './v3/paths/sod-policies.yaml'
   /sod-policies/{id}:
     $ref: './v3/paths/sod-policy.yaml'
+  /sod-policies/{id}/evaluate:
+    $ref: './v3/paths/sod-policy-evaluate.yaml'
   /sod-policies/{id}/schedule:
     $ref: './v3/paths/sod-schedule.yaml'
   /sod-policies/{id}/violation-report/run:

static/api-specs/idn/v3/paths/sod-policy-evaluate.yaml

@@ -0,0 +1,41 @@
+post:
+  security:
+    - oauth2: [idn:sod-violation:write]
+  operationId: startEvaluateSodPolicy
+  tags:
+    - SOD Policy
+  summary: Evaluate one policy by ID
+  description: >-
+    Runs the scheduled report for the policy retrieved by passed policy ID. 
+    The report schedule is fetched from the policy retrieved by ID.
+  parameters:
+    - in: path
+      name: id
+      schema:
+        type: string
+      required: true
+      description: The SOD policy ID to run.
+      example: ef38f943-47e9-4562-b5bb-8424a56397d8
+  responses:
+    '200':
+      description: Reference to the violation report run task.
+      content:
+        application/json:
+          schema:
+            $ref: '../schemas/ReportResultReference.yaml'
+          example: {
+            "status": "PENDING",
+            "type": "REPORT_RESULT",
+            "id": "37b3b32a-f394-46f8-acad-b5223969fa68",
+            "name": "Multi Query Report"
+          }
+    '400':
+      $ref: '../responses/400.yaml'
+    '401':
+      $ref: '../responses/401.yaml'
+    '403':
+      $ref: '../responses/403.yaml'
+    '429':
+      $ref: '../responses/429.yaml'
+    '500':
+      $ref: '../responses/500.yaml'

static/api-specs/idn/v3/paths/sod-public-key-target.yaml

@@ -0,0 +1,40 @@
+get:
+  security:
+    - oauth2: [idn:sod-public-key:read]
+  operationId: getArmPublicKey
+  tags:
+    - SOD Policy
+  summary: Get ARM public key
+  description: >-
+    This API returns public key to encrypt ARM auth blob.
+  parameters:
+    - in: path
+      name: id
+      schema:
+        type: object
+        "$ref": "../schemas/KeyExchangeServiceTarget.yaml"
+      required: true
+      description: The target for public key
+      example: ARM
+  responses:
+    '200':
+      description: Public key.
+      content:
+        application/json:
+          schema:
+            $ref: '../schemas/PublicKey.yaml'
+          examples:
+            Public key:
+              {"value": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGFkWi2J75TztpbaPKd36bJnIB3J8gZ6UcoS9oSDYsqBzPpTsfZXYaEf4Y4BKGgJIXmE/lwhwuj7mU1itdZ2qTSNFtnXA8Fn75c3UUkk+h+wdZbkuSmqlsJo3R1OnJkwkJggcAy9Jvk9jlcrNLWorpQ1w9raUvxtvfgkSdq153KxotenQ1HciSyZ0nA/Kw0UaucLnho8xdRowZs11afXGXA9IT9H6D8T6zUdtSxm0nAyH+mluma5LdTfaM50W3l/L8q56Vrqmx2pZIiwdx/0+g3Y++jV70zom0ZBkC1MmSoLMrQYG5OICNjr72f78B2PaGXfarQHqARLjKpMVt9YIQIDAQAB"}
+    '400':
+      $ref: '../responses/400.yaml'
+    '401':
+      $ref: '../responses/401.yaml'
+    '403':
+      $ref: '../responses/403.yaml'
+    '404':
+      $ref: '../responses/404.yaml'
+    '429':
+      $ref: '../responses/429.yaml'
+    '500':
+      $ref: '../responses/500.yaml'

static/api-specs/idn/v3/schemas/KeyExchangeServiceTarget.yaml

@@ -0,0 +1,5 @@
+type: string
+description: Type of key exchange.
+enum:
+  - ARM
+example: ARM

static/api-specs/idn/v3/schemas/PublicKey.yaml

@@ -0,0 +1,6 @@
+type: object
+properties:
+  value:
+    type: string
+    description: ARM Public Key used to encrypt username and password credentials sent to ARM
+    example: "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGFkWi2J75TztpbaPKd36bJnIB3J8gZ6UcoS9oSDYsqBzPpTsfZXYaEf4Y4BKGgJIXmE/lwhwuj7mU1itdZ2qTSNFtnXA8Fn75c3UUkk+h+wdZbkuSmqlsJo3R1OnJkwkJggcAy9Jvk9jlcrNLWorpQ1w9raUvxtvfgkSdq153KxotenQ1HciSyZ0nA/Kw0UaucLnho8xdRowZs11afXGXA9IT9H6D8T6zUdtSxm0nAyH+mluma5LdTfaM50W3l/L8q56Vrqmx2pZIiwdx/0+g3Y++jV70zom0ZBkC1MmSoLMrQYG5OICNjr72f78B2PaGXfarQHqARLjKpMVt9YIQIDAQAB"