Back to Collection Items
var
http: HCkHttp;
success: Boolean;
json: HCkJsonObject;
resp: HCkHttpResponse;
sbResponseBody: HCkStringBuilder;
jResp: HCkJsonObject;
respStatusCode: Integer;
translation: PWideChar;
j: Integer;
count_j: Integer;
hasPermission: Boolean;
i: Integer;
count_i: Integer;
begin
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
http := CkHttp_Create();
// Use this online tool to generate code from sample JSON: Generate Code to Create JSON
// The following JSON is sent in the request body.
// {
// "subject": {
// "type": "<string>",
// "identifier": "<string>"
// },
// "operation": "<string>"
// }
json := CkJsonObject_Create();
CkJsonObject_UpdateString(json,'subject.type','<string>');
CkJsonObject_UpdateString(json,'subject.identifier','<string>');
CkJsonObject_UpdateString(json,'operation','<string>');
CkHttp_SetRequestHeader(http,'Content-Type','application/json');
resp := CkHttp_PostJson3(http,'https://your-domain.atlassian.net/wiki/rest/api/content/:id/permission/check','application/json',json);
if (CkHttp_getLastMethodSuccess(http) = False) then
begin
Memo1.Lines.Add(CkHttp__lastErrorText(http));
Exit;
end;
sbResponseBody := CkStringBuilder_Create();
CkHttpResponse_GetBodySb(resp,sbResponseBody);
jResp := CkJsonObject_Create();
CkJsonObject_LoadSb(jResp,sbResponseBody);
CkJsonObject_putEmitCompact(jResp,False);
Memo1.Lines.Add('Response Body:');
Memo1.Lines.Add(CkJsonObject__emit(jResp));
respStatusCode := CkHttpResponse_getStatusCode(resp);
Memo1.Lines.Add('Response Status Code = ' + IntToStr(respStatusCode));
if (respStatusCode >= 400) then
begin
Memo1.Lines.Add('Response Header:');
Memo1.Lines.Add(CkHttpResponse__header(resp));
Memo1.Lines.Add('Failed.');
CkHttpResponse_Dispose(resp);
Exit;
end;
CkHttpResponse_Dispose(resp);
// Sample JSON response:
// (Sample code for parsing the JSON response is shown below)
// {
// "hasPermission": true,
// "errors": [
// {
// "translation": "anim ex commodo nulla quis",
// "args": [
// ]
// },
// {
// "translation": "aute",
// "args": [
// ]
// }
// ]
// }
// Sample code for parsing the JSON response...
// Use this online tool to generate parsing code from sample JSON: Generate JSON Parsing Code
hasPermission := CkJsonObject_BoolOf(jResp,'hasPermission');
i := 0;
count_i := CkJsonObject_SizeOfArray(jResp,'errors');
while i < count_i do
begin
CkJsonObject_putI(jResp,i);
translation := CkJsonObject__stringOf(jResp,'errors[i].translation');
j := 0;
count_j := CkJsonObject_SizeOfArray(jResp,'errors[i].args');
while j < count_j do
begin
CkJsonObject_putJ(jResp,j);
j := j + 1;
end;
i := i + 1;
end;
CkHttp_Dispose(http);
CkJsonObject_Dispose(json);
CkStringBuilder_Dispose(sbResponseBody);
CkJsonObject_Dispose(jResp);
Curl Command
curl -X POST
-H "Content-Type: application/json"
-d '{
"subject": {
"type": "<string>",
"identifier": "<string>"
},
"operation": "<string>"
}'
https://your-domain.atlassian.net/wiki/rest/api/content/:id/permission/check
Postman Collection Item JSON
{
"name": "Check content permissions",
"request": {
"method": "POST",
"header": [
{
"key": "Content-Type",
"value": "application/json"
}
],
"body": {
"mode": "raw",
"raw": "{\n \"subject\": {\n \"type\": \"<string>\",\n \"identifier\": \"<string>\"\n },\n \"operation\": \"<string>\"\n}"
},
"url": {
"raw": "{{baseUrl}}/api/content/:id/permission/check",
"host": [
"{{baseUrl}}"
],
"path": [
"api",
"content",
":id",
"permission",
"check"
],
"variable": [
{
"key": "id",
"value": "<string>",
"type": "string",
"description": "(Required) The ID of the content to check permissions against."
}
]
},
"description": "Check if a user or a group can perform an operation to the specified content. The `operation` to check\nmust be provided. The user’s account ID or the ID of the group can be provided in the `subject` to check\npermissions against a specified user or group. The following permission checks are done to make sure that the\nuser or group has the proper access:\n\n- site permissions\n- space permissions\n- content restrictions\n\n**[Permissions](https://confluence.atlassian.com/x/_AozKw) required**:\nPermission to access the Confluence site ('Can use' global permission) if checking permission for self,\notherwise 'Confluence Administrator' global permission is required."
},
"response": [
{
"name": "Returned if the permission check completed successfully",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "raw",
"raw": "{\n \"subject\": {\n \"type\": \"<string>\",\n \"identifier\": \"<string>\"\n },\n \"operation\": \"<string>\"\n}"
},
"url": {
"raw": "{{baseUrl}}/api/content/:id/permission/check",
"host": [
"{{baseUrl}}"
],
"path": [
"api",
"content",
":id",
"permission",
"check"
],
"variable": [
{
"key": "id"
}
]
}
},
"status": "OK",
"code": 200,
"_postman_previewlanguage": "json",
"header": [
{
"key": "Content-Type",
"value": "application/json"
}
],
"cookie": [
],
"body": "{\n \"hasPermission\": true,\n \"errors\": [\n {\n \"translation\": \"anim ex commodo nulla quis\",\n \"args\": []\n },\n {\n \"translation\": \"aute\",\n \"args\": []\n }\n ]\n}"
},
{
"name": "Returned if;\n\n- If any of the required fields are missing.\n- If specified `subject` or `operation` is invalid.",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "raw",
"raw": "{\n \"subject\": {\n \"type\": \"<string>\",\n \"identifier\": \"<string>\"\n },\n \"operation\": \"<string>\"\n}"
},
"url": {
"raw": "{{baseUrl}}/api/content/:id/permission/check",
"host": [
"{{baseUrl}}"
],
"path": [
"api",
"content",
":id",
"permission",
"check"
],
"variable": [
{
"key": "id"
}
]
}
},
"status": "Bad Request",
"code": 400,
"_postman_previewlanguage": "text",
"header": [
{
"key": "Content-Type",
"value": "text/plain"
}
],
"cookie": [
],
"body": ""
},
{
"name": "Returned if the authentication credentials are incorrect or missing\nfrom the request.",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "raw",
"raw": "{\n \"subject\": {\n \"type\": \"<string>\",\n \"identifier\": \"<string>\"\n },\n \"operation\": \"<string>\"\n}"
},
"url": {
"raw": "{{baseUrl}}/api/content/:id/permission/check",
"host": [
"{{baseUrl}}"
],
"path": [
"api",
"content",
":id",
"permission",
"check"
],
"variable": [
{
"key": "id"
}
]
}
},
"status": "Unauthorized",
"code": 401,
"_postman_previewlanguage": "text",
"header": [
{
"key": "Content-Type",
"value": "text/plain"
}
],
"cookie": [
],
"body": ""
},
{
"name": "Returned if the user does not have permission perform the check.",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "raw",
"raw": "{\n \"subject\": {\n \"type\": \"<string>\",\n \"identifier\": \"<string>\"\n },\n \"operation\": \"<string>\"\n}"
},
"url": {
"raw": "{{baseUrl}}/api/content/:id/permission/check",
"host": [
"{{baseUrl}}"
],
"path": [
"api",
"content",
":id",
"permission",
"check"
],
"variable": [
{
"key": "id"
}
]
}
},
"status": "Forbidden",
"code": 403,
"_postman_previewlanguage": "text",
"header": [
{
"key": "Content-Type",
"value": "text/plain"
}
],
"cookie": [
],
"body": ""
},
{
"name": "Returned if there is no content with the given ID.",
"originalRequest": {
"method": "POST",
"header": [
],
"body": {
"mode": "raw",
"raw": "{\n \"subject\": {\n \"type\": \"<string>\",\n \"identifier\": \"<string>\"\n },\n \"operation\": \"<string>\"\n}"
},
"url": {
"raw": "{{baseUrl}}/api/content/:id/permission/check",
"host": [
"{{baseUrl}}"
],
"path": [
"api",
"content",
":id",
"permission",
"check"
],
"variable": [
{
"key": "id"
}
]
}
},
"status": "Not Found",
"code": 404,
"_postman_previewlanguage": "text",
"header": [
{
"key": "Content-Type",
"value": "text/plain"
}
],
"cookie": [
],
"body": ""
}
]
}
