Конечная точка Policy
Конечная точка позволяет получить политику ЦИ. Метод доступен Операторам и пользователям при наличии соответствующего сертификата и/или токена аутентификации.
Получение политики Сервиса Управления Пользователями (UMS)
GetPolicy
| Параметр | Значение |
|---|---|
| HTTP-метод | GET |
| Путь | https://<адрес сервера>/<имя приложения ЦИ>/ums/policy |
| Параметры в строке запроса | - |
| Параметры в теле запроса | - |
| Возвращаемое значение | UmsPolicy - Политика Сервиса Управления Пользователями |
Пример запроса
GET https://{{hostname}}/{{instanceName}}/ums/policy HTTP/1.1
Пример ответа
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 6489
{
"AvaliableIdentifierTypes": [
"Login"
],
"PhoneConfirmationRequired": false,
"EmailConfirmationRequired": false,
"AuthMethods": [
{
"Identifier": "http://dss.cryptopro.ru/identity/authenticationmethod/certificate",
"Type": "Primary"
},
{
"Identifier": "http://dss.cryptopro.ru/identity/authenticationmethod/password",
"Type": "Primary"
},
{
"Identifier": "http://dss.cryptopro.ru/identity/authenticationmethod/external",
"Type": "Primary"
},
{
"Identifier": "http://dss.cryptopro.ru/identity/authenticationmethod/mydss",
"Type": "PrimaryAndSecondary"
},
{
"Identifier": "http://dss.cryptopro.ru/identity/authenticationmethod/otpviaemail",
"Type": "Secondary"
},
{
"Identifier": "http://dss.cryptopro.ru/identity/authenticationmethod/otpviasms",
"Type": "Secondary"
},
{
"Identifier": "http://schemas.microsoft.com/ws/2012/09/identity/authenticationmethod/none",
"Type": "Primary"
}
],
"AllowPrimaryAuthChange": true,
"AllowSecondaryAuthChange": true,
"AllowPrimaryAuthDataChange": true,
"AllowSecondaryAuthDataChange": true,
"AllowProfileChange": false,
"RdnPolicy": {
"Default": [
{
"Id": 3,
"Oid": "2.5.4.4",
"DisplayName": "Фамилия",
"StringIdentifier": "SN",
"Order": 0,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 40,
"Required": false,
"ValueSet": []
},
{
"Id": 2,
"Oid": "2.5.4.42",
"DisplayName": "Имя Отчество",
"StringIdentifier": "G",
"Order": 1,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 128,
"Required": false,
"ValueSet": []
},
{
"Id": 4,
"Oid": "2.5.4.43",
"DisplayName": "Инициалы",
"StringIdentifier": "I",
"Order": 2,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 5,
"Required": false,
"ValueSet": []
},
{
"Id": 16,
"Oid": "2.5.4.12",
"DisplayName": "Должность",
"StringIdentifier": "T",
"Order": 3,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 64,
"Required": false,
"ValueSet": []
},
{
"Id": 13,
"Oid": "2.5.4.9",
"DisplayName": "Адрес",
"StringIdentifier": "Street",
"Order": 4,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 120,
"Required": false,
"ValueSet": []
},
{
"Id": 1,
"Oid": "2.5.4.3",
"DisplayName": "Общее имя",
"StringIdentifier": "CN",
"Order": 5,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 128,
"Required": false,
"ValueSet": []
},
{
"Id": 15,
"Oid": "2.5.4.11",
"DisplayName": "Подразделение",
"StringIdentifier": "OU",
"Order": 6,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 64,
"Required": false,
"ValueSet": []
},
{
"Id": 14,
"Oid": "2.5.4.10",
"DisplayName": "Организация",
"StringIdentifier": "O",
"Order": 7,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 64,
"Required": false,
"ValueSet": []
},
{
"Id": 12,
"Oid": "2.5.4.7",
"DisplayName": "Город",
"StringIdentifier": "L",
"Order": 8,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 128,
"Required": false,
"ValueSet": []
},
{
"Id": 11,
"Oid": "2.5.4.8",
"DisplayName": "Область",
"StringIdentifier": "S",
"Order": 9,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 128,
"Required": false,
"ValueSet": []
},
{
"Id": 10,
"Oid": "2.5.4.6",
"DisplayName": "Страна",
"StringIdentifier": "C",
"Order": 10,
"ValueType": "Country",
"MinLength": 0,
"MaxLength": 2,
"Required": false,
"ValueSet": []
},
{
"Id": 5,
"Oid": "1.2.840.113549.1.9.1",
"DisplayName": "Электронная почта",
"StringIdentifier": "E",
"Order": 11,
"ValueType": "String",
"MinLength": 0,
"MaxLength": 128,
"Required": false,
"ValueSet": []
},
{
"Id": 6,
"Oid": "1.2.643.3.131.1.1",
"DisplayName": "ИНН",
"StringIdentifier": "INN",
"Order": 12,
"ValueType": "Numeric",
"MinLength": 12,
"MaxLength": 12,
"Required": false,
"ValueSet": []
},
{
"Id": 9,
"Oid": "1.2.643.100.3",
"DisplayName": "СНИЛС",
"StringIdentifier": "SNILS",
"Order": 13,
"ValueType": "Numeric",
"MinLength": 11,
"MaxLength": 11,
"Required": false,
"ValueSet": []
},
{
"Id": 8,
"Oid": "1.2.643.100.5",
"DisplayName": "ОГРНИП",
"StringIdentifier": "OGRNIP",
"Order": 14,
"ValueType": "Numeric",
"MinLength": 15,
"MaxLength": 15,
"Required": false,
"ValueSet": []
},
{
"Id": 7,
"Oid": "1.2.643.100.1",
"DisplayName": "ОГРН",
"StringIdentifier": "OGRN",
"Order": 15,
"ValueType": "Numeric",
"MinLength": 13,
"MaxLength": 13,
"Required": false,
"ValueSet": []
},
{
"Id": 17,
"Oid": "1.2.643.100.4",
"DisplayName": "ИНН ЮЛ",
"StringIdentifier": "INNLE",
"Order": 16,
"ValueType": "Numeric",
"MinLength": 10,
"MaxLength": 10,
"Required": false,
"ValueSet": []
}
]
},
"AllowUserRegistration": true,
"IdentityProviders": [
{
"Description": "Локальный доверенный издатель",
"IssuerName": "realsts",
"DisplayName": "Локальный доверенный издатель"
}
],
"Groups": [
{
"GroupId": 1,
"GroupName": "Default"
}
],
"CryptoProviders": [
{
"Id": "64707387-0eea-4dd5-bd4b-d27bcb824a32",
"Name": "mdag",
"Description": "",
"Type": "MyDss"
}
],
"PasswordSettings": {
"PasswordLength": 8,
"PasswordComplexity": 3,
"OtpLength": 5,
"OtpComplexity": 1,
"InvalidPasswordAttempts": 5,
"InvalidOtpAttempts": 3,
"PasswordFailureLockoutTimeSpan": "36500.00:00:00",
"PasswordSource": "ClientAndServer",
"PasswordType": "Symbolic",
"PasswordLifetime": 0,
"ChangePasswordAfterReset": false,
"PasswordDisplayList": [
"Screen"
],
"LockoutEnabled": true,
"OtpLockoutEnabled": true
},
"MyDssAuthSettings": {
"MyDssSelfRegEnabled": true,
"MyDssTimeStep": 180,
"MyDssKeyProtectionFlags": {
"FingerprintRequired": true,
"CollectEvents": false,
"CollectDeviceInfo": false,
"CollectSimInfo": false,
"CollectLocation": false,
"PasswordPolicy": 0,
"DenyOSProtection": false,
"ScoringEnabled": false,
"StrongKeyProtectionType": true
},
"MyDssActivationRequirements": {
"ActivationRequired": false,
"AvailableDestinations": [
"PhoneNumber",
"EmailAddress"
]
},
"MyDssMultiusableKInit": false,
"MyDssActivationCodeLength": 6,
"MyDssCertifyWithUntrustedIssuers": false,
"QrCodeDisplayFormat": "Screen",
"SendQrCodeByEmailPermitted": false,
"MyDssSystems": [
{
"Id": "691efce6-43ef-4f9d-bef0-c057faaa4a3d",
"DisplayName": "mydss20",
"Parameters": {}
},
{
"Id": "d57ff968-ebed-4637-b737-74893700b832",
"DisplayName": "dssclient",
"Parameters": {
"KeyInfoDivideByUserRequired": "False"
}
}
]
}
}