> For clean Markdown of any page, append .md to the page URL. > For a complete documentation index, see https://docs.cail.health/llms.txt. > For AI client integration (Claude Code, Cursor, etc.), connect to the MCP server at https://docs.cail.health/_mcp/server. # Get a role’s permissions GET https://staging.cail.health/v1/organizations/{id}/roles/{roleId}/permissions Returns the permission set granted to a custom role. Reference: https://docs.cail.health/api-references/api-reference/manage-your-organization/get-role-permissions ## OpenAPI Specification ```yaml openapi: 3.1.0 info: title: cail-api version: 1.0.0 paths: /v1/organizations/{id}/roles/{roleId}/permissions: get: operationId: get-role-permissions summary: Get a role’s permissions description: Returns the permission set granted to a custom role. tags: - subpackage_manageYourOrganization parameters: - name: id in: path required: true schema: type: string - name: roleId in: path required: true schema: type: string - name: Authorization in: header description: Bearer authentication required: true schema: type: string responses: '200': description: Role permissions. content: application/json: schema: $ref: >- #/components/schemas/Manage your organization_getRolePermissions_Response_200 servers: - url: https://staging.cail.health description: https://staging.cail.health components: schemas: Manage your organization_getRolePermissions_Response_200: type: object properties: roleId: type: string permissions: type: array items: type: string title: Manage your organization_getRolePermissions_Response_200 securitySchemes: auth0Bearer: type: http scheme: bearer ``` ## Examples **Response** ```json { "roleId": "9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a", "permissions": [ "analytics:read", "reporting:read" ] } ``` **SDK Code** ```python A read-only analyst role import requests url = "https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions" headers = {"Authorization": "Bearer "} response = requests.get(url, headers=headers) print(response.json()) ``` ```javascript A read-only analyst role const url = 'https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions'; const options = {method: 'GET', headers: {Authorization: 'Bearer '}}; try { const response = await fetch(url, options); const data = await response.json(); console.log(data); } catch (error) { console.error(error); } ``` ```go A read-only analyst role package main import ( "fmt" "net/http" "io" ) func main() { url := "https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions" req, _ := http.NewRequest("GET", url, nil) req.Header.Add("Authorization", "Bearer ") res, _ := http.DefaultClient.Do(req) defer res.Body.Close() body, _ := io.ReadAll(res.Body) fmt.Println(res) fmt.Println(string(body)) } ``` ```ruby A read-only analyst role require 'uri' require 'net/http' url = URI("https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions") http = Net::HTTP.new(url.host, url.port) http.use_ssl = true request = Net::HTTP::Get.new(url) request["Authorization"] = 'Bearer ' response = http.request(request) puts response.read_body ``` ```java A read-only analyst role import com.mashape.unirest.http.HttpResponse; import com.mashape.unirest.http.Unirest; HttpResponse response = Unirest.get("https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions") .header("Authorization", "Bearer ") .asString(); ``` ```php A read-only analyst role request('GET', 'https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions', [ 'headers' => [ 'Authorization' => 'Bearer ', ], ]); echo $response->getBody(); ``` ```csharp A read-only analyst role using RestSharp; var client = new RestClient("https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions"); var request = new RestRequest(Method.GET); request.AddHeader("Authorization", "Bearer "); IRestResponse response = client.Execute(request); ``` ```swift A read-only analyst role import Foundation let headers = ["Authorization": "Bearer "] let request = NSMutableURLRequest(url: NSURL(string: "https://staging.cail.health/v1/organizations/f47ac10b-58cc-4372-a567-0e02b2c3d479/roles/9d8e7f6a-5b4c-4321-b2a9-8f7e6d5c4b3a/permissions")! as URL, cachePolicy: .useProtocolCachePolicy, timeoutInterval: 10.0) request.httpMethod = "GET" request.allHTTPHeaderFields = headers let session = URLSession.shared let dataTask = session.dataTask(with: request as URLRequest, completionHandler: { (data, response, error) -> Void in if (error != nil) { print(error as Any) } else { let httpResponse = response as? HTTPURLResponse print(httpResponse) } }) dataTask.resume() ```