{"templateId":"markdown","sharedDataIds":{"sidebar":"sidebar-sidebars.yaml"},"props":{"metadata":{"markdoc":{"tagList":[]},"type":"markdown"},"seo":{"title":"Overview","description":"Okta Developer API Reference","siteUrl":"https://developer.asqula.com","keywords":"okta, api reference docs","lang":"en-US","llmstxt":{"hide":false,"sections":[{"title":"Table of contents","includeFiles":["**/*"],"excludeFiles":[]}],"excludeFiles":[]}},"dynamicMarkdocComponents":[],"compilationErrors":[],"ast":{"$$mdtype":"Tag","name":"article","attributes":{},"children":[{"$$mdtype":"Tag","name":"Heading","attributes":{"level":1,"id":"overview","__idx":0},"children":["Overview"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Okta Privileged Access is a Privileged Access Management (PAM) solution designed to help customers mitigate the risk of unauthorized access to resources, a critical area of security and risk management in any organization. Okta Privileged Access (OPA) builds on the current server access control capabilities provided by Okta Advanced Server Access and delivers a unified approach to managing access to all your privileged accounts. OPA securely connects people, machines, and applications to privileged resources such as servers, containers, and enterprise apps."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["This site documents API operations for Okta Privileged Access. For more documentation, see ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"https://help.asqula.com/okta_help.htm?type=oie&id=ext-pam-overview"},"children":["Okta Privileged Access"]},"."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"authentication","__idx":1},"children":["Authentication"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Most operations require an HTTP ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["Authorization"]}," header with a value of ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["Bearer AUTH_TOKEN"]},"."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["To retrieve a Bearer authentication token for API access:"]},{"$$mdtype":"Tag","name":"ol","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Navigate to the OPA dashboard to create a service user and an service user API key. Follow the steps in the ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"https://help.asqula.com/okta_help.htm?type=oie&id=ext-pam-service-users"},"children":["Service users"]}," product documentation under ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Create a service user and an API key"]},". Then, copy and securely save the service user's API key ID and token."]}]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Use your saved service user API key ID and token to request a Bearer authentication token from the ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/openapi/opa/opa/service-users/issueservicetoken"},"children":["Issue a service user token"]}," API resource. In the request body, specify your API key ID in ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["key_id"]}," and your API token in ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["key_secret"]},"."]}]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["The response from a successful ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/openapi/opa/opa/service-users/issueservicetoken"},"children":["Issue a service user token"]}," request provides you with a Bearer auth token (",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["bearer_token"]},") for OPA API authentication and the time the token expires (",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["expires_at"]},"). It also returns the tenant that's applicable to your Bearer auth token (",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["team_name"]},")."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["If you get a ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["401 Unauthorized"]}," response code from an OPA API request, it's most likely that your Bearer auth token expired. Use the ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/openapi/opa/opa/service-users/issueservicetoken"},"children":["Issue a service user token"]}," request again to obtain a new Bearer auth token. Also be mindful of your service user's API key expiry time."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"permissions","__idx":2},"children":["Permissions"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Generally, Group memberships define which permissions are available to a User. Each Group assigned to a User grants specific permissions to roles or Projects. For example, you might create a ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["Security"]}," Group that grants the ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["resource_admin"]}," role to members of the group."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["User permissions are equivalent to the most permissive role that they’re granted."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"available-roles","__idx":3},"children":["Available roles"]},{"$$mdtype":"Tag","name":"div","attributes":{"className":"md-table-wrapper"},"children":[{"$$mdtype":"Tag","name":"table","attributes":{"className":"md"},"children":[{"$$mdtype":"Tag","name":"thead","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Role"},"children":["Role"]},{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Description"},"children":["Description"]}]}]},{"$$mdtype":"Tag","name":"tbody","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["pam_admin"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This role allows a user to assign other administrative roles to OPA Groups and Users"]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["resource_admin"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This role allows a user to administer Project resources. They can create, update, or delete Resource Groups. This role can also assign Delegated Resource Administrators to one or more specific Resource Groups."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["delegated_resource_admin"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This role allows a user to manage all Projects within their assigned Resource Groups"]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["security_admin"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This role allows a user to create Security Policies that control access to resources. A Security Policy defines which resources are available for access, who can access them, and the available methods to access them."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["delegated_security_admin"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This role allows a user to create Security Policies that control access to resources within their assigned Resource Groups"]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["end_user"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This role allows a user to view and access resources granted by security policies. This role is automatically assigned to every human user on your OPA Team."]}]}]}]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"pagination","__idx":4},"children":["Pagination"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Requests that return lists of objects may support pagination. By default, pagination limits the number of returned objects in a given response to 100."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["OPA provides information about pagination in ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["Link"]}," headers:"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":["A Link header that contains ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["rel=\"next\""]}," indicates that a subsequent page is available and contains the URL used to fetch it."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":["A Link header that contains ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["rel=\"prev\""]}," indicates that a previous page is available and contains the URL used to fetch it."]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["To fetch a full list of resources, Clients should use the following approach when retrieving lists:"]},{"$$mdtype":"Tag","name":"ol","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":["Perform the desired list call without providing any pagination-related parameters."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":["Process the response body by referencing objects in the body field called ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["list"]},"."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":["Check for a Link header value with ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["rel=\"next\""]},". If such a value exists, fetch it and repeat steps two and three."]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["An example of a paginated request that contains the URL from the ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["rel=\"next\""]}," Link header:"]},{"$$mdtype":"Tag","name":"CodeBlock","attributes":{"data-language":"bash","header":{"controls":{"copy":{}}},"source":"curl -v -X GET \\\n-H \"Authorization: Bearer {jwt}\" \\\nhttps://{org}.pam.asqula.com/v1/teams/{team_name}/groups?offset={next_page_offset}\n","lang":"bash"},"children":[]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Clients that want to fetch pages of fewer than 100 items (for testing pagination, for example) may pass a ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["count"]}," parameter to the initial list call. This parameter is automatically propagated to each of the pagination Link URLs that are contained in the response; you only need to provide this parameter with the initial call."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["List responses that don't currently implement pagination limits may begin to do so without warning in the future. As a result, Okta recommends you implement pagination when calling any list method. This ensures that the method continues to work if pagination is later implemented."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["An example of a paginated response body that contains a ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["list"]}," field:"]},{"$$mdtype":"Tag","name":"CodeBlock","attributes":{"data-language":"json","header":{"controls":{"copy":{}}},"source":"{\n  \"list\": [\n    {\n      \"id\": \"5dfc51da-3991-4330-88bf-ef710a7d53e5\",\n      \"name\": \"everyone\",\n      \"roles\": [\n        \"end_user\",\n      ],\n      \"deleted_at\": null\n    },\n    {\n      \"id\": \"ad2ff761-83da-4769-b86c-85042eefc1d7\",\n      \"name\": \"owners\",\n      \"roles\": [\n        \"pam_admin\"\n      ],\n      \"deleted_at\": null\n    }\n  ]\n}\n","lang":"json"},"children":[]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"rate-limits","__idx":5},"children":["Rate limits"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Rate limits control access to OPA APIs by measuring the rate at which users send requests during a rate limit period. After exceeding this limit, users must wait for requests to replenish before submitting again. Every API response includes headers related to rate limiting:"]},{"$$mdtype":"Tag","name":"div","attributes":{"className":"md-table-wrapper"},"children":[{"$$mdtype":"Tag","name":"table","attributes":{"className":"md"},"children":[{"$$mdtype":"Tag","name":"thead","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Header"},"children":["Header"]},{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Description"},"children":["Description"]}]}]},{"$$mdtype":"Tag","name":"tbody","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["X-RateLimit-Limit"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A value that indicates the total number of operations permitted per rate limit period"]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["X-RateLimit-Remaining"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A value that indicates the total number of remaining operations permitted during the current rate limit period"]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["X-RateLimit-Reset"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A unix timestamp that indicates when the number of rate limit requests fully replenishes"]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["X-RateLimit-Retry-At"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A unix timestamp that indicates when the number of rate limit requests partially replenishes. If multiple requests share a timestamp, sending them at the same time may cause additional rate limiting"]}]}]}]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Requests that exceed a rate limit receive an ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["HTTP 429 - Too Many Requests"]}," error response. To request a rate limit increase, ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"https://support.asqula.com/help/s/opencase"},"children":["contact support"]},"."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"errors","__idx":6},"children":["Errors"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Okta Privileged Access returns the following HTTP errors:"]},{"$$mdtype":"Tag","name":"div","attributes":{"className":"md-table-wrapper"},"children":[{"$$mdtype":"Tag","name":"table","attributes":{"className":"md"},"children":[{"$$mdtype":"Tag","name":"thead","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Error"},"children":["Error"]},{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Code"},"children":["Code"]},{"$$mdtype":"Tag","name":"th","attributes":{"data-label":"Description"},"children":["Description"]}]}]},{"$$mdtype":"Tag","name":"tbody","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["invalid_request"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["400"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This error is returned on an improper or invalid request body. The request should be modified before being reattempted."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["authentication_error"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["401"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A correct API token wasn't provided. A new token should be retrieved before reattempting."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["authorization_error"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["401"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["The current User doesn't have permission to access the resource requested. Occasionally, this is the result of expired permissions and requires reauthentication."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["server_authorization_revoked"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["401"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A previously deleted Server attempted to reconnect with its old token. Re-enroll the Server to remedy this error."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["forbidden_error"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["403"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A User requests a resource that they don't have access to."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["quota_exceeded"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["403"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A Team exceeded the allotted resource type. Contact support to increase your quota."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["disabled_team"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["403"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["The OPA Team that is being accessed is disabled. Contact support to resolve this issue."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["resource_does_not_exist"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["404"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["A resource doesn't exist. Most likely the path parameters of the URL are incorrectly spelled or the specific resource was deleted."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["resource_deprecated"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["404"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["An attempt was made to access a deprecated resource."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["resource_already_exists"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["409"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["An attempt was made to create a resource that exists. Change key elements of the request (for example, the name) before reattempting."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["unsupported_content_type"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["415"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["The request body isn't formatted as a JSON object. Check your request body and ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["Content-Type"]}," header before reattempting."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["too_many_requests"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["429"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["Too many API requests were received. Either wait and try again or contact support to solve this issue."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["client_closed_connection"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["499"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["The client terminated the connection before the server received the data. Try again or provide a smaller request."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["unknown_error"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["500"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["This error is for miscellaneous API errors. This error is temporary and can be retried."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["service_offline"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["503"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["The service is temporarily offline. Try again later."]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["gateway_timeout"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"code","attributes":{},"children":["504"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":["The Gateway responded within the timeout period. Try again later."]}]}]}]}]}]},"headings":[{"value":"Overview","id":"overview","depth":1},{"value":"Authentication","id":"authentication","depth":2},{"value":"Permissions","id":"permissions","depth":2},{"value":"Available roles","id":"available-roles","depth":2},{"value":"Pagination","id":"pagination","depth":2},{"value":"Rate limits","id":"rate-limits","depth":2},{"value":"Errors","id":"errors","depth":2}],"frontmatter":{"title":"Overview","seo":{"title":"Overview"}},"lastModified":"2026-02-25T19:30:46.000Z","pagePropGetterError":{"message":"","name":""}},"slug":"/openapi/opa","userData":{"isAuthenticated":false,"teams":["anonymous"]},"isPublic":true}