Skip to main content

Update Review Items

Update the state of review items in an active review.

POST https://instance.securid.com/aveksa/command.submit?cmd=updateReviewItems

note

Only user reviews in Active state are supported. Account and role reviews return 412 This webservice can only be used to update items in user reviews. Only items assigned to the authenticated user can be updated. Sending via GET returns 405.

caution

When the request body contains zero matching ReviewItemChange elements, the server returns 412 even though the response body reports Status=Success. Updated all 0 review components. Check the HTTP status code, not the body, to detect errors.

Request

Parameters

updateReviewItems
formatproperties - (Default) Returns the response as key=value pairs. When multiple objects are returned, values are comma-delimited: key=value1,value2,value3.

json - Returns the response as JSON.

Headers

Bearer token
application/xml

Body

<Review>
<ReviewResultName>value</ReviewResultName>
<SignOff>false</SignOff>
<UpdateCommentsOnly>false</UpdateCommentsOnly>
<ReviewItemChange state="revoke" comments="value">
<RevieweeUserId>value</RevieweeUserId>
<Entitlement resource="value" action="value" business-source="value"/>
</ReviewItemChange>
<ReviewItemChange state="maintain" comments="value" expires-on="DD-MMM-YYYY">
<RevieweeUserId>value</RevieweeUserId>
<ApplicationRole name="value" business-source="value"/>
</ReviewItemChange>
<ReviewItemChange state="none" comments="value">
<RevieweeUserId>value</RevieweeUserId>
<RevieweeAccount name="value" business-source="value"/>
<Group name="value" business-source="value"/>
</ReviewItemChange>
<ReviewItemChange state="custom" comments="value">
<RevieweeUserId>value</RevieweeUserId>
<GlobalRole name="value" role-set="value"/>
</ReviewItemChange>
</Review>
The name of the review instance (for example, UAR-6).
SignOffSign off the review after updating. (Default) false
UpdateCommentsOnlyWhen true, update only the comment on each item and ignore the state attribute. (Default) false
ReviewItemChangeOne element per review item to update. Attributes:

state (required): maintain revoke none custom (custom only if the review supports custom states)
comments: comment text to attach to the item
expires-on: expiration date in DD-MMM-YYYY format, valid when state=maintain and the review allows expiry
RevieweeUserIdThe user ID of the user being reviewed. Must be a child of each ReviewItemChange.
EntitlementIdentifies an entitlement review item. Attributes:

resource: resource name of the entitlement
action: action name of the entitlement
business-source: raw application name the entitlement belongs to
ApplicationRoleIdentifies an application role review item. Attributes:

name: raw name of the application role
business-source: raw application name the role belongs to
RevieweeAccountIdentifies a reviewee account. Attributes:

name: account name being reviewed
business-source: raw application name the account belongs to
GroupIdentifies a group review item. Attributes:

name: group name
business-source: raw application name the group belongs to
GlobalRoleIdentifies a global role review item. Attributes:

name: raw name of the global role
role-set: raw name of the role set the global role belongs to

Response

200 responses respect the format parameter. Error responses (4xx) are always returned as HTML regardless of the format parameter.

The response body reports an overall status and, for multi-item requests, a per-item status line for each ReviewItemChange element.

Parameters

typeExecuted command name
StatusOverall result. Single item: Success. Updated the review component with specified state. Multiple items: Success. Updated all N review components with specified states.

Examples

Request

curl -K -X POST \
"https://instance.securid.com/aveksa/command.submit?cmd=updateReviewItems&format=json" \
-H "Authorization: Bearer <token>" \
-H "Content-Type: application/xml" \
-d "<Review>
<ReviewResultName>UAR-6</ReviewResultName>
<SignOff>false</SignOff>
<ReviewItemChange state=\"maintain\" comments=\"Access confirmed\">
<RevieweeUserId>AveksaAdmin</RevieweeUserId>
<Entitlement resource=\"Report Definition\" action=\"Run Reports\" business-source=\"Aveksa\"/>
</ReviewItemChange>
<ReviewItemChange state=\"maintain\" comments=\"Access confirmed\">
<RevieweeUserId>AveksaAdmin</RevieweeUserId>
<Entitlement resource=\"Report Result\" action=\"Run Reports\" business-source=\"Aveksa\"/>
</ReviewItemChange>
<ReviewItemChange state=\"maintain\" comments=\"Access confirmed\">
<RevieweeUserId>AveksaAdmin</RevieweeUserId>
<Entitlement resource=\"Report Result\" action=\"View Report Results\" business-source=\"Aveksa\"/>
</ReviewItemChange>
</Review>"

Response

{
"data": {
"type": "updateReviewItems",
"Status": "Success. Updated all 3 review components with specified states."
}
}

Verified with RSA Governance & Lifecycle version 8.0.0.188886 P10_HF01.

See Also