Unify and manage your data

ROLE_API Access permissions

Learn about ROLE_API role to manage access permissions for tenant operations.

Assign roles to user and group accounts to grant them permissions (access rights and privileges). For more information, see topic System roles.

ROLE_API is a critical high-privilege system role as it grants access permissions for all basic API tenant operations, with admin privileges for configuring the tenant.

This table identifies the Reltio access permissions for Reltio services, resources, and sub resources defined for the ROLE_API system role.

Permissions forAccess rights (service/ resource/ sub resource)Access privileges
Accessing tenant related dataAuth.customer.user.tenants
  • READ
Accessing profile related dataAuth.customer.user.profile
  • READ
Managing commentscollaboration.comments
  • CREATE/READ/UPDATE/DELETE
Monitoring services and managing parameterscollaboration.status
  • READ/UPDATE
Accessing all dvf functionsDVF.functionsManagement
  • READ
Getting the export configurationexport.config
  • READ
Extracting all data from a tenantexport.data
  • EXECUTE
Accessing APIs related to export tasksexport.tasks
  • READ/UPDATE/EXECUTE
Configuring image hosting for the tenantih.config
  • CREATE/READ/UPDATE/DELETE
Uploading images to an external storage and evaluating the preview and thumbnail for itih.image
  • CREATE/READ/DELETE
Managing parameters and monitoring serviceih.version
  • READ/UPDATE
Accessing all tenant level configurationsMDM.config
  • READ
Configuring tenant business modelMDM.config.businessModel
  • READ
Managing activity configurationsMDM.config.businessModel.activity
  • READ/UPDATE
Managing rating configurationsMDM.config.businessModel.rating
  • READ/UPDATE
Managing RuleSet configurationsMDM.config.businessModel.ruleset
  • READ/UPDATE
Managing the source publish dateMDM.config.businessModel.source
  • READ/UPDATE
Managing the survivorship rules of entity and relation typesMDM.config.businessModel.survivorship
  • CREATE/UPDATE
Ignoring warnings for configuration problemsMDM.config.businessModel.warn
  • UPDATE
Accessing APIs that manage tenant lookupMDM.config.lookups
  • CREATE/READ/UPDATE/DELETE
Accessing APIs related to the tenant physical configurationMDM.config.physical
  • READ
Accessing connected RDM tenantsMDM.config.physical.rdmTenants
  • READ
Accessing APIs that manage resource bundleMDM.config.resources
  • CREATE/READ/UPDATE/DELETE
Accessing personal activities in the tenantsMDM.data.activityLog.personal
  • CREATE/READ/UPDATE
Accessing APIs that manage all categoriesMDM.data.categories
  • CREATE/READ/UPDATE/DELETE
Accessing APIs that manage all change requestsMDM.data.changeRequests
  • CREATE/READ/UPDATE/DELETE
Accessing APIs that manage all entitiesMDM.data.entities
  • CREATE/READ/UPDATE/DELETE
Accessing APIs that manage all graphsMDM.data.graph
  • CREATE/READ/UPDATE/DELETE
Accessing APIs that manage all groupsMDM.data.groups
  • CREATE/READ/UPDATE/DELETE
Accessing APIs related to additional helper data managementMDM.data.helper
  • CREATE/READ/UPDATE/DELETE
Accessing APIs that manage all interactionsMDM.data.interactions
  • CREATE/READ/UPDATE/DELETE
Accessing APIs that manage all relationsMDM.data.relations
  • CREATE/READ/UPDATE/DELETE
Searching objects in graphsMDM.graph.search
  • READ
Accessing APIs that monitor the tenantMDM.monitoring
  • READ
Accessing APIs related to user preferencesMDM.preference
  • CREATE/READ/UPDATE/DELETE
Accessing all tenant level APIs MDM.tasks
  • READ/UPDATE/EXECUTE
Accessing APIs related to ML match configurationmlMatch.config
  • READ
Accessing APIs that run system actions and manage usersriq.actions.users
  • CREATE/READ
Running validation on data typevalidate.data
  • EXECUTE