• Access Mode
  • Admin Group
  • Admin Space
  • Admin User
  • Admin Users
  • Attachments
  • Backup and Restore
  • Category
  • Child Content
  • Cluster information
  • Content Blueprint
  • Content Body
  • Content Descendant
  • Content Labels
  • Content Property
  • Content Resource
  • Content Restrictions
  • Content Version
  • Content Watchers
  • Global Permissions
  • GlobalColorScheme
  • Group
  • Instance Metrics
  • Label
  • Long Task
  • Search
  • Server Information
  • Space
  • Space Label
  • Space Permissions
  • Space Property
  • Space Watchers
  • SpaceColorScheme
  • User
  • User Group
  • User Watch
  • Webhooks
  • Other operations
Server
Confluence Data Center / / REST API

Global Permissions

Postman Collection
OpenAPI
Operations
GET/rest/api/permissionsPUT/rest/api/permissionsGET/rest/api/permissions/anonymousGET/rest/api/permissions/group/{groupName}GET/rest/api/permissions/unlicensedGET/rest/api/permissions/user/{user}PUT/rest/api/permissions/anonymous/grantPUT/rest/api/permissions/group/{groupName}/grantPUT/rest/api/permissions/unlicensed/grantPUT/rest/api/permissions/user/{user}/grantPUT/rest/api/permissions/anonymous/revokePUT/rest/api/permissions/group/{groupName}/revokePUT/rest/api/permissions/unlicensed/revokePUT/rest/api/permissions/user/{user}/revoke
GET

Get global permissions

Returns list of permissions granted to users and groups.

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions`

Forge and OAuth2 apps cannot access this REST resource.

Request

This request has no parameters.

Responses

Returns a JSON representation of all global permissions granted to users/groups/anonymous user.

application/json

array<GlobalPermission>

GET/rest/api/permissions
1 2 3 curl --request GET \ --url 'http://{baseurl}/confluence/rest/api/permissions' \ --header 'Accept: application/json'
200Response
1 2 3 4 5 6 7 8 9 10 11 12 [ { "operation": { "targetType": "space", "operationKey": "read" }, "subject": { "displayName": "<string>", "type": "<string>" } } ]
PUT

Set global permissions to multiple users/groups

Sets global permissions to multiple users/groups.

Request should contain all permissions that users/groups will have.

If permission is absent in the request, but was granted before, it will be revoked.

If empty list of permissions passed to users/groups, then all their existing permissions will be revoked.

If users/groups not mentioned in the request, their permissions will not be revoked.

Maximum 40 different users/groups could be passed in the request by default .

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • application administer
  • system administer
  • personal_space create
  • space create

See Global Permissions documentation for additional information about supported permissions.

Example request URI's: https://example.com/confluence/rest/api/permissions

Forge and OAuth2 apps cannot access this REST resource.

Request

Request bodyapplication/json

array<SpacePermissionsForSubject>

userKey

string

groupName

string

operations

array<OperationDescription>

Responses

Global permissions successfully set.

PUT/rest/api/permissions
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions' \ --header 'Content-Type: application/json' \ --data '[ { "userKey": "4028ae289154667d0191546e11a10001", "operations": [ { "operationKey": "create", "targetType": "space" }, { "operationKey": "use", "targetType": "application" } ] }, { "groupName": "group1", "operations": [ { "operationKey": "create", "targetType": "personal_space" }, { "operationKey": "use", "targetType": "application" }, { "operationKey": "administer", "targetType": "application" } ] } ]'
GET

Gets the permissions granted to an anonymous user

Returns list of permissions granted to anonymous user.

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/anonymous`

Forge and OAuth2 apps cannot access this REST resource.

Request

This request has no parameters.

Responses

Returns a JSON representation of the permissions granted to the group.

application/json

array<GlobalPermission>

GET/rest/api/permissions/anonymous
1 2 3 curl --request GET \ --url 'http://{baseurl}/confluence/rest/api/permissions/anonymous' \ --header 'Accept: application/json'
200Response
1 2 3 4 5 6 7 8 9 10 11 12 [ { "operation": { "targetType": "space", "operationKey": "read" }, "subject": { "displayName": "<string>", "type": "<string>" } } ]
GET

Gets global permissions granted to a group

Returns list of permissions granted to group.

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/group/{groupName}}`

Forge and OAuth2 apps cannot access this REST resource.

Request

Path parameters

groupName

string

Required

Responses

Returns a JSON representation of the permissions granted to the group.

application/json

array<GlobalPermission>

GET/rest/api/permissions/group/{groupName}
1 2 3 curl --request GET \ --url 'http://{baseurl}/confluence/rest/api/permissions/group/{groupName}' \ --header 'Accept: application/json'
200Response
1 2 3 4 5 6 7 8 9 10 11 12 [ { "operation": { "targetType": "space", "operationKey": "read" }, "subject": { "displayName": "<string>", "type": "<string>" } } ]
GET

Gets the permissions granted to an unlicensed users

Returns list of permissions granted to unlicensed users.

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/unlicensed`

Forge and OAuth2 apps cannot access this REST resource.

Request

This request has no parameters.

Responses

Returns a JSON representation of the permissions granted to the group.

application/json

array<GlobalPermission>

GET/rest/api/permissions/unlicensed
1 2 3 curl --request GET \ --url 'http://{baseurl}/confluence/rest/api/permissions/unlicensed' \ --header 'Accept: application/json'
200Response
1 2 3 4 5 6 7 8 9 10 11 12 [ { "operation": { "targetType": "space", "operationKey": "read" }, "subject": { "displayName": "<string>", "type": "<string>" } } ]
GET

Gets global permissions granted to a user

Returns list of permissions granted to user.

Example request URI's:

1
2
3
   with userKey: `https://example.com/confluence/rest/api/permissions/user/{userKey}`

   with username: `https://example.com/confluence/rest/api/permissions/user/{username}`

Forge and OAuth2 apps cannot access this REST resource.

Request

Path parameters

user

string

Required

Responses

Returns a JSON representation of the permissions granted to the user.

application/json

array<GlobalPermission>

GET/rest/api/permissions/user/{user}
1 2 3 curl --request GET \ --url 'http://{baseurl}/confluence/rest/api/permissions/user/{user}' \ --header 'Accept: application/json'
200Response
1 2 3 4 5 6 7 8 9 10 11 12 [ { "operation": { "targetType": "space", "operationKey": "read" }, "subject": { "displayName": "<string>", "type": "<string>" } } ]
PUT

Grants global permissions to anonymous users

Grant global permissions to anonymous users.

Operation doesn't override existing permissions, will only add those one that weren't granted before.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • read user

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/anonymous/grant`

Forge and OAuth2 apps cannot access this REST resource.

Request

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully granted to anonymous users.

PUT/rest/api/permissions/anonymous/grant
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/anonymous/grant' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Grants global permissions to a group

Grant global permissions to a group.

Operation doesn't override existing permissions, will only add those one that weren't granted before.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • application administer
  • system administer
  • personal_space create
  • space create

See Global Permissions documentation for additional information about supported permissions.

Example request URI's:

https://example.com/confluence/rest/api/permissions/group/test-group-name/grant

Forge and OAuth2 apps cannot access this REST resource.

Request

Path parameters

groupName

string

Required

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully granted to a group.

PUT/rest/api/permissions/group/{groupName}/grant
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/group/{groupName}/grant' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Grants global permissions to unlicensed users

Grant global permissions to unlicensed users.

Operation doesn't override existing permissions, will only add those one that weren't granted before.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use_unlicensed
  • read user

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/unlicensed/grant`

Forge and OAuth2 apps cannot access this REST resource.

Request

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully granted to unlicensed users.

PUT/rest/api/permissions/unlicensed/grant
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/unlicensed/grant' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Grants global permissions to a user

Grant global permissions to a user.

Operation doesn't override existing permissions, will only add those one that weren't granted before.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • application administer
  • system administer
  • personal_space create
  • space create

Example request URI's:

with userKey: https://example.com/confluence/rest/api/permissions/user/{userKey}/grant

with username: https://example.com/confluence/rest/api/permissions/user/{username}/grant

Forge and OAuth2 apps cannot access this REST resource.

Request

Path parameters

user

string

Required

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully granted to a user.

PUT/rest/api/permissions/user/{user}/grant
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/user/{user}/grant' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Revoke global permissions from anonymous users

Revoke global permissions from anonymous users.

When 'application use' is revoked, all granted permissions will be removed from anonymous users.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • read user

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/anonymous/revoke`

Forge and OAuth2 apps cannot access this REST resource.

Request

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully revoked from anonymous users.

PUT/rest/api/permissions/anonymous/revoke
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/anonymous/revoke' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Revoke global permissions from a group

Revoke global permissions from a group.

When 'application use' is revoked, all granted permissions will be removed from target group.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • application administer
  • system administer
  • personal_space create
  • space create

See Global Permissions documentation for additional information about supported permissions.

Example request URI's:

https://example.com/confluence/rest/api/permissions/group/test-group-name/revoke

Forge and OAuth2 apps cannot access this REST resource.

Request

Path parameters

groupName

string

Required

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully revoked from a group.

PUT/rest/api/permissions/group/{groupName}/revoke
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/group/{groupName}/revoke' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Revoke global permissions from unlicensed users

Revoke global permissions from unlicensed users.

When 'application use_unlicensed' is revoked, all granted permissions will be removed from unlicensed users.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use_unlicensed
  • read user

Example request URI's:

1
   `https://example.com/confluence/rest/api/permissions/unlicensed/revoke`

Forge and OAuth2 apps cannot access this REST resource.

Request

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully revoked from unlicensed users.

PUT/rest/api/permissions/unlicensed/revoke
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/unlicensed/revoke' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'
PUT

Revoke global permissions from a user

Revoke global permissions from a user.

When 'application use' is revoked, all granted permissions will be removed from target user.

Multiple permissions could be passed in one request. Supported targetType and operationKey pairs:

  • application use
  • application administer
  • system administer
  • personal_space create
  • space create

See Global Permissions documentation for additional information about supported permissions.

Example request URI's:

with userKey: https://example.com/confluence/rest/api/permissions/user/{userKey}/revoke

with username: https://example.com/confluence/rest/api/permissions/user/{username}/revoke

Forge and OAuth2 apps cannot access this REST resource.

Request

Path parameters

user

string

Required

Request bodyapplication/json

array<OperationDescription>

targetType

string

operationKey

string

Responses

Global permissions successfully revoked from a user.

PUT/rest/api/permissions/user/{user}/revoke
1 2 3 4 5 6 7 8 9 curl --request PUT \ --url 'http://{baseurl}/confluence/rest/api/permissions/user/{user}/revoke' \ --header 'Content-Type: application/json' \ --data '[ { "targetType": "space", "operationKey": "read" } ]'

Rate this page: