See https://docs.google.com/document/d/1hzho44sCs1Y-m4UTy2kDuZg_0jm8LNJXruJDusAQ4aI/edit

Chapter 4: Managing authorization using the REST API

• AI [Docs] New: intro rather than a concept module

You want to automate the maintenance of RHDH permission policies and roles.

RHDH provides an RBAC REST API that you can use to manage the permissions and roles programmatically. This API can be used to automate the maintenance of RHDH permission policies and roles.

You can perform the following actions with the REST API:

• Retrieve information about all permission policies or specific permission policies, or roles
• Create, update, or delete a permission policy or a role
• Retrieve permission policy information about static plugins

If RBAC is enabled, you may need to permit actions on the policy.entity resource for read, create and update to view and change policies using the REST API. Recall that the default policy is to deny, so you will see HTTP 401 or 403 errors if you make REST calls without policy changes.

S4.1 Sending requests with the RBAC REST API using a REST client

• AI [Docs] Split https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.2/html/authorization/con-rbac-rest-api_title-authorization#proc-rbac-send-request-rbac-rest-api_title-authorization 

S4.2 Sending requests with the RBAC REST API using curl

• AI [Docs] Split https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.2/html/authorization/con-rbac-rest-api_title-authorization#proc-rbac-send-request-rbac-rest-api_title-authorization 

S4.3 Supported RBAC REST API endpoints

4.3.1 Roles

4.3.2 Permission policies

4.3.3 Conditional policies