View API permission groups

📘

This guide applies only if your organization is configured to use OpenID Connect for authentication. For more information, refer to Authentication with OpenID Connect.

When using OpenID Connect for authentication, the Pismo platform uses permission groups to control access to each of the platform APIs. When you request a Pismo JWT, you must provide the pismo custom key claim to include the permission group name.

You can use Control Center to find the correct permission group, as well as other information about the endpoint. This is useful for answering questions like:

• Which permission groups are available for my organization?
• Which permission group do I use to access a specific endpoint?
• Which endpoints does a specific permission group give access to?
• Does a specific endpoint require an account ID or external ID when generating the access token? (For more information, refer to Get OpenID access token.)

📘

The results that display apply only to your current organization and environment. Also, if your organization doesn’t use OpenID Connect authentication, the results screen displays the message Org has no permission groups configured.

To view API permission groups:

1. From the main menu, select Organization > Permission groups.
2. On the API permission groups screen, use the grouping, sorting, and filtering controls to refine your results.