Skip to main content

Get Policy

GET 
/api/v1/infra/collections/:collectionId/policies/:policyId

Retrieves a specific IAM policy assigned to a user within a collection. Returns detailed policy information including permissions, policy document, attachment details, and metadata such as creation date and last modified timestamp.

Parameter Details

Header Parameters

  • integrationid (required): Unique identifier for the cloud provider integration configured in your Unizo account. This UUID associates the API request with the specific cloud account credentials and permissions.

Path Parameters

  • collectionId (required): Unique identifier for the collection within the specified cloud provider. Format varies by provider:

    • AWS: Region identifier for compliance environments (e.g., us-east-1 for US compliance, eu-west-1 for GDPR compliance)
    • Google Cloud: Project ID for governance environments (e.g., prod-compliance-env, audit-data-project-2024)
    • Azure: Use "default" when no specific subscription or resource group mapping is configured
    • Other providers: Provider-specific collection identifiers

  • userId (required): Unique identifier for the user account within the cloud provider's identity system. Format examples:

    • AWS: IAM user name for GRC roles (e.g., compliance-auditor, security-analyst, governance-admin) or ARN
    • Google Cloud: Email address for audit team members (e.g., auditor@company.com, compliance@company.com) or user ID
    • Azure: User principal name for GRC team (e.g., grc-team@company.com, audit.admin@company.com) or object ID
    • Other providers: Provider-specific user identifiers

  • policyId (required): Unique identifier for the IAM policy within the cloud provider. Format examples:

    • AWS: Policy ARN for compliance policies (e.g., arn:aws:iam::123456789012:policy/ComplianceAuditPolicy, SecurityReadOnlyPolicy) or policy name
    • Google Cloud: Policy binding ID for audit roles (e.g., ComplianceViewerBinding, AuditLogReaderRole)
    • Azure: Policy definition ID for governance policies (e.g., ComplianceAuditPolicy, SecurityCenterReaderPolicy) or assignment ID

Request

Responses

Successful Operation