Goldmine
Permissions

List assignable policies

POST
/accounts.v1.Accounts/ListPolicies

Returns the named policies that can be granted to memberships and API keys, each with the permissions it includes.

Request Body

application/json

TypeScript Definitions

Use the request body type in TypeScript.

Response Body

application/json

application/json

application/json

application/json

application/json

application/json

curl -X POST "https://loading/accounts.v1.Accounts/ListPolicies" \  -H "Content-Type: application/json" \  -d '{}'
{
  "policies": [
    {
      "name": "trading",
      "permissions": [
        "PERMISSION_VIEW_CONTRACTS",
        "PERMISSION_MANAGE_CONTRACTS",
        "PERMISSION_VIEW_PURCHASES",
        "PERMISSION_MANAGE_PURCHASES"
      ]
    },
    {
      "name": "analytics",
      "permissions": [
        "PERMISSION_VIEW_ANALYTICS"
      ]
    }
  ]
}
{
  "code": "invalid_argument",
  "message": "The request was malformed, such as a missing required field or an unparseable cursor."
}
{
  "code": "unauthenticated",
  "message": "The request lacks a valid API key in the Authorization header."
}
{
  "code": "permission_denied",
  "message": "The API key is not allowed to perform this action on this workspace."
}
{
  "code": "resource_exhausted",
  "message": "The request was rate limited. Slow down and retry later."
}
{
  "code": "internal",
  "message": "An internal server error occurred."
}

GetMyPermissions

Returns the signed-in caller's role, granted policies, and the resolved set of permissions in the current workspace.

ListSessions

Returns the caller's active sign-in sessions, including device, IP address, and last activity, so they can review and revoke them.